[Resolvido!]Generic3.VHS e Generic6.ENC

.:DoDs:. · Abril 28, 2007

Bom, tem uns 3 dias que o AVG tem identificado um tal de Trojan Horse Generic3.VHS e Trojan Horse BackDoor.Generic6.ENCDepois de rodar o anti-vírus e aparentemente apagar os arquivos, sempre que o computador é reiniciado ele volta! Logfile do Hijack:Logfile of Trend Micro HijackThis v2.0.0 (BETA)Scan saved at 09:42:42, on 28/4/2007Platform: Windows XP (WinNT 5.01.2600)Boot mode: NormalRunning processes:H:\WINDOWS\System32\smss.exeH:\WINDOWS\system32\winlogon.exeH:\WINDOWS\system32\services.exeH:\WINDOWS\system32\lsass.exeH:\WINDOWS\system32\svchost.exeH:\WINDOWS\System32\svchost.exeH:\WINDOWS\Explorer.EXEH:\WINDOWS\system32\spoolsv.exeH:\ARQUIV~1\Grisoft\AVG7\avgcc.exeH:\Arquivos de programas\iTunes\iTunesHelper.exeH:\WINDOWS\System32\RunDll32.exeH:\Arquivos de programas\Java\jre1.5.0_03\bin\jusched.exeH:\WINDOWS\System32\ctfmon.exeH:\Arquivos de programas\MSN Messenger\msnmsgr.exeH:\Arquivos de programas\Skype\Phone\Skype.exeH:\Arquivos de programas\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exeH:\Arquivos de programas\WinZip\WZQKPICK.EXEH:\ARQUIV~1\Grisoft\AVG7\avgamsvr.exeH:\ARQUIV~1\Grisoft\AVG7\avgupsvc.exeH:\ARQUIV~1\Grisoft\AVG7\avgemc.exeH:\Arquivos de programas\Skype\Plugin Manager\skypePM.exeH:\Arquivos de programas\iPod\bin\iPodService.exeH:\Arquivos de programas\Internet Explorer\iexplore.exeH:\Arquivos de programas\Mozilla Firefox\firefox.exeH:\Arquivos de programas\HijackThis\HiJackThis_v2.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - H:\ARQUIV~1\SPYBOT~1\SDHelper.dllO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - h:\arquivos de programas\google\googletoolbar1.dllO3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - h:\arquivos de programas\google\googletoolbar1.dllO3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - H:\WINDOWS\System32\msdxm.ocxO4 - HKLM\..\Run: [AVG7_CC] H:\ARQUIV~1\Grisoft\AVG7\avgcc.exe /STARTUPO4 - HKLM\..\Run: [iTunesHelper] "H:\Arquivos de programas\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWndO4 - HKLM\..\Run: [sunJavaUpdateSched] H:\Arquivos de programas\Java\jre1.5.0_03\bin\jusched.exeO4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\ctfmon.exeO4 - HKCU\..\Run: [msnmsgr] "H:\Arquivos de programas\MSN Messenger\msnmsgr.exe" /backgroundO4 - HKCU\..\Run: [skype] "H:\Arquivos de programas\Skype\Phone\Skype.exe" /nosplash /minimizedO4 - HKCU\..\Run: [swg] H:\Arquivos de programas\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [MSMSGS] "H:\Arquivos de programas\Messenger\msmsgs.exe" /backgroundO4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] H:\ARQUIV~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\System32\CTFMON.EXE (User 'Default user')O4 - Global Startup: Adobe Gamma Loader.lnk = H:\Arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: WinZip Quick Pick.lnk = H:\Arquivos de programas\WinZip\WZQKPICK.EXEO14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.aspO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLLO22 - SharedTaskScheduler: Pré-carregador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\System32\browseui.dllO22 - SharedTaskScheduler: Daemon de cache de categorias de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\System32\browseui.dllO23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - H:\ARQUIV~1\Grisoft\AVG7\avgamsvr.exeO23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - H:\ARQUIV~1\Grisoft\AVG7\avgupsvc.exeO23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - H:\ARQUIV~1\Grisoft\AVG7\avgemc.exeO23 - Service: Google Updater Service (gusvc) - Google - H:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: iPod Service - Apple Inc. - H:\Arquivos de programas\iPod\bin\iPodService.exeAlguém sabe como se livrar dessa praga? Obrigado!

jgarcia · Abril 28, 2007

Opa .:DoDs:.,

Execute o Active Scan da Panda e retorne com o resultado.

Abraços.

.:DoDs:. · Abril 29, 2007

Detected Disinfected

Virus 1 1

Spyware 254 0

Hacking tools and rootkits 2 0

Dialers 0 0

Security Risks 0 0

Suspicious files 0 0

Incident Status Location

Adware:Adware/Lop Not disinfected C:\Documents and Settings\All Users\Dados de aplicativos\save load jump close\AdminLicense.exe

Spyware:Cookie/Tucows Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@tucows[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@com[2].txt

Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@c2.gostats[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@ig.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@terra.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@uol.com[3].txt

Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@toplist[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@terra.com[2].txt

Spyware:Cookie/Ccbill Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@ccbill[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@com[3].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@go[1].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@admotion.com[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@atwola[1].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@xiti[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@uol.com[2].txt

Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@azjmp[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@ig.com[2].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@yadro[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@ig.com[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marcus\Cookies\marcus@ig.com[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@terra.com[2].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@ig.com[1].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@xiti[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@com[1].txt

Spyware:Cookie/64.62.232 Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@64.62.232[1].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@yadro[2].txt

Spyware:Cookie/fe.lea.lycos Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@fe.lea.lycos[1].txt

Spyware:Cookie/Outster Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@outster[2].txt

Spyware:Cookie/Santa Monica networks inc Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@smni[2].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[6].txt

Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@c2.gostats[2].txt

Spyware:Cookie/E-eliminator Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@evidence-eliminator[1].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@xiti[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[6].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@go[1].txt

Spyware:Cookie/Tucows Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@tucows[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@com[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@ig.com[3].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@admotion.com[2].txt

Spyware:Cookie/web-stat Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@www.web-stat[2].txt

Spyware:Cookie/Buzztone Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@www.buzztone[1].txt

Spyware:Cookie/Banner Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@banner[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[7].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[8].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@xiti[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@terra.com[3].txt

Spyware:Cookie/myaffiliateprogram Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@myaffiliateprogram[2].txt

Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@burstnet[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@com[2].txt

Spyware:Cookie/Kmpads Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@kmpads[1].txt

Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@azjmp[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[3].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@yadro[1].txt

Spyware:Cookie/3 Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@3[2].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@dist.belnk[3].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[1].txt

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@rightmedia[2].txt

Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@burstnet[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@de.uol.com[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@dist.belnk[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@ig.com[5].txt

Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@azjmp[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@ig.com[2].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@xiti[3].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@admotion.com[3].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@cgi-bin[7].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[4].txt

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@rightmedia[1].txt

Spyware:Cookie/NewMedia Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@anm.co[2].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@cgi-bin[8].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[9].txt

Spyware:Cookie/Kmpads Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@kmpads[3].txt

Spyware:Cookie/myaffiliateprogram Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@myaffiliateprogram[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@belnk[1].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@yadro[4].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@admotion.com[1].txt

Spyware:Cookie/web-stat Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@www.web-stat[3].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@yadro[5].txt

Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@adopt.hbmediapro[3].txt

Spyware:Cookie/64.62.232 Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@64.62.232[9].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@cgi-bin[5].txt

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@rightmedia[4].txt

Spyware:Cookie/Barelylegal Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@c.fsx[1].txt

Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@toplist[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@image.checkmystats.com[2].txt

Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@adopt.hbmediapro[2].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@ath.belnk[2].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@belnk[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@ig.com[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@terra.com[6].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@admotion.com[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[5].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[1].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@go[2].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@yadro[6].txt

Spyware:Cookie/Kmpads Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@kmpads[2].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@dist.belnk[2].txt

Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@winfixer[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@dist.belnk[4].txt

Spyware:Cookie/Outster Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@outster[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@terra.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@uol.com[7].txt

Spyware:Cookie/fe.lea.lycos Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@fe.lea.lycos[5].txt

Spyware:Cookie/Kmpads Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@kmpads[4].txt

Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@adopt.hbmediapro[4].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@admotion.com[6].txt

Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@burstnet[2].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@go[4].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@cgi-bin[6].txt

Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@azjmp[1].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@cgi-bin[4].txt

Spyware:Cookie/Rn11 Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@rn11[2].txt

Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@www.burstbeacon[1].txt

Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@stats1.reliablestats[1].txt

Spyware:Cookie/NewMedia Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@anm.co[3].txt

Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@yadro[3].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Cookies\dominique@atwola[5].txt

Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[ad.yieldmanager.com/]

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.terra.com.br/]

Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.burstnet.com/]

Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.bravenet.com/]

Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.statcounter.com/]

Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.weborama.fr/]

Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[server.iad.liveperson.net/hc/81901879]

Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[server.iad.liveperson.net/]

Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.casalemedia.com/]

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.ig.com.br/]

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.xiti.com/]

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.atwola.com/]

Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[.revenue.net/]

Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Dominique\Dados de aplicativos\Mozilla\Firefox\Profiles\hys4ncvy.default\COOKIES.TXT[searchportal.information.com/]

Adware:Adware/Lop Not disinfected C:\Documents and Settings\Julia\Configurações locais\Temp\staC.exe

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ig.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@terra.com[1].txt

Spyware:Cookie/888 Not disinfected C:\Documents and Settings\Julia\Cookies\julia@888[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@uol.com[4].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Julia\Cookies\julia@atwola[1].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Julia\Cookies\julia@go[1].txt

Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ehg-dig.hitbox[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ig.com[3].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Julia\Cookies\julia@xiti[1].txt

Spyware:Cookie/888 Not disinfected C:\Documents and Settings\Julia\Cookies\julia@888[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@uol.com[1].txt

Spyware:Cookie/Lop Not disinfected C:\Documents and Settings\Julia\Cookies\julia@lop[2].txt

Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Julia\Cookies\julia@www.winantivirus[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Julia\Cookies\julia@atwola[2].txt

Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ehg-dig.hitbox[2].txt

Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\Julia\Cookies\julia@stats1.reliablestats[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@de.uol.com[1].txt

Spyware:Cookie/fe.lea.lycos Not disinfected C:\Documents and Settings\Julia\Cookies\julia@fe.lea.lycos[2].txt

Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\Julia\Cookies\julia@winfixer[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Julia\Cookies\julia@dist.belnk[1].txt

Spyware:Cookie/Cassava Not disinfected C:\Documents and Settings\Julia\Cookies\julia@cassava[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Julia\Cookies\julia@atwola[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@uol.com[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ig.com[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ig.com[4].txt

Spyware:Cookie/seeqA Not disinfected C:\Documents and Settings\Julia\Cookies\julia@www.seeq[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Julia\Cookies\julia@dist.belnk[2].txt

Spyware:Cookie/Rn11 Not disinfected C:\Documents and Settings\Julia\Cookies\julia@rn11[2].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Julia\Cookies\julia@atwola[5].txt

Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ehg-dig.hitbox[3].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Julia\Cookies\julia@ath.belnk[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Julia\Cookies\julia@uol.com[2].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Julia\Cookies\julia@belnk[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Julia\Cookies\julia@dist.belnk[4].txt

Adware:Adware/Lop Not disinfected C:\Documents and Settings\Julia\Dados de aplicativos\bird hope byte\DRAWJUGS.EXE

Adware:Adware/Lop Not disinfected C:\Documents and Settings\Julia\Dados de aplicativos\bird hope byte\GMEYTWDZ.EXE

Adware:Adware/Lop Not disinfected C:\Documents and Settings\Julia\Dados de aplicativos\bird hope byte\MEALSOFTFOR.exe

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Configurações locais\Temp\Cookies\camila@uol.com[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Configurações locais\Temp\Cookies\camila@de.uol.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@terra.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[2].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Camila\Cookies\camila@atwola[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@ig.com[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@ig.com[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@com[2].txt

Spyware:Cookie/Paypopup Not disinfected C:\Documents and Settings\Camila\Cookies\camila@paypopup[2].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Camila\Cookies\camila@atwola[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@de.uol.com[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Camila\Cookies\camila@dist.belnk[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@terra.com[3].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Camila\Cookies\camila@atwola[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@terra.com[2].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Camila\Cookies\camila@admotion.com[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@ig.com[3].txt

Spyware:Cookie/Paypopup Not disinfected C:\Documents and Settings\Camila\Cookies\camila@paypopup[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Camila\Cookies\camila@belnk[1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Camila\Cookies\camila@dist.belnk[2].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Camila\Cookies\camila@admotion.com[1].txt

Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Camila\Cookies\camila@adopt.hbmediapro[2].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Camila\Cookies\camila@atwola[5].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Camila\Cookies\camila@dist.belnk[4].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[5].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@ig.com[4].txt

Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\Camila\Cookies\camila@stats1.reliablestats[1].txt

Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Camila\Cookies\camila@errorsafe[2].txt

Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Camila\Cookies\camila@www.errorsafe[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[7].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[6].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Camila\Cookies\camila@uol.com[8].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Camila\Cookies\camila@cgi-bin[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dine\Cookies\dine@terra.com[1].txt

Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Dine\Cookies\dine@xiti[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dine\Cookies\dine@com[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dine\Cookies\dine@uol.com[1].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Dine\Cookies\dine@go[1].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dine\Cookies\dine@de.uol.com[1].txt

Spyware:Cookie/Admotion Not disinfected C:\Documents and Settings\Dine\Cookies\dine@admotion.com[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dine\Cookies\dine@atwola[1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Dine\Cookies\dine@atwola[2].txt

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Dine\Cookies\dine@ig.com[2].txt

Spyware:Cookie/RealMedia Not disinfected H:\Documents and Settings\Dodo\Cookies\dodo@247realmedia[1].txt

Spyware:Cookie/2o7 Not disinfected H:\Documents and Settings\Dodo\Cookies\dodo@2o7[1].txt

Spyware:Cookie/Falkag Not disinfected H:\Documents and Settings\Dodo\Cookies\dodo@as-eu.falkag[1].txt

Spyware:Cookie/Atwola Not disinfected H:\Documents and Settings\Dodo\Cookies\dodo@atwola[1].txt

Spyware:Cookie/Comclick Not disinfected H:\Documents and Settings\Dodo\Cookies\dodo@fl01.ct2.comclick[1].txt

Spyware:Cookie/Atlas DMT Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.atdmt.com/]

Spyware:Cookie/Doubleclick Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.doubleclick.net/]

Spyware:Cookie/2o7 Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.2o7.net/]

Spyware:Cookie/Mammamediasolutions Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.targetnet.com/]

Spyware:Cookie/BurstNet Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.burstnet.com/]

Spyware:Cookie/bravenetA Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.bravenet.com/]

Spyware:Cookie/BurstBeacon Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.www.burstbeacon.com/]

Spyware:Cookie/Com.com Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.uol.com.br/]

Spyware:Cookie/FastClick Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.fastclick.net/]

Spyware:Cookie/PointRoll Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.ads.pointroll.com/]

Spyware:Cookie/Atwola Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.atwola.com/]

Spyware:Cookie/Serving-sys Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.bs.serving-sys.com/]

Spyware:Cookie/Com.com Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.de.uol.com.br/]

Spyware:Cookie/Go Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.go.com/]

Spyware:Cookie/GoStats Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.gostats.com/]

Spyware:Cookie/Com.com Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.ig.com.br/]

Spyware:Cookie/Overture Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.overture.com/]

Spyware:Cookie/Overture Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.perf.overture.com/]

Spyware:Cookie/QuestionMarket Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.questionmarket.com/]

Spyware:Cookie/RealMedia Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.realmedia.com/]

Spyware:Cookie/WUpd Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.revenue.net/]

Spyware:Cookie/Searchportal Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.searchportal.information.com/]

Spyware:Cookie/Server.iad.Liveperson Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.server.iad.liveperson.net/]

Spyware:Cookie/Server.iad.Liveperson Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.server.iad.liveperson.net/hc/LPpacificsunwear]

Spyware:Cookie/Serving-sys Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.serving-sys.com/]

Spyware:Cookie/Com.com Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.terra.com.br/]

Spyware:Cookie/Tribalfusion Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.tribalfusion.com/]

Spyware:Cookie/Tucows Not disinfected H:\Documents and Settings\Dodo\Dados de aplicativos\Mozilla\Firefox\Profiles\u0310q5c.default\cookies.txt[.tucows.com/]

Hacktool:Rootkit/NTRootkit.AI Not disinfected H:\WINDOWS\system32\drivers\ip6fw.sys

Hacktool:Rootkit/NTRootkit.AI Not disinfected H:\WINDOWS\system32\main.sys

Virus:W32/Patchlog.B Disinfected H:\WINDOWS\system32\winlogon.exe

fiz upload no rapidshare do documento txt, caso ficasse dificil de ver os resultados aqui...

http://rapidshare.com/files/28584924/Activescan.txt.html

jgarcia · Abril 29, 2007

Opa .:DoDs:.,

Vamos lá.

Habilite o Windows para mostrar todos os arquivos (até ocultos).

1ª Etapa

Baixe o CCleaner em:

CCleaner

Baixe, mas não execute ainda.

Baixe o Killbox em:

Killbox

1. Execute o Killbox, clique em Delete on Reboot.

2. Copie a lista abaixo em negrito para a área de transferência. Selecione tudo com o auxílio do mouse --> vá até a aba Editar na barra do navegador --> clique em Copiar.

C:\Documents and Settings\All Users\Dados de aplicativos\save load jump close\AdminLicense.exe

H:\WINDOWS\system32\drivers\ip6fw.sys

H:\WINDOWS\system32\main.sys

3. Retorne ao Killbox. Clique em File > Paste from clipboard. Clique em All Files.

4. Aperte em "X". Responda "não" à pergunta.

2ª Etapa

Reinicie em Modo Normal.

Localize e delete:

C:\Documents and Settings\All Users\Dados de aplicativos\save load jump close <- a pasta

Delete o conteúdo da pasta C:\!Killbox.

Execute o CCleaner e clique em Executar Cleaner.

Execute o Active Scan novamente e veja se ainda detecta algo.

Aguardo retorno.

Um abraço.

.:DoDs:. · Abril 30, 2007

Não identificou mais nada! Muitíssimo obrigada!!!

jgarcia · Abril 30, 2007

Opa .:DoDs:.,

Para finalizar:

1. Desabilite e Reabilite a função de Restauração Automática do XP. Clique aqui para ver como;

2. Atualize o seu Sistema Operacional urgentemente.

Para que tenha uma idéia, já foram lançados 02 (dois) grandes pacotes de atualização (SP1 e SP2) e você não possui sequer o primeiro deles instalado. Utilize o Windows UpDate contido no menu Iniciar ou solicite o CD SP2 a um amigo (melhor opção).

Abraços.

.:DoDs:. · Maio 1, 2007

Obrigada pela sugestão, já estou providenciando! É pq o hd é novo, então eu acabei de instalar o windows, por isso está sem nenhuma atualização ainda. :D

jgarcia · Maio 1, 2007

PROBLEMA RESOLVIDO!

Caso o autor necessite que o tópico seja reaberto é necessário enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Arquivado

[Resolvido!]Generic3.VHS e Generic6.ENC

Recommended Posts

.:DoDs:. 0

Compartilhar este post

Link para o post

Compartilhar em outros sites

jgarcia 1

Compartilhar este post

Link para o post

Compartilhar em outros sites

.:DoDs:. 0

Compartilhar este post

Link para o post

Compartilhar em outros sites

jgarcia 1

Compartilhar este post

Link para o post

Compartilhar em outros sites

.:DoDs:. 0

Compartilhar este post

Link para o post

Compartilhar em outros sites

jgarcia 1

Compartilhar este post

Link para o post

Compartilhar em outros sites

.:DoDs:. 0

Compartilhar este post

Link para o post

Compartilhar em outros sites

jgarcia 1

Compartilhar este post

Link para o post

Compartilhar em outros sites

Fixar div até atingir uma certa altura

Ajuda com Extends e envio para o banco

PHP+Codeginiter - Orientação para Impressão

Fóruns

Tempo Real

Informação importante