Ir ao conteúdo
  • Cadastre-se
Neto Souza

Estou com um problema de Malware( eu acho)

Posts recomendados

aqui vai o relatorio do DDS E DO ATTACH:

DDS:

DDS (Ver_10-03-17.01) - NTFSx86

Run by neto at 10:51:53,19 on dom 03/10/2010

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_16

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.510.185 [GMT -3:00]

============== Running Processes ===============

D:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

D:\WINDOWS\System32\svchost.exe -k netsvcs

D:\WINDOWS\system32\svchost.exe -k WudfServiceGroup

svchost.exe

svchost.exe

D:\WINDOWS\system32\spoolsv.exe

D:\WINDOWS\system32\RUNDLL32.EXE

D:\WINDOWS\SOUNDMAN.EXE

D:\Arquivos de programas\Java\jre6\bin\jusched.exe

D:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe

D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe

D:\WINDOWS\system32\ctfmon.exe

D:\Arquivos de programas\Arquivos comuns\ArcSoft\Connection Service\Bin\ACService.exe

D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe

D:\Arquivos de programas\Java\jre6\bin\jqs.exe

D:\WINDOWS\system32\nvsvc32.exe

D:\WINDOWS\system32\slserv.exe

D:\WINDOWS\system32\svchost.exe -k imgsvc

D:\Arquivos de programas\Mozilla Firefox\firefox.exe

D:\DOCUME~1\neto\CONFIG~1\Temp\winkuvp.exe

D:\DOCUME~1\neto\CONFIG~1\Temp\wbc1a3.exe

D:\WINDOWS\explorer.exe

D:\Documents and Settings\neto\Meus documentos\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.plusnetwork.com

uURLSearchHooks: Messenger Plus Live Brazil Toolbar: {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - d:\arquivos de programas\messenger_plus_live_brazil\tbMes1.dll

BHO: IEPlugin Class: {11222041-111b-46e3-bd29-efb2449479b1} - d:\arquiv~1\arcsoft\mediac~1\intern~1\ARCURL~1.DLL

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - d:\arquivos de programas\arquivos comuns\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: SBCONVERT Class: {31b27f2d-6bc6-451b-b3d2-4eab36b2fc3b} - d:\arquivos de programas\speedbit video downloader\toolbar\tbcore3.dll

BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\arquivos de programas\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: Messenger Plus Live Brazil Toolbar: {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - d:\arquivos de programas\messenger_plus_live_brazil\tbMes1.dll

BHO: GrabberObj Class: {ff7c3cf0-4b15-11d1-abed-709549c10000} - d:\arquiv~1\speedb~1\toolbar\grabber.dll

TB: SpeedBit Video Downloader: {0329e7d6-6f54-462d-93f6-f5c3118badf2} - d:\arquivos de programas\speedbit video downloader\toolbar\tbcore3.dll

TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File

TB: Messenger Plus Live Brazil Toolbar: {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - d:\arquivos de programas\messenger_plus_live_brazil\tbMes1.dll

TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File

uRun: [CTFMON.EXE] d:\windows\system32\ctfmon.exe

uRun: [MsnMsgr] "d:\arquivos de programas\windows live\messenger\MsnMsgr.Exe" /background

mRun: [NvCplDaemon] RUNDLL32.EXE d:\windows\system32\NvCpl.dll,NvStartup

mRun: [nwiz] nwiz.exe /install

mRun: [NvMediaCenter] RUNDLL32.EXE d:\windows\system32\NvMcTray.dll,NvTaskbarInit

mRun: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd

mRun: [soundMan] SOUNDMAN.EXE

mRun: [sunJavaUpdateSched] "d:\arquivos de programas\java\jre6\bin\jusched.exe"

mRun: [ArcSoft Connection Service] d:\arquivos de programas\arquivos comuns\arcsoft\connection service\bin\ACDaemon.exe

mRun: [NeroFilterCheck] d:\arquivos de programas\arquivos comuns\ahead\lib\NeroCheck.exe

mRun: [8CEEC2] d:\windows\system32\929d39\8CEEC2.EXE

mRun: [Adobe Reader Speed Launcher] "d:\arquivos de programas\adobe\reader 9.0\reader\Reader_sl.exe"

mRun: [Adobe ARM] "d:\arquivos de programas\arquivos comuns\adobe\arm\1.0\AdobeARM.exe"

mRun: [LogMeIn Hamachi Ui] "d:\arquivos de programas\logmein hamachi\hamachi-2-ui.exe" --auto-start

mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

dRun: [CTFMON.EXE] d:\windows\system32\CTFMON.EXE

StartupFolder: d:\docume~1\neto\menuin~1\progra~1\inicia~1\8ceec2.lnk - d:\windows\system32\929d39\8CEEC2.EXE

StartupFolder: d:\docume~1\neto\menuin~1\progra~1\inicia~1\limewi~1.lnk - d:\arquivos de programas\limewire\LimeWire.exe

StartupFolder: d:\docume~1\neto\menuin~1\progra~1\inicia~1\tipcam.lnk - d:\arquivos de programas\utipu\tipc.exe

StartupFolder: d:\docume~1\alluse~1\menuin~1\progra~1\inicia~1\philip~1.lnk - d:\arquivos de programas\philips\gogear sa1vbexx device manager\GoGear_SA1VBExx_DeviceManager.exe

mPolicies-system: EnableLUA = 0 (0x0)

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\arquivos de programas\messenger\msmsgs.exe

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

AppInit_DLLs: d:\windows\elf_key.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - d:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - d:\docume~1\neto\dadosd~1\mozilla\firefox\profiles\1sov8quk.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2567694&SearchSource=3&q={searchTerms}

FF - prefs.js: browser.search.selectedEngine - Ask

FF - prefs.js: browser.startup.homepage - hxxp://www.plusnetwork.com

FF - component: d:\documents and settings\neto\dados de aplicativos\mozilla\firefox\profiles\1sov8quk.default\extensions\{edbca961-4bf8-4cbe-8c63-a11dff9ed2d9}\components\FFExternalAlert.dll

FF - component: d:\documents and settings\neto\dados de aplicativos\mozilla\firefox\profiles\1sov8quk.default\extensions\{edbca961-4bf8-4cbe-8c63-a11dff9ed2d9}\components\RadioWMPCore.dll

FF - HiddenExtension: Java Console: No Registry Reference - d:\arquivos de programas\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 10);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true);

d:\arquivos de programas\mozilla firefox\greprefs\all.js - pref("html5.enable", false);

d:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);

d:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");

d:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);

d:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);

d:\arquivos de programas\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".com.br");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);

d:\arquivos de programas\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;d:\arquivos de programas\logmein hamachi\hamachi-2.exe [2010-3-30 1107336]

R3 asc3360pr;asc3360pr;\??\d:\windows\system32\drivers\lmsino.sys --> d:\windows\system32\drivers\lmsino.sys [?]

R3 dfmirage;dfmirage;d:\windows\system32\drivers\dfmirage.sys [2008-10-29 31896]

S2 swjvoyr;Windows Boot;d:\windows\system32\svchost.exe -k netsvcs [2008-4-14 14336]

S3 extrem.sys;extrem;\??\d:\docume~1\neto\config~1\temp\extrem.sys --> d:\docume~1\neto\config~1\temp\extrem.sys [?]

=============== Created Last 30 ================

2010-10-02 16:51:05 0 d-----w- d:\arquivos de programas\ElfBot NG 8.57

2010-10-02 16:43:05 0 d-----w- d:\arquivos de programas\Tibia 8.57

2010-09-26 16:48:53 21172 ----a-w- d:\windows\ws2help.dll

2010-09-26 16:48:53 12 ----a-w- d:\windows\explorer.exe.local

2010-09-26 16:48:53 110592 ----a-w- d:\windows\Wplugin.dll

2010-09-25 19:53:34 0 d-----w- d:\arquivos de programas\Nova pasta

2010-09-25 19:46:41 0 d-----w- d:\docume~1\neto\dadosd~1\PLand

2010-09-25 19:46:23 152731 ----a-w- d:\arquivos de programas\Uninstal.exe

2010-09-25 01:11:38 5632 ----a-w- d:\windows\system32\ptpusb.dll

2010-09-25 01:11:37 159232 ----a-w- d:\windows\system32\ptpusd.dll

2010-09-25 01:11:37 15104 -c--a-w- d:\windows\system32\dllcache\usbscan.sys

2010-09-25 01:11:37 15104 ----a-w- d:\windows\system32\drivers\usbscan.sys

2010-09-19 18:41:06 0 d-----w- d:\arquivos de programas\extensions

2010-09-19 18:41:06 0 d-----w- d:\arquivos de programas\data

2010-09-19 17:16:49 4465110 ----a-w- d:\arquivos de programas\Map Editor do Neto.zip

2010-09-19 17:16:21 0 d-----w- d:\arquivos de programas\Map Editor do Neto

2010-09-11 15:42:36 684313 ----a-w- d:\arquivos de programas\unins000.exe

2010-09-11 15:42:36 2341 ----a-w- d:\arquivos de programas\unins000.dat

2010-09-11 15:42:34 2416640 ----a-w- d:\arquivos de programas\Pokeland PT.exe

2010-09-11 15:42:34 211456 ----a-w- d:\arquivos de programas\Pokeland.dat

2010-09-11 15:42:34 184320 ----a-w- d:\arquivos de programas\Patch.exe

2010-09-10 21:45:29 0 d-----w- d:\arquivos de programas\VirtualDJ

==================== Find3M ====================

2010-09-11 16:14:56 9662 ----a-w- d:\arquivos de programas\Iconeq.ico

2010-09-10 23:48:03 1363481 ----a-w- d:\arquivos de programas\Pokeland.pic

2010-08-17 19:07:38 32439237 ----a-w- d:\arquivos de programas\Pokeland.spr

2010-07-06 20:42:20 16958 ----a-w- d:\arquivos de programas\rme_icon.ico

2010-07-06 20:42:16 77824 ----a-w- d:\arquivos de programas\zlib1.dll

2010-07-06 20:42:16 2643 ----a-w- d:\arquivos de programas\LICENSE.rtf

2010-07-06 20:42:16 1314 ----a-w- d:\arquivos de programas\clients.xml

2010-07-06 20:42:12 967680 ----a-w- d:\arquivos de programas\libxml2.dll

2010-07-06 20:42:12 3106816 ----a-w- d:\arquivos de programas\RME.exe

2010-07-06 20:42:06 1857 ----a-w- d:\arquivos de programas\README.txt

2010-07-06 20:42:02 888832 ----a-w- d:\arquivos de programas\iconv.dll

2010-07-06 20:41:54 770384 ----a-w- d:\windows\system32\msvcr100.dll

2010-07-06 20:41:54 421200 ----a-w- d:\windows\system32\msvcp100.dll

2001-11-23 04:08:20 712704 ----a-w- d:\windows\inf\other\AUDIO3D.DLL

2008-04-14 10:00:00 161768 --sha-r- d:\windows\system32\smzjjsbk.dll

2010-02-16 07:07:44 23552 --sh--w- d:\windows\system32\6d9d3b\A-81U7.EXE

2010-02-04 03:02:49 22528 --sh--w- d:\windows\system32\6d9d3b\A-82U7.EXE

2010-04-10 03:36:48 23552 --sh--w- d:\windows\system32\6d9d3b\GC-8N5.EXE

2010-03-09 04:39:05 24576 --sh--w- d:\windows\system32\6d9d3b\GC-9876.EXE

2010-03-20 03:56:13 25088 --sh--w- d:\windows\system32\6d9d3b\GC-9878.EXE

2010-03-22 03:01:21 23040 --sh--w- d:\windows\system32\6d9d3b\GC-9898.EXE

2010-04-16 04:49:54 23552 --sh--w- d:\windows\system32\6d9d3b\GC-9N5.EXE

2010-05-15 17:48:24 23552 --sh--w- d:\windows\system32\6d9d3b\GC-BN5.EXE

2010-05-30 20:44:43 23552 --sh--w- d:\windows\system32\6d9d3b\GC-BN7.EXE

2010-06-02 00:04:02 22528 --sh--w- d:\windows\system32\6d9d3b\GC-BN8.EXE

2010-06-28 03:47:04 23040 --sh--w- d:\windows\system32\6d9d3b\GC-BN9.EXE

2010-04-29 19:06:34 23552 --sh--w- d:\windows\system32\6d9d3b\GC-WN5.EXE

2010-04-10 03:37:00 13824 --sh--w- d:\windows\system32\6d9d3b\TC-3N5.EXE

2010-04-16 04:50:06 13824 --sh--w- d:\windows\system32\6d9d3b\TC-6N5.EXE

2010-03-30 03:49:23 15360 --sh--w- d:\windows\system32\6d9d3b\TC-8N6.EXE

2010-03-24 04:03:23 13824 --sh--w- d:\windows\system32\6d9d3b\TC-8U6.EXE

2010-03-12 03:54:52 14336 --sh--w- d:\windows\system32\6d9d3b\TC-8U7.EXE

2010-06-28 04:39:16 14336 --sh--w- d:\windows\system32\6d9d3b\TC-VL2.EXE

2010-04-26 01:39:04 13824 --sh--w- d:\windows\system32\6d9d3b\TC-VN5.EXE

2010-05-15 17:48:36 13824 --sh--w- d:\windows\system32\6d9d3b\TC-VN6.EXE

2010-06-03 02:43:29 13824 --sh--w- d:\windows\system32\6d9d3b\TC-VN7.EXE

2010-06-03 23:12:50 13824 --sh--w- d:\windows\system32\6d9d3b\TC-VN9.EXE

2010-01-14 19:35:36 23552 --sh--w- d:\windows\system32\6d9d3b\Y-80U7.EXE

2010-01-20 06:40:28 22016 --sh--w- d:\windows\system32\6d9d3b\Y-81U7.EXE

2009-12-30 17:10:56 23552 --sh--w- d:\windows\system32\6d9d3b\Y-87U7.EXE

2009-12-27 05:48:59 23552 --sh--w- d:\windows\system32\6d9d3b\Y-97U7.EXE

2010-01-28 01:18:32 22528 --sh--w- d:\windows\system32\6d9d3b\Z-81U7.EXE

2010-03-06 21:04:12 1485517 --sh--r- d:\windows\system32\929d39\8CEEC2.EXE

2009-12-01 23:58:37 32768 --sha-w- d:\windows\system32\config\systemprofile\configurações locais\histórico\history.ie5\index.dat

2009-12-01 23:58:21 32768 --sha-w- d:\windows\system32\config\systemprofile\configurações locais\histórico\history.ie5\mshist012009120120091202\index.dat

2009-12-01 23:58:37 32768 --sha-w- d:\windows\system32\config\systemprofile\configurações locais\temporary internet files\content.ie5\index.dat

2009-12-01 23:58:37 16384 --sha-w- d:\windows\system32\config\systemprofile\cookies\index.dat

2009-12-01 23:58:21 245760 --sha-w- d:\windows\system32\config\systemprofile\ietldcache\index.dat

============= FINISH: 10:52:43,80 ===============

RELATORIO DO ATTACH:

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 1/12/2009 21:57:09

System Uptime: 10/3/2010 10:30:27 (4968 hours ago)

Motherboard: Semp Toshiba | | STI 910090

Processor: Intel® Celeron® CPU 2.53GHz | Socket 775 | 2528/133mhz

==== Disk Partitions =========================

A: is Removable

C: is FIXED (NTFS) - 39 GiB total, 38,903 GiB free.

D: is FIXED (NTFS) - 35 GiB total, 11,184 GiB free.

E: is CDROM ()

F: is Removable

G: is Removable

H: is Removable

I: is Removable

==== Disabled Device Manager Items =============

Class GUID:

Description: Modem PCI

Device ID: PCI\VEN_A000&DEV_2800&SUBSYS_2800922D&REV_02\3&13C0B0C5&0&48

Manufacturer:

Name: Modem PCI

PNP Device ID: PCI\VEN_A000&DEV_2800&SUBSYS_2800922D&REV_02\3&13C0B0C5&0&48

Service:

==== System Restore Points ===================

RP147: 27/9/2010 00:42:20 - Ponto de verificação do sistema

RP148: 29/9/2010 15:04:50 - Ponto de verificação do sistema

RP149: 2/10/2010 20:39:27 - Ponto de verificação do sistema

==== Installed Programs ======================

Ask.com Search Assistant 1.0.2

Conquer Online 2.0

ElfBot NG 4.5.6

Messenger Plus! Live

Microsoft Visual C++ 2005 Redistributable

Pokeland

Remere's Map Editor

Right-Click Encrypter 1.1

Tibia

Virtual DJ - Atomix Productions

==== End Of File ===========================

AGORA O DO GMR:

GMER 1.0.15.15281 - http://www.gmer.net

Rootkit scan 2010-10-03 11:35:32

Windows 5.1.2600 Service Pack 3

Running: gmer.exe; Driver: D:\DOCUME~1\neto\CONFIG~1\Temp\kwayqaob.sys

---- Kernel code sections - GMER 1.0.15 ----

.text D:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xF7EE8360, 0x35363F, 0xE8000020]

init D:\WINDOWS\system32\drivers\ALCXSENS.SYS entry point in "init" section [0xF7DCB900]

? D:\WINDOWS\system32\drivers\lmsino.sys O sistema não pode encontrar o arquivo especificado. !

---- User code sections - GMER 1.0.15 ----

.text D:\WINDOWS\system32\spoolsv.exe[312] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\spoolsv.exe[312] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\WINDOWS\system32\spoolsv.exe[312] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\spoolsv.exe[312] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\winlogon.exe[696] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\winlogon.exe[696] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\winlogon.exe[696] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\services.exe[748] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\services.exe[748] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\services.exe[748] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\lsass.exe[760] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\lsass.exe[760] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\lsass.exe[760] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\svchost.exe[924] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\svchost.exe[924] d:\windows\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\svchost.exe[924] d:\windows\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\svchost.exe[1000] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\svchost.exe[1000] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\WINDOWS\system32\svchost.exe[1000] d:\windows\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\svchost.exe[1000] d:\windows\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\nvsvc32.exe[1084] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, F1, 00, FF, E0, ...] {MOV EAX, 0xf11698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\nvsvc32.exe[1084] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\nvsvc32.exe[1084] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe[1192] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe[1192] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe[1192] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2.exe[1192] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\explorer.exe[1208] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\explorer.exe[1208] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\WINDOWS\explorer.exe[1208] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\explorer.exe[1208] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe[1300] ws2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe[1300] ws2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe[1300] D:\WINDOWS\system32\ws2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe[1300] D:\WINDOWS\system32\ws2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe[1332] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe[1332] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\Arquivos de programas\LogMeIn Hamachi\hamachi-2-ui.exe[1332] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\Arquivos de programas\Java\jre6\bin\jqs.exe[1404] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\Arquivos de programas\Java\jre6\bin\jqs.exe[1404] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\Arquivos de programas\Java\jre6\bin\jqs.exe[1404] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\Arquivos de programas\Java\jre6\bin\jqs.exe[1404] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\System32\svchost.exe[1424] ntdll.dll!NtQueryInformationProcess 7C90D7E0 5 Bytes JMP 021F9DD2

.text D:\WINDOWS\System32\svchost.exe[1424] NETAPI32.dll!NetpwPathCanonicalize 5BCBA3B1 5 Bytes JMP 021F9D72

.text D:\WINDOWS\System32\svchost.exe[1424] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\System32\svchost.exe[1424] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\WINDOWS\System32\svchost.exe[1424] d:\windows\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\System32\svchost.exe[1424] d:\windows\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\svchost.exe[1600] ntdll.dll!NtQueryInformationProcess 7C90D7E0 5 Bytes JMP 00949DD2

.text D:\WINDOWS\system32\svchost.exe[1600] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\svchost.exe[1600] d:\windows\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\svchost.exe[1600] d:\windows\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\WINDOWS\system32\svchost.exe[1656] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\WINDOWS\system32\svchost.exe[1656] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\WINDOWS\system32\svchost.exe[1656] d:\windows\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\WINDOWS\system32\svchost.exe[1656] d:\windows\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\DOCUME~1\neto\CONFIG~1\Temp\wbc1a3.exe[3764] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\DOCUME~1\neto\CONFIG~1\Temp\wbc1a3.exe[3764] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\DOCUME~1\neto\CONFIG~1\Temp\wbc1a3.exe[3764] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\DOCUME~1\neto\CONFIG~1\Temp\wbc1a3.exe[3764] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

.text D:\DOCUME~1\neto\CONFIG~1\Temp\winkuvp.exe[3984] WS2_32.dll!socket 71A74211 9 Bytes [b8, 98, 16, 00, 10, FF, E0, ...] {MOV EAX, 0x10001698; JMP EAX; NOP ; NOP }

.text D:\DOCUME~1\neto\CONFIG~1\Temp\winkuvp.exe[3984] WS2_32.dll!connect 71A74A07 8 Bytes [b8, B0, 22, 00, 10, FF, E0, ...] {MOV EAX, 0x100022b0; JMP EAX; NOP }

.text D:\DOCUME~1\neto\CONFIG~1\Temp\winkuvp.exe[3984] D:\WINDOWS\system32\WS2_32.dll section is writeable [0x71A71000, 0x12153, 0xE0000020]

.reloc D:\DOCUME~1\neto\CONFIG~1\Temp\winkuvp.exe[3984] D:\WINDOWS\system32\WS2_32.dll section is executable [0x71A86000, 0x1DC8, 0xE0000040]

---- User IAT/EAT - GMER 1.0.15 ----

IAT D:\WINDOWS\explorer.exe[1208] @ D:\WINDOWS\WS2HELP.dll [KERNEL32.dll!GetProcAddress] [02C51CA9] D:\WINDOWS\Wplugin.dll (Special connection agent/Microsoft Corporation)

---- Services - GMER 1.0.15 ----

Service D:\WINDOWS\system32\svchost.exe (*** hidden *** ) [AUTO] swjvoyr <-- ROOTKIT !!!

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@DisplayName Windows Boot

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@Type 32

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@Start 2

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@ErrorControl 0

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@ObjectName LocalSystem

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr@Description Monitora as configura??es e defini??es de seguran?a do sistema.

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr\Parameters

Reg HKLM\SYSTEM\CurrentControlSet\Services\swjvoyr\Parameters@ServiceDll D:\WINDOWS\system32\smzjjsbk.dll

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@DisplayName Windows Boot

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@Type 32

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@Start 2

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@ErrorControl 0

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@ImagePath %SystemRoot%\system32\svchost.exe -k netsvcs

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@ObjectName LocalSystem

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr@Description Monitora as configura??es e defini??es de seguran?a do sistema.

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr\Parameters (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\swjvoyr\Parameters@ServiceDll D:\WINDOWS\system32\smzjjsbk.dll

---- Disk sectors - GMER 1.0.15 ----

Disk \Device\Harddisk0\DR0 sector 01: copy of MBR

Disk \Device\Harddisk0\DR0 sector 02: copy of MBR

Disk \Device\Harddisk0\DR0 sector 03: copy of MBR

Disk \Device\Harddisk0\DR0 sector 04: copy of MBR

Disk \Device\Harddisk0\DR0 sector 05: copy of MBR

Disk \Device\Harddisk0\DR0 sector 06: copy of MBR

Disk \Device\Harddisk0\DR0 sector 07: copy of MBR

Disk \Device\Harddisk0\DR0 sector 08: copy of MBR

Disk \Device\Harddisk0\DR0 sector 09: copy of MBR

Disk \Device\Harddisk0\DR0 sector 10: copy of MBR

Disk \Device\Harddisk0\DR0 sector 11: copy of MBR

Disk \Device\Harddisk0\DR0 sector 12: copy of MBR

Disk \Device\Harddisk0\DR0 sector 13: copy of MBR

Disk \Device\Harddisk0\DR0 sector 14: copy of MBR

Disk \Device\Harddisk0\DR0 sector 15: copy of MBR

Disk \Device\Harddisk0\DR0 sector 16: copy of MBR

Disk \Device\Harddisk0\DR0 sector 17: copy of MBR

Disk \Device\Harddisk0\DR0 sector 18: copy of MBR

Disk \Device\Harddisk0\DR0 sector 19: copy of MBR

Disk \Device\Harddisk0\DR0 sector 20: copy of MBR

Disk \Device\Harddisk0\DR0 sector 21: copy of MBR

Disk \Device\Harddisk0\DR0 sector 22: copy of MBR

Disk \Device\Harddisk0\DR0 sector 23: copy of MBR

Disk \Device\Harddisk0\DR0 sector 24: copy of MBR

Disk \Device\Harddisk0\DR0 sector 25: copy of MBR

Disk \Device\Harddisk0\DR0 sector 26: copy of MBR

Disk \Device\Harddisk0\DR0 sector 27: copy of MBR

Disk \Device\Harddisk0\DR0 sector 28: copy of MBR

Disk \Device\Harddisk0\DR0 sector 29: copy of MBR

Disk \Device\Harddisk0\DR0 sector 30: copy of MBR

Disk \Device\Harddisk0\DR0 sector 31: copy of MBR

Disk \Device\Harddisk0\DR0 sector 32: copy of MBR

Disk \Device\Harddisk0\DR0 sector 33: copy of MBR

Disk \Device\Harddisk0\DR0 sector 34: copy of MBR

Disk \Device\Harddisk0\DR0 sector 35: copy of MBR

Disk \Device\Harddisk0\DR0 sector 36: copy of MBR

Disk \Device\Harddisk0\DR0 sector 37: copy of MBR

Disk \Device\Harddisk0\DR0 sector 38: copy of MBR

Disk \Device\Harddisk0\DR0 sector 39: copy of MBR

Disk \Device\Harddisk0\DR0 sector 40: copy of MBR

Disk \Device\Harddisk0\DR0 sector 41: copy of MBR

Disk \Device\Harddisk0\DR0 sector 42: copy of MBR

Disk \Device\Harddisk0\DR0 sector 43: copy of MBR

Disk \Device\Harddisk0\DR0 sector 44: copy of MBR

Disk \Device\Harddisk0\DR0 sector 45: copy of MBR

Disk \Device\Harddisk0\DR0 sector 46: copy of MBR

Disk \Device\Harddisk0\DR0 sector 47: copy of MBR

Disk \Device\Harddisk0\DR0 sector 48: copy of MBR

Disk \Device\Harddisk0\DR0 sector 49: copy of MBR

Disk \Device\Harddisk0\DR0 sector 50: copy of MBR

Disk \Device\Harddisk0\DR0 sector 51: copy of MBR

Disk \Device\Harddisk0\DR0 sector 52: copy of MBR

Disk \Device\Harddisk0\DR0 sector 53: copy of MBR

Disk \Device\Harddisk0\DR0 sector 54: copy of MBR

Disk \Device\Harddisk0\DR0 sector 55: copy of MBR

Disk \Device\Harddisk0\DR0 sector 56: copy of MBR

Disk \Device\Harddisk0\DR0 sector 57: copy of MBR

Disk \Device\Harddisk0\DR0 sector 58: copy of MBR

Disk \Device\Harddisk0\DR0 sector 59: copy of MBR

Disk \Device\Harddisk0\DR0 sector 60: copy of MBR

Disk \Device\Harddisk0\DR0 sector 61: copy of MBR

Disk \Device\Harddisk0\DR0 sector 62: copy of MBR

Disk \Device\Harddisk0\DR0 sector 63: rootkit-like behavior; copy of MBR

---- EOF - GMER 1.0.15 ----

BOM SE ALGUEM PODER ME AJUDA A SOLUCIONAR O PROBLEMA DO MEU SVCHOST QUE EU ACHO QUE TA COM MALWARE POR FAVOR ME DIGAM

Compartilhar este post


Link para o post
Compartilhar em outros sites

Por gentileza, instale um antivírus antes de darmos início à sua análise.

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...

GRÁTIS: minicurso “Como ganhar dinheiro montando computadores”

Gabriel TorresGabriel Torres, fundador e editor executivo do Clube do Hardware, acaba de lançar um minicurso totalmente gratuito: "Como ganhar dinheiro montando computadores".

Você aprenderá sobre o quanto pode ganhar, como cobrar, como lidar com a concorrência, como se tornar um profissional altamente qualificado e muito mais!

Inscreva-se agora!