[rreiss]

Oi,
Eu tenho alguns problemas com o meu computador durante cerca de uma semana, e é só ficar pior.

Os problemas:
1. "regedit" não vai começar, não é reconhecido no windows.
2. A minha tarefa gerente não vai iniciar quando eu pressionar ctrl + alt + del.
3. Quando eu desligar o computador eu tenho uma tela azul com erro fatal C000021a diz .. algo como isso.
4. Quando faço login no Windows Recebo toneladas de pop ups com anúncios. que da janela de endereço é c: \ windows \ iexplore.html ou algo assim com uma longa e rdmngr continuar ..
Para poder utilizar o meu PC Eu construí um ficheiro batch que fechar todos os processos de iexplore.exe e, portanto, agora estou usando o Google chrome para escrever esta discussão.

A protecção programas tive até dois dias foram Symantec Norton Anti Virus + Firewall (ambos não atualizados).
Os programas que tenho agora (após o download e apagar outros) são AVG Internet Security (que não me permite atualizar-se - ele diz que a minha ligação à internet não é boa - esquisito?)
SPYWAREfighter (totalmente atualizado e limpo de problemas ..)
eo último de tudo o que eu acho que é o mais útil é uma SpyBot S & D (totalmente atualizado).

Eu vou dar um pouco de informação. sobre o que acontece no meu comp. agora: (todos do Spybot-S & D)

Meus processos em execução:

--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

2008/07/07 blindman.exe (1.0.0.8)
2008/07/07 SDFiles.exe (1.6.0.4)
2008/07/07 SDMain.exe (1.0.0.6)
2008/07/07 SDShred.exe (1.0.2.3)
2008/07/07 SDUpdate.exe (1.6.0.8)
2008/07/07 SDWinSec.exe (1.0.0.12)
2008/07/07 SpybotSD.exe (1.6.0.30)
2008/09/16 TeaTimer.exe (1.6.3.25)
2008/10/19 unins000.exe (51.49.0.0)
2008/07/07 Update.exe (1.6.0.7)
2008/07/07 advcheck.dll (1.6.1.12)
2007/04/02 aports.dll (2.1.0.0)
2008/06/14 DelZip179.dll (1.79.11.1)
2008/09/15 SDHelper.dll (1.6.2.14)
2008/06/19 sqlite3.dll
2008/07/07 Tools.dll (2.1.5.7)
2008/09/02 Includes \ Adware.sbi
2008/10/14 Includes \ AdwareC.sbi
2008/06/03 Includes \ Cookies.sbi
2008/09/02 Includes \ Dialer.sbi
2008/09/09 Includes \ DialerC.sbi
2008/07/23 Includes \ HeavyDuty.sbi
2008/09/02 Includes \ Hijackers.sbi
2008/10/07 Includes \ HijackersC.sbi
2008/09/09 Includes \ Keyloggers.sbi
2008/10/14 Includes \ KeyloggersC.sbi
2004/11/29 Includes \ LSP.sbi
2008/10/08 Includes \ Malware.sbi
2008/10/14 Includes \ MalwareC.sbi
2008/09/02 Includes \ PUPS.sbi
2008/10/14 Includes \ PUPSC.sbi
2007/11/07 Includes \ Revision.sbi
2008/06/18 Includes \ Security.sbi
2008/09/30 Includes \ SecurityC.sbi
2008/06/03 Includes \ Spybots.sbi
2008/06/03 Includes \ SpybotsC.sbi
2008/09/09 Includes \ Spyware.sbi
2008/10/14 Includes \ SpywareC.sbi
2008/06/03 Includes \ Tracks.uti
2008/10/15 Includes \ Trojans.sbi
2008/10/14 Includes \ TrojansC.sbi
2008/03/04 Plugins \ Chai.dll
2008/03/05 Plugins \ Fennel.dll
2008/02/26 Plugins \ Mate.dll
2007/12/24 Plugins \ TCPIPAddress.dll

PID: 0 (0) [System]
PID: 1420 (4) \ SystemRoot \ System32 \ smss.exe
Tamanho: 50.688
PID: 1620 (1420) \? \ C: \ WINDOWS \ system32 \ Csrss.exe
tamanho: 6144
PID: 1656 (1420) \? \ C: \ WINDOWS \ system32 \ winlogon.exe
Tamanho: 502272
PID: 1712 (1656) C: \ WINDOWS \ system32 \ Services.exe
Tamanho: 108032
MD5: C6CE6EEC82F187615D1002BB3BB50ED4
PID: 1724 (1656) C: \ WINDOWS \ system32 \ lsass.exe
Tamanho: 13.312
MD5: 84885F9B82F4D55C6146EBF6065D75D2
PID: 1948 (1712) C: \ WINDOWS \ system32 \ ibmpmsvc.exe
Tamanho: 73.782
MD5: 21ABD7E16659602723F984F512C65E02
PID: 1980 (1712) C: \ WINDOWS \ system32 \ Ati2evxx.exe
Tamanho: 380928
MD5: A2093ED04D20F3ACA0C0D348234C6998
PID: 2020 (1712) C: \ WINDOWS \ system32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 304 (1712) C: \ WINDOWS \ system32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 484 (1712) C: \ WINDOWS \ System32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 520 (1712) C: \ WINDOWS \ system32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 600 (1712) C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
Tamanho: 86.016
MD5: 80AAA1C7520C86CA0641C69851E124AF
PID: 692 (1712) C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
Tamanho: 360521
MD5: 3962B7C74E9E335FAA419CCBF4BD1835
PID: 812 (1712) C: \ WINDOWS \ system32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 868 (1712) C: \ WINDOWS \ system32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1188 (1024) C: \ WINDOWS \ Explorer.EXE
Tamanho: 1033216
MD5: 97BD6515465659FF8F3B7BE375B2EA87
PID: 1556 (1712) C: \ WINDOWS \ system32 \ spoolsv.exe
Tamanho: 57.856
MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
PID: 1248 (1712) C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
Tamanho: 231704
MD5: 9B40D378D4E521464212E878BE8216A4
PID: 1604 (1712) C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgfws8.exe
Tamanho: 1220888
MD5: 1BB3A220C3616098E4BEBD6865E8F433
PID: 544 (1712) C: \ Program Files \ ThinkPad \ Bluetooth Software \ bin \ btwdins.exe
Tamanho: 258103
MD5: 32EDF745816649DFB0C1AA9E723C245F
PID: 1100 (1712) C: \ Program Files \ Diskeeper Corporation \ Diskeeper \ DkService.exe
Tamanho: 622700
MD5: 0700D8F92F7A93C2AB33CE2E0EBC29F4
PID: 1496 (1248) C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgam.exe
Tamanho: 638744
MD5: AC67ECB5AD03CE4A3FB971221F574E6B
PID: 1260 (1248) C: \ Program Files \ avg \ avg8 \ avgrsx.exe
Tamanho: 287000
MD5: BA1CE056CE1466CA28CE118585EA86C4
PID: 1448 (1712) C: \ WINDOWS \ System32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1576 (1248) C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgnsx.exe
Tamanho: 424216
MD5: C9BEA16C638562EB677746D07C673F07
PID: 2756 (1712) C: \ WINDOWS \ system32 \ HPZipm12.exe
Tamanho: 69.632
MD5: 9D84376931440F3679BEEF2A414FA493
PID: 2880 (1712) C: \ Program Files \ Fighters \ configservice.exe
Tamanho: 139912
MD5: 9B48A953DE6E8D20E17D634EBDFF1755
PID: 3144 (1712) C: \ WINDOWS \ System32 \ QCONSVC.EXE
Tamanho: 81.920
MD5: F34DB50EF26BC0FED48BB5ADAF9B878F
PID: 3232 (1712) C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc.exe
Tamanho: 139264
MD5: F8489639E1D60D21F63F69A0605DD667
PID: 3272 (1712) C: \ WINDOWS \ system32 \ svchost.exe
Tamanho: 14.336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 3376 (1712) C: \ WINDOWS \ System32 \ TPHDEXLG.EXE
Tamanho: 77.824
MD5: 5515311013AF3EB8746FA6806AA4A859
PID: 3420 (1712) C: \ WINDOWS \ system32 \ TpKmpSVC.exe
Tamanho: 32.768
MD5: DFB268FF0A6DCB9280015FF527F892FF
PID: 3456 (1712) C: \ Program Files \ ThinkVantage \ SystemUpdate \ UCLauncherService. exe
tamanho: 40960
MD5: 7541BD8978AA1447FC2467C1F2B39B87
PID: 2988 (2020) C: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe
Tamanho: 218112
MD5: 075EA6C849AB0FE416A3D6DD65C3CF41
PID: 3184 (1712) C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgemc.exe
Tamanho: 875288
MD5: EC5B6AFF1A0BD1480B3B40CE78FAA527
PID: 3796 (1712) C: \ Program Files \ Fighters \ licenseservice.exe
Tamanho: 283272
MD5: 7A433AA7803B408E50963F3007B7C134
PID: 2392 (1712) C: \ Program Files \ Fighters \ updateservice.exe
Tamanho: 307848
MD5: 2DFBDA4C2484938B77737846446BADB5
PID: 2008 (1712) C: \ Program Files \ Fighters \ ScannerService.exe
Tamanho: 311944
MD5: B0AB3FAFD1C65FA7FFC9178DAF8B5B96
PID: 992 (1712) C: \ Program Files \ Windows Media Player \ WMPNetwk.exe
Tamanho: 913408
MD5: F74E3D9A7FA9556C3BBB14D4E5E63D3B
PID: 2804 (1712) C: \ WINDOWS \ System32 \ alg.exe
Tamanho: 44.544
MD5: F1958FBF86D5C004CF19A5951A9514B7
PID: 3904 (1188) C: \ WINDOWS \ LSPRN.EXE
Tamanho: 16.896
MD5: 8D10954E841EEFC61E5022432E8F55E8
PID: 2436 (1188) C: \ Program Files \ Synaptics \ SynTP \ SynTPLpr.exe
Tamanho: 110592
MD5: 0E6AA8A1D47148DC7AD82BF9C81AC69C
PID: 2400 (1188) C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
Tamanho: 512000
MD5: 89FC9B12D36005F6A43A8F8B58306AC8
PID: 2776 (3904) C: \ WINDOWS \ system32 \ PRINTDRV.EXE
Tamanho: 552748
MD5: 2B3B794301779CF6AD7EA9F2FEA87CA5
PID: 632 (1188) C: \ PROGRA ~ 1 \ ThinkPad \ UTILIT ~ 1 \ EzEjMnAp.Exe
Tamanho: 237568
MD5: EB21E4E92F5A81F7A6E6B9DC8E6BFBB6
PID: 3624 (1188) C: \ PROGRA ~ 1 \ Lenovo \ PkgMgr \ HotKey \ TPHKMGR.exe
Tamanho: 94.208
MD5: 8F00D8FB0E51D4AB0587B3FC06E8079E
PID: 1856 (3624) C: \ Program Files \ Lenovo \ PkgMgr \ HotKey \ TPONSCR.exe
Tamanho: 77.824
MD5: E56AED1AD96125AE952F9B2B1D468177
PID: 504 (3624) C: \ Program Files \ Lenovo \ PkgMgr \ HOTKEY_1 \ TpScrex.exe
Tamanho: 86.016
MD5: F1DE90D990C6928EF549602A5ECE4029
PID: 1148 (1188) C: \ PROGRA ~ 1 \ THINKV ~ 2 \ PrdCtr \ LPMGR.exe
Tamanho: 98.304
MD5: 92B1EE9575F696F75FAB3A5A2D0D6642
PID: 3296 (1188) C: \ Program Files \ Common Files \ InstallShield \ UpdateService \ issch.exe
Tamanho: 81.920
MD5: 763DAB43BDAB27316DBF3373192823D7
PID: 3336 (1188) C: \ Program Files \ IBM ThinkVantage \ salvaguarda PrivateDisk \ pdservice.exe
Tamanho: 49.152
MD5: 64AB0F0795A0AEE366D34007D75F4A12
PID: 3140 (1188) C: \ Program Files \ ThinkPad \ ConnectUtilities \ QCWLICON.EXE
Tamanho: 86.016
MD5: 11ADBA54E52216F21675E75F5535C553
PID: 2252 (1188) C: \ WINDOWS \ system32 \ rundll32.exe
Tamanho: 33.280
MD5: DA285490BBD8A1D0CE6623577D5BA1FF
PID: 2116 (1188) C: \ PROGRA ~ 1 \ ThinkPad \ neuró ~ 1 \ QCTray.exe
Tamanho: 745472
MD5: 616EF177F379D42EBDEA5E92411A8F6E
PID: 236 (1188) C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe
Tamanho: 144784
MD5: 6AB4C021FBD36DC6764924C312428D97
PID: 2480 (1188) C: \ Program Files \ Fighters \ spywarefighter \ SpywarefighterUser.e xe
Tamanho: 180872
MD5: C491ABE2B0E515260CD8816F279B079F
PID: 1472 (1188) C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe
Tamanho: 1235736
MD5: B95536F0B568C4476A78966CFA7BA006
PID: 664 (1188) C: \ WINDOWS \ system32 \ ctfmon.exe
Tamanho: 15.360
MD5: 24232996A38C0B0CF151C2140AE29FC8
PID: 2840 (1188) C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe
Tamanho: 68.856
MD5: E616A6A6E91B0A86F2F6217CDE835FFE
PID: 3092 (1188) C: \ Documents and Settings \ Iris Reiss \ Local Settings \ Application Data \ Google \ Update \ GoogleUpdate.exe
Tamanho: 133104
MD5: 626A24ED1228580B9518C01930936DF9
PID: 3940 (1188) C: \ Program Files \ Windows Media Player \ WMPNSCFG.exe
Tamanho: 204288
MD5: 7EAED08CCCA4DDDE61A388C82598CFA9
PID: 2464 (2480) C: \ Program Files \ lutadores \ spywarefighter \ SPYWAREfighterTray.e xe
Tamanho: 246408
MD5: 3728857211EF65AE850DC29DF3205E10
PID: 5496 (1188) C: \ WINDOWS \ system32 \ cmd.exe
Tamanho: 388608
MD5: EEB024F2C81F0D55936FB825D21A91D6
PID: 5948 (1188) C: \ Documents and Settings \ Iris Reiss \ Local Settings \ Application Data \ Google \ Chrome \ Application \ chrome.exe
Tamanho: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 796 (5948) C: \ Documents and Settings \ Iris Reiss \ Local Settings \ Application Data \ Google \ Chrome \ Application \ chrome.exe
Tamanho: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 4200 (1188) C: \ WINDOWS \ system32 \ rundll32.exe
Tamanho: 33.280
MD5: DA285490BBD8A1D0CE6623577D5BA1FF
PID: 252 (4200) C: \ Program Files \ National Instruments \ Shared \ NIUninstaller \ Uninst.exe
Tamanho: 1247840
MD5: F3B04AD6D6605A5059CC4A5CB36BED46
PID: 1408 (1712) C: \ WINDOWS \ system32 \ msiexec.exe
Tamanho: 78.848
MD5: F5F0146580E7023ADB963879840777F8
PID: 6060 (5948) C: \ Documents and Settings \ Iris Reiss \ Local Settings \ Application Data \ Google \ Chrome \ Application \ chrome.exe
Tamanho: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 3260 (5948) C: \ Documents and Settings \ Iris Reiss \ Local Settings \ Application Data \ Google \ Chrome \ Application \ chrome.exe
Tamanho: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 4472 (5948) C: \ Documents and Settings \ Iris Reiss \ Local Settings \ Application Data \ Google \ Chrome \ Application \ chrome.exe
Tamanho: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 4652 (5696) C: \ Arquivos de Programas \ Spybot - Search & Destroy \ SpybotSD.exe
Tamanho: 4891472
MD5: 3B1B5D09D3C9C4CD39D4DB06ED7A0855
PID: 4 (0) Sistema
PID: 4348 (1408) C: \ WINDOWS \ system32 \ MsiExec.exe
Tamanho: 78.848
MD5: F5F0146580E7023ADB963879840777F8
PID: 5480 (1408) C: \ WINDOWS \ Installer \ MSI34A.tmp
Tamanho: 56.232
MD5: 2A7F9A2F8F08BBC0C5829B3A90B7EE96

Um arquivo de log das anteriores, esta noite, quando eu só descarregado espião bot S & D


--- Relatório gerado: 2008/10/19 18:44 ---

Dica do Dia: Clique na barra à direita deste para ver mais informações! ()


AdwareAlert: [SBI $ 52C5F396] Definições (מפתח רישום, nada feito)
HKEY_USERS \ S-1-5-21-343743635-3307870191-2053664491-1006 \ Software \ AdwareAlert

ErrorSmart: [SBI $ 8E4C1D3D] Definições (מפתח רישום, nada feito)
HKEY_USERS \ S-1-5-21-343743635-3307870191-2053664491-1006 \ Software \ ErrorSmart

ErrorSmart: [SBI $ 879FA510] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ ErrorSmart \ Log \ 2008 14 out - 05_31_58 PM_484.log

ErrorSmart: [SBI $ 879FA510] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ ErrorSmart \ Log \ 2008 14 out - 05_49_53 PM_796.log

ErrorSmart: [SBI $ 879FA510] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ ErrorSmart \ Log \ 2008 14 out - 08_16_38 PM_328.log

ErrorSmart: [SBI $ 879FA510] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ ErrorSmart \ Log \ 2008 14 out - 08_41_00 PM_671.log

ErrorSmart: [SBI $ 879FA510] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ ErrorSmart \ Log \ 2008 14 out - 09_27_33 PM_515.log

ErrorSmart: [SBI $ 879FA510] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ ErrorSmart \ Log \ 2008 14 out - 12_16_19 PM_859.log

ErrorSmart: [SBI $ 7B416CCA] Dados (קובץ, nada feito)
C: \ WINDOWS \ Tasks \ ErrorSmart Scheduled Scan.job

RegistrySmart: [SBI $ FCEE4898] Definições (מפתח רישום, nada feito)
HKEY_USERS \ S-1-5-21-343743635-3307870191-2053664491-1006 \ Software \ RegistrySmart

RegistrySmart: [SBI $ 81F408AB] Definições (מפתח רישום, nada feito)
HKEY_LOCAL_MACHINE \ Software \ RegistrySmart

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_05_17_11_51_45.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_05_17_11_51_53.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_05_24_09_10_06.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_06_14_10_01_53.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_06_15_03_09_36.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_06_20_22_29_01.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_07_01_20_40_26.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_07_12_12_06_09.log

RegistrySmart: [SBI $ A1D98DAB] Log file (קובץ, nada feito)
C: \ Documents and Settings \ Iris Reiss \ Application Data \ RegistrySmart \ Log \ log_2007_07_14_17_02_38.log

RegistrySmart: [SBI $ A6ED8F18] Dados (קובץ, nada feito)
C: \ WINDOWS \ Tasks \ RegistrySmart agendadas Scan.job

Microsoft.Windows.Security.InternetExplorer: [SBI $ 366713D4] Configurações (רישום שהשתנה, nada feito)
HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Internet Explorer \ Main \ FeatureControl \ FEATURE_LOCALMACHINE_ Lockdown \ iexplore.exe

Microsoft.WindowsSecurityCenter.AntiVirusOverride: [SBI $ 3604910C] Configurações (רישום שהשתנה, nada feito)
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Security Center \ AntiVirusOverride

Microsoft.Windows.AppFirewallBypass: [SBI $ 2593FAE5] Definições (ערך הרישום, nada feito)
HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet002 \ Services \ S haredAccess \ Parameters \ FirewallPolicy \ StandardProf ile \ AuthorizedApplications \ List \ C: \ WINDOWS \ system3 2 \ winver.exe

Microsoft.Windows.AppFirewallBypass: [SBI $ 17E546F4] Definições (ערך הרישום, nada feito)
HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet003 \ Services \ S haredAccess \ Parameters \ FirewallPolicy \ StandardProf ile \ AuthorizedApplications \ List \ C: \ WINDOWS \ system3 2 \ winver.exe

Hupigon13: [SBI $ D5A7DCB6] Definições (מפתח רישום, nada feito)
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Image File Execution Options \ regedit.exe

Virtumonde: [SBI $ 1F8EC695] Definições (מפתח רישום, nada feito)
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ MSSMGR

Virtumonde.dll: [SBI $ 8770FED0] Biblioteca (קובץ, nada feito)
C: \ WINDOWS \ system32 \ jkkJaxXQ.dll

Virtumonde.dll: [SBI $ 8770FED0] Biblioteca (קובץ, nada feito)
C: \ WINDOWS \ system32 \ geBsqpqR.dll

Virtumonde.dll: [SBI $ 8770FED0] Biblioteca (קובץ, nada feito)
C: \ WINDOWS \ system32 \ ddcBTNDW.dll

Zlob.Downloader.bit: [SBI $ 12A26DDA] Installer (קובץ, nada feito)
c: \ autorun.inf

Log: Actividade: COM +. Log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ COM +. Log

Log: Actividade: SchedLgU.Txt (קובץ גיבוי, nada feito)
C: \ WINDOWS \ SchedLgU.Txt

Log: Actividade: imsins.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ imsins.log

Log: Actividade: OEWABLog.txt (קובץ גיבוי, nada feito)
C: \ WINDOWS \ OEWABLog.txt

Log: Actividade: Ntbtlog.txt (קובץ גיבוי, nada feito)
C: \ WINDOWS \ Ntbtlog.txt

Log: Install: comsetup.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ comsetup.log

Log: Install: ocgen.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ ocgen.log

Log: Install: Setupact.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ Setupact.log

Log: Install: setupapi.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ Setupapi.log

Log: Install: svcpack.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ svcpack.log

Log: Install: wmsetup.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ wmsetup.log

Log: Install: DtcInstall.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ DtcInstall.log

Log: Shutdown: System32 \ wbem \ logs \ mofcomp.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ mofcomp.log

Log: Shutdown: System32 \ wbem \ logs \ wbemcore.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ wbemcore.log

Log: Shutdown: System32 \ wbem \ logs \ wbemess.lo_ (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ wbemess.lo_

Log: Shutdown: System32 \ wbem \ logs \ wbemess.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ wbemess.log

Log: Shutdown: System32 \ wbem \ logs \ wbemprox.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ wbemprox.log

Log: Shutdown: System32 \ wbem \ logs \ wmiadap.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ wmiadap.log

Log: Shutdown: System32 \ wbem \ logs \ wmiprov.log (קובץ גיבוי, nada feito)
C: \ WINDOWS \ system32 \ wbem \ logs \ wmiprov.log

Cookie: Cookie (22) (Cookie, nada feito)


Cache: Cache (663) (Cache, nada feito)


História: História (65) (História, nada feito)



--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

2008/07/07 blindman.exe (1.0.0.8)
2008/07/07 SDFiles.exe (1.6.0.4)
2008/07/07 SDMain.exe (1.0.0.6)
2008/07/07 SDShred.exe (1.0.2.3)
2008/07/07 SDUpdate.exe (1.6.0.8)
2008/07/07 SDWinSec.exe (1.0.0.12)
2008/07/07 SpybotSD.exe (1.6.0.30)
2008/09/16 TeaTimer.exe (1.6.3.25)
2008/10/19 unins000.exe (51.49.0.0)
2008/07/07 Update.exe (1.6.0.7)
2008/07/07 advcheck.dll (1.6.1.12)
2007/04/02 aports.dll (2.1.0.0)
2008/06/14 DelZip179.dll (1.79.11.1)
2008/09/15 SDHelper.dll (1.6.2.14)
2008/06/19 sqlite3.dll
2008/07/07 Tools.dll (2.1.5.7)
2008/09/02 Includes \ Adware.sbi (*)
2008/10/14 Includes \ AdwareC.sbi (*)
2008/06/03 Includes \ Cookies.sbi (*)
2008/09/02 Includes \ Dialer.sbi (*)
2008/09/09 Includes \ DialerC.sbi (*)
2008/07/23 Includes \ HeavyDuty.sbi (*)
2008/09/02 Includes \ Hijackers.sbi (*)
2008/10/07 Includes \ HijackersC.sbi (*)
2008/09/09 Includes \ Keyloggers.sbi (*)
2008/10/14 Includes \ KeyloggersC.sbi (*)
2004/11/29 Includes \ LSP.sbi (*)
2008/10/08 Includes \ Malware.sbi (*)
2008/10/14 Includes \ MalwareC.sbi (*)
2008/09/02 Includes \ PUPS.sbi (*)
2008/10/14 Includes \ PUPSC.sbi (*)
2007/11/07 Includes \ Revision.sbi (*)
2008/06/18 Includes \ Security.sbi (*)
2008/09/30 Includes \ SecurityC.sbi (*)
2008/06/03 Includes \ Spybots.sbi (*)
2008/06/03 Includes \ SpybotsC.sbi (*)
2008/09/09 Includes \ Spyware.sbi (*)
2008/10/14 Includes \ SpywareC.sbi (*)
2008/06/03 Includes \ Tracks.uti
2008/10/15 Includes \ Trojans.sbi (*)
2008/10/14 Includes \ TrojansC.sbi (*)
2008/03/04 Plugins \ Chai.dll
2008/03/05 Plugins \ Fennel.dll
2008/02/26 Plugins \ Mate.dll
2007/12/24 Plugins \ TCPIPAddress.dll

* Se quaisquer outros elementos exigidos de modo perguntar e você vai ter.

Thats it. esperança de obter algumas dicas úteis para esta rápida feio situação ..
Obrigado,
Rotem

[Hybr! D]

http://www.computer-juice.com/forums...-posting-7476/

Siga o guia, instale o software livre e pós os arquivos de log.

Depois, o malware equipe pode ver o que está errado com seu sistema.