Ir ao conteúdo
  • Cadastre-se
gjc

OpenGL deixou de funcionar apos reinstalar driver

Recommended Posts

Depois de tentar usar um programa que prometia desativar o pixel shader 2.0 de um jogo, comecei a ter muitos problemas com vídeo e som no meu computador, ao ativar e desativar camadas do photoshop, por exemplo, tenho que entrar em alguma outra janela e voltar pro photoshop, quanto ao som, o volume do sistema é abaixado ate o mínimo automaticamente, tenho que ficar aumentando toda hora, de vez em quando ainda da umas rasgadas no som...

Pra tentar solucionar eu reinstalar o driver, como o site oficial não suporta mais minha placa de vídeo, que é bem antiga, tive que recorrer a um site nao oficial, fui no que parecia mais confiável... Depois disso o OpenGL parou de funcionar e ainda por cima não resolveu o problema do photoshop, então eu desconfiei de que o programa que eu usei para desativar o Pixel Shader 2.0 estava infectado, passei o combofix, não resolveu mas não foi em vão, já que melhorou muito a performance do meu computador. A questão é, preciso do OpenGL funcionando com urgência, o que eu devo fazer?

\/versão resumida pra quem não quiser ler o texto ou não tem tempo\/

Baixei programa pra desativar pixel shader 2.0 de um jogo.

Photoshop parou de funcionar corretamente.

Reinstalei driver.

OpenGL parou de funcionar.

Desconfiei de vírus e passei o combofix.

Reinstalei driver de novo.

Não funcionou.

Minha placa de vídeo é a via unichrome pro igp.

Log do combofix

ComboFix 13-06-20.01 - Owner 20/06/2013 9:17.1.1 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.55.1033.18.447.254 [GMT -3:00]

Running from: d:\documents and settings\Owner\Desktop\ComboFix.exe

.

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

d:\documents and settings\Owner\Application Data\PriceGong

d:\documents and settings\Owner\Application Data\PriceGong\Data\1.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\a.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\b.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\c.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\d.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\e.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\f.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\g.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\h.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\i.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\j.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\k.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\l.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\m.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\n.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\o.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\p.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\q.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\r.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\s.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\t.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\u.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\v.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\w.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\wlu.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\x.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\y.txt

d:\documents and settings\Owner\Application Data\PriceGong\Data\z.txt

d:\documents and settings\Owner\Application Data\winap32.exe

d:\documents and settings\Owner\Start Menu\Programs\Startup\xpp32.exe

d:\documents and settings\Owner\WINDOWS

d:\windows\system\VB40032.DLL

.

.

((((((((((((((((((((((((( Files Created from 2013-05-20 to 2013-06-20 )))))))))))))))))))))))))))))))

.

.

2067-05-27 13:16 . 2013-02-14 00:34 1249280 ----a-w- d:\program files\Microsoft Games\Impossible Creatures\InsectMod.dll

2067-05-21 20:35 . 2003-06-05 15:40 106496 ----a-w- d:\program files\Microsoft Games\Impossible Creatures\Filesystem.dll

2013-06-19 14:01 . 2013-06-19 14:04 -------- d-----w- d:\documents and settings\Owner\Application Data\raidcall

2013-06-19 14:00 . 2013-06-19 14:42 -------- d-----w- d:\program files\RaidCall

2013-06-17 00:37 . 2005-11-01 13:35 28672 ----a-r- d:\windows\system32\VModes.exe

2013-06-16 23:53 . 2006-08-30 20:44 180224 ----a-w- d:\windows\system32\VTTrayp.exe

2013-06-16 23:53 . 2006-08-03 17:53 53248 ----a-w- d:\windows\system32\VTTimer.exe

2013-06-16 23:53 . 2006-05-22 17:49 593920 ----a-w- d:\windows\system32\VTovrlay.dll

2013-06-16 23:53 . 2006-09-20 20:49 265984 ----a-w- d:\windows\system32\drivers\vtmini.sys

2013-06-16 23:53 . 2006-06-20 14:21 327680 ----a-w- d:\windows\system32\VTInfo2.dll

2013-06-16 23:53 . 2006-09-20 21:20 1884160 ----a-w- d:\windows\system32\vticd.dll

2013-06-16 23:53 . 2006-06-22 20:05 462848 ----a-w- d:\windows\system32\VTGamma2.dll

2013-06-16 23:53 . 2006-09-20 20:49 3520256 ----a-w- d:\windows\system32\vtdisp.dll

2013-06-16 23:53 . 2006-08-25 16:47 651264 ----a-w- d:\windows\system32\VTDisply.dll

2013-06-16 05:52 . 2013-06-16 05:54 -------- d-----w- d:\documents and settings\Owner\Application Data\Avatar

2013-06-16 05:51 . 2013-06-17 08:57 -------- d-----w- d:\program files\Avatar Legends

2013-06-12 02:28 . 2013-06-12 02:30 -------- d-----w- d:\documents and settings\Owner\luna

2013-06-11 03:13 . 2013-06-11 03:14 -------- d-----w- d:\program files\CMake 2.8

2013-06-07 18:32 . 2013-06-07 18:32 -------- d-----w- d:\program files\Free Video to GIF Converter

2013-06-07 02:05 . 2013-06-07 02:05 -------- d-----w- d:\documents and settings\Owner\Application Data\SystemRequirementsLab

2013-06-07 01:57 . 2013-06-07 01:57 -------- d-----w- d:\windows\Logs

2013-06-07 01:45 . 2013-06-07 01:45 -------- d-----w- D:\Riot Games

2013-06-06 22:45 . 2013-06-06 22:45 -------- d-----w- d:\documents and settings\Owner\.swt

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-04-15 09:50 . 2013-04-15 09:50 113608 ----a-w- d:\windows\system32\drivers\scdemu.sys

2013-04-07 19:02 . 2013-02-09 21:27 861088 ----a-w- d:\windows\system32\npDeployJava1.dll

2013-04-07 19:02 . 2013-02-09 21:27 782240 ----a-w- d:\windows\system32\deployJava1.dll

2013-04-06 11:56 . 2013-04-06 11:56 967 ----a-w- d:\windows\ScUnin.pif

2013-04-06 11:56 . 2013-04-06 11:56 94208 ----a-w- d:\windows\ScUnin.exe

2013-04-04 08:35 . 2013-04-29 17:38 94112 ----a-w- d:\windows\system32\WindowsAccessBridge.dll

2013-03-31 06:04 . 2012-10-08 12:36 73432 ----a-w- d:\windows\system32\FlashPlayerCPLApp.cpl

2013-03-31 06:04 . 2012-10-08 12:36 693976 ----a-w- d:\windows\system32\FlashPlayerApp.exe

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{29acf17c-1713-4286-8f40-bfd05f1e70c8}"= "d:\program files\BittorrentBar_PT\prxtbBit0.dll" [2012-11-06 183112]

.

[HKEY_CLASSES_ROOT\clsid\{29acf17c-1713-4286-8f40-bfd05f1e70c8}]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{29acf17c-1713-4286-8f40-bfd05f1e70c8}]

2012-11-06 13:01 183112 ----a-w- d:\program files\BittorrentBar_PT\prxtbBit0.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{29acf17c-1713-4286-8f40-bfd05f1e70c8}"= "d:\program files\BittorrentBar_PT\prxtbBit0.dll" [2012-11-06 183112]

.

[HKEY_CLASSES_ROOT\clsid\{29acf17c-1713-4286-8f40-bfd05f1e70c8}]

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{29ACF17C-1713-4286-8F40-BFD05F1E70C8}"= "d:\program files\BittorrentBar_PT\prxtbBit0.dll" [2012-11-06 183112]

.

[HKEY_CLASSES_ROOT\clsid\{29acf17c-1713-4286-8f40-bfd05f1e70c8}]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]

@="{C5994560-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]

@="{C5994561-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]

@="{C5994562-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]

@="{C5994563-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]

@="{C5994564-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]

@="{C5994565-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]

@="{C5994566-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]

@="{C5994567-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]

@="{C5994568-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]

2011-06-13 09:20 64792 ----a-w- d:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BitTorrent"="d:\program files\BitTorrent\BitTorrent.exe" [2013-05-03 882520]

"DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]

"Boxoft Tools"="d:\documents and settings\All Users\Application Data\Boxtools\Boxofttoolbox.exe" [2010-12-15 514048]

"Pando Media Booster"="d:\program files\Pando Networks\Media Booster\PMB.exe" [2013-01-07 3093624]

"Skype"="d:\program files\Skype\Phone\Skype.exe" [2013-04-19 18678376]

"Browser Infrastructure Helper"="d:\documents and settings\Owner\Local Settings\Application Data\Smartbar\Application\QuickShare.exe" [2013-04-11 20248]

"GarenaPlus"="d:\program files\Garena Plus\GarenaMessenger.exe" [2013-05-03 9829168]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IMJPMIG8.1"="d:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]

"PHIME2002ASync"="d:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]

"PHIME2002A"="d:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]

"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]

"EaseUS EPM tray"="d:\program files\EaseUS\EaseUS Partition Master 9.2.1 Home Edition\bin\EpmNews.exe" [2012-11-29 2086984]

"SunJavaUpdateSched"="d:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]

"VTTimer"="VTTimer.exe" [2006-08-03 53248]

"VTTrayp"="VTtrayp.exe" [2006-08-30 180224]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"_nltide_3"="advpack.dll" [2009-03-07 128512]

.

d:\documents and settings\All Users\Start Menu\Programs\Startup\

Microsoft .NET Framework v4 - Slow Windows XP Boot Fix.vbs [2012-6-20 861]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"ForceClassicControlPanel"= 1 (0x1)

"MaxRecentDocs"= 18 (0x12)

"NoSMConfigurePrograms"= 1 (0x1)

"NoRecentDocsNetHood"= 1 (0x1)

"MemCheckBoxInRunDlg"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

SecurityProviders schannel.dll, credssp.dll, digest.dll

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

@="Service"

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

"FirewallOverride"=dword:00000001

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"d:\\Program Files\\BitTorrent\\BitTorrent.exe"=

"d:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=

"d:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"d:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=

"d:\\Program Files\\Microsoft Games\\Dungeon Siege 2\\DungeonSiege2.exe"=

"d:\\Program Files\\Garena Plus\\Room\\garena_room.exe"=

"d:\\Program Files\\Skype\\Phone\\Skype.exe"=

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"58461:TCP"= 58461:TCP:Pando Media Booster

"58461:UDP"= 58461:UDP:Pando Media Booster

.

R0 mv61xxmm;mv61xxmm;d:\windows\system32\drivers\mv61xxmm.sys [11/10/2012 14:31 14184]

R0 mv64xxmm;mv64xxmm;d:\windows\system32\drivers\mv64xxmm.sys [11/10/2012 14:31 5632]

R0 mvxxmm;mvxxmm;d:\windows\system32\drivers\mvxxmm.sys [11/10/2012 14:31 14184]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;d:\windows\system32\drivers\dtsoftbus01.sys [29/10/2012 09:49 242240]

S3 epmntdrv;epmntdrv;d:\windows\system32\epmntdrv.sys [10/3/2013 12:39 13896]

S3 EuGdiDrv;EuGdiDrv;d:\windows\system32\EuGdiDrv.sys [10/3/2013 12:39 9160]

S3 GGSAFERDriver;GGSAFER Driver;\??\d:\program files\Garena Plus\Room\safedrv.sys --> d:\program files\Garena Plus\Room\safedrv.sys [?]

S3 XDva399;XDva399;\??\d:\windows\system32\XDva399.sys --> d:\windows\system32\XDva399.sys [?]

S3 XDva401;XDva401;\??\d:\windows\system32\XDva401.sys --> d:\windows\system32\XDva401.sys [?]

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-06-20 04:09 1165776 ----a-w- d:\program files\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe

.

Contents of the 'Scheduled Tasks' folder

.

2013-05-01 d:\windows\Tasks\DriverEasy Scheduled Scan.job

- d:\program files\Easeware\DriverEasy\DriverEasy.exe [2012-10-29 17:17]

.

2013-06-20 d:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- d:\program files\Google\Update\GoogleUpdate.exe [2012-10-29 07:49]

.

2013-06-20 d:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- d:\program files\Google\Update\GoogleUpdate.exe [2012-10-29 07:49]

.

2013-04-10 d:\windows\Tasks\PhotoStageReminder.job

- d:\program files\NCH Software\PhotoStage\photostage.exe [2013-04-07 00:55]

.

2013-05-28 d:\windows\Tasks\PixillionReminder.job

- d:\program files\NCH Software\Pixillion\pixillion.exe [2013-05-25 15:25]

.

.

------- Supplementary Scan -------

.

uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2849856

uInternet Settings,ProxyServer = SOCKS=77.41.1.12:1080

TCP: Interfaces\{EC38E30D-161C-491A-BD29-E1DA45D0D183}: NameServer = 189.50.144.2,189.50.144.11

FF - ProfilePath - d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\

FF - prefs.js: browser.startup.homepage - www.google.com.br

FF - prefs.js: network.proxy.gopher -

FF - prefs.js: network.proxy.gopher_port - 0

FF - prefs.js: network.proxy.type - 1

FF - ExtSQL: 2013-04-26 12:48; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF - ExtSQL: 2013-04-26 16:38; {daf44bf7-a45e-4450-979c-91cf07434c3d}; d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\extensions\{daf44bf7-a45e-4450-979c-91cf07434c3d}.xpi

FF - ExtSQL: 2013-04-26 16:38; {9fb8c270-7124-11dd-ad8b-0800200c9a66}; d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\extensions\{9fb8c270-7124-11dd-ad8b-0800200c9a66}.xpi

FF - ExtSQL: 2013-04-26 16:38; cache@status.org; d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\extensions\cache@status.org.xpi

FF - ExtSQL: 2013-05-02 21:14; translator@zoli.bod; d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\extensions\translator@zoli.bod.xpi

FF - ExtSQL: 2013-05-21 19:52; SQLiteManager@mrinalkant.blogspot.com; d:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\aanr1bo7.default\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi

.

- - - - ORPHANS REMOVED - - - -

.

HKCU-Run-winap32 - d:\documents and settings\Owner\Application Data\winap32.exe

HKLM-Run-WinampAgent - d:\program files\Winamp\winampa.exe

HKLM-Run-PSafeTray - d:\program files\PSafe\PSafeSysTray.exe

HKLM-Run-PSafeWDS - d:\program files\PSafe\PSafeWDS.exe

SafeBoot-WudfPf

SafeBoot-WudfRd

AddRemove-Adobe Acrobat 5.0 - d:\program files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu

AddRemove-Deus Ex - c:\deusex\System\Setup.exe

AddRemove-MS Access 97 SP2 - c:\program files\Microsoft Office\setup\setup.exe

AddRemove-reFX Vanguard 1.7.2_is1 - c:\ableton\plugins\unins000.exe

.

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2013-06-20 09:34

Windows 5.1.2600 Service Pack 3 NTFS

.

scanning hidden processes ...

.

scanning hidden autostart entries ...

.

scanning hidden files ...

.

scan completed successfully

hidden files: 0

.

**************************************************************************

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@d:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="d:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

Completion time: 2013-06-20 09:37:45

ComboFix-quarantined-files.txt 2013-06-20 12:37

.

Pre-Run: 47.463.518.208 bytes free

Post-Run: 49.455.079.424 bytes free

.

- - End Of File - - DC4F875911E7BD498E55D11BAA6CE696

8F558EB6672622401DA993E1E865C861

Desde já agradeço pela atenção, espero que possam me ajudar!

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×