Log

ComboFix 11-11-19.03 - EURIPEDES 19/11/2011 14:51:44.1.
2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3071.2109 [GMT -2:00]
Executando de: c:\users\EURIPEDES\Downloads\ComboFix.exe
FW: COMODO Firewall *Enabled* {4D6F75E0-14AF-2E9E-AACD-24CDCF08AA2A}
SP: COMODO Defense+ *Enabled/Updated* {CE351521-78FA-2048-BB22-B68A4A5CA7EC}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((( Outras Excluses )))))))))))))))))))))))
))))))))))))))))))))))))))))
.
.
c:\users\EURIPE~1\AppData\Local\Temp\b3ac04aa-9413-4ecb-ac45-ed44495e62a6\CliSec
ureRT.dll
c:\users\EURIPEDES\AppData\Local\Temp\b3ac04aa-9413-4ecb-ac45-ed44495e62a6\CliSe
cureRT.dll
c:\windows\system32\msvcsv60.dll
c:\windows\system32\muzapp.exe
.
.
(((((((((((((((( Arquivos/Ficheiros criados de 2011-10-19 to 2011-11-19 )))))
)))))))))))))))))))))))
.
.
2011-11-19 17:01 . 2011-11-19 17:01
-------d-----wc:\users
\Default\AppData\Local\temp
2011-11-18 22:54 . 2011-11-04 15:42
158512 ----a-wc:\windows\syste
m32\drivers\VBoxDrv.sys
2011-11-18 22:54 . 2011-11-18 22:54
-------dc----wc:\windo
ws\system32\DRVSTORE
2011-11-18 22:54 . 2011-11-04 15:42
m32\drivers\VBoxUSBMon.sys
2011-11-18 22:54 . 2011-11-18 22:54
-------d-----wc:\progr
am files\Oracle
2011-11-15 21:12 . 2011-11-15 21:12
-------d-----wc:\windo
ws\Sun
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadadb.sys
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadmdm.sys
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadmdfl.sys
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadbus.sys
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadserd.sys
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadcmnt.sys
2011-11-15 01:45 . 2011-10-27 01:25
m32\drivers\ssadwhnt.sys
2011-11-15 00:26 . 2011-10-27 01:25
m32\WdfCoInstaller01005.dll
2011-11-15 00:26 . 2011-10-27 01:25
m32\drivers\WdfCoInstaller01005.dll
2011-11-15 00:26 . 2011-10-27 01:25
m32\drivers\ssadcm.sys
2011-11-15 00:26 . 2011-10-27 01:25
m32\drivers\ssadwh.sys
2011-11-15 00:26 . 2011-10-27 01:25
m32\drivers\sscdwh.sys
2011-11-15 00:26 . 2011-10-27 01:25

m32\drivers\sscdcm.sys
2011-11-15 00:25 . 2011-10-31 13:22
m32\Redemption.dll
2011-11-15 00:25 . 2011-11-15 00:25
-------d-----wc:\progr
am files\MarkAny
2011-11-15 00:25 . 2011-10-31 13:22
m32\dgderapi.dll
2011-11-15 00:25 . 2011-11-15 00:26
-------d-----wc:\progr
am files\Samsung
2011-11-15 00:25 . 2011-11-15 00:26
-------d-----wc:\progr
amdata\Samsung
2011-11-14 23:17 . 2011-11-14 23:17
-------d-----wc:\progr
amdata\LogMeIn
2011-11-14 01:43 . 2011-11-14 01:43
-------d-----wc:\progr
am files\Megacubo
2011-11-13 19:18 . 2011-11-13 19:18
56200 ----a-wc:\programdata\M
icrosoft\Windows Defender\Definition Updates\{F968B7A8-F081-4A72-B8A3-603F9073D0
30}\offreg.dll
2011-11-13 18:58 . 2011-11-13 18:57
8192
----a-wc:\windows\syste
m32\srvany.exe
2011-11-13 18:58 . 2011-11-13 18:57
77824 ----a-wc:\windows\KMSer
vice.exe
2011-11-13 18:51 . 2011-11-13 18:55
-------d-----wc:\progr
amdata\Guitar Pro 6
2011-11-13 18:50 . 2011-11-13 18:50
-------d-----wc:\progr
am files\Guitar Pro 6
2011-11-13 18:45 . 2011-11-13 18:45
-------d-----wc:\progr
am files\Grooveshark
2011-11-13 18:44 . 2011-11-13 18:44
-------d-----wc:\progr
am files\TweetDeck
2011-11-13 18:41 . 2011-11-13 18:41
143360 ----a-wc:\program files
\Internet Explorer\Plugins\npqtplugin7.dll
2011-11-13 18:41 . 2011-11-13 18:41
2011-11-13 18:41 . 2011-11-13 18:41
2011-11-13 18:41 . 2011-11-13 18:41
2011-11-13 18:41 . 2011-11-13 18:41
2011-11-13 18:41 . 2011-11-13 18:41
2011-11-13 18:41 . 2011-11-13 18:41
\Internet Explorer\Plugins\npqtplugin.dll
2011-11-13 18:41 . 2011-11-13 18:41
-------d-----wc:\progr
am files\Common Files\Apple
2011-11-13 18:41 . 2011-11-13 18:41
-------d-----wc:\progr
am files\QuickTime
2011-11-13 18:41 . 2011-11-13 18:41
-------d-----wc:\progr
amdata\Apple Computer
2011-11-13 18:41 . 2011-11-13 18:41
-------d-----wc:\progr
amdata\Apple
2011-11-13 18:41 . 2011-11-13 18:41
-------d-----wc:\progr
am files\Apple Software Update
2011-11-13 18:12 . 2011-11-13 18:46
-------d-----wc:\progr
am files\IK Multimedia
2011-11-13 18:08 . 2009-09-04 19:29
m32\D3DX9_42.dll
2011-11-13 18:08 . 2006-09-28 18:05
m32\d3dx9_31.dll
2011-11-13 18:07 . 2011-11-13 18:07
-------am files\Winamp Detect
2011-11-13 18:07 . 2011-11-13 18:07
-------am files\Common Files\PX Storage Engine
2011-11-13 18:07 . 2011-11-13 18:08
-------am files\Winamp
2011-11-13 18:07 . 2011-11-13 18:07
-------am files\Common Files\Adobe AIR
2011-11-13 15:49 . 2011-11-13 18:48
-------am files\VstPlugins
2011-11-13 15:49 . 2011-11-13 15:49
-------am files\Toontrack
2011-11-13 15:46 . 2011-11-13 15:46
-------amdata\{D69A48BF-7653-4AA8-94BC-5847522A4573}
2011-11-13 15:24 . 2011-11-13 15:24
-------am files\Microsoft Synchronization Services
2011-11-13 15:23 . 2011-11-13 15:23
-------am files\Microsoft Sync Framework
2011-11-13 15:23 . 2011-11-13 15:23
-------am files\Microsoft SQL Server Compact Edition
2011-11-13 15:23 . 2011-11-13 15:23
-------am files\Microsoft Visual Studio 8
2011-11-13 15:22 . 2011-11-13 15:22
-------am files\Microsoft Analysis Services
2011-11-13 15:21 . 2011-11-13 15:21
-------che
2011-11-13 15:19 . 2011-11-13 15:19
-------amdata\Protexis
2011-11-13 15:16 . 2011-11-13 18:35
-------amdata\Microsoft Help
2011-11-13 15:16 . 2011-11-13 15:16
-------am files\Microsoft Visual Studio 9.0
2011-11-13 15:16 . 2011-11-13 15:16
-------am files\Microsoft SDKs
2011-11-13 15:15 . 2011-11-13 15:15
-------am files\Common Files\Corel
2011-11-13 15:15 . 2011-11-13 15:15
-------am files\Common Files\Protexis
2011-11-13 15:15 . 2011-11-13 15:19
-------amdata\Corel
2011-11-13 15:12 . 2011-11-13 15:12
-------am files\Corel
2011-11-13 10:01 . 2011-11-13 06:13
-------ws\Panther
2011-11-13 06:51 . 2011-11-13 06:52
-------am files\Common Files\Ahead
2011-11-13 06:51 . 2011-11-13 06:51
-------amdata\Nero
2011-11-13 06:51 . 2011-11-13 06:51
-------am files\Nero
2011-11-13 05:50 . 2011-11-13 05:50
-------amdata\{1CEDDDD4-56D2-463F-BC4E-C5DFFD3533C9}
2011-11-13 05:50 . 2011-11-13 05:50
-------am files\Common Files\Digidesign
2011-11-13 05:49 . 2011-11-13 05:49
-------amdata\{DCC412E7-393B-4016-91FB-9307F059AFB6}
2011-11-13 05:49 . 2011-11-13 15:46
-------am files\Common Files\Native Instruments
2011-11-13 05:49 . 2011-11-13 05:49
--------
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
dc-h--w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----r-
C:\MSOCa
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\windo
d-----w-
c:\progr
d-----w-
c:\progr
d-----w-
c:\progr
dc-h--w-
c:\progr
d-----w-
c:\progr
dc-h--w-
c:\progr
d-----w-
c:\progr
dc-h--w-
c:\progr
amdata\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2011-11-13 05:49 . 2011-11-13 15:46
-------d-----wc:\progr
am files\Native Instruments
2011-11-13 05:49 . 2011-11-13 05:49
-------d-----wc:\progr
amdata\Native Instruments
2011-11-13 05:48 . 2009-10-11 23:58
m32\SYNSOEMU.DLL
2011-11-13 05:48 . 2011-11-13 05:48
-------d-----wc:\progr
am files\Common Files\VST3
2011-11-13 05:47 . 2011-11-13 05:47
-------d-----wc:\progr
amdata\VST3 Presets
2011-11-13 05:39 . 2011-11-13 05:39
-------d-----wc:\progr
amdata\Steinberg
2011-11-13 05:39 . 2011-11-13 05:39
-------d-----wc:\progr
am files\Common Files\Steinberg
2011-11-13 05:39 . 2011-11-13 05:39
-------d-----wc:\progr
am files\Steinberg
2011-11-13 05:20 . 2011-11-13 19:14
m32\bdod.bin
2011-11-13 05:10 . 2007-12-17 19:14
m32\drivers\AsIO.sys
2011-11-13 05:10 . 2006-01-10 18:50
m32\AsIO.dll
2011-11-13 05:10 . 2008-01-04 15:34
m32\drivers\AsInsHelp64.sys
2011-11-13 05:10 . 2008-01-04 15:34
m32\drivers\AsInsHelp32.sys
2011-11-13 05:10 . 2011-11-13 05:10
-------d-----wc:\progr
am files\ASUS
2011-11-13 05:09 . 2009-05-13 21:11
6504
----a-wc:\windows\syste
m32\drivers\ASACPI.sys
2011-11-13 05:07 . 2011-11-13 05:07
-------d-----wc:\progr
am files\Audacity 1.3 Beta (Unicode)
2011-11-13 05:06 . 2011-11-13 05:06
-------d-----wc:\progr
am files\IObit
2011-11-13 05:05 . 2011-11-13 05:05
-------d-----wc:\progr
am files\Real Alternative
2011-11-13 05:03 . 2011-10-03 13:07
m32\dopdfmn7.dll
2011-11-13 05:03 . 2011-10-03 13:07
m32\dopdfmi7.dll
2011-11-13 05:03 . 2011-11-13 05:03
-------d-----wc:\progr
am files\Softland
2011-11-13 05:02 . 2011-11-13 05:02
-------d-----wc:\progr
am files\CCleaner
2011-11-13 05:02 . 2011-11-13 05:02
-------d-----wc:\users
\UpdatusUser
2011-11-13 05:01 . 2011-11-19 17:03
-------d-----wc:\progr
amdata\NVIDIA
2011-11-13 05:01 . 2011-09-22 22:40
m32\nvcpl.dll
2011-11-13 05:01 . 2011-09-22 22:40
m32\nvsvc.dll
2011-11-13 05:01 . 2011-09-22 22:40
m32\nvmctray.dll
2011-11-13 05:01 . 2011-09-22 22:40
m32\nvshext.dll
2011-11-13 05:01 . 2011-09-22 22:40
m32\nvvsvc.exe
2011-11-13 05:01 . 2011-09-22 22:40
m32\easyupdatusapiu.dll
2011-11-13 05:01 . 2011-11-13 05:01
-------d-----wc:\progr
amdata\NVIDIA Corporation
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvdispco32.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvgenco32.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvwgf2um.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\OpenCL.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvcuda.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvapi.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvcuvid.dll
2011-11-13 05:00 . 2011-09-22 22:40
m32\nvcuvenc.dll
2011-11-13 05:00 . 2011-09-22 22:40
18870592
----a-wc:\windo
ws\system32\nvoglv32.dll
2011-11-13 05:00 . 2011-09-22 22:40
17248576
----a-wc:\windo
ws\system32\nvcompiler.dll
2011-11-13 05:00 . 2011-09-22 22:40
10318656
----a-wc:\windo
ws\system32\drivers\nvlddmkm.sys
2011-11-13 05:00 . 2011-11-13 05:02
-------d-----wc:\progr
am files\NVIDIA Corporation
2011-11-13 04:59 . 2011-11-13 04:59
-------d-----wC:\NVIDI
A
2011-11-13 04:59 . 2011-11-13 04:59
-------d-----wc:\progr
am files\Intel
2011-11-13 04:59 . 2009-06-16 14:05
m32\CSVer.dll
2011-11-13 04:59 . 2011-11-13 04:59
-------d-----wC:\Intel
.
.
((((((((((((((((((((((((((((((((((((( Relatrio Find3M )))))))))))))))))))))))
)))))))))))))))))))))))))))))
.
2011-11-13 05:52 . 2009-04-15 17:13
m32\drivers\bdfm.sys
2011-10-07 20:47 . 2011-10-07 20:47
m32\drivers\inspect.sys
2011-10-07 20:47 . 2011-10-07 20:47
m32\drivers\cmdhlp.sys
2011-10-07 20:47 . 2011-10-07 20:47
m32\drivers\cmdGuard.sys
2011-10-07 20:47 . 2011-10-07 20:47
m32\drivers\cmderd.sys
2011-10-07 20:47 . 2011-10-07 20:47
m32\cmdcsr.dll
2011-10-07 20:47 . 2011-10-07 20:47
m32\guard32.dll
2011-09-22 22:40 . 2009-06-10 21:19
13200704
----a-wc:\windo
ws\system32\nvd3dum.dll
2011-09-22 14:29 . 2011-09-22 14:29
m32\nvStreaming.exe
2011-11-05 07:32 . 2011-11-13 05:04
\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro ))))))))))))))
)))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legtimas por padro no so apresentadas.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2011-11-13 641400]
"Audiogalaxy"="c:\users\EURIPEDES\AppData\Local\Audiogalaxy\Audiogalaxy.exe" [20
11-11-06 2954472]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common File
s\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 153136]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-17 3872
080]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe"
[2011-11-02 21392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BDAgent"="c:\program files\BitDefender\BitDefender 2009\bdagent.exe" [2011-11-1
3 782336]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp
.exe" [2011-10-20 2497352]
"KiesHelper"="c:\program files\Samsung\Kies\KiesHelper.exe" [2011-11-02 928656]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2011-11-02 35
08624]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe AR
M]
2011-06-06 14:55
937920 ----a-wc:\program files\Common Files\Ad
obe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
2010-03-13 16:54
91520 ----a-wc:\program files\Microsoft Offic
e\Office14\BCSSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO]
2011-05-26 03:43
208184 ----a-wc:\program files\COMODO\COMODO G
eekBuddy\CLPSLA.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CPA]
2011-05-26 03:43
182584 ----a-wc:\program files\COMODO\COMODO G
eekBuddy\VALA.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Device D
octor]
2011-10-11 16:58
46424 ----a-wc:\program files\Device Doctor\D
DLauncher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google U
pdate]
2011-11-13 04:19
136176 ----atwc:\users\EURIPEDES\AppData\Local
\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDAudDec
k]
2011-08-01 03:43
3743344 ----a-wc:\program files\VIA\VIAudioi\VD
eck\VDeck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-04-17 00:12
3872080 ----a-wc:\program files\Windows Live\Me
ssenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilt
erCheck]
2007-03-09 20:53
153136 ----a-wc:\program files\Common Files\Ah
ead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM
.EXE]
2007-04-09 12:23
200704 ----a-wc:\program files\PowerISO\PWRISO
VM.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTim
e Task]
2008-09-06 17:09
413696 ----a-wc:\program files\QuickTime\QTTas
k.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaU
pdateSched]
2011-05-04 15:59
252136 ----a-wc:\program files\Common Files\Ja
va\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAg
ent]
2011-10-26 18:48
74752 ----a-wc:\program files\Winamp\winampa.
exe
.
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32
\Drivers\ssadadb.sys [2011-10-27 30312]
R3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO;c:\windows\system3
2\Drivers\BUSB2902.sys [2009-10-30 384576]
R3 BUSB_AUDIO_WDM;BEHRINGER USB WDM AUDIO;c:\windows\system32\drivers\busbwdm.sy
s [2009-10-30 39488]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace A
udit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 3
0969208]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Mic
rosoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32
\DRIVERS\ssadbus.sys [2011-10-27 121064]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadm
dfl.sys [2011-10-27 12776]

R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm
.sys [2011-10-27 136808]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32
\DRIVERS\ssadserd.sys [2011-10-27 114280]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\
cmdguard.sys [2011-10-07 488208]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmd
hlp.sys [2011-10-07 39640]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-11-0
4 158512]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBM
on.sys [2011-11-04 91440]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Ad
obe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\IObit\
Advanced SystemCare 4\ASCService.exe [2011-08-09 328536]
S2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO GeekBuddy\
CLPSLS.exe [2011-05-26 154424]
S2 KMService;KMService;c:\windows\system32\srvany.exe [2011-11-13 8192]
S2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Inst
ruments\Hardware\NIHardwareService.exe [2011-04-07 3857408]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corpora
tion\NVIDIA Updatus\daemonu.exe [2011-09-22 2253120]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA
Corporation\3D Vision\nvSCPAPISvr.exe [2011-09-22 381248]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viaka
raokesrv.exe [2011-07-12 27760]
S3 bdfm;bdfm;c:\windows\system32\drivers\bdfm.sys [2011-11-13 146312]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009
-07-13 139776]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\
VBoxNetAdp.sys [2011-11-04 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\
VBoxNetFlt.sys [2011-11-04 116016]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system
32\drivers\viahduaa.sys [2011-07-12 1810032]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx
REG_MULTI_SZ
scan
.
Contedo da pasta 'Tarefas Agendadas'
.
2011-11-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1796144549-786246727-36
21717732-1000Core.job
- c:\users\EURIPEDES\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-13 04
:19]
.
2011-11-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1796144549-786246727-36
21717732-1000UA.job
- c:\users\EURIPEDES\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-13 04
:19]
.
.
------- Scan Suplementar ------.
uStart Page = hxxp://www.facebook.com/home.php?ref=hp
uSearchURL,(Default) = hxxp://www.oquefazernainternet.com/q/%s
TCP: DhcpNameServer = 10.1.1.1
FF - ProfilePath - c:\users\EURIPEDES\AppData\Roaming\Mozilla\Firefox\Profiles\u
tx3n15d.default\
.
- - - - ORFOS REMOVIDOS - - - .
MSConfigStartUp-CmPCIaudio - CMICNFG3.cpl
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Unins
tall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninsta
ll.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\U
ninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Unins
tall.exe
AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall
.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.e
xe
AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uni
nstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus
_Default\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uni
nstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2
\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia
_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uni
nstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uni
nstall.exe
AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Unins
tall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\U
ninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdr
iver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.e
xe
.
.
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS --------------------.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC108002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Carregadas Sob os Processos em Execuo -------------------.
- - - - - - - > 'lsass.exe'(640)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(1324)
c:\windows\system32\guard32.dll
c:\windows\system32\mssprxy.dll
c:\windows\System32\npmproxy.dll
c:\windows\System32\bthprops.cpl
c:\windows\System32\ieframe.dll
c:\windows\System32\SyncCenter.dll
c:\windows\system32\imapi2.dll
c:\windows\system32\FXSRESM.DLL
.
------------------------ Outros Processos em Execuo -----------------------.
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
c:\program files\BitDefender\BitDefender 2009\vsserv.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\KMService.exe
c:\windows\system32\conhost.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\BitDefender\BitDefender 2009\seccenter.exe
c:\program files\Common Files\Ahead\Lib\NMIndexingService.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Windows Media Player\wmplayer.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Tempo para concluso: 2011-11-19 15:10:24 - Mquina reiniciou
ComboFix-quarantined-files.txt 2011-11-19 17:10
.
Pr-execuo: 157.327.060.992 bytes disponveis
Ps execuo: 156.832.964.608 bytes disponveis
.
- - End Of File - - 500585F0F0E0089A04AA242CC499BD96

Log

Încărcat de

Informații document

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

Log

Încărcat de

Drepturi de autor:

Formate disponibile

ComboFix 11-11-19.03 - EURIPEDES 19/11/2011 14:51:44.1.

2011-11-15 00:26 . 2011-10-27 01:25

dfl.sys [2011-10-27 12776]

S-ar putea să vă placă și