Ir ao conteúdo
  • Cadastre-se
nanoeumesmo

Não consigo ver arquivos ocultos...

Recommended Posts

Não consigo ver arquivos ocultos, estão abaixo os logs do DDS, do gmer e do HiJackThis:

DDS:

DDS (Version 1.0) - NTFSx86

Run by nano at 11:28:37,31 on sex 05/12/2008

Microsoft Windows XP Professional 5.1.2600.2.1252.55.1046.18.511.154 [GMT -3:00]

============== Running Processes ===============

D:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

D:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

D:\WINDOWS\system32\spoolsv.exe

D:\WINDOWS\Explorer.EXE

D:\ARQUIV~1\ENLTV\ENLTV\TVTray.exe

D:\WINDOWS\system32\ctfmon.exe

D:\Arquivos de programas\Orbitdownloader\orbitdm.exe

D:\Arquivos de programas\Orbitdownloader\orbitnet.exe

D:\Arquivos de programas\ENLTV\ENLTV\RemoteService\RS.exe

D:\WINDOWS\System32\svchost.exe -k HTTPFilter

D:\WINDOWS\system32\wuauclt.exe

D:\Arquivos de programas\Mozilla Firefox\firefox.exe

D:\ARQUIV~1\AVG\AVG8\avgam.exe

D:\ARQUIV~1\AVG\AVG8\avgrsx.exe

D:\ARQUIV~1\AVG\AVG8\avgnsx.exe

D:\Documents and Settings\nano\Desktop\dds.scr

============== Pseudo HJT Report ===============

BHO: {000123B4-9B42-4900-B3F7-F4B073EFC214} - d:\arquivos de programas\orbitdownloader\orbitcth.dll

BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\arquivos de programas\arquivos comuns\adobe\acrobat\activex\AcroIEHelper.dll

BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - d:\arquivos de programas\avg\avg8\avgssie.dll

BHO: {A057A204-BACC-4D26-9990-79A187E2698E} - d:\arquiv~1\avg\avg8\AVGTOO~1.DLL

TB: {A057A204-BACC-4D26-9990-79A187E2698E} - d:\arquiv~1\avg\avg8\AVGTOO~1.DLL

uRun: [CTFMON.EXE] d:\windows\system32\ctfmon.exe

mRun: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd

mRun: [Adobe Reader Speed Launcher] "d:\arquivos de programas\adobe\reader 8.0\reader\Reader_sl.exe"

mRun: [AVG8_TRAY] d:\arquiv~1\avg\avg8\avgtray.exe

dRun: [CTFMON.EXE] d:\windows\system32\CTFMON.EXE

StartupFolder: d:\docume~1\alluse~1\menuin~1\progra~1\inicia~1\orbit.lnk - d:\arquivos de programas\orbitdownloader\orbitdm.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\arquivos de programas\messenger\msmsgs.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\arquivos de programas\messenger\msmsgs.exe

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - d:\arquivos de programas\avg\avg8\avgpp.dll

AppInit_DLLs: avgrsstx.dll

============= SERVICES / DRIVERS ===============

R0 AvgRkx86;avgrkx86.sys;d:\windows\system32\drivers\avgrkx86.sys [2008-12-5 12936]

R1 AvgLdx86;AVG AVI Loader Driver x86;d:\windows\system32\drivers\avgldx86.sys [2008-12-5 98440]

R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;d:\windows\system32\drivers\avgmfx86.sys [2008-12-5 26824]

R1 AvgTdiX;AVG8 Network Redirector;d:\windows\system32\drivers\avgtdix.sys [2008-12-5 90632]

R2 RemoteControlService;SuperTV Pro Remote Control Service;d:\arquivos de programas\enltv\enltv\remoteservice\RS.exe [2008-12-1 131072]

R3 Avgfwdx;Avgfwdx;d:\windows\system32\drivers\avgfwdx.sys [2008-12-5 29208]

R3 PhTVTune;ENCORE TV Tuner Pro PCI Adapter;d:\windows\system32\drivers\PhTVTune.sys [2008-7-9 28864]

S2 avg8emc;AVG8 E-mail Scanner;d:\arquiv~1\avg\avg8\avgemc.exe [2008-12-5 874776]

S2 avg8wd;AVG8 WatchDog;d:\arquiv~1\avg\avg8\avgwdsvc.exe [2008-12-5 231704]

S2 avgfws8;AVG8 Firewall;d:\arquiv~1\avg\avg8\avgfws8.exe [2008-12-5 1212184]

S3 Avgfwfd;AVG network filter service;d:\windows\system32\drivers\avgfwdx.sys [2008-12-5 29208]

=============== Created Last 30 ================

2008-12-05 11:22 <DIR> --d----- d:\arquivos de programas\Trend Micro

2008-12-05 08:56 <DIR> --d-h--- D:\$AVG8.VAULT$

2008-12-05 08:13 90,632 a------- d:\windows\system32\drivers\avgtdix.sys

2008-12-05 08:13 12,936 a------- d:\windows\system32\drivers\avgrkx86.sys

2008-12-05 08:13 10,520 a------- d:\windows\system32\avgrsstx.dll

2008-12-05 08:13 98,440 a------- d:\windows\system32\drivers\avgldx86.sys

2008-12-05 08:12 <DIR> --d----- d:\windows\system32\drivers\Avg

2008-12-05 08:12 <DIR> --d----- d:\docume~1\nano\dadosd~1\AVGTOOLBAR

2008-12-05 08:12 50,968 a------- d:\windows\system32\avgfwdx.dll

2008-12-05 08:12 29,208 a------- d:\windows\system32\drivers\avgfwdx.sys

2008-12-05 08:07 <DIR> --d----- d:\docume~1\alluse~1\dadosd~1\Avg8

2008-12-05 07:25 16 a------- d:\windows\system\cmicnfg.ini

2008-12-05 07:15 <DIR> --d-hr-- d:\documents and settings\nano\Dados de aplicativos

2008-12-05 07:15 <DIR> --d-h--- d:\documents and settings\nano\Modelos

2008-12-05 07:15 <DIR> --d-h--- d:\documents and settings\nano\Configurações locais

2008-12-05 07:15 <DIR> --d-h--- d:\documents and settings\nano\Ambiente de rede

2008-12-05 07:15 <DIR> --d-h--- d:\documents and settings\nano\Ambiente de impressão

2008-12-05 07:15 <DIR> --d--r-- d:\documents and settings\nano\Meus documentos

2008-12-05 07:15 <DIR> --d--r-- d:\documents and settings\nano\Menu Iniciar

2008-12-05 07:15 <DIR> --d--r-- d:\documents and settings\nano\Favoritos

2008-12-05 07:15 <DIR> --d----- d:\documents and settings\nano

2008-12-05 03:00 <DIR> --d----- d:\windows\system32\PreInstall

2008-12-05 03:00 22,752 a------- d:\windows\system32\spupdsvc.exe

2008-12-05 03:00 <DIR> --d-h--- d:\windows\$hf_mig$

2008-12-04 16:47 <DIR> --d----- D:\DVDVideoSoft

2008-12-04 16:47 344,064 a------- d:\windows\system32\msvcr70.dll

2008-12-04 16:47 <DIR> --d----- d:\arquivos de programas\DVDVideoSoft

2008-12-04 16:47 <DIR> --d----- d:\arquivos de programas\arquivos comuns\DVDVideoSoft

2008-12-04 16:17 <DIR> --d----- D:\Downloads

2008-12-04 16:17 <DIR> --d----- d:\arquivos de programas\Orbitdownloader

2008-12-04 16:08 <DIR> --d----- d:\windows\RegisteredPackages

2008-12-04 15:44 <DIR> --d----- d:\arquivos de programas\iitv2.3

2008-12-04 15:15 <DIR> --d----- d:\windows\system32\SoftwareDistribution

2008-12-03 12:05 <DIR> --d----- d:\arquivos de programas\arquivos comuns\Macromedia Shared

2008-12-03 12:05 <DIR> --d----- d:\arquivos de programas\arquivos comuns\Macromedia

2008-12-03 12:05 1 a------- d:\windows\system32\FlashPaper2PrinterPort

2008-12-03 12:05 <DIR> --d----- d:\arquivos de programas\Macromedia

2008-12-03 12:05 <DIR> --d----- d:\windows\Downloaded Installations

2008-12-03 11:21 <DIR> --d----- d:\arquivos de programas\AVG

2008-12-03 11:21 108,556 ---shr-- D:\ncyrf.bat

2008-12-03 00:16 <DIR> --d----- d:\windows\system32\CatRoot_bak

2008-12-02 12:33 26,496 ac------ d:\windows\system32\dllcache\usbstor.sys

2008-12-01 18:00 <DIR> --d----- d:\arquivos de programas\Philips Semiconductors

2008-12-01 18:00 122,880 a------- d:\windows\system32\Snapshot.ax

2008-12-01 17:59 425,984 a------- d:\windows\system32\xvid.dll

2008-12-01 17:59 282,624 a------- d:\windows\system32\xvid.ax

2008-12-01 17:59 <DIR> --d----- d:\arquivos de programas\ENLTV

2008-12-01 17:52 91,136 ac------ d:\windows\system32\dllcache\kswdmcap.ax

2008-12-01 17:52 61,952 ac------ d:\windows\system32\dllcache\kstvtune.ax

2008-12-01 17:52 54,784 ac------ d:\windows\system32\dllcache\vfwwdm32.dll

2008-12-01 17:52 28,672 ac------ d:\windows\system32\dllcache\vidcap.ax

2008-12-01 17:52 91,136 a------- d:\windows\system32\kswdmcap.ax

2008-12-01 17:52 61,952 a------- d:\windows\system32\kstvtune.ax

2008-12-01 17:52 54,784 a------- d:\windows\system32\vfwwdm32.dll

2008-12-01 17:52 28,672 a------- d:\windows\system32\vidcap.ax

2008-12-01 17:52 43,008 ac------ d:\windows\system32\dllcache\ksxbar.ax

2008-12-01 17:52 43,008 a------- d:\windows\system32\ksxbar.ax

2008-12-01 17:47 60,800 ac------ d:\windows\system32\dllcache\sysaudio.sys

2008-12-01 17:42 499,712 a------- d:\windows\system32\msvcp71.dll

2008-12-01 17:42 348,160 a------- d:\windows\system32\msvcr71.dll

2008-12-01 17:40 32,640 a------- d:\windows\system32\drivers\sisidex.sys

2008-12-01 17:40 135,168 a----r-- d:\windows\system32\property.dll

2008-12-01 17:40 46,464 a----r-- d:\windows\system32\drivers\SiSRaid.sys

2008-12-01 17:40 <DIR> --d----- d:\arquivos de programas\arquivos comuns\InstallShield

2008-12-01 17:34 <DIR> --ds---- d:\windows\system32\Microsoft

2008-12-01 17:27 108,556 ---shr-- d:\windows\system32\kamsoft.exe

2008-12-01 17:23 1,875,968 ac------ d:\windows\system32\dllcache\msir3jp.lex

2008-12-01 17:22 66,728 ac------ d:\windows\system32\dllcache\big5.nls

2008-12-01 17:20 <DIR> --dsh--- d:\documents and settings\all users\DRM

2008-12-01 17:20 <DIR> --d-h--- d:\arquivos de programas\WindowsUpdate

2008-12-01 17:20 <DIR> --d----- d:\arquivos de programas\Serviços on-line

2008-12-01 17:19 <DIR> --d----- d:\arquivos de programas\arquivos comuns\Serviços

2008-12-01 17:19 <DIR> --d----- d:\arquivos de programas\arquivos comuns\MSSoap

2008-12-01 17:18 <DIR> --d----- d:\arquivos de programas\Messenger

2008-12-01 17:18 <DIR> --d----- d:\arquivos de programas\MSN Gaming Zone

2008-12-01 17:18 <DIR> --d----- d:\arquivos de programas\Windows NT

2008-12-01 14:59 <DIR> --d----- d:\arquivos de programas\arquivos comuns\ODBC

2008-12-01 14:59 <DIR> --d----- d:\arquivos de programas\arquivos comuns\SpeechEngines

2008-12-01 14:59 <DIR> --d-h--- d:\documents and settings\all users\Modelos

2008-12-01 14:59 <DIR> --d--r-- d:\documents and settings\all users\Menu Iniciar

2008-12-01 14:59 <DIR> --d--r-- d:\documents and settings\all users\Documentos

2008-12-01 14:59 <DIR> --d----- d:\documents and settings\all users\Favoritos

2008-12-01 14:58 <DIR> --d-hr-- d:\documents and settings\all users\Dados de aplicativos

==================== Find3M ====================

2008-12-03 00:40 86,327 a------- d:\windows\pchealth\helpctr\offlinecache\index.dat

2008-12-01 17:38 344,734 a------- d:\windows\system32\perfh016.dat

2008-12-01 17:38 48,846 a------- d:\windows\system32\perfc016.dat

2008-12-01 17:18 21,844 a------- d:\windows\system32\emptyregdb.dat

============= FINISH: 11:28:51,75 ===============

Gmer:

GMER 1.0.14.14536 - http://www.gmer.net

Rootkit scan 2008-12-05 11:33:38

Windows 5.1.2600 Service Pack 2

---- Devices - GMER 1.0.14 ----

AttachedDevice \FileSystem\Ntfs \Ntfs sisidex.sys (FileSpy Filter Driver/Windows ® 2000 DDK provider)

AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Ip ntkrnlpa.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Tcp ntkrnlpa.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\Udp ntkrnlpa.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Tcpip \Device\RawIp ntkrnlpa.exe (Núcleo e sistema do NT/Microsoft Corporation)

AttachedDevice \FileSystem\Fastfat \Fat sisidex.sys (FileSpy Filter Driver/Windows ® 2000 DDK provider)

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.14 ----

HijackThis:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 11:33:58 am, on 5/12/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

Running processes:

D:\WINDOWS\System32\smss.exe

D:\WINDOWS\system32\winlogon.exe

D:\WINDOWS\system32\services.exe

D:\WINDOWS\system32\lsass.exe

D:\WINDOWS\system32\svchost.exe

D:\WINDOWS\System32\svchost.exe

D:\WINDOWS\system32\spoolsv.exe

D:\WINDOWS\Explorer.EXE

D:\ARQUIV~1\ENLTV\ENLTV\TVTray.exe

D:\WINDOWS\system32\ctfmon.exe

D:\Arquivos de programas\Orbitdownloader\orbitdm.exe

D:\Arquivos de programas\Orbitdownloader\orbitnet.exe

D:\Arquivos de programas\ENLTV\ENLTV\RemoteService\RS.exe

D:\WINDOWS\System32\svchost.exe

D:\WINDOWS\system32\wuauclt.exe

D:\Arquivos de programas\Mozilla Firefox\firefox.exe

D:\ARQUIV~1\AVG\AVG8\avgam.exe

D:\ARQUIV~1\AVG\AVG8\avgrsx.exe

D:\ARQUIV~1\AVG\AVG8\avgnsx.exe

D:\Arquivos de programas\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp

O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\Arquivos de programas\Orbitdownloader\orbitcth.dll

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - D:\Arquivos de programas\AVG\AVG8\avgssie.dll

O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - D:\ARQUIV~1\AVG\AVG8\AVGTOO~1.DLL

O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - D:\ARQUIV~1\AVG\AVG8\AVGTOO~1.DLL

O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Arquivos de programas\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [AVG8_TRAY] D:\ARQUIV~1\AVG\AVG8\avgtray.exe

O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: Orbit.lnk = D:\Arquivos de programas\Orbitdownloader\orbitdm.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Arquivos de programas\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Arquivos de programas\Messenger\msmsgs.exe

O14 - IERESET.INF: SEARCH_PAGE_URL=&http://home.microsoft.com/intl/br/access/allinone.asp

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - D:\Arquivos de programas\AVG\AVG8\avgpp.dll

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - D:\ARQUIV~1\AVG\AVG8\avgemc.exe

O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - D:\ARQUIV~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - D:\ARQUIV~1\AVG\AVG8\avgfws8.exe

O23 - Service: Macromedia Licensing Service - Macromedia - D:\Arquivos de programas\Arquivos comuns\Macromedia Shared\Service\Macromedia Licensing.exe

O23 - Service: SuperTV Pro Remote Control Service (RemoteControlService) - Unknown owner - D:\Arquivos de programas\ENLTV\ENLTV\RemoteService\RS.exe

--

End of file - 3671 bytes

Por favor me ajudem....

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá,

Desculpe a demora.

Caso ainda necessite de ajuda, por execute novamente o DDS.

ATENÇÃO: Não abra um novo tópico, cole os novos logs neste mesmo tópico,

utilizando o botão reply.gif

Obrigado

Compartilhar este post


Link para o post
Compartilhar em outros sites

De acordo com as regras deste fórum, tópicos inativos são arquivados, isto é, fechados e movidos para um fórum de "tópicos arquivados". Caso o autor do tópico necessite poderá entrar em contato com a moderação solicitando a reabertura deste tópico.

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×