problemas com tanatos Win32

[Paran0m]

meu anti virus (AVG) não consegue deletar ou recuperar arquivos nem parar a infecçao

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:57:33, on 24/06/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Unable to get Internet Explorer version!

Boot mode: Normal

Running processes:

D:\WINDOWS.0\System32\smss.exe

D:\WINDOWS.0\system32\winlogon.exe

D:\WINDOWS.0\system32\services.exe

D:\WINDOWS.0\system32\lsass.exe

D:\WINDOWS.0\system32\svchost.exe

D:\WINDOWS.0\System32\svchost.exe

D:\WINDOWS.0\system32\spoolsv.exe

D:\Arquivos de programas\AVG\AVG9\avgchsvx.exe

D:\Arquivos de programas\AVG\AVG9\avgrsx.exe

D:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe

D:\WINDOWS.0\Explorer.EXE

D:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe

D:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\mdm.exe

D:\Arquivos de programas\Google\Update\GoogleUpdate.exe

D:\Arquivos de programas\CDBurnerXP\NMSAccessU.exe

D:\Arquivos de programas\AVG\AVG9\avgemc.exe

D:\Arquivos de programas\AVG\AVG9\avgnsx.exe

D:\WINDOWS.0\RTHDCPL.EXE

D:\WINDOWS.0\system32\avthekiller.exe

D:\WINDOWS.0\system32\Winlogom.exe

D:\ARQUIV~1\AVG\AVG9\avgtray.exe

D:\WINDOWS.0\system32\ctfmon.exe

D:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\Windows Media Player\wmplayer.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Documents and Settings\Familia\Meus documentos\Downloads\HiJackThis.exe

D:\Temp\Vdh.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = [Windows XPhoeNiX]

R3 - URLSearchHook: Messenger Plus Live Brazil Toolbar - {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - D:\Arquivos de programas\Messenger_Plus_Live_Brazil\tbMes1.dll

O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Arquivos de programas\Internet Download Manager\IDMIECC.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Arquivos de programas\AVG\AVG9\avgssie.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Arquivos de programas\Java\jre6\bin\ssv.dll

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Arquivos de programas\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: Messenger Plus Live Brazil Toolbar - {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - D:\Arquivos de programas\Messenger_Plus_Live_Brazil\tbMes1.dll

O3 - Toolbar: Messenger Plus Live Brazil Toolbar - {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - D:\Arquivos de programas\Messenger_Plus_Live_Brazil\tbMes1.dll

O4 - HKLM\..\Run: [igfxhkcmd] D:\WINDOWS.0\system32\hkcmd.exe

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [unlockerAssistant] D:\Arquivos de programas\Unlocker\UnlockerAssistant.exe -H

O4 - HKLM\..\Run: [mdktask] D:\WINDOWS.0\system32\mdktask.com

O4 - HKLM\..\Run: [mdktaskexe] D:\WINDOWS.0\system32\mdktask.exe

O4 - HKLM\..\Run: [mdktaskcmd] D:\WINDOWS.0\system32\mdktask.cmd

O4 - HKLM\..\Run: [mdktaskscr] D:\WINDOWS.0\system32\mdktask.scr

O4 - HKLM\..\Run: [memorycache] D:\WINDOWS.0\system32\Svshosts.exe

O4 - HKLM\..\Run: [sVchost] D:\WINDOWS.0\system32\SVshost.exe

O4 - HKLM\..\Run: [windirupdate] D:\WINDOWS.0\system32\beholder.exe

O4 - HKLM\..\Run: [windowsupdate] D:\WINDOWS.0\system32\avthekiller.exe

O4 - HKLM\..\Run: [servicelogon] D:\WINDOWS.0\system32\Winlogom.exe

O4 - HKLM\..\Run: [AVG9_TRAY] D:\ARQUIV~1\AVG\AVG9\avgtray.exe

O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS.0\system32\ctfmon.exe

O4 - HKCU\..\Run: [msnmsgr] "D:\Arquivos de programas\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [uTorrent] "D:\Arquivos de programas\uTorrent\uTorrent.exe"

O4 - HKCU\..\Run: [iDMan] D:\Arquivos de programas\Internet Download Manager\IDMan.exe /onboot

O4 - HKCU\..\Run: [EBUNWVLUMV] D:\Temp\Vdh.exe

O4 - HKCU\..\Run: [rauoya] D:\Documents and Settings\Familia\rauoya.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')

O4 - Startup: LimeWire On Startup.lnk = D:\Arquivos de programas\LimeWire\LimeWire.exe

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

O8 - Extra context menu item: Download all links with IDM - D:\Arquivos de programas\Internet Download Manager\IEGetAll.htm

O8 - Extra context menu item: Download FLV video content with IDM - D:\Arquivos de programas\Internet Download Manager\IEGetVL.htm

O8 - Extra context menu item: Download with IDM - D:\Arquivos de programas\Internet Download Manager\IEExt.htm

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://D:\ARQUIV~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\ARQUIV~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS.0\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS.0\Network Diagnostic\xpnetdiag.exe

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Arquivos de programas\AVG\AVG9\avgpp.dll

O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)

O22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS.0\system32\browseui.dll

O22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS.0\system32\browseui.dll

O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - D:\Arquivos de programas\AVG\AVG9\avgemc.exe

O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - D:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - D:\Arquivos de programas\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - D:\Arquivos de programas\Java\jre6\bin\jqs.exe

O23 - Service: NMSAccessU - Unknown owner - D:\Arquivos de programas\CDBurnerXP\NMSAccessU.exe

O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - D:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\ODSERV.EXE

O23 - Service: Office Source Engine (ose) - Unknown owner - D:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Source Engine\OSE.EXE

O23 - Service: Serviço de Compartilhamento de Rede do Windows Media Player (WMPNetworkSvc) - Unknown owner - D:\Arquivos de programas\Windows Media Player\WMPNetwk.exe

--

End of file - 8420 bytes

Caso precise do resultados do DSS aqui:

DDS (Ver_10-03-17.01) - NTFSx86

Run by Familia at 14:35:51,73 on 24/06/2010

Internet Explorer: 7.0.5730.13

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.1919.1001 [GMT 4,5:30]

============== Running Processes ===============

D:\WINDOWS.0\system32\svchost -k DcomLaunch

svchost.exe

D:\WINDOWS.0\System32\svchost.exe -k netsvcs

D:\WINDOWS.0\system32\spoolsv.exe

D:\Arquivos de programas\AVG\AVG9\avgchsvx.exe

D:\Arquivos de programas\AVG\AVG9\avgrsx.exe

D:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe

D:\WINDOWS.0\Explorer.EXE

D:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe

D:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\mdm.exe

D:\Arquivos de programas\Google\Update\GoogleUpdate.exe

D:\Arquivos de programas\CDBurnerXP\NMSAccessU.exe

D:\Arquivos de programas\AVG\AVG9\avgemc.exe

D:\Arquivos de programas\AVG\AVG9\avgnsx.exe

D:\WINDOWS.0\RTHDCPL.EXE

D:\WINDOWS.0\system32\avthekiller.exe

D:\WINDOWS.0\system32\ctfmon.exe

D:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe

svchost.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Arquivos de programas\portables\googleChrome\Chrome\chrome.exe

D:\Documents and Settings\Familia\Meus documentos\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com.br/

uWindow Title = [Windows XPhoeNiX]

uSearch Page = hxxp://www.google.com.br

uSearch Bar = hxxp://www.google.com/ie_rsearch.html

uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8

uSearchURL,(Default) = hxxp://www.google.com/keyword/%s

mSearchAssistant = hxxp://www.google.com/ie_rsearch.html

uURLSearchHooks: Messenger Plus Live Brazil Toolbar: {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - d:\arquivos de programas\messenger_plus_live_brazil\tbMes1.dll

mWinlogon: SfcDisable=-99 (0xffffff9d)

mWinlogon: UIHost=%windir%\Windows XP SP2.P.EXE

BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - d:\arquivos de programas\internet download manager\IDMIECC.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - d:\arquivos de programas\avg\avg9\avgssie.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - d:\arquivos de programas\java\jre6\bin\ssv.dll

BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - d:\arquivos de programas\arquivos comuns\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\arquivos de programas\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: Messenger Plus Live Brazil Toolbar: {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - d:\arquivos de programas\messenger_plus_live_brazil\tbMes1.dll

TB: Messenger Plus Live Brazil Toolbar: {edbca961-4bf8-4cbe-8c63-a11dff9ed2d9} - d:\arquivos de programas\messenger_plus_live_brazil\tbMes1.dll

uRun: [ctfmon.exe] d:\windows.0\system32\ctfmon.exe

uRun: [msnmsgr] "d:\arquivos de programas\windows live\messenger\msnmsgr.exe" /background

uRun: [uTorrent] "d:\arquivos de programas\utorrent\uTorrent.exe"

uRun: [iDMan] d:\arquivos de programas\internet download manager\IDMan.exe /onboot

uRun: [EBUNWVLUMV] d:\temp\Vdh.exe

uRun: [rauoya] d:\documents and settings\familia\rauoya.exe

mRun: [igfxhkcmd] d:\windows.0\system32\hkcmd.exe

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [unlockerAssistant] d:\arquivos de programas\unlocker\UnlockerAssistant.exe -H

mRun: [mdktask] d:\windows.0\system32\mdktask.com

mRun: [mdktaskexe] d:\windows.0\system32\mdktask.exe

mRun: [mdktaskcmd] d:\windows.0\system32\mdktask.cmd

mRun: [mdktaskscr] d:\windows.0\system32\mdktask.scr

mRun: [memorycache] d:\windows.0\system32\Svshosts.exe

mRun: [sVchost] d:\windows.0\system32\SVshost.exe

mRun: [windirupdate] d:\windows.0\system32\beholder.exe

mRun: [windowsupdate] d:\windows.0\system32\avthekiller.exe

mRun: [servicelogon] d:\windows.0\system32\Winlogom.exe

mRun: [AVG9_TRAY] d:\arquiv~1\avg\avg9\avgtray.exe

dRunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32

dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N

StartupFolder: d:\docume~1\familia\menuin~1\progra~1\inicia~1\limewi~1.lnk - d:\arquivos de programas\limewire\LimeWire.exe

uPolicies-explorer: NoSMHelp = 1 (0x1)

uPolicies-explorer: ForceClassicControlPanel = 1 (0x1)

uPolicies-explorer: MemCheckBoxInRunDlg = 1 (0x1)

uPolicies-explorer: NoLowDiscSpaceChecks = 1 (0x1)

uPolicies-explorer: NoInstrumentation = 1 (0x1)

uPolicies-system: DisableRegistryTools = 1 (0x1)

uPolicies-system: DisableTaskMgr = 1 (0x1)

mPolicies-explorer: NoDesktopCleanupWizard = 1 (0x1)

mPolicies-explorer: HideRunAsVerb = 1 (0x1)

mPolicies-explorer: MemCheckBoxInRunDlg = 1 (0x1)

mPolicies-system: EnableLUA = 0 (0x0)

dPolicies-explorer: NoSMHelp = 1 (0x1)

dPolicies-explorer: ForceClassicControlPanel = 1 (0x1)

dPolicies-system: DisableTaskMgr = 1 (0x1)

dPolicies-system: DisableRegistryTools = 1 (0x1)

IE: Download all links with IDM - d:\arquivos de programas\internet download manager\IEGetAll.htm

IE: Download FLV video content with IDM - d:\arquivos de programas\internet download manager\IEGetVL.htm

IE: Download with IDM - d:\arquivos de programas\internet download manager\IEExt.htm

IE: E&xportar para o Microsoft Excel - d:\arquiv~1\micros~2\office12\EXCEL.EXE/3000

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\arquiv~1\micros~2\office12\REFIEBAR.DLL

DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - d:\arquivos de programas\avg\avg9\avgpp.dll

Notify: avgrsstarter - avgrsstx.dll

Notify: igfxcui - igfxdev.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - d:\windows.0\system32\WPDShServiceObj.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;d:\windows.0\system32\drivers\avgldx86.sys [2010-6-24 216200]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;d:\windows.0\system32\drivers\avgmfx86.sys [2010-6-24 29512]

R1 AvgTdiX;AVG Free Network Redirector;d:\windows.0\system32\drivers\avgtdix.sys [2010-6-24 242896]

R1 vcdrom;Virtual CD-ROM Device Driver;d:\arquivos de programas\system\cpl bonus\vcdrom.sys [2010-1-29 8576]

R2 avg9emc;AVG Free E-mail Scanner;d:\arquivos de programas\avg\avg9\avgemc.exe [2010-6-24 916760]

R2 avg9wd;AVG Free WatchDog;d:\arquivos de programas\avg\avg9\avgwdsvc.exe [2010-6-24 308064]

S2 gupdate;Google Update Service (gupdate);d:\arquivos de programas\google\update\GoogleUpdate.exe [2010-6-6 130048]

S2 SSHNAS;SSHNAS;d:\windows.0\system32\svchost.exe -k netsvcs [2008-4-14 14336]

S3 dac970nt;dac970nt;\??\d:\windows.0\system32\drivers\knppjm.sys --> d:\windows.0\system32\drivers\knppjm.sys [?]

=============== Created Last 30 ================

2010-06-24 10:05:47 0 d-----w- d:\temp\3D.tmp

2010-06-24 09:58:25 468 --sha-r- d:\documents and settings\familia\ntuser.pol

2010-06-24 09:57:25 0 d--h--w- d:\windows.0\system32\GroupPolicy

2010-06-24 08:50:08 0 d-----w- d:\temp\WPDNSE

2010-06-24 07:51:59 0 d-----w- d:\temp\96.tmp

2010-06-24 07:49:07 0 d-----w- d:\temp\67.tmp

2010-06-24 06:06:08 12464 ----a-w- d:\windows.0\system32\avgrsstx.dll

2010-06-24 06:06:07 242896 ----a-w- d:\windows.0\system32\drivers\avgtdix.sys

2010-06-24 06:06:02 216200 ----a-w- d:\windows.0\system32\drivers\avgldx86.sys

2010-06-24 06:05:56 0 d-----w- d:\windows.0\system32\drivers\Avg

2010-06-24 06:05:47 0 d-----w- d:\docume~1\alluse~1.0\dadosd~1\avg9

2010-06-24 06:05:47 0 d-----w- d:\arquivos de programas\AVG

2010-06-24 06:02:13 0 d-----w- d:\temp\7zS61.tmp

2010-06-24 04:33:59 1690112 ----a-w- d:\windows.0\system32\Winlogom.exe

2010-06-23 14:39:47 102400 ----a-w- d:\documents and settings\familia\guejiz.exe

2010-06-22 15:19:44 0 d-----w- d:\docume~1\familia\dadosd~1\LimeWire

2010-06-22 15:19:42 0 d-----w- d:\temp\hsperfdata_Familia

2010-06-22 15:19:19 0 d-----w- d:\arquivos de programas\LimeWire

2010-06-22 04:54:56 0 d-----w- d:\docume~1\familia\dadosd~1\Canneverbe_Limited

2010-06-21 02:08:00 523776 ----a-w- d:\windows.0\system32\avthekiller.exe

2010-06-12 12:28:09 0 d-----w- d:\arquivos de programas\GamesPirata

2010-06-10 04:32:18 0 d--h--w- d:\windows.0\PIF

2010-06-09 20:18:27 127 ----a-w- d:\windows.0\system32\MRT.INI

2010-06-08 09:57:13 0 d-----w- d:\docume~1\familia\dadosd~1\IDM

2010-06-08 09:57:13 0 d-----w- d:\docume~1\familia\dadosd~1\DMCache

2010-06-08 09:56:55 0 d-----w- d:\arquivos de programas\Internet Download Manager

2010-06-08 04:06:17 0 d-----w- d:\temp\TCD58.tmp

2010-06-08 04:05:56 0 d-----w- d:\temp\TCD54.tmp

2010-06-08 04:03:45 0 d-----w- d:\temp\TCD47.tmp

2010-06-08 04:00:14 0 d-----w- d:\temp\TCD13.tmp

2010-06-07 13:55:01 0 d-----w- d:\docume~1\familia\dadosd~1\PhotoScape

2010-06-07 13:52:25 0 d-----w- d:\temp\{ACDA71D5-1DE3-4C2B-A4B5-DA4943C13956}

2010-06-06 17:00:11 0 d-----w- d:\temp\nss129.tmp

2010-06-06 17:00:04 0 d-----w- d:\arquivos de programas\PhotoScape

2010-06-06 16:59:35 0 d-----w- d:\temp\nss127.tmp

2010-06-06 14:24:10 0 d-----w- d:\temp\msohtmlclip1

2010-06-06 14:24:10 0 d-----w- d:\temp\msohtmlclip

2010-06-05 05:50:42 0 d-----w- d:\windows.0\system32\KB905474

2010-06-05 05:46:16 221184 ----a-w- d:\windows.0\system32\wmpns.dll

2010-06-05 04:53:24 1089883 ------w- d:\windows.0\system32\dllcache\ntprint.cat

2010-06-05 04:48:56 266 ----a-w- d:\windows.0\system32\spupdsvc.inf

2010-06-05 04:48:08 0 d-----w- d:\windows.0\SxsCaPendDel

2010-06-04 02:56:21 5174 ----a-w- d:\windows.0\system32\nppt9x.vxd

2010-06-04 02:56:21 4682 ----a-w- d:\windows.0\system32\npptNT2.sys

2010-06-04 02:47:28 0 d-----w- d:\arquivos de programas\NCsoft

2010-06-04 02:03:39 473600 ------w- d:\windows.0\system32\dllcache\fastprox.dll

2010-06-04 02:03:39 286208 ------w- d:\windows.0\system32\dllcache\pdh.dll

2010-06-04 02:03:39 227840 ------w- d:\windows.0\system32\dllcache\wmiprvse.exe

2010-06-04 02:03:38 453120 ------w- d:\windows.0\system32\dllcache\wmiprvsd.dll

2010-06-04 02:03:38 401408 ------w- d:\windows.0\system32\dllcache\rpcss.dll

2010-06-04 02:03:38 35328 ------w- d:\windows.0\system32\dllcache\sc.exe

2010-06-04 02:03:38 111104 ------w- d:\windows.0\system32\dllcache\services.exe

2010-06-04 02:03:37 731136 ------w- d:\windows.0\system32\dllcache\ntdll.dll

2010-06-04 02:03:37 2150400 ------w- d:\windows.0\system32\dllcache\ntkrnlmp.exe

2010-06-04 02:03:37 2071168 ------w- d:\windows.0\system32\dllcache\ntkrnlpa.exe

2010-06-04 02:03:37 2028544 ------w- d:\windows.0\system32\dllcache\ntkrpamp.exe

2010-06-03 17:59:33 1172480 ------w- d:\windows.0\system32\dllcache\msxml3.dll

2010-06-03 17:52:18 353792 ------w- d:\windows.0\system32\dllcache\srv.sys

2010-06-03 17:00:06 471552 ------w- d:\windows.0\system32\dllcache\aclayers.dll

2010-06-03 16:30:15 3558912 ------w- d:\windows.0\system32\dllcache\moviemk.exe

2010-06-03 16:04:52 216064 ------w- d:\windows.0\system32\dllcache\wordpad.exe

2010-06-03 16:04:52 1206508 ------w- d:\windows.0\system32\dllcache\sysmain.sdb

2010-06-03 15:36:54 455680 ------w- d:\windows.0\system32\dllcache\mrxsmb.sys

2010-06-03 15:16:08 81920 ------w- d:\windows.0\system32\dllcache\fontsub.dll

2010-06-03 15:16:08 119808 ------w- d:\windows.0\system32\dllcache\t2embed.dll

2010-06-03 14:57:57 128512 ------w- d:\windows.0\system32\dllcache\dhtmled.ocx

2010-06-03 13:57:56 512000 ------w- d:\windows.0\system32\dllcache\jscript.dll

2010-06-03 11:22:24 0 d-----w- d:\windows.0\system32\PreInstall

2010-06-03 11:16:00 8704 ------w- d:\windows.0\system32\dllcache\tsbyuv.dll

2010-06-03 11:16:00 85504 ------w- d:\windows.0\system32\dllcache\avifil32.dll

2010-06-03 11:16:00 48128 ------w- d:\windows.0\system32\dllcache\iyuv_32.dll

2010-06-03 11:16:00 28672 ------w- d:\windows.0\system32\dllcache\msvidc32.dll

2010-06-03 11:16:00 11264 ------w- d:\windows.0\system32\dllcache\msrle32.dll

2010-06-03 11:13:22 0 d-----w- d:\windows.0\pss

2010-06-03 11:12:58 204 ----a-w- d:\documents and settings\familia\hwmonitorw.ini

2010-06-03 10:52:40 153088 ------w- d:\windows.0\system32\dllcache\triedit.dll

2010-06-03 05:47:37 5545 ----a-w- d:\windows.0\system32\expressos.cfg

2010-06-03 05:47:37 22016 ----a-w- d:\windows.0\system32\borlndmm.dll

2010-06-03 03:15:46 0 d-----w- d:\temp\WLZ8C2E.tmp

2010-06-03 03:15:41 0 d-----w- d:\arquivos de programas\Winamp Detect

2010-06-03 03:09:50 495104 ----a-w- d:\windows.0\system32\sqlite3.dll

2010-06-03 02:56:46 0 d-----w- d:\docume~1\familia\dadosd~1\Rainmeter

2010-06-03 02:56:30 0 d-----w- d:\arquivos de programas\Rainmeter

2010-06-03 02:32:19 0 d-----w- d:\arquivos de programas\CursorXP

2010-06-02 17:04:15 0 d-----w- d:\docume~1\alluse~1.0\dadosd~1\Kaspersky Lab Setup Files

2010-06-02 15:57:00 0 d-----w- d:\docume~1\familia\dadosd~1\TeraCopy

2010-06-02 15:05:38 0 d-----w- d:\docume~1\familia\dadosd~1\PriceGong

2010-06-02 14:31:44 0 d-----w- d:\temp\VBE

2010-06-02 14:16:01 274288 ----a-w- d:\windows.0\system32\mucltui.dll

2010-06-02 14:16:01 215920 ----a-w- d:\windows.0\system32\muweb.dll

2010-06-02 14:16:01 17264 ----a-w- d:\windows.0\system32\mucltui.dll.mui

2010-06-02 07:10:29 0 d-----w- d:\temp\MessengerCache

2010-06-02 07:10:24 2515552 ----a-w- d:\temp\GLF5B2.tmp.tbMess.dll

2010-06-02 07:08:05 0 d-----w- d:\docume~1\alluse~1.0\dadosd~1\Messenger Plus!

2010-06-02 07:06:37 0 d-----w- d:\arquivos de programas\Messenger_Plus_Live_Brazil

2010-06-02 07:06:37 0 d-----w- d:\arquivos de programas\Conduit

2010-06-02 07:05:33 0 d-----w- d:\arquivos de programas\Messenger Plus! Live

2010-06-02 07:01:51 4661248 ----a-w- D:\MsgPlusLive-484.exe

2010-06-02 06:56:25 0 d-----w- d:\documents and settings\familia\Tracing

2010-06-02 06:48:03 0 d-----w- d:\arquivos de programas\Microsoft SQL Server Compact Edition

2010-06-02 06:47:20 0 d-----w- d:\arquivos de programas\Microsoft

2010-06-02 06:47:02 0 d-----w- d:\arquivos de programas\Windows Live SkyDrive

2010-06-02 06:13:08 0 d-----w- d:\windows.0\system32\Adobe

2010-06-02 05:36:02 0 d-----w- d:\documents and settings\familia\Contacts

2010-06-02 03:36:20 0 d-----w- d:\arquivos de programas\uTorrent

2010-06-02 03:35:19 0 d-----w- d:\docume~1\familia\dadosd~1\uTorrent

2010-06-02 00:41:03 0 d-----w- d:\arquivos de programas\arquivos comuns\Windows Live

2010-06-02 00:06:01 0 d-sh--w- d:\documents and settings\all users.windows.0\DRM

2010-06-01 20:48:32 0 d--h--w- d:\documents and settings\all users.windows.0\Modelos

2010-06-01 20:48:32 0 d-----w- d:\documents and settings\all users.windows.0\Favoritos

2010-06-01 20:48:32 0 d-----r- d:\documents and settings\all users.windows.0\Menu Iniciar

2010-06-01 20:48:32 0 d-----r- d:\documents and settings\all users.windows.0\Documentos

2010-06-01 20:47:09 0 d--h--r- d:\documents and settings\all users.windows.0\Dados de aplicativos

==================== Find3M ====================

2010-06-24 06:53:33 48640 ----a-w- d:\documents and settings\familia\xmlUpdater.exe

2010-06-23 09:18:43 81358 ----a-w- d:\windows.0\system32\perfc016.dat

2010-06-23 09:18:43 473930 ----a-w- d:\windows.0\system32\perfh016.dat

2010-06-02 00:08:54 410976 ----a-w- d:\windows.0\system32\deploytk.dll

2010-06-02 00:00:25 21844 ----a-w- d:\windows.0\system32\emptyregdb.dat

2010-05-04 12:40:36 70656 ------w- d:\windows.0\system32\dllcache\ie4uinit.exe

2010-05-04 12:40:36 13824 ------w- d:\windows.0\system32\dllcache\ieudinit.exe

2010-05-02 08:02:58 1860480 ----a-w- d:\windows.0\system32\win32k.sys

2010-05-02 08:02:58 1860480 ------w- d:\windows.0\system32\dllcache\win32k.sys

2010-04-20 05:31:10 285696 ----a-w- d:\windows.0\system32\atmfd.dll

2010-04-20 05:31:10 285696 ------w- d:\windows.0\system32\dllcache\atmfd.dll

2010-04-16 19:51:08 306544 ----a-w- d:\windows.0\WLXPGSS.SCR

2010-04-16 17:42:18 48464 ----a-w- d:\windows.0\system32\sirenacm.dll

2010-04-16 11:43:25 634656 ------w- d:\windows.0\system32\dllcache\iexplore.exe

2010-04-16 11:43:23 161792 ------w- d:\windows.0\system32\dllcache\ieakui.dll

2010-04-06 00:22:46 2462720 ------w- d:\windows.0\system32\dllcache\WMVCore.dll

2010-03-30 19:46:34 99176 ----a-w- d:\windows.0\system32\PresentationHostProxy.dll

2010-03-30 19:40:40 295264 ----a-w- d:\windows.0\system32\PresentationHost.exe

2008-08-07 04:26:06 180 ----a-w- d:\arquivos de programas\Roms 4 DS.url

2007-10-23 11:36:38 67108864 ----a-w- d:\arquivos de programas\1543 - The Sims 2 - Castaway (U).nds

============= FINISH: 14:36:21,39 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 02/06/2010 04:39:57

System Uptime: 24/06/2010 13:18:41 (1 hours ago)

Motherboard: MSI | | MS-7267

Processor: Intel® Pentium® Dual CPU E2160 @ 1.80GHz | CPU 1 | 1795/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 116 GiB total, 116,37 GiB free.

D: is FIXED (NTFS) - 116 GiB total, 73,099 GiB free.

E: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: USB Device

Device ID: USB\VID_0D8C&PID_5200\5&17BDD7FE&0&6

Manufacturer:

Name: USB Device

PNP Device ID: USB\VID_0D8C&PID_5200\5&17BDD7FE&0&6

Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: Controlador de comunicação PCI simples

Device ID: PCI\VEN_14F1&DEV_2F50&SUBSYS_207C14F1&REV_01\4&CF81C54&0&00F0

Manufacturer:

Name: Controlador de comunicação PCI simples

PNP Device ID: PCI\VEN_14F1&DEV_2F50&SUBSYS_207C14F1&REV_01\4&CF81C54&0&00F0

Service:

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Shockwave Player 11.5

AIMP2

Arquivo do WinRAR

Assistente de Conexão do Windows Live

µTorrent

Atualização de Segurança para o Windows Media Player (KB952069)

Atualização de Segurança para o Windows Media Player (KB954155)

Atualização de Segurança para o Windows Media Player (KB968816)

Atualização de Segurança para o Windows Media Player (KB973540)

Atualização de Segurança para o Windows Media Player (KB978695)

Atualização de Segurança para o Windows Media Player 11 (KB954154)

Atualização de Segurança para Windows Internet Explorer 7 (KB938127-v2)

Atualização de Segurança para Windows Internet Explorer 7 (KB953838)

Atualização de Segurança para Windows Internet Explorer 7 (KB956390)

Atualização de Segurança para Windows Internet Explorer 7 (KB982381)

Atualização de Segurança para Windows XP (KB923561)

Atualização de Segurança para Windows XP (KB923789)

Atualização de Segurança para Windows XP (KB941569)

Atualização de Segurança para Windows XP (KB952004)

Atualização de Segurança para Windows XP (KB953839)

Atualização de Segurança para Windows XP (KB954459)

Atualização de Segurança para Windows XP (KB955069)

Atualização de Segurança para Windows XP (KB956572)

Atualização de Segurança para Windows XP (KB956744)

Atualização de Segurança para Windows XP (KB956802)

Atualização de Segurança para Windows XP (KB956844)

Atualização de Segurança para Windows XP (KB958869)

Atualização de Segurança para Windows XP (KB959426)

Atualização de Segurança para Windows XP (KB960225)

Atualização de Segurança para Windows XP (KB960803)

Atualização de Segurança para Windows XP (KB960859)

Atualização de Segurança para Windows XP (KB961501)

Atualização de Segurança para Windows XP (KB969059)

Atualização de Segurança para Windows XP (KB969947)

Atualização de Segurança para Windows XP (KB970238)

Atualização de Segurança para Windows XP (KB970430)

Atualização de Segurança para Windows XP (KB971468)

Atualização de Segurança para Windows XP (KB971657)

Atualização de Segurança para Windows XP (KB971961)

Atualização de Segurança para Windows XP (KB972270)

Atualização de Segurança para Windows XP (KB973507)

Atualização de Segurança para Windows XP (KB973869)

Atualização de Segurança para Windows XP (KB973904)

Atualização de Segurança para Windows XP (KB974112)

Atualização de Segurança para Windows XP (KB974318)

Atualização de Segurança para Windows XP (KB974392)

Atualização de Segurança para Windows XP (KB974571)

Atualização de Segurança para Windows XP (KB975025)

Atualização de Segurança para Windows XP (KB975467)

Atualização de Segurança para Windows XP (KB975560)

Atualização de Segurança para Windows XP (KB975561)

Atualização de Segurança para Windows XP (KB975562)

Atualização de Segurança para Windows XP (KB975713)

Atualização de Segurança para Windows XP (KB977816)

Atualização de Segurança para Windows XP (KB977914)

Atualização de Segurança para Windows XP (KB978037)

Atualização de Segurança para Windows XP (KB978262)

Atualização de Segurança para Windows XP (KB978338)

Atualização de Segurança para Windows XP (KB978542)

Atualização de Segurança para Windows XP (KB978601)

Atualização de Segurança para Windows XP (KB978706)

Atualização de Segurança para Windows XP (KB979482)

Atualização de Segurança para Windows XP (KB979559)

Atualização de Segurança para Windows XP (KB979683)

Atualização de Segurança para Windows XP (KB980195)

Atualização de Segurança para Windows XP (KB980218)

Atualização de Segurança para Windows XP (KB980232)

Atualização de Segurança para Windows XP (KB981349)

Atualização para Windows Internet Explorer 7 (KB980182)

Atualização para Windows XP (KB898461)

Atualização para Windows XP (KB955759)

Atualização para Windows XP (KB961503)

Atualização para Windows XP (KB967715)

Atualização para Windows XP (KB968389)

Atualização para Windows XP (KB971737)

Atualização para Windows XP (KB973687)

Atualização para Windows XP (KB973815)

AVG Free 9.0

Cabal Pirata

CCleaner (remove only)

CDBurnerXP

CursorXP

Ferramenta de Carregamento do Windows Live

Foxit Reader

Google Update Helper

HashTab 2.1.1

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows XP (KB954550-v5)

Hotfix para Windows XP (KB961118)

Hotfix para Windows XP (KB981793)

Intel® Graphics Media Accelerator Driver

Internet Download Manager

IrfanView (remove only)

Java 6 Update 10

Junk Mail filter update

K-Lite Mega Codec Pack 4.2.5

Kels' CPL Bonus Pack!

L2Brazilian EPILOGUE

LimeWire 5.5.9

Lineage II

Messenger Plus! Live

Messenger_Plus_Live_Brazil Toolbar

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Brazilian Portuguese Language Pack

Microsoft .NET Framework 1.1 Security Update (KB979906)

Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PTB

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PTB

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 Language Pack - ptb

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Access MUI (Portuguese (Brazil)) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office Groove MUI (Portuguese (Brazil)) 2007

Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Software Update for Web Folders (Portuguese (Brazil)) 12

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

MSVCRT

Notepad++

PhotoScape

Rainmeter (remove only)

Realtek High Definition Audio Driver

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB976321)

Security Update for 2007 Microsoft Office System (KB982312)

Security Update for 2007 Microsoft Office System (KB982331)

Security Update for Microsoft Office Excel 2007 (KB982308)

Security Update for Microsoft Office InfoPath 2007 (KB979441)

Security Update for Microsoft Office Outlook 2007 (KB972363)

Security Update for Microsoft Office PowerPoint 2007 (KB982158)

Security Update for Microsoft Office Publisher 2007 (KB982124)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB969613)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Security Update for Microsoft Office Word 2007 (KB982135)

Segoe UI

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Office OneNote 2007 (KB980729)

Update for Outlook 2007 Junk Email Filter (kb983486)

Winamp

Winamp Detectar Aplicação

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Galeria de Fotos

Windows Live Mail

Windows Live Messenger

Windows Live Sync

Windows Media Format 11 runtime

Windows Media Player 11

Windows Vista Sounds Pack

XML Paper Specification Shared Components Language Pack 1.0

XML Paper Specification Shared Components Pack 1.0

==== End Of File ===========================

Editado Junho 24, 2010 por Paran0m

[RenatoMejias]

Configure o Windows para mostrar todos os arquivos

Acesse este site: http://virustotal.com/

Em File to upload coloque: C:\Windows\explorer.exe

Em seguida clique em Submit

Copie e poste o resultado deste exame.

[Paran0m]

submit ou send a file?

isso que voce queria?

Antivírus Versão Última Atualização Resultado

a-squared 5.0.0.30 2010.06.24 -

AhnLab-V3 2010.06.24.01 2010.06.24 -

AntiVir 8.2.4.2 2010.06.24 -

Antiy-AVL 2.0.3.7 2010.06.24 -

Authentium 5.2.0.5 2010.06.24 -

Avast 4.8.1351.0 2010.06.24 -

Avast5 5.0.332.0 2010.06.24 -

AVG 9.0.0.836 2010.06.24 -

BitDefender 7.2 2010.06.24 -

CAT-QuickHeal 10.00 2010.06.24 -

ClamAV 0.96.0.3-git 2010.06.24 -

Comodo 5205 2010.06.24 -

DrWeb 5.0.2.03300 2010.06.24 -

eSafe 7.0.17.0 2010.06.24 -

eTrust-Vet 36.1.7665 2010.06.24 -

F-Prot 4.6.1.107 2010.06.24 -

F-Secure 9.0.15370.0 2010.06.24 -

Fortinet 4.1.133.0 2010.06.24 -

GData 21 2010.06.24 -

Ikarus T3.1.1.84.0 2010.06.24 -

Jiangmin 13.0.900 2010.06.15 -

Kaspersky 7.0.0.125 2010.06.24 -

McAfee 5.400.0.1158 2010.06.24 -

McAfee-GW-Edition 2010.1 2010.06.24 -

Microsoft 1.5902 2010.06.24 -

NOD32 5226 2010.06.24 -

Norman 6.05.10 2010.06.24 -

nProtect 2010-06-24.01 2010.06.24 -

Panda 10.0.2.7 2010.06.24 -

PCTools 7.0.3.5 2010.06.24 -

Rising 22.53.03.04 2010.06.24 -

Sophos 4.54.0 2010.06.24 -

Sunbelt 6500 2010.06.24 -

Symantec 20101.1.0.89 2010.06.24 -

TheHacker 6.5.2.0.303 2010.06.24 -

TrendMicro 9.120.0.1004 2010.06.24 -

TrendMicro-HouseCall 9.120.0.1004 2010.06.24 -

VBA32 3.12.12.5 2010.06.24 -

ViRobot 2010.6.21.3896 2010.06.24 -

VirusBuster 5.0.27.0 2010.06.24 -

Informações adicionais

File size: 1035776 bytes

MD5 : 064ec7ff5f58b928c3e119402977fa6d

SHA1 : 0555de161bf0e323f768e262a7e46b1b26647532

SHA256: 4cc1c4f32146cc28f5e3d7e9562d20017dce82c71f2bba549bbda27a17acc1bb

PEInfo: PE Structure information

( base data )

entrypointaddress.: 0x101A55F

timedatestamp.....: 0x48025C30 (Sun Apr 13 21:17:04 2008)

machinetype.......: 0x14C (Intel I386)

( 4 sections )

name viradd virsiz rawdsiz ntrpy md5

.text 0x1000 0x44C09 0x44E00 6.38 f3840e3ec19eabcdb289728c9bdce660

.data 0x46000 0x1DB4 0x1800 1.30 983f35021232560eaaa99fcbc1b7d359

.rsrc 0x48000 0xB2A88 0xB2C00 6.63 ff49b0412a779ab814e41b53b80574d2

.reloc 0xFB000 0x374C 0x3800 6.78 ec335057489badbf6d8142b57175fd91

( 0 imports )

( 0 exports )

TrID : File type identification

Win32 Executable Generic (42.3%)

Win32 Dynamic Link Library (generic) (37.6%)

Generic Win/DOS Executable (9.9%)

DOS Executable Generic (9.9%)

Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

ThreatExpert: http://www.threatexpert.com/report.aspx?md...3e119402977fa6d

ssdeep: 24576:Dmfty/wAvN7lrWWncPx3TbefTaz/g/J/oi:DmpcN78p3Tbeba1i

sigcheck: publisher....: Microsoft Corporation

copyright....: © Microsoft Corporation. Todos os direitos reservados.

product......: Sistema operacional Microsoft_ Windows_

description..: Windows Explorer

original name: EXPLORER.EXE

internal name: explorer

file version.: 6.00.2900.5512 (xpsp.080413-2105)

comments.....: n/a

signers......: -

signing date.: -

verified.....: Unsigned

PEiD : -

RDS : NSRL Reference Data Set

-

[RenatoMejias]

Faça o download do Malwarebytes Anti-Malware:

Link1

Link alternativo

Duplo-clique em mbam-setup.exe, escolha a linguagem e siga as instruções para o software ser instalado.

• Certifique-se que marca a caixa Atualizar Malwarebytes Anti-Malware e Executar Malwarebytes Anti-Malware, e clique em concluir.
• Se existirem atualizações, elas serão baixadas e instaladas.
• Quando as atualizações terminarem, abrirá uma janela do programa. Marque "Verificação Rápida", e depois clique no botão Verificar.
• O scan iniciará e poderá ser demorado. Por favor seja paciente.
• Quando o scan estiver completo, clique em Ok, depois em Mostrar Resultados para ver o log.
• Se algo for encontrado, certifique-se que tudo está marcado e clique em Remover.
• Quando a desinfecção terminar, automaticamente um log surgirá aberto num documento do Bloco de Notas e pode ser questionado para reiniciar o PC. (Leia a nota)
• O log é automaticamente guardado e pode ser consultado clicando na tab Logs do menu principal.
• Copie e cole o conteúdo desse log na sua próxima resposta.

Nota: Em infecções mais complicadas, poderá haver a necessidade de reiniciar o PC. Caso lhe seja pedido para reiniciar o PC, por favor, faça-o imediatamente.