[Arquivado] &nbspSite falso da Caixa Econômica Federal

[ohrezende 0]

Toda vez que tento entrar no site da Caixa, entra um site "pirata".

Já fiz várias coisas, mas não deu certo, abaixo log do Hijack para quem puder ajudar.

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 22:22:40, on 10/01/2011

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v9.00 (9.00.7930.16406)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe

C:\Windows\vVX3000.exe

C:\Users\Otávio\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe

C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Windows\SysWOW64\ctfmon.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.internetexplorersocial.com.br/

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fornecido por Internet Explorer: Redes Sociais

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL

O2 - BHO: Auxiliar de Conexão do Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [Google Update] "C:\Users\Otávio\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [iSUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

O9 - Extra button: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Exibir ou ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O13 - Gopher Prefix:

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931} -

O17 - HKLM\System\CCS\Services\Tcpip\..\{E3E0178C-AF4D-4D7C-ADC9-79EC72C1A34B}: NameServer = 200.175.5.139,200.175.89.139

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\Skype4COM.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - Winlogon Notify: GbPluginCef - C:\Program Files (x86)\GbPlugin\gbiehCef.dll

O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira AntiVir Agendamento (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM - C:\ASUS.SYS\config\DVMExportService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Gbp Service (GbpSv) - - C:\PROGRA~2\GbPlugin\GbpSv.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: KMService - Unknown owner - (no file)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Start BT in service - Unknown owner - C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: WMPNetworkSvc - Unknown owner - (no file)

 

--

End of file - 11061 bytes

[Renato Utsch 24]

Olá!

 

Seja bem vindo à seção de Remoção de Malwares da IMasters Fóruns.

 

Por favor, siga as instruções abaixo:

 

 

<< 1 >>

 

Por favor, siga o tutorial abaixo e execute o BankerFix. Poste o log gerado.

 

Tutorial do BankerFix

 

 

<< 2 >>

 

Faça o Download do DDS e salve no Desktop (Área de trabalho).

 

• Temporariamente desative os seus programas de proteção.
  
• Duplo clique em dds.scr.
  
• Irá surgir uma tela preta com algumas informações. Não clique em nada, apenas aguarde!
  
• Quando terminar, duas janelas abrirão: DDS.txt e Attach.txt.
  
• Salve o resultado e cole-o no seu tópico.
  

 

OBS: Caso o link disponibilizado não funcione, tente baixar o DDS por ESTE link.

 

 

 

Abraços :D

[ohrezende 0]

Vamos lá, Relatório do Banker::

 

BankerFix 3.1 VALKYRIE - Removedor de Bankers

Linha Defensiva | http://www.linhadefensiva.org

http://www.linhadefensiva.org/bankerfix/

-------------------------------------------------------

Data: 2011-01-11 - 18:28

-------------------------------------------------------

Lista de Definição: 2010-12-25-1 | CORE: 2010-12-28-6

=======================================================

 

 

 

----- Fim -------------------------

 

Relatório DDS:

DDS (Ver_10-12-12.02) - NTFS_AMD64

Run by Ot vio at 18:36:34,40 on 11/01/2011

Internet Explorer: 9.0.7930.16406

Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4095.2677 [GMT -2:00]

 

AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}

 

============== Running Processes ===============

 

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\PROGRA~2\GbPlugin\GbpSv.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\AEADISRV.EXE

C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

C:\ASUS.SYS\config\DVMExportService.exe

C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt

C:\Program Files\Microsoft LifeCam\MSCamS64.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

C:\Windows\system32\conhost.exe

C:\Windows\System32\svchost.exe -k HPZ12

C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe

C:\Windows\System32\svchost.exe -k HPZ12

c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\WUDFHost.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files\Microsoft IntelliType Pro\itype.exe

C:\Program Files\Microsoft IntelliPoint\ipoint.exe

C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe

C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe

C:\Windows\vVX3000.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Users\Otávio\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE

C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

C:\Windows\system32\DllHost.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Windows\system32\svchost.exe -k WindowsMobile

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Windows\system32\wuauclt.exe

C:\Users\Otávio\AppData\Local\Google\Chrome SxS\Application\chrome.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\vssvc.exe

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Users\Otávio\Desktop\dds.scr

C:\Windows\system32\conhost.exe

 

============== Pseudo HJT Report ===============

 

uStart Page = about:blank

uDefault_Page_URL = hxxp://www.internetexplorersocial.com.br/

uWindow Title = Windows Internet Explorer fornecido por Internet Explorer: Redes Sociais

BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL

BHO: Auxiliar de Conexão do Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [Google Update] "C:\Users\Otávio\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [iSUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

mRun: [soundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe

mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: &Enviar para o OneNote

IE: E&xportar para o Microsoft Excel

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931}

TCP: {E3E0178C-AF4D-4D7C-ADC9-79EC72C1A34B} = 200.175.5.139,200.175.89.139

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

Notify: GbPluginCef - C:\Program Files (x86)\GbPlugin\gbiehCef.dll

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL

{72853161-30C5-4D22-B7F9-0BBC1D38A37E}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{B4F3A835-0E21-4959-BA22-42B3008E02FF}

EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File

mRun-x64: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"

mRun-x64: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

mRun-x64: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"

mRun-x64: [soundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe /tray

mRun-x64: [VX3000] C:\Windows\vVX3000.exe

SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook

 

============= SERVICES / DRIVERS ===============

 

R0 mv61xx;mv61xx;C:\Windows\System32\drivers\mv61xx.sys [2009-5-11 178728]

R2 AntiVirSchedulerService;Avira AntiVir Agendamento;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-1-10 135336]

R2 AntiVirService;Avira AntiVir Guard;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-1-10 267944]

R2 avgntflt;avgntflt;C:\Windows\System32\drivers\avgntflt.sys [2011-1-10 83120]

R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2009-2-18 294912]

R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2010-7-16 54824]

R2 Start BT in service;Start BT in service;C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2007-12-27 51816]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\System32\drivers\nvhda64v.sys [2010-11-1 155752]

R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-5-20 393728]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 KMService;KMService; [x]

S3 LGDDCDevice;LGDDCDevice;C:\Program Files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys [2010-7-16 14336]

S3 LGII2CDevice;LGII2CDevice;C:\Program Files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys [2010-7-16 13312]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-3-25 51456888]

S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-7-16 1255736]

S4 AllShare;SAMSUNG AllShare Service;C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-7-16 6638080]

 

=============== Created Last 30 ================

 

2011-01-11 20:27:26 -------- d-----w- C:\LinhaDefensiva

2011-01-11 00:22:27 -------- d-----w- C:\Program Files (x86)\Trend Micro

2011-01-10 23:47:44 -------- d--h--w- C:\dvmexp

2011-01-10 14:52:21 -------- d-----w- C:\Users\OTVIO~1\AppData\Roaming\Avira

2011-01-10 14:50:27 -------- d-----w- C:\Program Files\CCleaner

2011-01-10 14:47:41 83120 ----a-w- C:\Windows\System32\drivers\avgntflt.sys

2011-01-10 14:47:41 -------- d-----w- C:\Program Files (x86)\Avira

2011-01-10 14:47:41 -------- d-----w- C:\PROGRA~3\Avira

2011-01-09 20:50:51 -------- d-----w- C:\Users\OTVIO~1\AppData\Roaming\Rovio

2011-01-09 20:33:40 8199504 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{5E247CDD-2862-48EC-9B14-736D9E9BD196}\mpengine.dll

2010-12-14 22:04:43 516096 ----a-w- C:\Program Files\Windows Mail\wab.exe

2010-12-14 22:04:43 516096 ----a-w- C:\Program Files (x86)\Windows Mail\wab.exe

2010-12-14 22:04:43 35328 ----a-w- C:\Program Files\Windows Mail\wabfind.dll

2010-12-14 22:04:29 112000 ----a-w- C:\Windows\System32\consent.exe

 

==================== Find3M ====================

 

2010-12-20 20:08:40 24152 ----a-w- C:\Windows\System32\drivers\mbam.sys

2010-11-09 03:55:57 1502208 ----a-w- C:\Windows\System32\inetcpl.cpl

2010-11-09 03:52:06 2381824 ----a-w- C:\Windows\System32\mshtml.tlb

2010-11-02 13:18:38 466520 ----a-w- C:\Windows\System32\wrap_oal.dll

2010-11-02 13:18:38 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll

2010-11-02 13:18:38 122968 ----a-w- C:\Windows\System32\OpenAL32.dll

2010-11-02 13:18:38 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll

2010-11-02 05:18:17 524288 ----a-w- C:\Windows\System32\wmicmiplugin.dll

2010-11-02 05:17:38 473600 ----a-w- C:\Windows\System32\taskcomp.dll

2010-11-02 05:17:38 1169408 ----a-w- C:\Windows\System32\taskschd.dll

2010-11-02 05:16:53 1114624 ----a-w- C:\Windows\System32\schedsvc.dll

2010-11-02 05:10:47 464384 ----a-w- C:\Windows\System32\taskeng.exe

2010-11-02 05:10:32 285696 ----a-w- C:\Windows\System32\schtasks.exe

2010-11-02 04:40:36 496128 ----a-w- C:\Windows\SysWow64\taskschd.dll

2010-11-02 04:40:36 305152 ----a-w- C:\Windows\SysWow64\taskcomp.dll

2010-11-02 04:34:44 192000 ----a-w- C:\Windows\SysWow64\taskeng.exe

2010-11-02 04:34:33 179712 ----a-w- C:\Windows\SysWow64\schtasks.exe

2010-11-01 23:03:02 1448448 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2010-11-01 22:59:07 2381824 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2010-10-27 05:06:22 2048 ----a-w- C:\Windows\System32\tzres.dll

2010-10-27 04:32:36 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2010-10-21 23:01:27 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll

2010-10-20 05:20:01 46080 ----a-w- C:\Windows\System32\atmlib.dll

2010-10-20 04:54:18 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll

2010-10-20 03:09:15 3124224 ----a-w- C:\Windows\System32\win32k.sys

2010-10-20 03:05:46 367104 ----a-w- C:\Windows\System32\atmfd.dll

2010-10-20 02:58:41 294400 ----a-w- C:\Windows\SysWow64\atmfd.dll

2010-10-19 12:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe

2010-10-16 15:13:46 5901416 ----a-w- C:\Windows\System32\nvcpl.dll

2010-10-16 15:13:26 2590824 ----a-w- C:\Windows\System32\nvsvc64.dll

2010-10-16 15:13:26 116328 ----a-w- C:\Windows\System32\nvmctray.dll

2010-10-16 15:13:24 989800 ----a-w- C:\Windows\System32\nvvsvc.exe

2010-10-16 15:13:24 61032 ----a-w- C:\Windows\System32\nvshext.dll

2010-10-16 15:13:24 1881704 ----a-w- C:\Windows\System32\nvsvcr.dll

2010-10-16 05:19:41 395776 ----a-w- C:\Windows\System32\webio.dll

2010-10-16 04:36:10 314368 ----a-w- C:\Windows\SysWow64\webio.dll

2010-10-14 03:36:52 15451288 ----a-w- C:\Windows\SysWow64\xlive.dll

2010-10-14 03:36:50 13642904 ----a-w- C:\Windows\SysWow64\xlivefnt.dll

 

============= FINISH: 18:36:44,53 ===============

 

Relatório Attach:

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

 

DDS (Ver_10-12-12.02)

 

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 15/07/2010 23:14:16

System Uptime: 11/01/2011 18:16:53 (0 hours ago)

 

Motherboard: ASUSTeK Computer INC. | | P5Q-E

Processor: Intel® Core2 Duo CPU E8400 @ 3.00GHz | LGA 775 | 3003/333mhz

 

==== Disk Partitions =========================

 

A: is Removable

C: is FIXED (NTFS) - 274 GiB total, 106,712 GiB free.

D: is FIXED (NTFS) - 24 GiB total, 18,19 GiB free.

E: is CDROM ()

F: is Removable

G: is Removable

H: is Removable

I: is Removable

K: is CDROM ()

 

==== Disabled Device Manager Items =============

 

==== System Restore Points ===================

 

RP228: 21/12/2010 19:27:41 - Ponto de Verificação Agendado

RP229: 24/12/2010 06:25:51 - Windows Update

RP230: 24/12/2010 09:25:53 - Windows Update

RP231: 09/01/2011 18:33:27 - Windows Update

RP232: 10/01/2011 22:04:07 - avast! Free Antivirus Setup

 

==== Installed Programs ======================

 

Adobe Flash Player 10 ActiveX

Adobe Reader 9.4.1 - Português

ASUSUpdate

µTorrent

Avira AntiVir Personal - Free Antivirus

Battlefield: Bad Company™ 2

Bejeweled 3

Bluesoleil2.7.0.13 VoIP Release 071227

BufferChm

C4400

Call of Duty: Black Ops

Combined Community Codec Pack 2009-09-09

Copy

Corel Graphics - Windows Shell Extension

CorelDRAW Graphics Suite X5

CorelDRAW Graphics Suite X5 - BR

CorelDRAW Graphics Suite X5 - Capture

CorelDRAW Graphics Suite X5 - Common

CorelDRAW Graphics Suite X5 - Connect

CorelDRAW Graphics Suite X5 - Custom Data

CorelDRAW Graphics Suite X5 - Draw

CorelDRAW Graphics Suite X5 - Filters

CorelDRAW Graphics Suite X5 - FontNav

CorelDRAW Graphics Suite X5 - IPM

CorelDRAW Graphics Suite X5 - PHOTO-PAINT

CorelDRAW Graphics Suite X5 - Photozoom Plugin

CorelDRAW Graphics Suite X5 - Redist

CorelDRAW Graphics Suite X5 - Setup Files

CorelDRAW Graphics Suite X5 - VBA

CorelDRAW Graphics Suite X5 - VideoBrowser

CorelDRAW Graphics Suite X5 - VSTA

CorelDRAW Graphics Suite X5 - WT

CorelDRAW® Graphics Suite X5

D3DX10

Destinations

DeviceDiscovery

DiRT2

DocProc

EXPERTool 7.14

Express Gate

F1 2010

Feedback Tool

forteManager

Google Chrome

Google Chrome Canary Build

GPBaseService2

Grand Theft Auto IV

HijackThis 2.0.2

Host OpenAL (ADI)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)

HP Update

HPPhotoGadget

HPPhotoSmartDiscLabelContent1

HPPhotosmartEssential

HPProductAssistant

Java Auto Updater

Java 6 Update 21

LOST PLANET 2

Malwarebytes' Anti-Malware

MarketResearch

marvell 61xx

Marvell Miniport Driver

Microsoft Corporation

Microsoft Games for Windows - LIVE

Microsoft Games for Windows - LIVE Redistributable

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual Studio Tools for Applications 2.0 - ENU

Microsoft Visual Studio Tools for Applications 2.0 Runtime

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MV RegClean 5.9

Need for Speed Hot Pursuit

Nero 8 Lite

NVIDIA nTune

NVIDIA Stereoscopic 3D Driver

NVIDIA StereoUSB Driver

NYKO Gamepad Mapping Tools 2.0.0

OpenAL

Pro Evolution Soccer 2011

PS_AIO_03_C4400_Software_Min

Race Driver 3

Rapture3D 2.3.22 Game

RESIDENT EVIL 5

SAMSUNG PC Share Manager

Scan

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Skype Toolbars

Skype™ 4.2

SmartWebPrinting

SolutionCenter

SoundMAX

Status

STREET FIGHTER IV

Tom Clancy's Splinter Cell Conviction

Toolbox

TrayApp

UltraISO Premium V9.33

UnloadSupport

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Visual Basic for Applications ® Core

Visual Basic for Applications ® Core - English

Visual Basic for Applications ® Core - Portuguese (Brazil)

WebReg

Windows Live Communications Platform

Windows Live Essentials

Windows Live Galeria de Fotos

Windows Live Installer

Windows Live Messenger

Windows Live Movie Maker

Windows Live Photo Common

Windows Live Photo Gallery

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live Sync

Windows Live UX Platform

Windows Live UX Platform Language Pack

WinRAR archiver

Zuma's Revenge

 

==== End Of File ===========================

 

Desde já agradeço a colaboração!!

 

Olá!

 

Seja bem vindo à seção de Remoção de Malwares da IMasters Fóruns.

 

Por favor, siga as instruções abaixo:

 

 

<< 1 >>

 

Por favor, siga o tutorial abaixo e execute o BankerFix. Poste o log gerado.

 

Tutorial do BankerFix

 

 

<< 2 >>

 

Faça o Download do DDS e salve no Desktop (Área de trabalho).

 

• Temporariamente desative os seus programas de proteção.
  
• Duplo clique em dds.scr.
  
• Irá surgir uma tela preta com algumas informações. Não clique em nada, apenas aguarde!
  
• Quando terminar, duas janelas abrirão: DDS.txt e Attach.txt.
  
• Salve o resultado e cole-o no seu tópico.
  

 

OBS: Caso o link disponibilizado não funcione, tente baixar o DDS por ESTE link.

 

 

 

Abraços :D

[Renato Utsch 24]

Olá!

 

Por favor, siga as instruções abaixo:

 

<< 1 >>

 

Acesse o site " Jotti's malware scan "

 

• Na caixa que fica em cima (File to upload & scan);
  
• Copie e cole o(s) seguinte(s) arquivo(s) um de cada vez:
  
  • C:\Windows\system32\AEADISRV.EXE

  [*]Clique no botão

  [*]O(s) arquivo(s) irá(serão) ser examinado(s) por diferentes softwares antivirus, por favor aguarde.

  [*]Copie e cole o(s) resultado(s).

 

Se o site acima estiver muito congestionado, tente num desses sites:

Alternativa 1

Alternativa 2

 

 

 

<< 2 >>

 

Siga o tutorial abaixo e execute o Kaspersky Removal Tool. Depois poste o log gerado.

 

Tutorial do Kaspersky Virus Removal Tool

 

 

 

Abraços :D

[ohrezende 0]

Todos deram: Found nothing

Amanhã faço o procedimento com o Kaspersky Removal Tool. Obrigado.

 

 

Olá!

 

Por favor, siga as instruções abaixo:

 

<< 1 >>

 

Acesse o site " Jotti's malware scan "

 

• Na caixa que fica em cima (File to upload & scan);
  
• Copie e cole o(s) seguinte(s) arquivo(s) um de cada vez:
  
  • C:\Windows\system32\AEADISRV.EXE

  [*]Clique no botão

  [*]O(s) arquivo(s) irá(serão) ser examinado(s) por diferentes softwares antivirus, por favor aguarde.

  [*]Copie e cole o(s) resultado(s).

 

Se o site acima estiver muito congestionado, tente num desses sites:

Alternativa 1

Alternativa 2

 

 

 

<< 2 >>

 

Siga o tutorial abaixo e execute o Kaspersky Removal Tool. Depois poste o log gerado.

 

Tutorial do Kaspersky Virus Removal Tool

 

 

 

Abraços :D

[Renato Utsch 24]

Olá!

 

Fico no aguardo.

 

 

Abraços :D

[ohrezende 0]

Resultado do Kaspersky: deixei rodando a noite inteira e não pegou nada.

 

Mas uma coisa aconteceu ontem, não tenho conhecimento para avaliar o que pode estar acontecendo mas vou explicar:

- Não estava conseguindo acessar o site Filmes com Legenda, consultei o Twitter e uns dos moderados indicou para outro usuário a mudança do DNS primário e secundário, ele forneceu os números. De posse destes números digitei no meu computador e o site Filmes com Legenda voltou a carregar e

por tabela o site "certo" da Caixa Econômica Federal voltou a entrar.

Alguém sabe o que pode ter ocorrido?

Imagino que alguma coisa ainda esteja no meu computador...

 

 

Olá!

 

Fico no aguardo.

 

 

Abraços :D

[Renato Utsch 24]

Olá!

 

Parece que alguma coisa mudou seu DNS rs...

 

 

Muito bem, faça o seguinte:

 

Siga o tutorial abaixo e poste um log do Spyware Doctor Starter Edition:

 

Tutorial do Spyware Doctor Starter Edition

 

 

Após isso, poste um novo log do DDS.

 

Abraços :D

[ohrezende 0]

Pelo que andei lendo parece que sofri um "envenenamento de DNS". Só que não consegui descobrir o que devo fazer para restaurar meu computador.

Se alguém tiver alguma dica agradeço.

 

 

Olá!

 

Parece que alguma coisa mudou seu DNS rs...

 

 

Muito bem, faça o seguinte:

 

Siga o tutorial abaixo e poste um log do Spyware Doctor Starter Edition:

 

Tutorial do Spyware Doctor Starter Edition

 

 

Após isso, poste um novo log do DDS.

 

Abraços :D

[Renato Utsch 24]

Olá!

 

Não estou entendendo... não voltou tudo ao normal??

 

 

Parece que esse site, como todos os sites de warez infectou o seu computador. Querendo ou não querendo, warez trazem infecções para seu computador. Para total desinfecção, a única alternativa é eliminar todos os cracks, keygens e programas ou filmes piratas no seu computador, que carregam muitos malwares.

 

Além disso, é ilegal.

 

 

<> E o scan com o Spyware Doctor?

 

 

Abraços :D

[ohrezende 0]

Passei o Spyware e nada. Acho que o jeito vai ser nascer de novo...rsrs

 

Olá!

 

Não estou entendendo... não voltou tudo ao normal??

 

 

Parece que esse site, como todos os sites de warez infectou o seu computador. Querendo ou não querendo, warez trazem infecções para seu computador. Para total desinfecção, a única alternativa é eliminar todos os cracks, keygens e programas ou filmes piratas no seu computador, que carregam muitos malwares.

 

Além disso, é ilegal.

 

 

<> E o scan com o Spyware Doctor?

 

 

Abraços :D

[Renato Utsch 24]

Responda à outra pergunta feita na resposta #10.

 

 

Abraços.

[Power Max 54]

Tópico Arquivado

 

Como o autor não respondeu por mais de 30 dias, o tópico foi arquivado.

 

Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura.