Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
pipanebo

Your Privacy is in Danger(ajuda)

Recommended Posts

Galera, to com com a mizeria desse virus aqui no meu pc e alem dele tava o Antivirus XP 2008 e alem desses 2 ainda tem um Virus Alert! do lado do meu relogio...

Ja fiz de tudo, passei uns Spyhunter mas ele n tirou, o 4.9 so achou alguns e 5.4.11 achou eles mas ele n é registrado e por isso ele não tira o virus!!

to desesperado

não quero formatar o pc. tenho muita coisa pra perder assim!!

Editado por wildkiller
Esta não é a seção correta a se postar logs do Hijackthis.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá!

- Faça o download do Malwarebytes Anti-Malware

* Faça a instalação dando um duplo clique em "mbam-setup.exe";

* Marque "Atualizar Malwarebytes Anti-Malware" e "Executar Malwarebytes Anti-Malware", e clique em concluir;

* Marque "Verificação Completa" e depois clique em Verificar (aguarde, pois o escaneamento é um pouco demorado)

* Quando o scan terminar, clique em Ok e em "Mostrar Resultados" para ver o log;

* Se algo for detectado, veja se tudo está marcado e clique em "Remover";

* O log é automaticamente gravado e pode ser consultado clicando em "Logs" do menu principal.

Poste este log gerado pelo Malwarebytes Anti-Malware na sua próxima resposta e nos diga como está o seu computador depois de seguir este procedimento acima.

Ficamos no aguardo de sua resposta.

Editado por Antonio Vieira

Compartilhar este post


Link para o post
Compartilhar em outros sites

Nossa, eu estava desesperada buscando uma solução pra esse virus...

Até q entrei num outro post desse forum o:

"problema com malware "YOUR PRIVACY IS IN DANGER" do xeidejuizo , mas só segui uns passos até q n soube mais o q fazer...>.<

Depois achei esse aqui e consegui me livrar finalmente daquele "you privacy is danger" e virus alert! :lol:

E o q eu devo fazer com os itens em quarentena??? O.O

E ainda tem algum problema com meu PC, pois só aparece um pedaço do papel de parede, a outra parte fica mostrando uma parte em branco ou uma pagina da net(caso eu estteja conectada)...O q eu faço??:confused:

E tb, às vezes aparece uma pagina da net quando clico em um link(imagem anexa), dai se eu clico na segunda opção , mesmo assim aparece uma pagina de instalação de um antivirus! :(

Como se n bastasse , quando inicia o windows, aparece uma mensagem falando que o arquivo C:\WINDOWS\sistem32\vpdikma.dll n pode ser encontrado...:confused:

Ah sim, e o log (q eu nem sei o q é, nem pra q serve) q o anti-mmalware forneceu vem a seguir:

Malwarebytes' Anti-Malware 1.24

Versão do banco de dados: 1012

Windows 5.1.2600 Service Pack 2

22:12:32 13/08/2008

mbam-log-8-13-2008 (22-12-32).txt

Tipo de Verificação: Completa (C:\|)

Objetos verificados: 149124

Tempo decorrido: 2 hour(s), 20 minute(s), 7 second(s)

Processos da Memória infectados: 0

Módulos de Memória Infectados: 3

Chaves do Registro infectadas: 45

Valores do Registro infectados: 11

Ítens do Registro infectados: 19

Pastas infectadas: 14

Arquivos infectados: 62

Processos da Memória infectados:

(Nenhum ítem malicioso foi detectado)

Módulos de Memória Infectados:

C:\WINDOWS\system32\urqOHYQi.dll (Trojan.Vundo) -> Delete on reboot.

C:\WINDOWS\system32\mgmmcn.dll (Trojan.Vundo) -> Delete on reboot.

C:\WINDOWS\system32\ssqNFUOe.dll (Trojan.Vundo) -> Delete on reboot.

Chaves do Registro infectadas:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8fc384a1-6112-4b27-8958-d4bf4e89ccfe} (Trojan.Vundo) -> Delete on reboot.

HKEY_CLASSES_ROOT\CLSID\{8fc384a1-6112-4b27-8958-d4bf4e89ccfe} (Trojan.Vundo) -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ec1d2317-0539-418f-bba2-e6bff2603bc6} (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{ec1d2317-0539-418f-bba2-e6bff2603bc6} (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e482a951-26ed-4898-a1eb-09a942d95a52} (Trojan.BHO) -> Delete on reboot.

HKEY_CLASSES_ROOT\CLSID\{e482a951-26ed-4898-a1eb-09a942d95a52} (Trojan.BHO) -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{7545d8c8-f53c-4e2f-8fa0-d248ef4a6e61} (Rogue.Installer) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{b4a78d29-52b1-4a7b-bac0-1471bedf9836} (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\c:/windows/downloaded program files/conflict.1/setup.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{b4a78d29-52b1-4a7b-bac0-1471bedf9836} (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{1ecc44fb-970d-4bc8-90e3-002da4dd21b8} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{63bd4ee4-660b-434d-a54b-7c1f53e2fedd} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{6d2c09c4-ec95-4251-81fd-1cd01fd8ae44} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{d622e87a-35f9-4fb2-afee-4f5bf8407c7a} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib\{ff14b02b-6ee4-400f-a729-b0ea35f921c2} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\aosmtp.mail (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\aosmtp.mail.1 (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{f8d07b72-b4b4-46a0-acc0-c771d4614b82} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\aosmtp.fastsender (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\aosmtp.fastsender.1 (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{69620165-77dd-44ee-995c-3632e525a22b} (Spyware.Banker) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\AppID\{127df9b4-d75d-44a6-af78-8c3a8ceb03db} (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\acm.acmfactory (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\acm.acmfactory.1 (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{a9aae1ab-9688-42c5-86f5-c12f6b9015ad} (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{43382522-a846-46f4-ac57-1f71ae6e1086} (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{572fb162-c0ba-4edf-8cff-e3846153b9b0} (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Interface\{72a836d1-bc00-43c0-a941-17960e4fb842} (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\Typelib\{df901432-1b9f-4f5b-9e56-301c553f9095} (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rhc3n9j0ev4p (Rogue.Multiple) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\rhc3n9j0ev4p (Rogue.Multiple) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\msliksur (Trojan.DNSChanger) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\msliksurserv (Rootkit.Agent) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ssqnfuoe (Trojan.Vundo) -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\VSPlugin (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\aoprndtws (Trojan.Vundo) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Screensavers.com (Adware.Comet) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\AppID\ACM.DLL (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\WUSN.1 (Adware.WhenUSave) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WebVideo (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Valores do Registro infectados:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\Downloaded Program Files\CONFLICT.1\setup.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components\0\source (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows update loader (Backdoor.Bot) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ADP (Rogue.Multiple) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{e482a951-26ed-4898-a1eb-09a942d95a52} (Trojan.Vundo) -> Delete on reboot.

HKEY_CURRENT_USER\Control Panel\Desktop\wallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\Control Panel\Desktop\originalwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\Control Panel\Desktop\convertedwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\Control Panel\Desktop\scrnsave.exe (Hijack.Wallpaper) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\General\backupwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\General\wallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.

Ítens do Registro infectados:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo) -> Data: c:\windows\system32\urqohyqi -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\urqohyqi -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProductId (Trojan.FakeAlert) -> Bad: (VIRUS ALERT!) Good: (55274-640-8816093-23063) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\Control Panel\International\sTimeFormat (Trojan.FakeAlert) -> Bad: (HH:mm: VIRUS ALERT!) Good: (HH:mm:ss) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowControlPanel (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowRun (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowSearch (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowMyDocs (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowMyComputer (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoStartMenuMorePrograms (Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives (Hijack.Drives) -> Bad: (12) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoToolbarCustomize (Hijack.Explorer) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSetFolders (Hijack.Explorer) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispBackgroundPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispScrSavPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispCPL (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Pastas infectadas:

C:\WINDOWS\privacy_danger (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\privacy_danger\images (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun\HKCU (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun\HKCU\RunOnce (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun\HKLM (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun\HKLM\RunOnce (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun\StartMenuAllUsers (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Autorun\StartMenuCurrentUser (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\BrowserObjects (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\rhc3n9j0ev4p\Quarantine\Packages (Rogue.Multiple) -> Quarantined and deleted successfully.

Arquivos infectados:

C:\WINDOWS\system32\urqOHYQi.dll (Trojan.Vundo) -> Delete on reboot.

C:\WINDOWS\system32\iQYHOqru.ini (Trojan.Vundo) -> Delete on reboot.

C:\WINDOWS\system32\iQYHOqru.ini2 (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\mgmmcn.dll (Trojan.Vundo) -> Delete on reboot.

C:\WINDOWS\system32\rejhhhau.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\uahhhjer.ini (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\vpdtikma.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\amkitdpv.ini (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\ssqNFUOe.dll (Trojan.BHO) -> Delete on reboot.

C:\WINDOWS\Downloaded Program Files\CONFLICT.1\setup.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP339\A0174359.exe (Trojan.Fakealert) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP335\A0174127.exe (Trojan.Fakealert) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP338\A0174345.exe (Trojan.Fakealert) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP340\A0174376.exe (Trojan.Fakealert) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175371.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175372.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175373.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175375.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175376.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175393.exe (Trojan.Clicker) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP342\A0175395.exe (Trojan.Fakealert) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP348\A0184140.dll (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP348\A0184135.dll (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP348\A0184136.dll (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP348\A0184137.dll (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP348\A0184138.dll (Trojan.Agent) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{FEFB4163-A0F4-4A66-8840-147081D08991}\RP348\A0184139.dll (Trojan.Clicker) -> Quarantined and deleted successfully.

C:\TEMP\nsaB6.tmp\dcryptdll.dll (Trojan.DNSChanger) -> Quarantined and deleted successfully.

C:\WINDOWS\edlb.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\xokvrpwg.dll (Trojan.Zlob) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\cxgbvngr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\privacy_danger\index.htm (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\privacy_danger\images\capt.gif (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\privacy_danger\images\danger.jpg (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\privacy_danger\images\down.gif (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\privacy_danger\images\spacer.gif (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\database.dat (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\license.txt (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\MFC71.dll (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\MFC71ENU.DLL (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\msvcp71.dll (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\msvcr71.dll (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\rhc3n9j0ev4p.exe (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\rhc3n9j0ev4p.exe.local (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Arquivos de programas\rhc3n9j0ev4p\Uninstall.exe (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\WINDOWS\svchost32.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\cookies.ini (Malware.Trace) -> Quarantined and deleted successfully.

C:\WINDOWS\xpupdate.exe (Backdoor.Bot) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\xxyayYqo.dll (Backdoor.Agent) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\wvUmmKDV.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\khfDvtsr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\khfDwtqQ.dll (Trojan.Vundo) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\blphc7n9j0ev4p.scr (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\lphc7n9j0ev4p.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\phc7n9j0ev4p.bmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\pphc7n9j0ev4p.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\TmpRecentIcons\PCPrivacyCleaner.lnk (Rogue.Link) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Dados de aplicativos\TmpRecentIcons\VirusRemover2008.lnk (Rogue.Link) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Favoritos\Error Cleaner.url (Rogue.Link) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Favoritos\Privacy Protector.url (Rogue.Link) -> Quarantined and deleted successfully.

C:\Documents and Settings\Jose Teodoro\Favoritos\Spyware&Malware Protection.url (Rogue.Link) -> Quarantined and deleted successfully.

C:\WINDOWS\system32\drivers\msliksurserv.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

OBS: E se a melhor forma de sermos felizes é contribuirmos para a felicidade dos outros, pode se considerar feliz agora!:P

post-393239-13884947880609_thumb.jpg

post-393239-13884947881323_thumb.jpg

Compartilhar este post


Link para o post
Compartilhar em outros sites

Não há de que!

Quanto aos itens em quarentena, pode deixá-los lá mesmo. Deixando lá o seu computador fica seguro e você evita de apagar algum arquivo importante que o anti-malware possa ter confundido com vírus.

Agora é muito importante fazer um escaneamento online do seu computador com os melhores antivírus online que são:

http://onecare.live.com/site/pt-br/default.htm?mkt=pt-br (OBS: NÃO mande o relatório para a Microsoft durante a execução desta ferramenta online)

http://www.pandasoftware.com/activescan/

http://www.eset.com/onlinescan/index.php

http://support.f-secure.com/enu/home/ols.shtml

http://www.bitdefender.com/scan8/ie.html

http://housecall.trendmicro.com/

http://www.ewido.net/en/onlinescan/

E para complementar a limpeza de seu computador e deixar seu PC mais seguro e eficiente sugiro que você siga as dicas destes tutoriais:

Dicas de programas gratuitos para deixar o seu computador mais seguro e eficiente

Tutorial do Mcafee SiteAdvisor

Como desativar serviços perigosos do Windows e procedimentos que o tornam mais seguro

Se mesmo seguindo esses passos acima ainda houver algum vírus ou problema no seu computador, siga as instruções deste tópico e poste um log do Hijackthis na seção de Remoção de Malwares.

Editado por Antonio Vieira

Compartilhar este post


Link para o post
Compartilhar em outros sites

:lol:

Já vou fazer verificar os links e seguir os procedimentos.

Valeu mesmo por me impedir d ir levar o PC a um tecnico..( n q eu seja paranoica, mas sempre acho q tecnicos e mecanicos sempre consertam uma coisa e , aproveitando de nossa ignorância, quebram outra...U.U)

Compartilhar este post


Link para o post
Compartilhar em outros sites

Crie uma conta ou entre para comentar

Você precisar ser um membro para fazer um comentário






Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×