Genuina
-
Total de itens
8 -
Registro em
-
Última visita
Sobre Genuina
Genuina's Achievements
0
Reputação
-
Ok, Jack! Eu já imaginava que precisaria formatar. Quero te agradecer muito pela sua disposição, e atenção em tentar me ajudar. Muito obrigada!
-
Jack, passei o ActiveScan online, e ele me deu o seguinte relatório [talvez possa ajudar]: ;*********************************************************************************************************************************************************************************** ANALYSIS: 2008-08-29 05:40:28 PROTECTIONS: 0 MALWARE: 3 SUSPECTS: 0 ;*********************************************************************************************************************************************************************************** PROTECTIONS Description Version Active Updated ;=================================================================================================================================================================================== ;=================================================================================================================================================================================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=================================================================================================================================================================================== 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\1ª IEQ\Dados de aplicativos\Mozilla\Firefox\Profiles\i7yyhphz.default\cookies.txt[.tribalfusion.com/] 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\1ª IEQ\Dados de aplicativos\Mozilla\Firefox\Profiles\i7yyhphz.default\cookies.txt[.tribalfusion.com/] 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\1ª IEQ\Dados de aplicativos\Mozilla\Firefox\Profiles\i7yyhphz.default\cookies.txt[.tribalfusion.com/] 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\1ª IEQ\Dados de aplicativos\Mozilla\Firefox\Profiles\i7yyhphz.default\cookies.txt[.tribalfusion.com/] 00170559 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\1ª IEQ\Dados de aplicativos\Mozilla\Firefox\Profiles\i7yyhphz.default\cookies.txt[.uol.com.br/] 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Ahead\Nero StartSmart\NeroStartSmart.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\CacaTalentos\CacaTalentos2.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\CCleaner\CCleaner.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Essentials Codec Pack\mplayerc.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Essentials Codec Pack\uninst.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Essentials Codec Pack\update.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Internet Explorer\iexplore.exe.tmp 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\MegaJogos\starter.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\PrevxCSI\prevxcsi.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Microsoft Office\OFFICE11\WINWORD.EXE 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\mobile PhoneTools\mPhonetools.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\MP3 Player Utilities 4.00\AMVConverter\amvtransform.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Picasa2\Picasa2.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\QuickTime\PictureViewer.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Sun\OpenOffice.org Installer 1.0\ooostub.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\Windows Media Player\wmplayer.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\WinRAR\WinRAR.exe 02890224 W32/DengDun.A Virus Yes 0 Yes No C:\Arquivos de programas\mobile PhoneTools\WatchDog.exe 02890224 W32/DengDun.A Virus Yes 0 Yes No C:\Arquivos de programas\Mozilla Firefox\firefox.exe 02890224 W32/DengDun.A Virus Yes 0 Yes No C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Arquivos de programas\MegaJogos\Uninstall.exe 02890224 W32/DengDun.A Virus Yes 0 Yes No C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\Documents and Settings\1ª IEQ\Desktop\HijackThis.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\HijackThis.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094176.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094180.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094181.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094182.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094186.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094188.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094189.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094190.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094191.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094201.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094204.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0094208.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097176.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097177.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097178.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097179.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097180.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097181.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097184.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097186.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097195.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097199.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097200.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097204.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097205.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097215.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097217.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097221.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097243.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097247.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097248.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097252.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097253.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097263.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097275.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097279.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097280.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097284.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097285.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097286.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097299.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097305.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097311.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097318.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097320.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097336.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097340.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097341.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097345.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097346.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0097356.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098363.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098367.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098368.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098372.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098373.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098374.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098403.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098405.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098406.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098413.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098415.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098419.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098420.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098424.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098425.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098426.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098427.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098438.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098461.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098463.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098464.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098465.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098466.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\System Volume Information\_restore{208DE52F-C770-4C54-944D-0C1660613A70}\RP172\A0098467.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\$NtServicePackUninstall$\mspaint.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\Alcrmv.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\alcupd.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\fdsv.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\grep.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\IsUn0416.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\IsUninst.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\sed.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\slrundll.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\ST5UNST.EXE 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\swsc.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\swxcacls.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\system32\cmd.exe.tmp 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\system32\ctfmon.exe.tmp 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\system32\mspaint.exe.tmp 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\system32\notepad.exe.tmp 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\system32\wupdmgr.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\VFind.exe 02890224 W32/DengDun.A Virus No 0 Yes No C:\WINDOWS\winhlp32.exe ;=================================================================================================================================================================================== SUSPECTS Sent Location ;=================================================================================================================================================================================== ;=================================================================================================================================================================================== VULNERABILITIES Id Severity Description ;=================================================================================================================================================================================== ;===================================================================================================================================================================================
-
Não consegui, Jack, infelizmente. Quando clico "Empty Selected", aparece uma janela dizendo "Done Cleaning!! ATF Cleaner has freed 516,000 kBs" em botão "Ok", e daí abre o navegador, como se fosse para eu adquirir a licença, algo assim. Agora online, depois de clicar em "Empty Selected", aparece uma janela "No files were removed". Tá ficando tudo tão difícil e complicado... Muito obrigada pela atenção! ------------------------------------------------------------------------------------------------------------------------------
-
Jack, Segui suas instruções, mas infelizmente não consegui desinstalar o ComboFix, quando faço o procedimento no "executar", aparece a tal janelinha cinza e congela. Quanto ao Kaspersky, quando chega na etapa 5 "Save", não acontece nada... simplesmente para tudo. Tentei scannear o computador e enviar o log, mas depois de mais de uma hora, e percebi vários arquivos infectados, mais de 40, também não consegui salvar o log. Me desculpe pelo incomodo, mas não sei mais o que fazer. Muito obrigada pela sua atenção... obrigada mesmo!
-
-
Olá, Jack! Passei horas tentando executar o ComboFix, mas não consigo. Baixei o programinha várias vezes, deletava, reiniciava e nada, só aparece uma janelinha cinza, pequenininha, e não faz mais nada. Ontem até que eu consegui, mas depois de muito tentar, e hoje não consegui mesmo. Segui corretamente suas instruções, mas há algo impedindo. Assim como, não consigo instalar nenhum anti vírus, ou anti spyware. Tentei até pelo modo de segurança, com muita dificuldade, porque meu mouse não funciona, mas nem mesmo assim ele executou. Gerei um novo log do HijackThis, para você, por favor, dar mais uma examinada, porque não sei o que fazer. Me desculpe pelo longo intervalo de resposta, mas é que trabalho à noite com essa máquina. De resto, o computador está funcionando normal, mas só o fato dele não executar nenhum desses programas, significa que há algo errado. Me perdoe pela "ignorância" em todos esses aspectos. Aguardo sua ajuda e agradeço... Muito obrigada! Ps.: Vou continuar tentando, se conseguir posto o log. Logfile of HijackThis v1.99.1 Scan saved at 03:41:51, on 27/8/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16705) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\EXPLORER.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\rundll32.exe C:\Arquivos de programas\Java\jre1.6.0_07\bin\jusched.exe C:\Arquivos de programas\mobile PhoneTools\WatchDog.exe C:\WINDOWS\explorer.exe C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Arquivos de programas\Bonjour\mDNSResponder.exe C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wuauclt.exe C:\Arquivos de programas\Mozilla Firefox\firefox.exe C:\Documents and Settings\1ª IEQ\Desktop\ComboFix.exe C:\Documents and Settings\1ª IEQ\Desktop\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: Barra de Ferramentas do Yahoo! com bloqueador de pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) F2 - REG:system.ini: UserInit=userinit.exe,EXPLORER.EXE O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Arquivos de programas\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Arquivos de programas\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Media Codec Update Service] C:\Arquivos de programas\Essentials Codec Pack\update.exe -silent O4 - HKLM\..\Run: [WatchDog] C:\Arquivos de programas\mobile PhoneTools\WatchDog.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [wsctf.exe] wsctf.exe O4 - HKCU\..\Run: [EXPLORER.EXE] EXPLORER.EXE O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe O4 - Global Startup: Google Updater.lnk = C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Arquivos de programas\MP3 Player Utilities 4.00\AMVConverter\grab.html O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Arquivos de programas\MP3 Player Utilities 4.00\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\arquivos de programas\bonjour\mdnsnsp.dll O11 - Options group: [iNTERNATIONAL] International* O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1208301748312 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{74CDEEC2-6647-4FD6-9EB8-BC0AB8D92AE4}: NameServer = 200.165.132.148 200.165.132.155 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Arquivos de programas\Bonjour\mDNSResponder.exe O23 - Service: CSIScanner - Unknown owner - C:\Arquivos de programas\PrevxCSI\prevxcsi.exe" /service (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe
-
-
Por favor, analisem o meu log. Estou tendo problemas, tais como congelamento do mouse, na parte posterior direita da tela, e quando reinicio o computador, ele entra direto no meu dico local "C", "Meus documentos", e sempre aparece o erro de um aplicativo "kavo.exe". Por favor me ajudem!! Obrigada! Logfile of HijackThis v1.99.1 Scan saved at 00:38:16, on 25/8/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16705) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Arquivos de programas\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\rundll32.exe C:\Arquivos de programas\Java\jre1.6.0_07\bin\jusched.exe C:\Arquivos de programas\mobile PhoneTools\WatchDog.exe C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\explorer.exe C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Arquivos de programas\Bonjour\mDNSResponder.exe C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Arquivos de programas\Mozilla Firefox\firefox.exe C:\Arquivos de programas\Internet Explorer\iexplore.exe C:\WINDOWS\system32\ctfmon.exe C:\Documents and Settings\1ª IEQ\Desktop\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R3 - URLSearchHook: Barra de Ferramentas do Yahoo! com bloqueador de pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) F2 - REG:system.ini: UserInit=userinit.exe,EXPLORER.EXE O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Arquivos de programas\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Arquivos de programas\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Arquivos de programas\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Arquivos de programas\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Arquivos de programas\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Media Codec Update Service] C:\Arquivos de programas\Essentials Codec Pack\update.exe -silent O4 - HKLM\..\Run: [WatchDog] C:\Arquivos de programas\mobile PhoneTools\WatchDog.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Arquivos de programas\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [wsctf.exe] wsctf.exe O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe O4 - Global Startup: Google Updater.lnk = C:\Arquivos de programas\Google\Google Updater\GoogleUpdater.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Arquivos de programas\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Arquivos de programas\MP3 Player Utilities 4.00\AMVConverter\grab.html O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Arquivos de programas\MP3 Player Utilities 4.00\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Arquivos de programas\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Pesquisar - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARQUIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Arquivos de programas\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\arquivos de programas\bonjour\mdnsnsp.dll O11 - Options group: [iNTERNATIONAL] International* O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1208301748312 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{74CDEEC2-6647-4FD6-9EB8-BC0AB8D92AE4}: NameServer = 200.165.132.148 200.165.132.155 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARQUIV~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Arquivos de programas\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Arquivos de programas\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe Obs. Baixei o ComboFix, mas só aparece uma janelinha cinza, pequenininha, como se fosse pra eu digitar alguma coisa, mas está inacessível. Também não consigo instalar nenhum anti spyware, ou anti vírus.. dá como acesso negado. Se entro em modo de segurança, meu mouse congela (pelo que li, é porque ele é serial)... não sei o que fazer. Por favor, me ajudem. Muito Obrigada! :huh: