Combo Fix

ComboFix 11-03-24.05 - criação 25/03/2011 9:47.1.
2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.2047.807 [GMT -3:00]
Executando de: d:\desktop keco\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((( Arquivos/Ficheiros criados de 2011-02-25 to 2011-03-25 )))))
)))))))))))))))))))))))
.
.
2011-03-25 12:51 . 2011-03-25 12:51 -------- d-----w- c:\users
\Default\AppData\Local\temp
2011-03-25 11:07 . 2011-03-15 04:05 6792528 ----a-w- c:\programdata\M
icrosoft\Windows Defender\Definition Updates\{DE060432-2A7B-472F-9133-45E5D0BA4B
38}\mpengine.dll
2011-03-25 11:03 . 2011-03-25 11:03 -------- d-----w- c:\users
\criação\AppData\Local\{D7343A8A-3023-40E4-A640-E890E9D083B4}
2011-03-24 11:10 . 2011-03-24 11:10 -------- d-----w- c:\users
\criação\AppData\Local\{A2A32C15-6C87-4BA9-8421-E4EC33AB4621}
2011-03-23 19:44 . 2011-03-23 19:44 -------- d-----w- c:\users
\criação\eTeks
2011-03-23 19:42 . 2011-03-23 19:50 -------- d-----w- c:\progr
am files\Sweet Home 3D
2011-03-23 11:23 . 2011-03-23 11:23 -------- d-----w- c:\users
\criação\AppData\Local\{569A952B-7AE7-450F-9437-D23B1D63AC49}
2011-03-23 11:06 . 2011-03-23 11:06 -------- d-----w- c:\users
\criação\AppData\Local\{2592F706-5FF9-47EA-BCC8-292F575A7BDC}
2011-03-22 11:05 . 2011-03-22 11:05 -------- d-----w- c:\users
\criação\AppData\Local\{791E2858-C681-409C-B270-E9A83D7B78BF}
2011-03-21 17:39 . 2011-03-18 18:04 781272 ----a-w- c:\program files
\Mozilla Firefox\mozsqlite3.dll
\Mozilla Firefox\libGLESv2.dll
\Mozilla Firefox\D3DCompiler_42.dll
\Mozilla Firefox\d3dx9_42.dll
\Mozilla Firefox\mozjs.dll
\Mozilla Firefox\mozalloc.dll
\Mozilla Firefox\libEGL.dll
\Mozilla Firefox\components\browsercomps.dll
2011-03-21 11:06 . 2011-03-21 11:06 -------- d-----w- c:\users
\criação\AppData\Local\{64B01877-4D75-47A3-B297-967A05621E43}
2011-03-20 10:32 . 2011-03-20 10:32 -------- d-----w- c:\users
\criação\AppData\Local\{F83C57A2-6A85-4B9E-A991-CFB065FF2C4E}
2011-03-19 12:54 . 2011-03-19 12:54 -------- d-----w- c:\users
\criação\AppData\Local\{4C331933-11E1-40AA-8357-50E1B05FE769}
2011-03-19 11:09 . 2011-03-19 11:09 -------- d-----w- c:\users
\criação\AppData\Local\{DD5A25DF-3251-4B99-B8C2-83D67A8ED2F5}
2011-03-18 18:16 . 2011-03-18 18:16 -------- d-----w- c:\users
\criação\AppData\Local\{87E37740-7FDD-47E4-8211-9DAE85965E85}
2011-03-18 11:14 . 2011-03-18 11:14 -------- d-----w- c:\users
\criação\AppData\Local\{4AFBA813-DC7D-4268-B9B0-36B9D87E4180}
2011-03-17 11:00 . 2011-03-17 11:01 -------- d-----w- c:\users
\criação\AppData\Local\{D85FA257-D956-4E04-8C82-D10174BEEEFA}
2011-03-16 11:14 . 2011-03-16 11:14 -------- d-----w- c:\users
\criação\AppData\Local\{F9122989-554D-402A-BB7F-D8D49B6AA699}
2011-03-15 11:03 . 2011-03-15 11:03 -------- d-----w- c:\users
\criação\AppData\Local\{9569ADF5-4497-45F6-801E-7B858860DBC5}
2011-03-14 13:13 . 2009-07-14 01:15 319488 ----a-w- c:\windows\syste
m32\Spool\prtprocs\w32x86\hpfppw73.dll
2011-03-14 11:03 . 2011-03-14 11:04 -------- d-----w- c:\users
\criação\AppData\Local\{26D8B730-D71B-41D3-8E50-ACD74C0AA50A}
2011-03-13 18:25 . 2011-03-13 18:25 -------- d-----w- c:\users
\criação\AppData\Local\{B9002109-058B-4B00-B1B8-09B560EA7FF2}
\Mozilla Firefox\plugins\nppdf32.dll
2011-03-12 11:23 . 2011-03-12 11:25 -------- d-----w- c:\users
\criação\AppData\Local\{CA4383B0-AEE4-4890-920B-2C459C0C7AFB}
\Mozilla Firefox\plugins\nprpjplug.dll
\Mozilla Firefox\plugins\nppl3260.dll
2011-03-11 16:15 . 2011-03-11 16:15 -------- d-----w- c:\progr
am files\Real Alternative
2011-03-11 11:09 . 2011-03-11 11:09 -------- d-----w- c:\users
\criação\AppData\Local\{893D8A93-CE79-41F2-A390-09AEB5F18C0E}
2011-03-10 23:07 . 2011-03-10 23:09 -------- d-----w- c:\users
\criação\AppData\Local\{0BEA71EB-229B-4C1E-8C52-F671CD0A475E}
2011-03-10 11:05 . 2011-03-10 11:05 -------- d-----w- c:\users
\criação\AppData\Local\{B5AF621B-A4DE-4100-BC05-3DE95478F3E2}
2011-03-09 11:26 . 2011-03-09 11:26 -------- d-----w- c:\users
\criação\AppData\Local\{F3843EDE-FA32-4C3E-AAE6-BB24BC1589B3}
m32\FntCache.dll
m32\DWrite.dll
m32\d2d1.dll
m32\CPFilters.dll
m32\EncDec.dll
m32\sbe.dll
m32\mpg2splt.ax
2011-03-09 11:12 . 2011-03-09 11:12 -------- d-----w- c:\users
\criação\AppData\Local\{9ED6E753-E045-421A-A5CE-E11252DB0823}
2011-03-07 11:14 . 2011-03-07 11:14 -------- d-----w- c:\users
\criação\AppData\Local\{DD10A62A-2F98-4EAC-AFEA-E3C9803C209B}
2011-03-05 10:58 . 2011-03-05 10:58 -------- d-----w- c:\users
\criação\AppData\Local\{D6BD6A64-8846-463B-8F81-8F7F3E34DA8B}
2011-03-04 15:26 . 2011-03-04 15:26 -------- dc----w- c:\users
\criação\AppData\Local\MigWiz
2011-03-04 10:59 . 2011-03-04 11:01 -------- d-----w- c:\users
\criação\AppData\Local\{6718D562-AF6D-4E1C-B02B-B4B43BA9C720}
2011-03-03 19:17 . 2011-03-03 19:17 -------- d-----w- C:\Autod
esk
2011-03-03 11:05 . 2011-03-03 11:05 -------- d-----w- c:\users
\criação\AppData\Local\{25692BDD-4440-44B9-BE7E-6EE89D2077AB}
2011-03-02 11:07 . 2011-03-02 11:07 -------- d-----w- c:\users
\criação\AppData\Local\{5C0C3FE9-401F-4EC3-8DA0-688195124AEE}
2011-03-01 18:05 . 2011-03-21 19:14 -------- d-----w- c:\users
\criação\AppData\Local\Microsoft Games
2011-03-01 15:01 . 2011-03-01 15:01 -------- d-----w- c:\windo
ws\Sun
2011-03-01 10:53 . 2011-03-01 10:53 -------- d-----w- c:\users
\criação\AppData\Local\{81BAD9E4-EEC3-4123-AA23-716CD2C2E3E7}
2011-02-28 11:00 . 2011-02-28 15:45 -------- d-----w- c:\progr
amdata\Norton
2011-02-28 11:00 . 2011-02-28 11:00 -------- d-----w- c:\progr
amdata\Symantec
2011-02-28 10:56 . 2011-02-28 10:56 -------- d-----w- c:\users
\criação\AppData\Local\{BFA8EF86-D730-4D93-83DA-3456803794DF}
m32\d3d10_1.dll
2011-02-26 14:06 . 2011-02-26 14:07 -------- d-----w- c:\windo
ws\system32\Adobe
2011-02-26 10:56 . 2011-02-26 10:56 -------- d-----w- c:\users
\criação\AppData\Local\{5F617079-1B04-4762-A36F-3A7E0E6267F7}
2011-02-25 11:01 . 2011-02-25 11:01 -------- d-----w- c:\users
\criação\AppData\Local\{613B03D8-F2D5-41EB-BDFE-35F8AD4D19AA}
2011-02-24 14:31 . 2011-02-24 14:31 -------- d-----w- c:\progr
am files\Common Files\Java
2011-02-24 11:52 . 2011-02-24 11:52 -------- d-----w- c:\windo
ws\system32\SPReview
2011-02-24 11:52 . 2011-02-24 11:52 -------- d-----w- c:\windo
ws\system32\EventProviders
m32\halmacpi.dll
m32\wmicmiplugin.dll
m32\wbem\wbemcore.dll
m32\wbemcomn.dll
m32\wbem\fastprox.dll
m32\SmiEngine.dll
m32\wdscore.dll
m32\PkgMgr.exe
m32\drvstore.dll
m32\dpx.dll
2011-02-24 11:03 . 2011-02-24 11:03 -------- d-----w- c:\users
\criação\AppData\Local\{3A8105C7-C90A-469C-A9F1-2ED80BB5F3E5}
\Mozilla Firefox\plugins\npdeployJava1.dll
m32\deployJava1.dll
2011-02-23 18:15 . 2011-02-24 13:59 -------- d-----w- c:\progr
am files\Java
.
.
((((((((((((((((((((((((((((((((((((( Relatório Find3M )))))))))))))))))))))))
)))))))))))))))))))))))))))))
.
2011-03-09 11:26 . 2010-06-24 13:33 18328 ----a-w- c:\programdata\M
icrosoft\IdentityCRL\production\ppcrlconfig600.dll
m32\msclmd.dll
m32\drivers\avipbb.sys
m32\drivers\avgntflt.sys
m32\drivers\dxgmms1.sys
2011-02-02 21:11 . 2011-02-02 16:24 222080 ------w- c:\windows\syste
m32\MpSigStub.exe
m32\XpsPrint.dll
m32\XpsGdiConverter.dll
m32\atmlib.dll
m32\atmfd.dll
m32\win32k.sys
\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro ))))))))))))))
)))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legítimas por defeito não são mostradas.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240
760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-09-03 281768]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_s
l.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-
21 932288]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe
" [2010-10-29 249064]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg p
ku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c
:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\dri
vers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\Wat\W
atAdminSvc.exe [2011-02-02 1343400]
S2 AntiVirSchedulerService;Avira AntiVir Agendamento;c:\program files\Avira\Anti
Vir Desktop\sched.exe [2010-09-03 135336]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Serv
ice.exe [2011-01-27 2253688]
S3 A5AGU;D-Link Wireless LAN 802.11 USB device driver;c:\windows\system32\DRIVER
S\AGUx86.sys [2008-08-06 905728]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010
-06-23 275048]
.
.
.
------- Scan Suplementar -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3
000
FF - ProfilePath - c:\users\criação\AppData\Roaming\Mozilla\Firefox\Profiles\gmkia3b
b.default\
FF - prefs.js: browser.startup.homepage - hxxp://192.168.0.254/printdots.com.br/
app/
.
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E
}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX
.exe,-101"
.
}\Elevation]
"Enabled"=dword:00000001
.
}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"
.
}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6A
F30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
F30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
F30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Tempo para conclusão: 2011-03-25 09:53:23
ComboFix-quarantined-files.txt 2011-03-25 12:53
.
Pré-execução: 36.042.973.184 bytes disponíveis
Pós execução: 37.507.538.944 bytes disponíveis
.
- - End Of File - - 3E1052D852C0B3F2AF58801B9BEBD938

Combo Fix

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Combo Fix

Uploaded by

Copyright:

Available Formats

ComboFix 11-03-24.05 - criação 25/03/2011 9:47.1.

You might also like