Poma 0 Denunciar post Postado Maio 7, 2007 Ao me logar no windows recebo várias mensagens de que o Explorer.EXE encontrou um problema e será fechado. E ao abrir o Windows Explorer, recebo várias (umas 10) mensagens a respeito do albumdb2.exe ter encontrado um problema e precisa ser fechado. Abaixo segue o log do HijackThis. Obrigado..... Logfile of HijackThis v1.99.1 Scan saved at 21:20:32, on 6/5/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\spoolsv.exe C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\WINDOWS\system32\CTsvcCDA.EXE C:\WINDOWS\system32\E_S00RP1.EXE C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE C:\ARQUIV~1\AT&TNE~1\NetCfgSv.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Arquivos de programas\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\HHVcdV6Sys\VC6SecS.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Analog Devices\SoundMAX\SMTray.exe C:\WINDOWS\system32\VTTimer.exe C:\WINDOWS\system32\dwwin.exe C:\Arquivos de programas\Ahead\InCD\InCD.exe C:\Arquivos de programas\HHVcdV6Sys\VC6Play.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Arquivos de programas\D-Link\D-Link USB Phone Adapter\DPH-50U Utility.exe C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktop.exe C:\Arquivos de programas\Picasa2\PicasaMediaDetector.exe C:\Arquivos de programas\Winamp\winampa.exe C:\Arquivos de programas\QuickTime\qttask.exe C:\Arquivos de programas\iTunes\iTunesHelper.exe C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\Arquivos de programas\FreePDF_XP\fpassist.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Arquivos de programas\Shareaza\Shareaza.exe C:\Arquivos de programas\Uniblue\RegistryBooster2\RegistryBooster.exe C:\Arquivos de programas\MSN Messenger\msnmsgr.exe C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe C:\WINDOWS\system32\rundll32.exe C:\Arquivos de programas\iPod\bin\iPodService.exe C:\Arquivos de programas\Virtual CD v6\System\VC6Tray.exe C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\Arquivos de programas\BitLord\BitLord.exe C:\Arquivos de programas\Mozilla Firefox\firefox.exe C:\Program Files\Needed-Files-Downloader\Needed Files Downloader 4.0.exe C:\Arquivos de programas\Internet Explorer\iexplore.exe C:\Arquivos de programas\WinRAR\WinRAR.exe C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\DOCUME~1\Tiago\CONFIG~1\Temp\Rar$EX26.313\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\arquivos de programas\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\2.0.301.3558\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\arquivos de programas\google\googletoolbar4.dll O4 - HKLM\..\Run: [smapp] C:\Arquivos de programas\Analog Devices\SoundMAX\SMTray.exe O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [ink Monitor] C:\Arquivos de programas\EPSON\Ink Monitor\InkMonitor.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [inCD] C:\Arquivos de programas\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [VC6Player] C:\Arquivos de programas\HHVcdV6Sys\VC6Play.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Arquivos de programas\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [TLinkAgent] C:\Arquivos de programas\D-Link\D-Link USB Phone Adapter\DPH-50U Utility.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [Picasa Media Detector] C:\Arquivos de programas\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [WinampAgent] C:\Arquivos de programas\Winamp\winampa.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Arquivos de programas\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Arquivos de programas\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [AVP] "C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" O4 - HKLM\..\Run: [FreePDF Assistant] C:\Arquivos de programas\FreePDF_XP\fpassist.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [LDM] \Program\BackWeb-8876480.exe O4 - HKCU\..\Run: [NBJ] "C:\Arquivos de programas\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [shareaza] "C:\Arquivos de programas\Shareaza\Shareaza.exe" -tray O4 - HKCU\..\Run: [uniblue Registry Booster2] C:\Arquivos de programas\Uniblue\RegistryBooster2\RegistryBooster.exe /S O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles\916e7q14.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles/916e7q14.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Google Updater.lnk = C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe O4 - Global Startup: Microsoft Office.lnk = C:\Arquivos de programas\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Add to Anti-Banner - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/...nSSWebAgent.CAB O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab O16 - DPF: {2AF5BD25-90C5-4EEC-88C5-B44DC2905D8B} (DownloadManager Control) - http://dlmanager.akamaitools.com.edgesuite...vex-2.0.6.0.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by114fd.bay114.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1142422299000 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {D9CE2963-8547-4C18-A4CE-DA27278310D8} (Instalador Remoto UOL) - http://download.uol.com.br/discadorUOL/lig...tiveInstall.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL,C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL,C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL,C:\ARQUIV~1\KASPER~1\KASPER~3.0\adialhk.dll C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing) O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE O23 - Service: EPSON V3 Service2(03) (EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION - C:\WINDOWS\system32\E_S00RP1.EXE O23 - Service: GoogleDesktopManager - Google - C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktopManager.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Arquivos de programas\Arquivos comuns\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Arquivos de programas\Ahead\InCD\InCDsrv.exe O23 - Service: iPod Service - Apple Inc. - C:\Arquivos de programas\iPod\bin\iPodService.exe O23 - Service: Network Configuration Service (NetCfgSvr) - AT&T - C:\ARQUIV~1\AT&TNE~1\NetCfgSv.EXE O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Arquivos de programas\Arquivos comuns\Symantec Shared\SNDSrvc.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Arquivos de programas\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Virtual CD v6 Management Service (VC6SecS) - H+H Software GmbH - C:\Arquivos de programas\HHVcdV6Sys\VC6SecS.exe Compartilhar este post Link para o post Compartilhar em outros sites
jgarcia 1 Denunciar post Postado Maio 8, 2007 Opa Poma, 1. Baixe o BankerFix. 2. Desative o seu anti-vírus temporariamente. 3. Dê um duplo-clique sobre o bankerfix.exe. Uma mensagem aparecerá avisando que o mesmo será baixado via internet. Clique em Ok -> Ok. Aperte Enter e aguarde o término do scan. 4. Terminado o scan, leia a mensagem na tela e aperte Enter novamente. 5. Habilite o seu anti-vírus. 6. Retorne com um novo log do HijackThis, juntamente com o relatorio.txt do BankerFix (ele estará em C:\LinhaDefensiva\). 7. Depois de postar a sua resposta você poderá deletar a pasta LinhaDefensiva contida no C. Abraços. Compartilhar este post Link para o post Compartilhar em outros sites
Poma 0 Denunciar post Postado Maio 9, 2007 Oi Jgarcia. Obrigado pela ajuda... Seguem o Relatório do BankerFix: BankerFix 2.3 - Removedor de Bankers Linha Defensiva - http://www.linhadefensiva.org http://www.linhadefensiva.org/bankerfix/ Data: 9/5/2007 - 18:25 ------------------------------------------------------- Lista de Definição: 2007-05-04-1 ======================================================= Log do FoxFix ======================================================= Iniciando Log do PV ----------------------------------- Killing '*' Arquivos a remover ----------------------------------- Arquivos ruins restantes ----------------------------------- Reg Importado ----------------------------------- REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] E o novo log do HijackThis: Logfile of HijackThis v1.99.1 Scan saved at 18:28:48, on 9/5/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\CTsvcCDA.EXE C:\WINDOWS\system32\E_S00RP1.EXE C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE C:\ARQUIV~1\AT&TNE~1\NetCfgSv.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Arquivos de programas\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\HHVcdV6Sys\VC6SecS.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Arquivos de programas\Analog Devices\SoundMAX\SMTray.exe C:\WINDOWS\system32\VTTimer.exe C:\Arquivos de programas\Ahead\InCD\InCD.exe C:\Arquivos de programas\HHVcdV6Sys\VC6Play.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Arquivos de programas\D-Link\D-Link USB Phone Adapter\DPH-50U Utility.exe C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktop.exe C:\Arquivos de programas\Picasa2\PicasaMediaDetector.exe C:\Arquivos de programas\Winamp\winampa.exe C:\Arquivos de programas\QuickTime\qttask.exe C:\Arquivos de programas\iTunes\iTunesHelper.exe C:\Arquivos de programas\FreePDF_XP\fpassist.exe C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Arquivos de programas\DAEMON Tools\daemon.exe C:\Arquivos de programas\Uniblue\RegistryBooster2\RegistryBooster.exe C:\Arquivos de programas\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\rundll32.exe C:\Arquivos de programas\iPod\bin\iPodService.exe C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\Arquivos de programas\Virtual CD v6\System\VC6Tray.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\dwwin.exe C:\Arquivos de programas\MSN Messenger\usnsvc.exe C:\Arquivos de programas\Mozilla Firefox\firefox.exe C:\Arquivos de programas\WinRAR\WinRAR.exe C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe C:\DOCUME~1\Tiago\CONFIG~1\Temp\Rar$EX07.891\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\ARQUIV~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\arquivos de programas\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\2.0.301.3558\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\arquivos de programas\google\googletoolbar4.dll O4 - HKLM\..\Run: [smapp] C:\Arquivos de programas\Analog Devices\SoundMAX\SMTray.exe O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [ink Monitor] C:\Arquivos de programas\EPSON\Ink Monitor\InkMonitor.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [inCD] C:\Arquivos de programas\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [VC6Player] C:\Arquivos de programas\HHVcdV6Sys\VC6Play.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Arquivos de programas\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [TLinkAgent] C:\Arquivos de programas\D-Link\D-Link USB Phone Adapter\DPH-50U Utility.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [Picasa Media Detector] C:\Arquivos de programas\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [WinampAgent] C:\Arquivos de programas\Winamp\winampa.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Arquivos de programas\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Arquivos de programas\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [AVP] "C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" O4 - HKLM\..\Run: [FreePDF Assistant] C:\Arquivos de programas\FreePDF_XP\fpassist.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [DAEMON Tools] "C:\Arquivos de programas\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [DaemonTools_WhenUSave_Installer] C:\Arquivos de programas\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe O4 - HKCU\..\Run: [LDM] \Program\BackWeb-8876480.exe O4 - HKCU\..\Run: [NBJ] "C:\Arquivos de programas\Ahead\Nero BackItUp\NBJ.exe" O4 - HKCU\..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [uniblue Registry Booster2] C:\Arquivos de programas\Uniblue\RegistryBooster2\RegistryBooster.exe /S O4 - HKCU\..\Run: [msnmsgr] "C:\Arquivos de programas\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles\916e7q14.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles/916e7q14.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Google Updater.lnk = C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe O4 - Global Startup: Microsoft Office.lnk = C:\Arquivos de programas\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: Add to Anti-Banner - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/...nSSWebAgent.CAB O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab O16 - DPF: {2AF5BD25-90C5-4EEC-88C5-B44DC2905D8B} (DownloadManager Control) - http://dlmanager.akamaitools.com.edgesuite...vex-2.0.6.0.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by114fd.bay114.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1142422299000 O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {D9CE2963-8547-4C18-A4CE-DA27278310D8} (Instalador Remoto UOL) - http://download.uol.com.br/discadorUOL/lig...tiveInstall.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARQUIV~1\ARQUIV~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL,C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL,C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL,C:\ARQUIV~1\KASPER~1\KASPER~3.0\adialhk.dll C:\ARQUIV~1\Google\GOOGLE~4\GOEC62~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing) O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE O23 - Service: EPSON V3 Service2(03) (EPSON_PM_RPCV2_01) - SEIKO EPSON CORPORATION - C:\WINDOWS\system32\E_S00RP1.EXE O23 - Service: GoogleDesktopManager - Google - C:\Arquivos de programas\Google\Google Desktop Search\GoogleDesktopManager.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Arquivos de programas\Arquivos comuns\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Arquivos de programas\Ahead\InCD\InCDsrv.exe O23 - Service: iPod Service - Apple Inc. - C:\Arquivos de programas\iPod\bin\iPodService.exe O23 - Service: Network Configuration Service (NetCfgSvr) - AT&T - C:\ARQUIV~1\AT&TNE~1\NetCfgSv.EXE O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Arquivos de programas\Arquivos comuns\Symantec Shared\SNDSrvc.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Arquivos de programas\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Virtual CD v6 Management Service (VC6SecS) - H+H Software GmbH - C:\Arquivos de programas\HHVcdV6Sys\VC6SecS.exe Forte abraço, Poma. Compartilhar este post Link para o post Compartilhar em outros sites
jgarcia 1 Denunciar post Postado Maio 9, 2007 Opa Poma, Execute o Active Scan da Panda e retorne com o resultado. Abraços. Compartilhar este post Link para o post Compartilhar em outros sites
Poma 0 Denunciar post Postado Maio 10, 2007 JGarcia, Segue o resultado do scan: Incident Status Location Adware:adware/cydoor Not disinfected c:\windows\cdmxtras Adware:adware/ucmore Not disinfected Windows Registry Adware:adware/seekmo Not disinfected Windows Registry Adware:Adware/SaveNow Not disinfected C:\Arquivos de programas\DAEMON Tools\SetupDTSB.exe Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Cida\Cookies\cida@ads.pointroll[2].txt Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Cida\Cookies\cida@atdmt[2].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Cookies\cida@com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Cookies\cida@de.uol.com[1].txt Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Cida\Cookies\cida@ehg-dig.hitbox[1].txt Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Cida\Cookies\cida@go[2].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Cookies\cida@ig.com[1].txt Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Cida\Cookies\cida@media.fastclick[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Cookies\cida@terra.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Cookies\cida@uol.com[1].txt Spyware:Cookie/onestat.com Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[stat.onestat.com/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.overture.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.uol.com.br/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[de.uol.com.br/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.com.com/] Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.2o7.net/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.hitbox.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[server.iad.liveperson.net/hc/42435556] Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[server.iad.liveperson.net/] Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.ads.pointroll.com/] Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.toplist.cz/] Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.statcounter.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.ig.com.br/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Cida\Dados de aplicativos\Mozilla\Firefox\Profiles\3gfwogpi.default\cookies.txt[.terra.com.br/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Cookies\marco@acesso.uol.com[2].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Cookies\marco@de.uol.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Cookies\marco@ig.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Cookies\marco@terra.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Cookies\marco@uol.com[2].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.uol.com.br/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[de.uol.com.br/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.terra.com.br/] Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.hitbox.com/] Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.statcounter.com/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.ig.com.br/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.overture.com/] Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.toplist.cz/] Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.revenue.net/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.advertising.com/] Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[searchportal.information.com/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.overture.com/] Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.target.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.terra.com.br/] Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Marco\Dados de aplicativos\Mozilla\Firefox\Profiles\3vy8dtbl.default\cookies.txt[.yadro.ru/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Tiago\Cookies\tiago@de.uol.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Tiago\Cookies\tiago@uol.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles\916e7q14.default\cookies.txt[.uol.com.br/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles\916e7q14.default\cookies.txt[de.uol.com.br/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles\916e7q14.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Clickbank Not disinfected C:\Documents and Settings\Tiago\Dados de aplicativos\Mozilla\Firefox\Profiles\916e7q14.default\cookies.txt[.clickbank.net/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@acesso.uol.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@bannerlandia.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@de.uol.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@ig.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@terra.com[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@uol.com[1].txt Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Vitor\Cookies\vitor@zedo[1].txt Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.uol.com.br/] Spyware:Cookie/PayCounter Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.paycounter.com/] Spyware:Cookie/SexList Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.sexlist.com/] Spyware:Cookie/cs.sexcounter Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.cs.sexcounter.com/] Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.adultfriendfinder.com/] Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.statcounter.com/] Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.advertising.com/] Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.bannerlandia.com.ar/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.ig.com.br/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.perf.overture.com/] Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.xiti.com/] Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[searchportal.information.com/] Spyware:Cookie/MediaTickets Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.kinghost.com/] Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.zedo.com/] Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.toplist.cz/] Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.atdmt.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.hitbox.com/] Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.2o7.net/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[de.uol.com.br/] Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.realmedia.com/] Spyware:Cookie/Linksynergy Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.linksynergy.com/] Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[statse.webtrendslive.com/] Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.yadro.ru/] Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.fastclick.net/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.com.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Vitor\Dados de aplicativos\Mozilla\Firefox\Profiles\9axatqd0.default\cookies.txt[.terra.com.br/] O que mais me surpreende é que eu passo o Ad-Aware e o Spybot semanalmente. Abraços, Marco Poma Compartilhar este post Link para o post Compartilhar em outros sites
Poma 0 Denunciar post Postado Maio 11, 2007 Jose Carlos...Após encontrados os erros de spywares e malwares, rodei o Panda e resolveu o problema do Explorer.EXE. Continuo ainda com o problema do albumdb2.exe.Forte abraço,Marco Poma Compartilhar este post Link para o post Compartilhar em outros sites
jgarcia 1 Denunciar post Postado Maio 13, 2007 Opa Poma, Vamos lá. 1ª Etapa Baixe o CCleaner em: CCleaner Baixe, mas não execute ainda. Baixe o AVG AntiSpyware em: AVG AntiSpyware * Selecione "English" como idioma para a instalação; * Clique em Next --> I Agree --> Next --> Next. Desmarque a caixa Install background guard e clique em Install e depois Finish; * Na janela principal do AVG AntiSpyware clique em Actualizar no menu esquerdo e então clique em Iniciar actualização; * Quando a atualização terminar, você verá a mensagem Actualizado com sucesso no canto inferior esquerdo; * Pronto, mas não o execute ainda. É prudente que você faça a impressão deste documento ou salve-o em um lugar de fácil acesso, pois na próxima etapa entraremos em Modo Seguro e a conexão à internet não será possível. 2ª Etapa Reinicie em Modo Seguro. Execute uma verificação completa com o AVG AntiSpyware. * Abra o AVG AntiSpyware e clique em Verificar --> Verificação Completa do Sistema; * O AVG AntiSpyware detecta alguns programas legítimos, portanto não marque a caixa que diz Executar a ação em todas as infecções. Se o AVG AntiSpyware encontrar um arquivo que você acredita ser legítimo, escolha a opção "Nenhuma" e clique em OK. Caso contrário, deixe em Remover e clique em OK. * Quando o AVG AntiSpyware terminar, feche-o. 3ª Etapa Reinicie o computador em Modo Normal. Execute a função Limpeza do CCleaner e clique em Executar Cleaner. Execute a função Erros do CCleaner para Corrigir os erros existentes no micro. Execute o Active Scan novamente e veja se ainda detecta algo. Abraços. PS.: O arquivo albumdb2.exe pertence ao QuickCam Album Database da Logitech. Compartilhar este post Link para o post Compartilhar em outros sites
Shine 0 Denunciar post Postado Julho 11, 2007 TÓPICO ARQUIVADO Como o autor não respondeu por mais de 20 dias, o tópico foi arquivado. Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura. Compartilhar este post Link para o post Compartilhar em outros sites
