Ir ao conteúdo
  • Cadastre-se

Posts recomendados

Preciso saber, o que fazer depois que o combo fix, gerou o relatório...:wacko:

ComboFix 10-10-02.02 - Administrador 03/10/2010 13:58:46.1.1 - x86

Executando de: c:\documents and settings\Administrador\Desktop\ComboFix.exe

.

((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\arquivos de programas\DirectXs.exe

c:\arquivos de programas\jusched.exe

c:\documents and settings\Administrador\AUTORUN.INF

c:\documents and settings\Administrador\xoausuf.exe

c:\documents and settings\Administrador\xoausuf.scr

C:\khq

c:\windows\msngrs.exe

c:\windows\SYSTEM.LOG

c:\windows\system32\AutoRun.inf

c:\windows\system32\csrcs.exe

E:\khq

.

((((((((((((((((((((((((((((((((((((((( Drivers/Serviços )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Legacy_ABP470N5

-------\Service_abp470n5

(((((((((((((((( Arquivos/Ficheiros criados de 2010-09-03 to 2010-10-03 ))))))))))))))))))))))))))))

.

2010-10-03 16:06 . 2010-10-03 16:06 -------- d-----w- c:\arquivos de programas\Glary Utilities

2010-10-03 16:03 . 2010-10-03 16:04 -------- d-----w- c:\arquivos de programas\XP Codec Pack

2010-10-03 14:03 . 2008-05-30 17:11 3850760 ----a-w- c:\windows\system32\D3DX9_38.dll

2010-10-03 14:02 . 2005-05-26 18:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll

2010-10-03 02:34 . 2010-10-03 13:42 -------- d-----w- c:\windows\Logs

2010-10-03 02:32 . 2010-10-03 15:10 -------- d-----w- c:\arquivos de programas\PCSX2 0.9.7

2010-10-02 23:27 . 2010-10-03 15:12 -------- d-----w- c:\arquivos de programas\The KMPlayer

2010-10-02 22:43 . 2010-10-02 22:43 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\LimeWireTurbo

2010-10-02 22:43 . 2010-10-02 22:43 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\LimeWireTurbo

2010-10-02 21:15 . 2010-10-02 21:15 -------- d-----w- c:\arquivos de programas\Conduit

2010-10-02 21:15 . 2010-10-02 22:29 -------- d-----w- c:\arquivos de programas\Download_Energy

2010-10-02 21:15 . 2010-10-02 22:44 -------- d-----w- c:\arquivos de programas\LimeWireTurbo

2010-10-02 20:24 . 2010-03-15 09:31 165376 ----a-w- c:\windows\system32\unrar.dll

2010-10-02 17:49 . 2010-10-02 19:54 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Nero

2010-10-02 17:47 . 2010-10-02 19:53 -------- d-----w- c:\arquivos de programas\Nero

2010-10-02 17:28 . 2010-10-02 17:28 -------- d-----w- c:\arquivos de programas\Microsoft Silverlight

2010-10-02 15:32 . 2010-10-02 15:39 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\vlc

2010-10-02 15:31 . 2010-10-02 15:32 -------- d-----w- c:\arquivos de programas\Media Player

2010-09-27 20:08 . 2010-09-27 20:08 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\HPAppData

2010-09-27 01:58 . 2010-09-27 01:58 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\WEBREG

2010-09-27 01:51 . 2010-09-27 01:51 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\HP

2010-09-27 01:34 . 2010-09-27 01:35 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\HP

2010-09-27 01:34 . 2010-09-27 01:34 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\HP Product Assistant

2010-09-27 01:32 . 2010-09-27 01:32 -------- d-----w- c:\arquivos de programas\Arquivos comuns\HP

2010-09-27 01:32 . 2010-09-27 01:32 -------- d-----w- c:\arquivos de programas\Hewlett-Packard

2010-09-27 01:31 . 2010-09-27 01:31 -------- d-----w- c:\arquivos de programas\Arquivos comuns\Hewlett-Packard

2010-09-27 01:30 . 2007-10-30 09:25 16496 ----a-r- c:\windows\system32\drivers\HPZipr12.sys

2010-09-27 01:27 . 2007-10-30 09:25 49920 ----a-r- c:\windows\system32\drivers\HPZid412.sys

2010-09-27 01:26 . 2007-10-30 09:25 21568 ----a-r- c:\windows\system32\drivers\HPZius12.sys

2010-09-27 01:25 . 2007-10-30 09:25 372736 ----a-r- c:\windows\system32\hppldcoi.dll

2010-09-27 01:25 . 2007-10-30 09:25 309760 ----a-r- c:\windows\system32\difxapi.dll

2010-09-27 01:25 . 2007-10-30 09:22 729088 ----a-r- c:\windows\system32\hpowiax8.dll

2010-09-27 01:25 . 2007-10-30 09:22 303104 ----a-r- c:\windows\system32\hpovst14.dll

2010-09-27 01:25 . 2007-10-30 09:22 970752 ----a-r- c:\windows\system32\hpotiop6.dll

2010-09-27 01:17 . 2010-09-27 01:58 168006 ----a-w- c:\windows\hpoins29.dat

2010-09-27 01:17 . 2008-02-20 04:36 986 ------w- c:\windows\hpomdl29.dat

2010-09-27 01:17 . 2010-09-27 01:17 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Hewlett-Packard

2010-09-27 01:16 . 2008-02-12 03:49 271704 ----a-r- c:\windows\system32\hpzids01.dll

2010-09-27 01:16 . 2007-12-17 21:05 278016 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\hpzpp5mu.dll

2010-09-27 01:16 . 2008-02-07 13:26 118272 ----a-w- c:\windows\system32\hpz3l5mu.dll

2010-09-26 03:16 . 2010-09-26 03:16 -------- d-----w- c:\documents and settings\Administrador\Dados de aplicativos\Nero

2010-09-08 21:40 . 2010-02-05 14:23 113528 ----a-w- c:\documents and settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\s2bkywaf.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8873}\components\GbMzhUni.dll

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-10-03 17:20 . 2010-06-13 02:36 -------- d-----w- c:\arquivos de programas\WinFlip

2010-10-03 16:21 . 2010-05-11 00:15 -------- d-----w- c:\arquivos de programas\Windows Media Connect 2

2010-10-03 15:33 . 2010-05-10 23:39 -------- d-----w- c:\arquivos de programas\CCleaner

2010-10-03 15:27 . 2010-05-10 23:42 -------- d-----w- c:\arquivos de programas\QuickTime Alternative

2010-10-03 15:25 . 2010-07-06 15:42 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Apple Computer

2010-09-27 01:34 . 2010-05-10 23:36 -------- d-----w- c:\arquivos de programas\HP

2010-09-26 02:22 . 2008-04-14 12:00 68388 ----a-w- c:\windows\system32\perfc016.dat

2010-09-26 02:22 . 2008-04-14 12:00 428224 ----a-w- c:\windows\system32\perfh016.dat

2010-09-19 14:27 . 2010-05-11 00:36 -------- d-----w- c:\documents and settings\All Users\Dados de aplicativos\Microsoft Help

2010-08-22 00:54 . 2010-08-22 00:54 -------- d-----w- c:\arquivos de programas\Power Commander 5

.

------- Sigcheck -------

[-] 2010-02-26 . FED38F282D1DF9D632E5B1C12B599D3B . 3094016 . . [6.00.2900.5945] . . c:\windows\SoftwareDistribution\Download\70c9281d5aadd47a3a5b6f388ea38cfc\sp3gdr\mshtml.dll

[-] 2010-02-26 . A9E18686A0E0F9F757A97C8C7A822E2D . 3094528 . . [6.00.2900.5945] . . c:\windows\SoftwareDistribution\Download\70c9281d5aadd47a3a5b6f388ea38cfc\sp3qfe\mshtml.dll

[-] 2008-04-14 . 8C9990185CF320651DFCDFEC57BDA76F . 3443712 . . [6.00.2900.5512] . . c:\windows\system32\mshtml.dll

[7] 2008-04-14 . 64C5EB55D74A90AB4DC89F9A6C2E797F . 3066880 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\mshtml.dll

[7] 2008-04-14 . 64C5EB55D74A90AB4DC89F9A6C2E797F . 3066880 . . [6.00.2900.5512] . . c:\windows\system32\VITrans\mshtml.dll

[7] 2010-02-17 . 124F4EC97A7683D1A67B3AECFE258ABD . 2194176 . . [5.1.2600.5938] . . c:\windows\Driver Cache\i386\ntoskrnl.exe

[-] 2010-02-17 . 2F58C3ECD848340B794D5EC90954C678 . 2189696 . . [5.1.2600.5938] . . c:\windows\system32\ntoskrnl.exe

[7] 2010-02-17 . 124F4EC97A7683D1A67B3AECFE258ABD . 2194176 . . [5.1.2600.5938] . . c:\windows\system32\dllcache\ntoskrnl.exe

[7] 2010-02-17 . 124F4EC97A7683D1A67B3AECFE258ABD . 2194176 . . [5.1.2600.5938] . . c:\windows\system32\VITrans\ntoskrnl.exe

[7] 2010-02-16 . 8A47EB27E99109826F8A54BB64BE8131 . 2194304 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe

[-] 2008-04-14 . 981CBC8BBF70BB0FDAD97F586653467E . 2197504 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB979683$\ntoskrnl.exe

[-] 2008-04-14 . 9A9ABDA0C8CBE5D84EC2BFEA00A73230 . 1511936 . . [6.00.2900.5512] . . c:\windows\explorer.exe

[7] 2008-04-14 . 064EC7FF5F58B928C3E119402977FA6D . 1035776 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\explorer.exe

[7] 2008-04-14 . 064EC7FF5F58B928C3E119402977FA6D . 1035776 . . [6.00.2900.5512] . . c:\windows\system32\VITrans\explorer.exe

[7] 2010-02-16 . 1F54DE75A9C8EC46E9FB53C1890C9ED3 . 2071040 . . [5.1.2600.5938] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe

[-] 2010-02-16 . D7A58B4CB621CCB0328783694AF9D418 . 2066560 . . [5.1.2600.5938] . . c:\windows\system32\ntkrnlpa.exe

[7] 2010-02-16 . 1F54DE75A9C8EC46E9FB53C1890C9ED3 . 2071040 . . [5.1.2600.5938] . . c:\windows\system32\dllcache\ntkrnlpa.exe

[7] 2010-02-16 . 1F54DE75A9C8EC46E9FB53C1890C9ED3 . 2071040 . . [5.1.2600.5938] . . c:\windows\system32\VITrans\ntkrnlpa.exe

[7] 2010-02-16 . E94AC126E7ADFD40DC4E38D2E91236D8 . 2071168 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlpa.exe

[-] 2008-04-14 . 510137E512F009465B8A259E211408E2 . 2074368 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB979683$\ntkrnlpa.exe

[7] 2008-04-14 . 04CABAD69BE78EB9C03CD4346D776DA5 . 93184 . . [6.00.2900.5512] . . c:\windows\system32\dllcache\iexplore.exe

[7] 2008-04-14 . 04CABAD69BE78EB9C03CD4346D776DA5 . 93184 . . [6.00.2900.5512] . . c:\windows\system32\VITrans\iexplore.exe

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por defeito não são mostradas.

REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{ad708c09-d51b-45b3-9d28-4eba2681febf}"= "c:\arquivos de programas\Download_Energy\tbDown.dll" [2010-05-20 2675296]

[HKEY_CLASSES_ROOT\clsid\{ad708c09-d51b-45b3-9d28-4eba2681febf}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ad708c09-d51b-45b3-9d28-4eba2681febf}]

2010-05-20 18:35 2675296 ----a-w- c:\arquivos de programas\Download_Energy\tbDown.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{ad708c09-d51b-45b3-9d28-4eba2681febf}"= "c:\arquivos de programas\Download_Energy\tbDown.dll" [2010-05-20 2675296]

[HKEY_CLASSES_ROOT\clsid\{ad708c09-d51b-45b3-9d28-4eba2681febf}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ccleaner"="c:\arquivos de programas\CCleaner\CCleaner.exe" [2010-09-24 1786168]

"VisualTooltip"="c:\arquivos de programas\VisualTooltip\VisualToolTip.exe" [2007-04-25 1128960]

"Google Update"="c:\documents and settings\Administrador\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe" [2010-09-07 205808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="c:\arquivos de programas\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-05-16 540672]

"vilaunch"="c:\windows\system32\vilaunch.exe" [2009-09-10 220140]

"HP Software Update"="c:\arquivos de programas\HP\HP Software Update\HPWuSchd2.exe" [2007-10-15 126976]

"hpqSRMon"="c:\arquivos de programas\HP\Digital Imaging\bin\hpqSRMon.exe" [2007-08-22 154624]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\

HP Digital Imaging Monitor.lnk - c:\arquivos de programas\HP\Digital Imaging\bin\hpqtra08.exe [2007-10-14 214360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]

"DisableTaskMgr"= 1 (0x1)

"DisableRegistryTools"= 1 (0x1)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk /p \??\H:\0autocheck autochk *

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

"AntiVirusOverride"=dword:00000001

"AntiVirusDisableNotify"=dword:00000001

"FirewallDisableNotify"=dword:00000001

"FirewallOverride"=dword:00000001

"UpdatesDisableNotify"=dword:00000001

"UacDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"c:\\WINDOWS\\system32\\wscntfy.exe"=

"c:\\WINDOWS\\System32\\bcmwltry.exe"=

"c:\\Arquivos de programas\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"c:\\Arquivos de programas\\Microsoft Office\\Office12\\GROOVE.EXE"=

"c:\\Arquivos de programas\\Microsoft Office\\Office12\\ONENOTE.EXE"=

"c:\\Arquivos de programas\\Windows Live\\Messenger\\wlcsdk.exe"=

"c:\\Arquivos de programas\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Arquivos de programas\\Messenger\\msmsgs.exe"=

"c:\\Arquivos de programas\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe"=

"c:\\Arquivos de programas\\QuickTime Alternative\\QTSystem\\qttask.exe"=

"c:\\Arquivos de programas\\Vista Drive Icon\\DrvIcon.exe"=

"c:\\WINDOWS\\system32\\wuauclt.exe"=

"c:\\Arquivos de programas\\TIM\\GSM\\TIMWEB.exe"=

"c:\\Arquivos de programas\\ViOrb\\ViOrb.exe"=

"c:\\Arquivos de programas\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"=

"c:\\Arquivos de programas\\Vista Rainbar\\launcher.exe"=

"c:\\Arquivos de programas\\ViStart\\ViStart.exe"=

"c:\\Arquivos de programas\\Java\\jre1.5.0_11\\bin\\jusched.exe"=

"c:\\Arquivos de programas\\VisualTooltip\\VisualToolTip.exe"=

"c:\\ARQUIV~1\\VISTAR~1\\Rainbar.exe"=

"c:\\WINDOWS\\system32\\viwc.exe"=

"c:\\Arquivos de programas\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe"=

"c:\\WINDOWS\\system32\\MsiExec.exe"=

"c:\\Arquivos de programas\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\Photoshop Album Starter Edition.exe"=

"c:\\Arquivos de programas\\Claro\\Claro.exe"=

"c:\\Arquivos de programas\\LClock\\lclock.exe"=

"c:\\WINDOWS\\system32\\vilaunch.exe"=

"c:\\ARQUIV~1\\ViStart\\ViStart.exe"=

"c:\\ARQUIV~1\\WinFlip\\WinFlip.exe"=

"c:\\ARQUIV~1\\TRUETR~1\\TRUETR~1.EXE"=

"c:\\ARQUIV~1\\ViSplore\\ViSplore.exe"=

"c:\\WINDOWS\\system32\\netsh.exe"=

"c:\\ARQUIV~1\\VISTAR~1\\launcher.exe"=

"c:\\Arquivos de programas\\Windows Media Player\\wmplayer.exe"=

"c:\\ARQUIV~1\\ViGlance\\ViGlance.exe"=

"c:\\Arquivos de programas\\ATI Technologies\\ATI Control Panel\\atiprbxx.exe"=

"c:\\Documents and Settings\\Administrador\\Configurações locais\\Dados de aplicativos\\Google\\Update\\GoogleUpdate.exe"=

"c:\\Arquivos de programas\\Mozilla Firefox\\firefox.exe"=

"c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=

"c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqste08.exe"=

"c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hposid01.exe"=

"c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=

"c:\\Arquivos de programas\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=

"c:\\Arquivos de programas\\HP\\HP Software Update\\HPWuSchd2.exe"=

"c:\\Arquivos de programas\\LimeWireTurbo\\LimeWireTurbo.exe"=

R3 ALiIRDA;ALi Infrared Device Driver;c:\windows\system32\drivers\aliirda.sys [10/5/2010 20:34 26112]

R3 DP83815;National Semiconductor Corp. DP83815/816 NDIS 5.0 Miniport Driver;c:\windows\system32\drivers\DP83815.sys [17/10/2003 12:38 16512]

R3 LEX_NIC_SERVICE;IEEE 802.11 Wireless NIC Win2000 Driver;c:\windows\system32\drivers\Express.sys [10/5/2010 20:36 57344]

S3 DIGIRPS;Driver Digi PortServer;c:\windows\system32\drivers\digirlpt.sys [6/6/2010 19:50 42528]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.

Conteúdo da pasta 'Tarefas Agendadas'

2010-10-03 c:\windows\Tasks\GlaryInitialize.job

- c:\arquivos de programas\Glary Utilities\initialize.exe [2010-10-03 13:32]

.

.

------- Scan Suplementar -------

.

uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT1269415

IE: E&xportar para o Microsoft Excel - c:\arquiv~1\MICROS~2\Office12\EXCEL.EXE/3000

TCP: {0BDE3433-5A80-4B47-8985-1CBBDEBAA67A} = 189.40.224.5 189.40.224.13

FF - ProfilePath - c:\documents and settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\s2bkywaf.default\

FF - prefs.js: browser.startup.homepage - www.google.com.br

FF - component: c:\documents and settings\Administrador\Dados de aplicativos\Mozilla\Firefox\Profiles\s2bkywaf.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8873}\components\GbMzhUni.dll

FF - plugin: c:\arquivos de programas\Java\jre1.5.0_11\bin\NPJPI150_11.dll

---- FIREFOX POLICIES ----

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);

c:\arquivos de programas\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".com.br");

c:\arquivos de programas\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);

.

- - - - ORFÃOS REMOVIDOS - - - -

HKCU-Run-xoausuf - c:\documents and settings\Administrador\xoausuf.exe

MSConfigStartUp-xoausuf - c:\documents and settings\Administrador\xoausuf.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-10-03 14:21

Windows 5.1.2600 Service Pack 3 NTFS

Procurando processos ocultos ...

Procurando entradas auto inicializáveis ocultas ...

Procurando ficheiros/arquivos ocultos ...

Varredura completada com sucesso

arquivos/ficheiros ocultos: 0

**************************************************************************

.

--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------

- - - - - - - > 'winlogon.exe'(936)

c:\windows\system32\cscui.dll

- - - - - - - > 'explorer.exe'(3820)

c:\arquivos de programas\VisualTooltip\VisualTooltip.dll

c:\arquiv~1\TRUETR~1\TrueTransparencyHook.dll

c:\windows\system32\msi.dll

c:\windows\system32\SETUPAPI.dll

c:\windows\system32\NETSHELL.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

c:\arquiv~1\WinFlip\WFHook.dll

.

------------------------ Outros Processos em Execução ------------------------

.

c:\windows\System32\wudfhost.exe

c:\arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

c:\windows\System32\wltrysvc.exe

c:\windows\system32\wscntfy.exe

c:\documents and settings\Administrador\Configurações locais\Dados de aplicativos\Google\Update\1.2.183.29\GoogleCrashHandler.exe

c:\arquiv~1\ViGlance\ViGlance.exe

c:\arquiv~1\ViSplore\ViSplore.exe

c:\arquiv~1\TRUETR~1\TRUETR~1.EXE

c:\arquiv~1\WinFlip\WinFlip.exe

c:\arquiv~1\VISTAR~1\Rainbar.exe

c:\arquivos de programas\HP\Digital Imaging\bin\hpqSTE08.exe

c:\arquivos de programas\HP\Digital Imaging\bin\hpqbam08.exe

c:\arquivos de programas\HP\Digital Imaging\bin\hpqgpc01.exe

c:\windows\System32\bcmwltry.exe

.

**************************************************************************

.

Tempo para conclusão: 2010-10-03 14:32:10 - Máquina reiniciou

ComboFix-quarantined-files.txt 2010-10-03 17:32

Pré-execução: 6 pasta(s) 41.856.696.320 bytes disponíveis

Pós execução: 9 pasta(s) 41.902.985.216 bytes disponíveis

WindowsXP-KB310994-SP2-Home-BootDisk-PTB.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

UnsupportedDebug="do not select this" /debug

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 42E4F25EFF077B457AC808986A9F4386

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário

Criar uma conta

Crie uma nova conta em nossa comunidade. É fácil!

Crie uma nova conta

Entrar

Já tem uma conta? Faça o login.

Entrar agora





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...

GRÁTIS: minicurso “Como ganhar dinheiro montando computadores”

Gabriel TorresGabriel Torres, fundador e editor executivo do Clube do Hardware, acaba de lançar um minicurso totalmente gratuito: "Como ganhar dinheiro montando computadores".

Você aprenderá sobre o quanto pode ganhar, como cobrar, como lidar com a concorrência, como se tornar um profissional altamente qualificado e muito mais!

Inscreva-se agora!