############ Main.txt ###########
Deckard's System Scanner v20071014.68
Run by Lnk on 2008-07-09 23:56:43
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- Last 5 Restore Point(s) --
7: 2008-07-09 22:16:25 UTC - RP255 - Installed WinZip 11.2
6: 2008-07-09 17:04:36 UTC - RP254 - Windows Update
5: 2008-07-09 15:21:46 UTC - RP253 - Installed AVG Free 8.0
4: 2008-07-09 13:03:37 UTC - RP252 - Windows Defender Checkpoint
3: 2008-07-09 10:35:21 UTC - RP250 - Windows Defender Checkpoint
-- First Restore Point --
1: 2008-07-08 21:24:50 UTC - RP246 - Windows Defender Checkpoint
Backed up registry hives.
Performed disk cleanup.
System Drive C: has 12.17 GiB (less than 15%) free.-- HijackThis (run as Lnk.exe) -------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:58, on 2008-07-09
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Users\Lnk\Desktop\dss.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\DllHost.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Lnk.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.ptR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft....k/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft....k/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft....k/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [MSServer] rundll32.exe C:\Users\Lnk\AppData\Local\Temp\byXpopPJ.dll,#1
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVIÇO LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'Serviço de rede')
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O13 - Gopher Prefix:
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 6813 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
All drivers whitelisted.
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Bonjour Service (##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##) - "c:\program files\bonjour\mdnsresponder.exe" <Not Verified; Apple Computer, Inc.; Bonjour>
R2 CFSvcs (ConfigFree Service) - c:\program files\toshiba\configfree\cfsvcs.exe <Not Verified; TOSHIBA CORPORATION; ConfigFree™>
R2 TNaviSrv (TOSHIBA Navi Support Service) - c:\program files\toshiba\toshiba dvd player\tnavisrv.exe <Not Verified; TOSHIBA Corporation; TOSHIBA DVD Player>
R2 TODDSrv (TOSHIBA Optical Disc Drive Service) - c:\windows\system32\toddsrv.exe <Not Verified; TOSHIBA Corporation; TDCSrv Application>
S3 FLEXnet Licensing Service - "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe" <Not Verified; Macrovision Europe Ltd.; FLEXnet Publisher (32 bit)>
S3 WLSetupSvc (Windows Live Setup Service) - "c:\program files\windows live\installer\wlsetupsvc.exe" <Not Verified; Microsoft Corporation; Windows Live installer>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Files created between 2008-06-09 and 2008-07-09 -----------------------------
2008-07-09 23:17:02 0 d-------- C:\Users\All Users\WinZip
2008-07-09 16:12:51 0 d-------- C:\Program Files\Trend Micro
2008-07-09 11:31:09 0 d-------- C:\Program Files\Anti Trojan Elite
2008-07-07 15:43:58 68096 --a------ C:\Windows\zip.exe
2008-07-07 15:43:58 49152 --a------ C:\Windows\VFind.exe
2008-07-07 15:43:58 212480 --a------ C:\Windows\swxcacls.exe <Not Verified; SteelWerX; SteelWerX Extended Configurator ACLists>
2008-07-07 15:43:58 136704 --a------ C:\Windows\swsc.exe <Not Verified; SteelWerX; SteelWerX Service Controller>
2008-07-07 15:43:58 161792 --a------ C:\Windows\swreg.exe <Not Verified; SteelWerX; SteelWerX Registry Editor>
2008-07-07 15:43:58 98816 --a------ C:\Windows\sed.exe
2008-07-07 15:43:58 80412 --a------ C:\Windows\grep.exe
2008-07-07 15:43:58 89504 --a------ C:\Windows\fdsv.exe <Not Verified; Smallfrogs Studio; >
2008-07-07 15:25:03 0 d-------- C:\VundoFix Backups
2008-07-07 15:15:30 25088 --a------ C:\Windows\system32\oPiFUNHb.dll
2008-07-07 15:11:54 0 d-------- C:\Program Files\C4D Studio Bundle v9.012
2008-07-07 15:11:22 25088 --a------ C:\Windows\system32\gEwtUOef.dll
2008-06-27 15:11:52 217088 --a------ C:\Windows\system32\yv12vfw.dll <Not Verified; www.helixcommunity.org; Helix YV12 YUV Codec>
2008-06-27 15:11:52 39936 --a------ C:\Windows\system32\huffyuv.dll <Not Verified; Disappearing Inc.; Huffyuv>
2008-06-27 15:11:51 159839 --a------ C:\Windows\system32\xvidvfw.dll
2008-06-27 15:11:51 755027 --a------ C:\Windows\system32\xvidcore.dll
2008-06-27 15:11:51 2121235 --a------ C:\Windows\system32\x264vfw.dll
2008-06-27 15:11:51 630784 --a------ C:\Windows\system32\vp7vfw.dll <Not Verified; On2.com; On2_VP70>
2008-06-27 15:11:51 438272 --a------ C:\Windows\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2008-06-27 15:11:51 3596288 --a------ C:\Windows\system32\qt-dx331.dll
2008-06-27 15:11:51 144384 --a------ C:\Windows\system32\Iacenc.dll <Not Verified; Intel Corporation; Indeo® audio software>
2008-06-27 15:11:51 81920 --a------ C:\Windows\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2008-06-27 15:11:50 7680 --a------ C:\Windows\system32\ff_vfw.dll
2008-06-27 15:11:50 682496 --a------ C:\Windows\system32\divx.dll <Not Verified; DivX, Inc.; DivX®>
2008-06-27 15:11:49 0 d-------- C:\Program Files\K-Lite Codec Pack
2008-06-27 14:59:20 0 d-------- C:\Program Files\Webteh
2008-06-27 14:53:14 0 d-------- C:\Program Files\VideoLAN
2008-06-24 21:34:20 0 d-------- C:\Program Files\Gabest
2008-06-16 19:46:32 0 d-------- C:\Program Files\Microsoft.NET
-- Find3M Report ---------------------------------------------------------------
2008-07-09 22:53:24 0 d-------- C:\Users\Lnk\AppData\Roaming\Adobe
2008-07-09 21:30:07 174 --ahs---- C:\Program Files\desktop.ini
2008-07-09 18:04:52 0 d-------- C:\Program Files\Windows Mail
2008-07-09 11:41:10 521184 --a------ C:\Windows\system32\prfh0816.dat
2008-07-09 11:41:10 86508 --a------ C:\Windows\system32\prfc0816.dat
2008-07-07 16:48:01 0 d-------- C:\Users\Lnk\AppData\Roaming\AdobeUM
2008-06-27 15:35:44 0 d-------- C:\Program Files\BitDefender
2008-06-27 15:35:40 0 d-------- C:\Program Files\Common Files\BitDefender
2008-06-27 15:14:54 0 d-------- C:\Users\Lnk\AppData\Roaming\BSplayer
2008-06-27 15:05:18 0 d-------- C:\Users\Lnk\AppData\Roaming\Media Player Classic
2008-06-27 14:59:21 0 d-------- C:\Users\Lnk\AppData\Roaming\BSplayer Pro
2008-06-16 19:46:54 0 d-------- C:\Program Files\Common Files
2008-06-13 10:54:21 0 d-------- C:\Program Files\Common Files\Steam
2008-06-06 18:23:59 0 d-------- C:\Users\Lnk\AppData\Roaming\teamspeak2
2008-06-04 15:07:21 0 d-------- C:\Program Files\Teamspeak2_RC2
2008-06-02 18:19:23 0 d-------- C:\Program Files\Common Files\Adobe
2008-05-29 20:37:55 0 d-------- C:\Program Files\Valve
2008-05-29 11:00:47 0 d-------- C:\Program Files\QuickTime
2008-05-29 10:59:35 0 d-------- C:\Program Files\Apple Software Update
2008-05-28 10:36:38 0 d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-05-27 21:40:26 0 d-------- C:\Program Files\Windows Live
2008-05-27 21:40:07 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2008-05-27 21:27:47 0 d-------- C:\Users\Lnk\AppData\Roaming\Macromedia
2008-05-27 21:09:07 0 d-------- C:\Program Files\Bonjour
2008-05-27 21:03:46 0 d-------- C:\Program Files\Common Files\Macrovision Shared
2008-05-27 18:30:20 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-05-27 18:30:20 0 d-------- C:\Program Files\Eidos
2008-05-27 18:19:18 0 d-------- C:\Program Files\MagicISO
2008-05-27 18:15:38 0 d-------- C:\Users\Lnk\AppData\Roaming\WinRAR
2008-05-27 17:51:41 0 d-------- C:\Program Files\Windows Calendar
2008-05-27 17:51:26 0 d-------- C:\Program Files\Windows Sidebar
2008-05-27 16:25:17 0 d-------- C:\Users\Lnk\AppData\Roaming\Mozilla
2008-05-27 16:15:07 0 d-------- C:\Users\Lnk\AppData\Roaming\Toshiba
2008-05-27 16:03:39 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-05-27 15:48:07 0 d-------- C:\Users\Lnk\AppData\Roaming\ATI
2008-05-27 15:47:30 0 d-------- C:\Users\Lnk\AppData\Roaming\Identities
2008-05-27 15:46:39 0 d-------- C:\Program Files\Common Files\Toshiba Shared
2008-05-27 15:46:01 0 d-------- C:\Program Files\TOSHIBA
2008-05-27 15:43:16 0 d-------- C:\Users\Lnk\AppData\Roaming\InstallShield
2008-05-27 15:42:37 0 d-------- C:\Program Files\Intel
2008-05-27 15:34:59 0 d-------- C:\Program Files\Windows NT
2008-05-27 15:34:59 0 d--hs---- C:\Program Files\Ficheiros comuns
2008-05-27 15:34:59 0 d--hs---- C:\Program Files\Common Files\Sistema
2008-05-27 15:30:22 0 d-------- C:\Program Files\Synaptics
2008-05-27 15:25:33 0 d-------- C:\Program Files\Camera Assistant Software for Toshiba
2008-05-27 15:24:32 0 d-------- C:\Program Files\ATI Technologies
2008-05-27 15:23:03 0 --a------ C:\Windows\ativpsrm.bin
2008-05-27 15:21:59 0 d-------- C:\Program Files\ATI
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-07-13 14:24]
"KeNotify"="C:\Program Files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 17:14]
"SVPWUTIL"="C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe" [2006-03-22 21:42]
"RtHDVCpl"="RtHDVCpl.exe" [2007-09-03 11:39 C:\Windows\RtHDVCpl.exe]
"TPwrMain"="C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE" [2007-03-29 10:39]
"HSON"="C:\Program Files\TOSHIBA\TBS\HSON.exe" [2006-12-07 16:49]
"SmoothView"="C:\Program Files\Toshiba\SmoothView\SmoothView.exe" [2007-04-03 16:52]
"00TCrdMain"="C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe" [2007-05-22 16:32]
"topi"="C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 09:24]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 11:35]
"Camera Assistant Software"="C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" [2007-04-10 16:40]
"SynTPStart"="C:\Program Files\Synaptics\SynTP\SynTPStart.exe" [2007-07-27 08:00]
"Toshiba Registration"="C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe" [2007-02-19 15:00]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-02-12 13:37]
"IaNvSrv"="C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe" [2007-03-13 16:49]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-03-28 23:37]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"="C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2006-11-13 13:43]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34]
"Steam"="c:\program files\valve\steam\steam.exe" [2008-05-29 20:47]
"MSServer"="C:\Users\Lnk\AppData\Local\Temp\byXpopPJ.dll,#1" []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE [2008-04-28 11:20:00]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"disableregistrytools"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSEXESVC]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
-- Hosts -----------------------------------------------------------------------
127.0.0.1 update.bitdefender.com127.0.0.1 update.bitdefender.com
-- End of Deckard's System Scanner: finished at 2008-07-09 23:59:35 ------------
############## Extra.txt #################
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft® Windows Vista™ Home Premium (build 6000)
Architecture: X86; Language: Portuguese
CPU 0: Intel® Core™2 Duo CPU T8300 @ 2.40GHz
Percentage of Memory in Use: 33%
Physical Memory (total/avail): 3069.81 MiB / 2027.75 MiB
Pagefile Memory (total/avail): 6319.83 MiB / 5268.01 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1905.64 MiB
C: is Fixed (NTFS) - 116.21 GiB total, 12.17 GiB free.
E: is Fixed (NTFS) - 115.21 GiB total, 115.12 GiB free.
F: is CDROM (UDF)
\\.\PHYSICALDRIVE0 - TOSHIBA MK2546GSX - 232.88 GiB - 3 partitions
\PARTITION0 - Unknown - 1500 MiB
\PARTITION1 (bootable) - Installable File System - 116.21 GiB - C:
\PARTITION2 - Installable File System - 115.21 GiB - E:
\\.\PHYSICALDRIVE1 - IMD-0 - 512.86 MiB - 1 partition
\PARTITION0 - Unknown - 512.6 MiB
-- Security Center -------------------------------------------------------------
AUOptions is scheduled to auto-install.
Windows Internal Firewall is enabled.
AS: Windows Defender v1.1.1505.0 (Microsoft Corporation)
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\ProgramData
APPDATA=C:\Users\Lnk\AppData\Roaming
CLASSPATH=.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=_LNKPC
ComSpec=C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Users\Lnk
LOCALAPPDATA=C:\Users\Lnk\AppData\Local
LOGONSERVER=\\_LNKPC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\QuickTime\QTSystem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 23 Stepping 6, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=1706
ProgramData=C:\ProgramData
ProgramFiles=C:\Program Files
PROMPT=$P$G
PUBLIC=C:\Users\Public
QTJAVA=C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
SystemDrive=C:
SystemRoot=C:\Windows
TEMP=C:\Users\Lnk\AppData\Local\Temp
TMP=C:\Users\Lnk\AppData\Local\Temp
USERDOMAIN=_LnkPc
USERNAME=Lnk
USERPROFILE=C:\Users\Lnk
windir=C:\Windows
-- User Profiles ---------------------------------------------------------------
Lnk
-- Add/Remove Programs ---------------------------------------------------------
--> "C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x816
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x816
Adobe Anchor Service CS3 --> MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3 --> MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3 --> MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting --> MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0 --> MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps --> MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific --> MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings --> C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
Adobe Color Common Settings --> MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe Color EU Extra Settings --> MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color JA Extra Settings --> MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Recommended Settings --> MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Default Language CS3 --> MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3 --> MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe Dreamweaver CS3 --> C:\Program Files\Common Files\Adobe\Installers\7328fdfcb73660ec8b11d5a3d5c6232\Setup.exe
Adobe Dreamweaver CS3 --> MsiExec.exe /I{7C10F5C7-F00F-4BD3-A110-C7D240D2DD25}
Adobe ExtendScript Toolkit 2 --> C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2 --> MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Extension Manager CS3 --> MsiExec.exe /I{BE5F3842-8309-4754-92D5-83E02E6077A3}
Adobe Fireworks CS3 --> C:\Program Files\Common Files\Adobe\Installers\bbef028176efa5abf0233d3e1747be8\Setup.exe
Adobe Fireworks CS3 --> MsiExec.exe /I{7DFC1012-D346-46CE-B03E-FF79125AE029}
Adobe Flash CS3 --> MsiExec.exe /I{6B52140A-F189-4945-BFFC-DB3F00B8C589}
Adobe Flash CS3 Professional --> C:\Program Files\Common Files\Adobe\Installers\c3c7fe8b09d497ab2b3fd91c9353390\Setup.exe
Adobe Flash Player 9 ActiveX --> MsiExec.exe /X{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}
Adobe Flash Player 9 Plugin --> MsiExec.exe /X{88D422DB-E9C7-4E16-9D80-2999F4FD6AD9}
Adobe Flash Video Encoder --> MsiExec.exe /I{2EFFFC71-1E66-454E-A6E6-CEEC800B96D2}
Adobe Fonts All --> MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3 --> MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3 --> MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files --> MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3 --> C:\Program Files\Common Files\Adobe\Installers\2ac78060bc5856b0c1cf873bb919b58\Setup.exe
Adobe Photoshop CS3 --> MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05}
Adobe Reader 7.0.9 - Português --> MsiExec.exe /I{AC76BA86-7AD7-1046-7B44-A70900000002}
Adobe Setup --> MsiExec.exe /I{0650BB10-BCF4-400A-85EE-04097E3046C6}
Adobe Setup --> MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup --> MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
Adobe Setup --> MsiExec.exe /I{C92A5A89-B218-46F7-8898-77C52113FFE0}
Adobe Setup --> MsiExec.exe /I{D1BB4446-AE9C-4256-9A7F-4D46604D2462}
Adobe Setup --> MsiExec.exe /I{FFC1ADE3-944B-4231-894E-3903C37271D2}
Adobe Stock Photos CS3 --> MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support --> MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3 --> MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client --> MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin --> MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3 --> MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Arquivo do WinRAR --> C:\Program Files\WinRAR\uninstall.exe
Assistente de Conexão do Windows Live --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Bluetooth Stack for Windows by Toshiba --> MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Camera Assistant Software for Toshiba --> C:\Program Files\InstallShield Installation Information\{37C866E4-AA67-4725-9E95-A39968DD7960}\setup.exe -runfromtemp -l0x0816
Catalyst Control Center - Branding --> MsiExec.exe /I{BC1ADEAD-99F1-4707-B31B-CDB222D5BB68}
Championship Manager 2008 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2F4E2C8A-B886-418E-BE49-0B867CBDA959}\Setup.exe" -l0x9 -removeonly
DVD MovieFactory for TOSHIBA --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x816
Emdedded IR Driver --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{A6D4234C-CB02-4048-AC3E-AD09404FA35A}
Half-Life® 2 --> MsiExec.exe /I{D45EC259-4A19-4656-B588-C2C360DD18EA}
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Intel® Turbo Memory e Intel Matrix Storage Manager --> C:\Windows\system32\imsmudlg.exe -uninstall
Java™ SE Runtime Environment 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
K-Lite Codec Pack 3.9.5 (Full) --> "C:\Program Files\K-Lite Codec Pack\unins000.exe"
Magic ISO Maker v5.4 (build 0256) --> C:\PROGRA~1\MagicISO\UNWISE.EXE C:\PROGRA~1\MagicISO\INSTALL.LOG
Maxon C4D Studio Bundle v9.012 --> C:\PROGRA~1\C4DSTU~1.012\UNWISE.EXE C:\PROGRA~1\C4DSTU~1.012\INSTALL.LOG
Microsoft Office Standard Edition 2003 --> MsiExec.exe /I{90120816-6000-11D3-8CFE-0150048383C9}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (2.0.0.15) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
PDF Settings --> MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
QuickTime --> MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista --> C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0816 -removeonly
Realtek High Definition Audio Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x816 -removeonly
Security Update for CAPICOM (KB931906) --> MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906) --> MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Silenciador Acúst. Unid. CD/DVD --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x816
Steam™ --> MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Synaptics Pointing Device Driver --> rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TeamSpeak 2 RC2 --> "C:\Program Files\Teamspeak2_RC2\unins000.exe"
Texas Instruments PCIxx21/x515/xx12 drivers. --> C:\Program Files\InstallShield Installation Information\{DB780B85-B4B5-4864-A49C-9B706B169C93}\setup.exe -runfromtemp -l0x0416
TOSHIBA Assist --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\setup.exe" -l0x816
TOSHIBA ConfigFree --> C:\Program Files\InstallShield Installation Information\{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}\setup.exe -runfromtemp -l0x0816 uninstall
TOSHIBA Disc Creator --> MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0}
TOSHIBA DVD PLAYER --> C:\Program Files\InstallShield Installation Information\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}\setup.exe -runfromtemp -l0x0816 -ADDREMOVE -removeonly
TOSHIBA Extended Tiles for Windows Mobility Center --> C:\Program Files\InstallShield Installation Information\{617C36FD-0CBE-4600-84B2-441CEB12FADF}\setup.exe -runfromtemp -l0x0816
TOSHIBA Flash Cards Support Utility --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{620BBA5E-F848-4D56-8BDA-584E44584C5E}
TOSHIBA Hardware Setup --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l2070
Toshiba Online Product Information --> C:\Program Files\InstallShield Installation Information\{2290A680-4083-410A-ADCC-7092C67FC052}\setup.exe -runfromtemp -l0x0816 -removeonly
TOSHIBA Palavra-passe do supervisor --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l2070
TOSHIBA SD Memory Utilities --> MsiExec.exe /X{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}
TOSHIBA Software Modem --> Tosmreg -U
TOSHIBA Value Added Package --> C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x0816
VobSub v2.23 (Remove Only) --> "C:\Program Files\Gabest\VobSub\uninstall.exe"
Windows Live installer --> MsiExec.exe /X{3A417047-2E30-4D05-8977-F706D40BFF39}
Windows Live Messenger --> MsiExec.exe /X{8EADB73B-026D-4978-A8F0-1EEF5E1ECEC7}
Windows Media Encoder 9 Series --> msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Windows Media Encoder 9 Series --> MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
WinZip 11.2 --> MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B6}
-- Application Event Log -------------------------------------------------------
Event Record #/Type4546 / Success
Event Submitted/Written: 07/09/2008 11:55:24 PM
Event ID/Source: 5617 / WinMgmt
Event Description:
Event Record #/Type4545 / Success
Event Submitted/Written: 07/09/2008 11:55:24 PM
Event ID/Source: 5615 / WinMgmt
Event Description:
Event Record #/Type4542 / Error
Event Submitted/Written: 07/09/2008 11:55:15 PM
Event ID/Source: 3003 / WinDefendRtp
Event Description:
O ponto de verificação da Protecção em Tempo Real %_LnkPc27 encontrou um erro e não foi iniciado.
Utilizador: _LnkPc\Lnk
ID do Ponto de Verificação: 1
Código de Erro: 0x80070005
Descrição do Erro: Acesso negado.
Event Record #/Type4541 / Success
Event Submitted/Written: 07/09/2008 11:55:09 PM
Event ID/Source: 902 / Software Licensing Service
Event Description:
O serviço de Licenciamento de Software foi iniciado.
Event Record #/Type4530 / Success
Event Submitted/Written: 07/09/2008 11:53:41 PM
Event ID/Source: 903 / Software Licensing Service
Event Description:
O serviço de Licenciamento de Software parou.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type19844 / Warning
Event Submitted/Written: 07/09/2008 11:58:57 PM
Event ID/Source: 3004 / WinDefend
Event Description:
O agente de Protecção em Tempo Real %_LnkPc27 detectou alterações. A Microsoft recomenda a análise do software que efectuou estas alterações para a detecção de riscos potenciais. Pode utilizar as informações sobre a forma como estes programas funcionam para permitir a sua execução ou para os remover do computador. Só permita as alterações se o programa ou o fabricante do software for fidedigno. %_LnkPc27 não consegue anular as alterações permitidas.
Para mais informações, consulte o seguinte:
%_LnkPc275
ID de Análise: {687EE14F-2E14-4BB5-ABFA-4F4E7E1D7ABB}
Utilizador: _LnkPc\Lnk
Nome: %_LnkPc271
ID: %_LnkPc272
ID de Gravidade: %_LnkPc273
ID de Categoria: %_LnkPc274
Caminho Localizado: %_LnkPc276
Tipo de Alerta: %_LnkPc278
Tipo de Detecção: 1.1.1505.02
Event Record #/Type19843 / Warning
Event Submitted/Written: 07/09/2008 11:58:57 PM
Event ID/Source: 3004 / WinDefend
Event Description:
O agente de Protecção em Tempo Real %_LnkPc27 detectou alterações. A Microsoft recomenda a análise do software que efectuou estas alterações para a detecção de riscos potenciais. Pode utilizar as informações sobre a forma como estes programas funcionam para permitir a sua execução ou para os remover do computador. Só permita as alterações se o programa ou o fabricante do software for fidedigno. %_LnkPc27 não consegue anular as alterações permitidas.
Para mais informações, consulte o seguinte:
%_LnkPc275
ID de Análise: {3BA32636-FBD6-4387-8BE4-4406AC16F7BD}
Utilizador: _LnkPc\Lnk
Nome: %_LnkPc271
ID: %_LnkPc272
ID de Gravidade: %_LnkPc273
ID de Categoria: %_LnkPc274
Caminho Localizado: %_LnkPc276
Tipo de Alerta: %_LnkPc278
Tipo de Detecção: 1.1.1505.02
Event Record #/Type19842 / Warning
Event Submitted/Written: 07/09/2008 11:58:57 PM
Event ID/Source: 3004 / WinDefend
Event Description:
O agente de Protecção em Tempo Real %_LnkPc27 detectou alterações. A Microsoft recomenda a análise do software que efectuou estas alterações para a detecção de riscos potenciais. Pode utilizar as informações sobre a forma como estes programas funcionam para permitir a sua execução ou para os remover do computador. Só permita as alterações se o programa ou o fabricante do software for fidedigno. %_LnkPc27 não consegue anular as alterações permitidas.
Para mais informações, consulte o seguinte:
%_LnkPc275
ID de Análise: {781948C5-0D9C-46B2-BA08-0E3BC1104A39}
Utilizador: _LnkPc\Lnk
Nome: %_LnkPc271
ID: %_LnkPc272
ID de Gravidade: %_LnkPc273
ID de Categoria: %_LnkPc274
Caminho Localizado: %_LnkPc276
Tipo de Alerta: %_LnkPc278
Tipo de Detecção: 1.1.1505.02
Event Record #/Type19841 / Warning
Event Submitted/Written: 07/09/2008 11:58:54 PM
Event ID/Source: 3004 / WinDefend
Event Description:
O agente de Protecção em Tempo Real %_LnkPc27 detectou alterações. A Microsoft recomenda a análise do software que efectuou estas alterações para a detecção de riscos potenciais. Pode utilizar as informações sobre a forma como estes programas funcionam para permitir a sua execução ou para os remover do computador. Só permita as alterações se o programa ou o fabricante do software for fidedigno. %_LnkPc27 não consegue anular as alterações permitidas.
Para mais informações, consulte o seguinte:
%_LnkPc275
ID de Análise: {57ACEB91-AC96-44A3-A7D4-3F2FF8B6DF21}
Utilizador: _LnkPc\Lnk
Nome: %_LnkPc271
ID: %_LnkPc272
ID de Gravidade: %_LnkPc273
ID de Categoria: %_LnkPc274
Caminho Localizado: %_LnkPc276
Tipo de Alerta: %_LnkPc278
Tipo de Detecção: 1.1.1505.02
Event Record #/Type19840 / Warning
Event Submitted/Written: 07/09/2008 11:58:54 PM
Event ID/Source: 3004 / WinDefend
Event Description:
O agente de Protecção em Tempo Real %_LnkPc27 detectou alterações. A Microsoft recomenda a análise do software que efectuou estas alterações para a detecção de riscos potenciais. Pode utilizar as informações sobre a forma como estes programas funcionam para permitir a sua execução ou para os remover do computador. Só permita as alterações se o programa ou o fabricante do software for fidedigno. %_LnkPc27 não consegue anular as alterações permitidas.
Para mais informações, consulte o seguinte:
%_LnkPc275
ID de Análise: {DAAB4EC3-DAC9-4CB5-B9E1-A30E9B893DCC}
Utilizador: _LnkPc\Lnk
Nome: %_LnkPc271
ID: %_LnkPc272
ID de Gravidade: %_LnkPc273
ID de Categoria: %_LnkPc274
Caminho Localizado: %_LnkPc276
Tipo de Alerta: %_LnkPc278
Tipo de Detecção: 1.1.1505.02
-- End of Deckard's System Scanner: finished at 2008-07-09 23:59:35 ------------
This topic is locked
Sign In
Create Account
