ola Mr.Wolf
poderia me encinar como q meche nesse progama q me passou vlw
poderia me encinar como q meche nesse progama q me passou vlw
Qual amigo Rafael100%?ola Mr.Wolf
poderia me encinar como q meche nesse progama q me passou vlw
Rafael100% disse:Mr.Wolf disse:Qual amigo Rafael100%?
Os programas de backups de drivers eu não sei trabalhar com eles não. Eu utilizava o Driver Max. Mas faz muito tempo. O programa já atualizou e agora provavelmente não está a mesma coisa.
certo mais o driver max rola no k6 co windows me??
se ropar pode me pasar o setup atualisado por favor valeu
Windows ME não sei Rafael100%. Você me pegou. Na época que eu utilizei ele, tinha o Windows 2003 e rodava perfeitamente o Driver Max.Rafael100% disse:certo mais o driver max rola no k6 co windows me??
se ropar pode me pasar o setup atualisado por favor valeu
Download:
http://www.drivermax.com/download.htm
:thumbs_up
cara nem sei pq ñ tem nada escrito na placa mae
ComboFix 08-11-04.02 - Bruno 2008-11-05 20:24:06.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1046.18.2572 [GMT -2:00]
Executando de: c:\documents and settings\Bruno\Desktop\ComboFix.exe
* Criado um novo ponto de restauro
ATENÇAO - ESTA MAQUINA NAO TEM O CONSOLE DE RECUPERAÇÃO INSTALADA !!
.
((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\autorun.inf
c:\documents and settings\All Users\Dados de aplicativos\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Dados de aplicativos\Microsoft\Network\Downloader\qmgr1.dat
c:\windows\system32\tmp58.tmp
c:\windows\system32\tmp59.tmp
E:\Autorun.inf
F:\Autorun.inf
G:\Autorun.inf
----- BITS: Sites possivelmente infetados -----
hxxp://onestopstation.net
.
(((((((((((((((( Arquivos/Ficheiros criados de 2008-10-05 to 2008-11-05 ))))))))))))))))))))))))))))
.
2008-11-05 08:04 . 2008-11-05 08:04 <DIR> d-------- c:\documents and settings\Bruno\Dados de aplicativos\Malwarebytes
2008-11-05 08:04 . 2008-11-05 08:04 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\Malwarebytes
2008-11-05 08:04 . 2008-11-05 08:04 <DIR> d-------- c:\arquivos de programas\Malwarebytes' Anti-Malware
2008-11-05 08:04 . 2008-10-22 16:10 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-11-05 08:04 . 2008-10-22 16:10 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-11-05 05:13 . 2008-11-05 05:13 156,672 --a------ c:\windows\system32\beinaoem.dll
2008-11-05 05:10 . 2008-11-05 05:10 156,672 --a------ c:\windows\system32\vdqsakvf.dll
2008-11-05 05:07 . 2008-11-05 05:07 156,672 --a------ c:\windows\system32\frxrynhs.dll
2008-11-04 22:48 . 2008-11-04 22:48 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\Kaspersky Lab Setup Files
2008-11-04 21:52 . 2008-11-04 21:52 <DIR> d-------- c:\arquivos de programas\Trend Micro
2008-11-04 19:05 . 2008-11-04 20:20 8,627 --a------ c:\windows\system32\PAV_FOG.OPC
2008-11-04 18:56 . 2008-11-04 18:56 157 --a------ c:\windows\AvDetected.ini
2008-10-26 21:46 . 2008-10-26 21:46 22,328 --a------ c:\windows\system32\drivers\PnkBstrK.sys
2008-10-26 21:46 . 2008-10-26 21:46 22,328 --a------ c:\documents and settings\Bruno\Dados de aplicativos\PnkBstrK.sys
2008-10-26 21:45 . 2008-10-28 21:45 <DIR> d-------- c:\windows\system32\LogFiles
2008-10-26 21:45 . 2008-10-26 21:45 2,250,024 --a------ c:\windows\system32\pbsvc.exe
2008-10-26 21:45 . 2008-10-26 21:45 107,832 --a------ c:\windows\system32\PnkBstrB.exe
2008-10-26 21:45 . 2008-10-26 21:45 66,872 --a------ c:\windows\system32\PnkBstrA.exe
2008-10-25 18:49 . 2008-10-25 18:49 <DIR> d-------- c:\arquivos de programas\mp3DirectCut
2008-10-25 12:22 . 2008-10-23 21:08 3,556,048,896 --a------ C:\pro-bullyse.iso
2008-10-23 08:02 . 2008-10-23 08:02 <DIR> d-------- c:\documents and settings\Bruno\Dados de aplicativos\2K Sports
2008-10-21 22:35 . 2008-10-21 22:35 <DIR> d-------- c:\documents and settings\Bruno\Bluetooth Software
2008-10-21 22:28 . 2008-10-21 22:28 <DIR> d-------- c:\arquivos de programas\Software WIDCOMM
2008-10-18 02:06 . 2008-10-18 02:06 <DIR> d-------- c:\documents and settings\Bruno\Dados de aplicativos\InstallShield
2008-10-18 02:06 . 2008-10-18 02:06 <DIR> d-------- c:\arquivos de programas\VID_0E8F&PID_0003
2008-10-16 12:54 . 2008-10-16 12:54 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\KONAMI
2008-10-16 08:55 . 2008-10-16 08:55 <DIR> d-------- c:\documents and settings\Bruno\Dados de aplicativos\Leadertech
2008-10-15 23:07 . 2008-05-30 15:11 3,850,760 --a------ c:\windows\system32\D3DX9_38.dll
2008-10-15 23:07 . 2008-05-30 15:11 1,491,992 --a------ c:\windows\system32\D3DCompiler_38.dll
2008-10-15 23:07 . 2008-05-30 15:19 507,400 --a------ c:\windows\system32\XAudio2_1.dll
2008-10-15 23:07 . 2008-05-30 15:11 467,984 --a------ c:\windows\system32\d3dx10_38.dll
2008-10-15 23:07 . 2008-05-30 15:18 238,088 --a------ c:\windows\system32\xactengine3_1.dll
2008-10-15 23:07 . 2008-05-30 15:17 65,032 --a------ c:\windows\system32\XAPOFX1_0.dll
2008-10-15 23:07 . 2008-05-30 15:17 25,608 --a------ c:\windows\system32\X3DAudio1_4.dll
2008-10-15 23:06 . 2008-10-15 23:06 <DIR> d-------- c:\windows\Logs
2008-10-14 13:43 . 2007-09-04 18:56 164,352 --a------ c:\windows\system32\unrar.dll
2008-10-13 21:58 . 2008-10-13 21:58 <DIR> d-------- c:\documents and settings\Bruno\Dados de aplicativos\VitySoft
2008-10-13 20:39 . 2004-08-04 00:08 31,616 --a------ c:\windows\system32\drivers\usbccgp.sys
2008-10-13 20:39 . 2004-08-04 00:08 31,616 --a--c--- c:\windows\system32\dllcache\usbccgp.sys
2008-10-13 20:39 . 2004-08-04 01:45 21,504 --a------ c:\windows\system32\hidserv.dll
2008-10-13 20:39 . 2004-08-04 01:45 21,504 --a--c--- c:\windows\system32\dllcache\hidserv.dll
2008-10-13 20:39 . 2004-08-04 01:39 14,848 --a------ c:\windows\system32\drivers\kbdhid.sys
2008-10-13 20:39 . 2004-08-04 01:39 14,848 --a--c--- c:\windows\system32\dllcache\kbdhid.sys
2008-10-12 03:22 . 2008-10-12 03:22 <DIR> d-------- c:\windows\74224F8D4A1748169EDB7BB854DE532C.TMP
2008-10-12 03:04 . 2008-10-12 03:06 <DIR> d-------- c:\windows\NV14441300.TMP
2008-10-12 02:56 . 2008-10-12 03:06 <DIR> d-------- c:\windows\NV25002744.TMP
2008-10-12 02:56 . 2008-09-17 10:55 201,050 --a------ c:\windows\system32\nvapps.nvb
2008-10-11 15:28 . 2008-10-11 15:28 <DIR> d-------- c:\arquivos de programas\coverXP
2008-10-11 00:24 . 2008-10-11 00:24 <DIR> d-------- c:\documents and settings\Bruno\Dados de aplicativos\CyberLink
2008-10-11 00:24 . 2008-10-11 00:24 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\CyberLink
2008-10-06 22:53 . 2008-10-06 22:53 662 --a------ c:\windows\system32\ealregsnapshot1.reg
2008-10-06 22:00 . 2008-10-06 22:00 <DIR> d-------- c:\arquivos de programas\UltraISO
2008-10-06 22:00 . 2008-10-06 22:00 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\EZB Systems
.
((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-05 10:37 --------- d--h--w c:\arquivos de programas\InstallShield Installation Information
2008-11-05 10:32 --------- d-----w c:\arquivos de programas\LogMeIn
2008-11-05 10:05 --------- d-----w c:\documents and settings\Bruno\Dados de aplicativos\uTorrent
2008-11-04 20:59 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\avg8
2008-10-23 21:51 --------- d-----w c:\documents and settings\Bruno\Dados de aplicativos\Ahead
2008-10-16 23:35 87,352 ----a-w c:\windows\system32\LMIinit.dll
2008-10-16 23:35 83,288 ----a-w c:\windows\system32\LMIRfsClientNP.dll
2008-10-16 23:35 28,984 ----a-w c:\windows\system32\LMIport.dll
2008-10-16 23:35 23,736 ----a-w c:\windows\system32\lmimirr.dll
2008-10-16 23:35 10,040 ----a-w c:\windows\system32\lmimirr2.dll
2008-10-14 15:43 --------- d-----w c:\arquivos de programas\K-Lite Codec Pack
2008-10-14 15:41 --------- d-----w c:\arquivos de programas\Gabest
2008-10-12 05:22 --------- d-----w c:\arquivos de programas\Arquivos comuns\Wise Installation Wizard
2008-10-11 17:25 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\Codemasters
2008-10-07 01:02 107,888 ----a-w c:\windows\system32\CmdLineExt.dll
2008-10-02 11:06 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\LogMeIn
2008-10-02 10:56 --------- d-----w c:\arquivos de programas\GordianKnot
2008-09-30 23:48 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\nView_Profiles
2008-09-30 22:28 --------- d-----w c:\arquivos de programas\HJSplit
2008-09-29 21:00 --------- d-----w c:\arquivos de programas\AGEIA Technologies
2008-09-29 20:56 --------- d-----w c:\arquivos de programas\uTorrent
2008-09-29 19:53 444,952 ----a-w c:\windows\system32\wrap_oal.dll
2008-09-29 19:53 109,080 ----a-w c:\windows\system32\OpenAL32.dll
2008-09-29 19:53 --------- d-----w c:\arquivos de programas\OpenAL
2008-09-29 18:52 155,995 ----a-w c:\windows\java\Packages\7PZTBV9V.ZIP
2008-09-29 18:31 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\Macrovision
2008-09-29 18:30 --------- d-----w c:\arquivos de programas\Arquivos comuns\Adobe Systems Shared
2008-09-29 18:30 --------- d-----w c:\arquivos de programas\Arquivos comuns\Adobe
2008-09-29 18:27 --------- d-----w c:\arquivos de programas\Java
2008-09-29 18:27 --------- d-----w c:\arquivos de programas\Arquivos comuns\Java
2008-09-29 15:43 --------- d-----w c:\arquivos de programas\MSN Messenger
2008-09-29 15:14 --------- d-----w c:\arquivos de programas\CyberLink
2008-09-29 15:13 --------- d-----w c:\arquivos de programas\Arquivos comuns\InstallShield
2008-09-29 15:09 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\Ahead
2008-09-29 15:09 --------- d-----w c:\arquivos de programas\Arquivos comuns\Ahead
2008-09-29 15:07 --------- d-----w c:\documents and settings\All Users\Dados de aplicativos\Nero
2008-09-29 15:07 --------- d-----w c:\arquivos de programas\Nero
2008-09-29 14:38 --------- d-----w c:\arquivos de programas\WinAVI Video Converter 9.0
2008-09-29 14:34 196,608 ----a-w c:\windows\system32\avisynth.dll
2008-09-29 14:33 414,272 ----a-w c:\windows\system32\DivXc32f.dll
2008-09-29 14:33 414,272 ----a-w c:\windows\system32\DivXc32.dll
2008-09-29 14:33 33,280 ----a-w c:\windows\system32\HUFFYUV.DLL
2008-09-29 14:23 --------- d-----w c:\documents and settings\Bruno\Dados de aplicativos\Media Player Classic
2008-09-29 13:30 --------- d-----w c:\arquivos de programas\Intel
2008-09-29 13:29 --------- d-----w c:\arquivos de programas\Marvell
2008-09-29 13:18 294,912 ----a-w c:\windows\HideWin.exe
2008-09-29 13:18 --------- d-----w c:\arquivos de programas\Realtek
2008-09-29 13:05 --------- d-----w c:\arquivos de programas\microsoft frontpage
2008-09-29 13:03 --------- d-----w c:\arquivos de programas\Serviços on-line
2008-09-29 13:03 --------- d-----w c:\arquivos de programas\Arquivos comuns\Serviços
2008-09-17 00:27 453,152 ----a-w c:\windows\system32\NVUNINST.EXE
2008-09-04 12:31 288,024 ----a-w c:\windows\system32\PhysXCplUI.exe
2008-08-29 11:57 70,936 ----a-w c:\windows\system32\PhysXLoader.dll
.
------- Sigcheck -------
2004-09-24 13:52 359040 09eb23a4567bdd56d9580a059e616e23 c:\windows\system32\drivers\tcpip.sys
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legítimas por defeito não são mostradas.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360]
"MsnMsgr"="c:\arquivos de programas\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352]
"Steam"="e:\arquivos de programas\steam\steam.exe" [2008-10-08 1410296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\arquivos de programas\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-17 13574144]
"LogMeIn GUI"="c:\arquivos de programas\LogMeIn\x86\LogMeInSystray.exe" [2008-07-24 63048]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-17 86016]
"nwiz"="nwiz.exe" [2008-09-17 c:\windows\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\
Adobe Gamma Loader.lnk - c:\arquivos de programas\Arquivos comuns\Adobe\Calibration\Adobe Gamma Loader.exe [2008-09-29 113664]
BTTray.lnk - c:\arquivos de programas\Software WIDCOMM\Bluetooth\BTTray.exe [2006-05-12 581693]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2008-10-16 21:35 87352 c:\windows\system32\LMIinit.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=alqrne.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.HFYU"= huffyuv.dll
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"msacm.divxa32"= DivXa32.acm
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Adobe Reader Synchronizer.lnk]
path=c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\Adobe Reader Synchronizer.lnk
backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
--a------ 2007-05-15 16:55 1057328 c:\arquivos de programas\Nero\Nero 7\InCD\InCD.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
--a------ 2006-12-05 23:55 54832 c:\arquivos de programas\CyberLink\PowerDVD\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2007-03-01 16:57 153136 c:\arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--------- 2006-11-23 16:10 56928 c:\arquivos de programas\CyberLink\PowerDVD\PDVDServ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecurDisc]
--a------ 2007-05-15 16:55 1628208 c:\arquivos de programas\Nero\Nero 7\InCD\NBHGui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
--a------ 2005-05-03 16:43 69632 c:\windows\ALCMTR.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
--a------ 2005-05-25 13:37 14477312 c:\windows\RTHDCPL.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Arquivos de programas\\MSN Messenger\\msnmsgr.exe"=
"c:\\Arquivos de programas\\MSN Messenger\\livecall.exe"=
"c:\\Arquivos de programas\\uTorrent\\uTorrent.exe"=
"e:\\Arquivos de programas\\Deep Silver\\S.T.A.L.K.E.R. - Clear Sky\\bin\\xrEngine.exe"=
"e:\\Arquivos de programas\\Deep Silver\\S.T.A.L.K.E.R. - Clear Sky\\bin\\dedicated\\xrEngine.exe"=
"e:\\Arquivos de programas\\KONAMI\\Pro Evolution Soccer 2009\\pes2009.exe"=
"e:\\Arquivos de programas\\Ubisoft\\Far Cry 2\\bin\\FarCry2.exe"=
"e:\\Arquivos de programas\\Ubisoft\\Far Cry 2\\bin\\FC2Launcher.exe"=
"e:\\Arquivos de programas\\Ubisoft\\Far Cry 2\\bin\\FC2Editor.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
"AllowInboundTimestampRequest"= 1 (0x1)
"AllowInboundMaskRequest"= 1 (0x1)
"AllowInboundRouterRequest"= 1 (0x1)
"AllowOutboundDestinationUnreachable"= 1 (0x1)
"AllowOutboundParameterProblem"= 1 (0x1)
"AllowOutboundTimeExceeded"= 1 (0x1)
"AllowRedirect"= 1 (0x1)
"AllowOutboundPacketTooBig"= 1 (0x1)
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\LogMeIn\x86\RaInfo.sys [2008-07-24 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2008-07-24 47640]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{606e2dea-9202-11dd-ae7f-0015f265d231}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com i:
\Shell\Open\command - i:\resycled\boot.com i:
*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90
.
- - - - ORFÃOS REMOVIDOS - - - -
HKLM-Run-c:\windows\system32\kdyjr.exe - c:\windows\system32\kdyjr.exe
.
------- Scan Suplementar -------
.
FireFox -: Profile - c:\documents and settings\Bruno\Dados de aplicativos\Mozilla\Firefox\Profiles\3as16whf.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.com.br/
FF -: plugin - c:\arquivos de programas\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF -: plugin - c:\arquivos de programas\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF -: plugin - c:\documents and settings\Bruno\Dados de aplicativos\Mozilla\Firefox\Profiles\3as16whf.default\extensions\LogMeInClient@logmein.com\plugins\npRACtrl.dll
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-05 20:28:13
Windows 5.1.2600 Service Pack 2 NTFS
Procurando processos ocultos ...
Procurando entradas auto inicializáveis ocultas ...
Procurando ficheiros/arquivos ocultos ...
Varredura completada com sucesso
arquivos/ficheiros ocultos: 0
**************************************************************************
.
Tempo para conclusão: 2008-11-05 20:29:04
ComboFix-quarantined-files.txt 2008-11-05 22:28:58
Pré-execução: 9 pasta(s) 17.004.650.496 bytes disponíveis
Pós execução: 9 pasta(s) 17,228,677,120 bytes disponíveis
245
saporra, o ComboFix não rodou.
Você executou ele em Modo de Segurança Sem rede?
Pelo que vi em seu log do Kaspersky, o file infector foi removido.![]()
Amigo bruno.alp, Kaspersky é excelente. Sem dúvidas, Kaspersky e NOD32 são os melhores. Recomendo sim o Kaspersky. :thumbs_upObrigado pela ajuda Mr.Wolf acho que estamos quase lá.
Você recomenda o Kaspersky ou existe algum outro mais prático e melhor?!
File::
c:\windows\system32\vdqsakvf.dll
c:\windows\system32\frxrynhs.dll
Folder::
c:\windows\74224F8D4A1748169EDB7BB854DE532C.TMP
c:\windows\NV14441300.TMP
c:\windows\NV25002744.TMP
Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{606e2dea-9202-11dd-ae7f-0015f265d231}]
Calma amigo saporra. O file infector foi removido. Porém, o bagle e o rootkit ainda permanecem em seu sistema. O ComboFix não executou, mas tudo bem. Vá em Iniciar > Executar, digite: combofix /u e tecle Enter. Remova as pastas C:\Qoobox, C:\ComboFix e o arquivo C:\ComboFix.txt. Siga as instruções abaixo dentro dos spoilers saporra.Sim executei.
Mas ta tudo normal entao?
Ok luisednardo, pode postar o log da máquina aqui. :thumbs_upPostado originalmente por luisednardo![]()
Mr Wolf,
agora que esse log está limpo vamos voltar para aquele outro log que estava cheio de vírus, pode ser?
Vou postar outro log do hijackthis pra vc se situar de onde paramos. Lembrando que aquela máquina está insuportavelmente lenta e só consigo trabalhar nela em modo de segurança.
Abraços Mestre Wolf