Ir ao conteúdo
  • Comunicados

    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.

josomildo

Membros Juniores
  • Total de itens

    8
  • Registro em

  • Última visita

  • Qualificações

    0%

Reputação

0

Sobre josomildo

  • Data de Nascimento 25-04-1980

Informações gerais

  • Cidade e Estado
    aaaaa
  1. Por favor analise meu log

    Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Versão da Base de Dados: 6429 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 23/04/2011 23:43:37 mbam-log-2011-04-23 (23-43-37).txt Tipo de Verificação: Verificação Rápida Objetos escaneados: 148421 Tempo decorrido: 2 minuto(s), 10 segundo(s) Processos de Memória Infectados: 0 Módulos de Memória Infectados: 0 Chaves de Registro Infectadas: 0 Valores de Registro Infectados: 0 Itens de Dados no Registro Infectados: 0 Pastas Infectadas: 0 Arquivos Infectados: 0 Processos de Memória Infectados: (Não foram detectados ítens maliciosos) Módulos de Memória Infectados: (Não foram detectados ítens maliciosos) Chaves de Registro Infectadas: (Não foram detectados ítens maliciosos) Valores de Registro Infectados: (Não foram detectados ítens maliciosos) Itens de Dados no Registro Infectados: (Não foram detectados ítens maliciosos) Pastas Infectadas: (Não foram detectados ítens maliciosos) Arquivos Infectados: (Não foram detectados ítens maliciosos)
  2. Por favor analise meu log

    amigo eu executei o programa mais não estou achando o log ...onde ele salva os logs???
  3. Por favor analise meu log

    ComboFix 11-04-09.01 - User 10/04/2011 13:01:42.2.1 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3318.2442 [GMT -3:00] Executando de: c:\users\User\Documents\Meus arquivos recebidos\ComboFix.exe Comandos utilizados :: c:\users\User\Documents\Meus arquivos recebidos\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308} SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((( Outras Exclusões ))))))))))))))))))))))))))))))))))))))))))))))))))) . . A cópia de c:\windows\System32\user32.dll foi encontrada e desinfectada Cópia restaurada de - c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll . . (((((((((((((((( Arquivos/Ficheiros criados de 2011-03-10 to 2011-04-10 )))))))))))))))))))))))))))) . . 2011-04-10 16:07 . 2011-04-10 16:07 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-04-10 14:24 . 2011-04-10 15:02 -------- d-----w- c:\users\User\AppData\Local\Conduit 2011-04-10 14:23 . 2011-04-10 14:23 -------- d-----w- c:\users\User\AppData\Roaming\DVDVideoSoftIEHelpers 2011-04-10 14:22 . 2011-04-10 14:23 -------- d-----w- c:\program files\Common Files\DVDVideoSoft 2011-04-10 14:22 . 2011-04-10 14:23 -------- d-----w- c:\program files\DVDVideoSoft 2011-04-08 16:32 . 2011-04-10 14:32 -------- d-----w- c:\program files\Windows Live Safety Center 2011-04-06 22:09 . 2011-04-06 22:09 -------- d-----w- c:\windows\Sun 2011-04-06 03:21 . 2011-04-06 03:21 -------- d-----w- c:\users\User\AppData\Roaming\Screaming Bee 2011-04-06 03:21 . 2011-04-06 03:21 -------- d-----w- c:\programdata\Screaming Bee 2011-04-04 23:18 . 2011-04-04 23:18 -------- d-----w- c:\programdata\McAfee 2011-04-04 19:30 . 2011-04-08 15:58 -------- d-----w- c:\windows\system32\EXP 2011-04-04 19:04 . 2004-03-09 03:00 152848 ----a-w- c:\windows\system32\COMDLG32.OCX 2011-04-03 00:37 . 2008-05-26 16:01 40960 ----a-w- c:\windows\system32\AVEOCamIntfc.ax 2011-04-01 17:05 . 2011-04-01 17:05 -------- d-----w- c:\program files\Common Files\Java 2011-04-01 17:02 . 2011-04-01 17:02 -------- d-----w- c:\programdata\HP Product Assistant 2011-04-01 17:00 . 2011-04-01 17:00 -------- d-----w- c:\program files\Common Files\Hewlett-Packard 2011-04-01 16:18 . 2011-04-01 16:19 -------- d-----w- c:\users\User\AppData\Roaming\HP 2011-04-01 16:18 . 2011-04-01 16:18 -------- d-----w- c:\programdata\WEBREG 2011-04-01 16:17 . 2009-04-16 17:08 312832 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\hpfpp70v.dll 2011-03-31 18:49 . 2011-02-03 00:40 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-03-31 18:49 . 2011-04-01 17:04 -------- d-----w- c:\program files\Java 2011-03-31 17:04 . 2011-04-07 18:42 -------- d-----w- c:\users\User\AppData\Roaming\HpUpdate 2011-03-31 17:00 . 2008-10-28 09:27 372736 ----a-w- c:\windows\system32\hppldcoi.dll 2011-03-31 17:00 . 2009-04-15 20:53 452408 ----a-w- c:\windows\system32\hpzids01.dll 2011-03-31 17:00 . 2009-04-16 17:08 126976 ----a-w- c:\windows\system32\hpfll70v.dll 2011-03-31 16:59 . 2011-04-01 17:03 -------- d-----w- c:\program files\HP 2011-03-31 16:57 . 2011-04-01 17:02 -------- d-----w- c:\programdata\HP 2011-03-27 03:43 . 2011-04-05 19:48 -------- d-----w- c:\users\User\AppData\Local\Google 2011-03-27 03:43 . 2011-03-27 03:43 -------- d-----w- c:\users\User\AppData\Local\Deployment 2011-03-27 03:43 . 2011-03-27 03:43 -------- d-----w- c:\users\User\AppData\Local\Apps 2011-03-26 03:00 . 2011-03-26 03:00 -------- d-----w- c:\program files\Gameforge4D 2011-03-25 03:40 . 2011-03-26 05:07 -------- d-----w- c:\programdata\Messenger Plus! 2011-03-25 03:40 . 2011-03-25 03:40 -------- d-----w- c:\program files\Yuna Software 2011-03-24 16:12 . 2011-04-04 16:10 -------- d-----w- c:\users\User\AppData\Local\ElevatedDiagnostics 2011-03-16 14:54 . 2011-03-16 14:54 -------- d-----w- c:\users\User\AppData\Local\Mozilla 2011-03-16 02:30 . 2011-03-16 02:30 -------- d-----w- c:\program files\AVEO 2011-03-16 02:30 . 2008-05-27 18:35 171520 ----a-w- c:\windows\system32\drivers\aveodcnt.sys 2011-03-16 02:30 . 2007-07-05 16:20 28672 ------w- c:\windows\system32\MFC_InstDrvDLL.dll 2011-03-16 02:30 . 2005-01-21 13:42 57344 ------w- c:\windows\system32\sx_cam_i420.dll 2011-03-16 02:27 . 2001-05-11 15:18 420240 ----a-w- c:\windows\system32\mpg4c32.dll 2011-03-16 02:27 . 2011-03-16 02:27 -------- d-----w- c:\program files\Vimicro 2011-03-16 02:27 . 2011-03-16 02:27 -------- d-----w- c:\users\User\AppData\Roaming\InstallShield 2011-03-13 23:56 . 2011-03-13 23:56 -------- d-----w- c:\users\User\AppData\Roaming\Ahead 2011-03-12 12:34 . 2011-04-04 18:47 -------- d-----w- C:\GrandFantasiaPT . . ((((((((((((((((((((((((((((((((((((( Relatório Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-03-01 14:10 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll 2011-03-01 14:10 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll 2011-02-23 12:35 . 2011-03-01 14:29 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EA46FAD6-8C39-45F9-B846-2755B18CDA67}\mpengine.dll 2011-02-02 20:11 . 2011-03-01 14:29 222080 ------w- c:\windows\system32\MpSigStub.exe . . (((((((((((((((((((((((((( Pontos de Carregamento do Registro ))))))))))))))))))))))))))))))))))))))) . . *Nota* entradas vazias e legítimas por defeito não são mostradas. REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-17 3872080] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-03-09 2769336] "4StoryPrePatch"="c:\program files\Gameforge4D\4Story\PrePatch.exe" [2011-03-16 319488] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2009-11-18 54576] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064] . c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Recorte de tela e Iniciador do OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) . R1 driverusbplus64;driverusbplus64;SysWOW64\drivers\plusdriver64.sys [x] R3 AVEO;AVEO USB2.0 PC Camera;c:\windows\system32\DRIVERS\AVEOdcnt.sys [2008-05-27 171520] R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x] R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2009-01-08 36608] S1 aswSP;aswSP; [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-03-09 51792] S3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller;c:\windows\system32\DRIVERS\l260x86.sys [2009-07-13 29184] S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2010-07-01 34896] S3 tenCapture;tenCapture;c:\windows\system32\DRIVERS\tenCapture.sys [2007-04-21 9344] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . . ------- Scan Suplementar ------- . uStart Page = about:blank IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Free YouTube to MP3 Converter - c:\users\User\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: {E32122A3-8494-449B-8FCC-40D53B16C97D} = 200.204.0.10 200.204.0.138 FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\40nfkptj.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - DVDVideoSoftTB Customized Web Search FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13 FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q= FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com FF - Ext: Babylon: ffxtlbr@babylon.com - %profile%\extensions\ffxtlbr@babylon.com FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} FF - Ext: <?xmlversion=1.0?><RDF xmlns=http://www.w3.org/1999/02/22-rdf-syntax-ns# xmlns:em=http://www.mozilla.org/2004/em-rdf#><Description about=urn:mozilla:install-manifest><em:id>{1dacc1f2-0e39-4c79-8b10-aa2f18025bf3}: {1dacc1f2-0e39-4c79-8b10-aa2f18025bf3} - %profile%\extensions\{1dacc1f2-0e39-4c79-8b10-aa2f18025bf3} FF - Ext: Fire.fm: {6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3} - %profile%\extensions\{6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3} FF - Ext: DVDVideoSoftTB Community Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - %profile%\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} . - - - - ORFÃOS REMOVIDOS - - - - . URLSearchHooks-{872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) WebBrowser-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file) . . . --------------------- CHAVES DO REGISTRO BLOQUEADAS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Outros Processos em Execução ------------------------ . c:\program files\Alwil Software\Avast5\AvastSvc.exe c:\windows\system32\conhost.exe c:\windows\system32\taskhost.exe c:\program files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\system32\taskhost.exe . ************************************************************************** . Tempo para conclusão: 2011-04-10 13:12:52 - Máquina reiniciou ComboFix-quarantined-files.txt 2011-04-10 16:12 ComboFix2.txt 2011-04-10 14:48 . Pré-execução: 127.324.463.104 bytes disponíveis Pós execução: 126.863.740.928 bytes disponíveis . - - End Of File - - C216F3B633DA89EC1469BD3782AA8EF4
  4. Por favor analise meu log

    ComboFix 11-04-09.01 - User 10/04/2011 11:38:17.1.1 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3318.2251 [GMT -3:00] Executando de: c:\users\User\Documents\Meus arquivos recebidos\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308} SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Criado um novo ponto de restauração . . (((((((((((((((( Arquivos/Ficheiros criados de 2011-03-10 to 2011-04-10 )))))))))))))))))))))))))))) . . 2011-04-10 14:44 . 2011-04-10 14:44 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-04-10 14:24 . 2011-04-10 14:24 -------- d-----w- c:\program files\Conduit 2011-04-10 14:24 . 2011-04-10 14:24 -------- d-----w- c:\users\User\AppData\Local\Conduit 2011-04-10 14:23 . 2011-04-10 14:23 -------- d-----w- c:\users\User\AppData\Roaming\DVDVideoSoftIEHelpers 2011-04-10 14:22 . 2011-04-10 14:23 -------- d-----w- c:\program files\Common Files\DVDVideoSoft 2011-04-10 14:22 . 2011-04-10 14:23 -------- d-----w- c:\program files\DVDVideoSoft 2011-04-08 16:32 . 2011-04-10 14:32 -------- d-----w- c:\program files\Windows Live Safety Center 2011-04-06 22:09 . 2011-04-06 22:09 -------- d-----w- c:\windows\Sun 2011-04-06 03:21 . 2011-04-06 03:21 -------- d-----w- c:\users\User\AppData\Roaming\Screaming Bee 2011-04-06 03:21 . 2011-04-06 03:21 -------- d-----w- c:\programdata\Screaming Bee 2011-04-04 23:18 . 2011-04-04 23:18 -------- d-----w- c:\programdata\McAfee 2011-04-04 19:30 . 2011-04-08 15:58 -------- d-----w- c:\windows\system32\EXP 2011-04-04 19:04 . 2004-03-09 03:00 152848 ----a-w- c:\windows\system32\COMDLG32.OCX 2011-04-03 00:37 . 2008-05-26 16:01 40960 ----a-w- c:\windows\system32\AVEOCamIntfc.ax 2011-04-01 17:05 . 2011-04-01 17:05 -------- d-----w- c:\program files\Common Files\Java 2011-04-01 17:02 . 2011-04-01 17:02 -------- d-----w- c:\programdata\HP Product Assistant 2011-04-01 17:00 . 2011-04-01 17:00 -------- d-----w- c:\program files\Common Files\Hewlett-Packard 2011-04-01 16:18 . 2011-04-01 16:19 -------- d-----w- c:\users\User\AppData\Roaming\HP 2011-04-01 16:18 . 2011-04-01 16:18 -------- d-----w- c:\programdata\WEBREG 2011-04-01 16:17 . 2009-04-16 17:08 312832 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\hpfpp70v.dll 2011-03-31 18:49 . 2011-02-03 00:40 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-03-31 18:49 . 2011-04-01 17:04 -------- d-----w- c:\program files\Java 2011-03-31 17:04 . 2011-04-07 18:42 -------- d-----w- c:\users\User\AppData\Roaming\HpUpdate 2011-03-31 17:00 . 2008-10-28 09:27 372736 ----a-w- c:\windows\system32\hppldcoi.dll 2011-03-31 17:00 . 2009-04-15 20:53 452408 ----a-w- c:\windows\system32\hpzids01.dll 2011-03-31 17:00 . 2009-04-16 17:08 126976 ----a-w- c:\windows\system32\hpfll70v.dll 2011-03-31 16:59 . 2011-04-01 17:03 -------- d-----w- c:\program files\HP 2011-03-31 16:57 . 2011-04-01 17:02 -------- d-----w- c:\programdata\HP 2011-03-27 03:43 . 2011-04-05 19:48 -------- d-----w- c:\users\User\AppData\Local\Google 2011-03-27 03:43 . 2011-03-27 03:43 -------- d-----w- c:\users\User\AppData\Local\Deployment 2011-03-27 03:43 . 2011-03-27 03:43 -------- d-----w- c:\users\User\AppData\Local\Apps 2011-03-26 03:00 . 2011-03-26 03:00 -------- d-----w- c:\program files\Gameforge4D 2011-03-25 03:40 . 2011-03-26 05:07 -------- d-----w- c:\programdata\Messenger Plus! 2011-03-25 03:40 . 2011-03-25 03:40 -------- d-----w- c:\program files\Yuna Software 2011-03-24 16:12 . 2011-04-04 16:10 -------- d-----w- c:\users\User\AppData\Local\ElevatedDiagnostics 2011-03-16 14:54 . 2011-03-16 14:54 -------- d-----w- c:\users\User\AppData\Local\Mozilla 2011-03-16 02:30 . 2011-03-16 02:30 -------- d-----w- c:\program files\AVEO 2011-03-16 02:30 . 2008-05-27 18:35 171520 ----a-w- c:\windows\system32\drivers\aveodcnt.sys 2011-03-16 02:30 . 2007-07-05 16:20 28672 ------w- c:\windows\system32\MFC_InstDrvDLL.dll 2011-03-16 02:30 . 2005-01-21 13:42 57344 ------w- c:\windows\system32\sx_cam_i420.dll 2011-03-16 02:27 . 2001-05-11 15:18 420240 ----a-w- c:\windows\system32\mpg4c32.dll 2011-03-16 02:27 . 2011-03-16 02:27 -------- d-----w- c:\program files\Vimicro 2011-03-16 02:27 . 2011-03-16 02:27 -------- d-----w- c:\users\User\AppData\Roaming\InstallShield 2011-03-13 23:56 . 2011-03-13 23:56 -------- d-----w- c:\users\User\AppData\Roaming\Ahead 2011-03-12 12:34 . 2011-04-04 18:47 -------- d-----w- C:\GrandFantasiaPT . . ((((((((((((((((((((((((((((((((((((( Relatório Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-03-01 14:10 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll 2011-03-01 14:10 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll 2011-03-01 14:10 . 2009-07-13 23:24 811520 ----a-w- c:\windows\system32\user32.dll 2011-02-23 12:35 . 2011-03-01 14:29 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EA46FAD6-8C39-45F9-B846-2755B18CDA67}\mpengine.dll 2011-02-02 20:11 . 2011-03-01 14:29 222080 ------w- c:\windows\system32\MpSigStub.exe . . ------- Sigcheck ------- . [-] 2011-03-01 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7600.16385] . . c:\windows\System32\user32.dll [7] 2009-07-14 . 34B7E222E81FAFA885F0C5F2CFA56861 . 811520 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll . (((((((((((((((((((((((((( Pontos de Carregamento do Registro ))))))))))))))))))))))))))))))))))))))) . . *Nota* entradas vazias e legítimas por defeito não são mostradas. REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912] . [HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 2011-01-17 19:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] 2011-01-17 19:54 175912 ----a-w- c:\program files\DVDVideoSoftTB\prxtbDVDV.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "c:\program files\DVDVideoSoftTB\prxtbDVDV.dll" [2011-01-17 175912] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912] . [HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-17 3872080] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sistema Operacional"="c:\users\User\AppData\Local\Temp" [X] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-03-09 2769336] "4StoryPrePatch"="c:\program files\Gameforge4D\4Story\PrePatch.exe" [2011-03-16 319488] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2009-11-18 54576] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064] . c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Recorte de tela e Iniciador do OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) . R1 driverusbplus64;driverusbplus64;SysWOW64\drivers\plusdriver64.sys [x] R3 AVEO;AVEO USB2.0 PC Camera;c:\windows\system32\DRIVERS\AVEOdcnt.sys [2008-05-27 171520] R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x] R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2009-01-08 36608] S1 aswSP;aswSP; [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-03-09 51792] S3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller;c:\windows\system32\DRIVERS\l260x86.sys [2009-07-13 29184] S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2010-07-01 34896] S3 tenCapture;tenCapture;c:\windows\system32\DRIVERS\tenCapture.sys [2007-04-21 9344] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . . ------- Scan Suplementar ------- . uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2269050 IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Free YouTube to MP3 Converter - c:\users\User\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: {E32122A3-8494-449B-8FCC-40D53B16C97D} = 200.204.0.10 200.204.0.138 FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\40nfkptj.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - DVDVideoSoftTB Customized Web Search FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13 FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=2&q= FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com FF - Ext: Babylon: ffxtlbr@babylon.com - %profile%\extensions\ffxtlbr@babylon.com FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} FF - Ext: <?xmlversion=1.0?><RDF xmlns=http://www.w3.org/1999/02/22-rdf-syntax-ns# xmlns:em=http://www.mozilla.org/2004/em-rdf#><Description about=urn:mozilla:install-manifest><em:id>{1dacc1f2-0e39-4c79-8b10-aa2f18025bf3}: {1dacc1f2-0e39-4c79-8b10-aa2f18025bf3} - %profile%\extensions\{1dacc1f2-0e39-4c79-8b10-aa2f18025bf3} FF - Ext: Fire.fm: {6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3} - %profile%\extensions\{6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3} FF - Ext: DVDVideoSoftTB Community Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - %profile%\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} . - - - - ORFÃOS REMOVIDOS - - - - . URLSearchHooks-{12fc3d37-2a42-4fe3-8489-81296878cba5} - (no file) WebBrowser-{12FC3D37-2A42-4FE3-8489-81296878CBA5} - (no file) HKLM-Run-NPSStartup - (no file) . . . --------------------- CHAVES DO REGISTRO BLOQUEADAS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Tempo para conclusão: 2011-04-10 11:48:37 ComboFix-quarantined-files.txt 2011-04-10 14:48 . Pré-execução: 127.588.601.856 bytes disponíveis Pós execução: 127.252.340.736 bytes disponíveis . - - End Of File - - A5877763676299B847DF419FA812D6DA
  5. Por favor analise meu log

    . DDS (Ver_11-03-05.01) - NTFSx86 Run by User at 15:10:02,50 on 08/04/2011 Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_24 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.3318.1962 [GMT -3:00] . AV: avast! Antivirus *Enabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308} SP: avast! Antivirus *Enabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k hpdevmgmt C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\SearchIndexer.exe C:\Windows\System32\alg.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Users\User\Downloads\HijackThis.exe C:\Windows\system32\AUDIODG.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchProtocolHost.exe C:\Program Files\Windows Live\Messenger\msvs.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Users\User\Downloads\dds.pif C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = about:blank mSearchAssistant = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=9c986887000000000000000000000000&tlver=1.4.19.19&ss=1&affID=17394 uURLSearchHooks: H - No File BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GR469A~1.DLL BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll TB: {12FC3D37-2A42-4FE3-8489-81296878CBA5} - No File TB: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe" mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui mRun: [NPSStartup] mRun: [4StoryPrePatch] c:\program files\gameforge4d\4story\PrePatch.exe mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [<NO NAME>] mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [sistema Operacional] cmd.exe /c %tmp%/aaa.bat StartupFolder: c:\users\user\appdata\roaming\micros~1\windows\startm~1\programs\startup\recort~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab TCP: {E32122A3-8494-449B-8FCC-40D53B16C97D} = 200.204.0.10 200.204.0.138 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GRA32A~1.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GR469A~1.DLL . ================= FIREFOX =================== . FF - ProfilePath - c:\users\user\appdata\roaming\mozilla\firefox\profiles\40nfkptj.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2552374&SearchSource=3&q={searchTerms} FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/ FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?babsrc=SP_ss&mntrId=9c986887000000000000000000000000&tlver=1.4.19.19&instlRef=sst&ss=1&affID=17394&q= FF - component: c:\users\user\appdata\roaming\mozilla\firefox\profiles\40nfkptj.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll FF - component: c:\users\user\appdata\roaming\mozilla\firefox\profiles\40nfkptj.default\extensions\ffxtlbr@babylon.com\components\FFHst.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com FF - Ext: Babylon: ffxtlbr@babylon.com - %profile%\extensions\ffxtlbr@babylon.com FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} FF - Ext: <?xmlversion=1.0?><RDF xmlns=http://www.w3.org/1999/02/22-rdf-syntax-ns# xmlns:em=http://www.mozilla.org/2004/em-rdf#><Description about=urn:mozilla:install-manifest><em:id>{1dacc1f2-0e39-4c79-8b10-aa2f18025bf3}: {1dacc1f2-0e39-4c79-8b10-aa2f18025bf3} - %profile%\extensions\{1dacc1f2-0e39-4c79-8b10-aa2f18025bf3} FF - Ext: Fire.fm: {6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3} - %profile%\extensions\{6F0976E6-26F3-4AFE-BBEC-9E99E27E4DF3} . ============= SERVICES / DRIVERS =============== . R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-3-1 162640] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-3-1 19024] R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-3-1 51792] R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2011-3-1 40384] R3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller;c:\windows\system32\drivers\l260x86.sys [2009-6-10 29184] R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2011-3-1 40384] R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2011-3-1 40384] R3 AVEO;AVEO USB2.0 PC Camera;c:\windows\system32\drivers\aveodcnt.sys [2011-3-15 171520] R3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2010-7-1 34896] R3 tenCapture;tenCapture;c:\windows\system32\drivers\tenCapture.sys [2007-4-21 9344] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888] S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2011-3-8 36608] . =============== Created Last 30 ================ . 2011-04-07 01:25:36 161059 ----a-w- c:\windows\Expstudio Audio Editor FREE Uninstaller.exe.bak 2011-04-06 03:21:32 -------- d-----w- c:\users\user\appdata\roaming\Screaming Bee 2011-04-06 03:21:14 -------- d-----w- c:\progra~2\Screaming Bee 2011-04-04 19:30:14 -------- d-----w- c:\windows\system32\EXP 2011-04-04 19:04:41 152848 ----a-w- c:\windows\system32\COMDLG32.OCX 2011-04-03 00:37:21 40960 ----a-w- c:\windows\system32\AVEOCamIntfc.ax 2011-04-01 17:00:56 -------- d-----w- c:\program files\common files\Hewlett-Packard 2011-04-01 16:18:16 -------- d-----w- c:\progra~2\WEBREG 2011-04-01 16:17:22 312832 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\hpfpp70v.dll 2011-03-31 18:49:31 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-03-31 18:49:31 472808 ----a-w- c:\program files\mozilla firefox\plugins\npdeployJava1.dll 2011-03-31 17:04:02 -------- d-----w- c:\users\user\appdata\roaming\HpUpdate 2011-03-31 17:00:09 372736 ----a-w- c:\windows\system32\hppldcoi.dll 2011-03-31 17:00:06 452408 ----a-w- c:\windows\system32\hpzids01.dll 2011-03-31 17:00:02 126976 ----a-w- c:\windows\system32\hpfll70v.dll 2011-03-31 16:59:47 -------- d-----w- c:\program files\HP 2011-03-27 03:43:42 -------- d-----w- c:\users\user\appdata\local\Google 2011-03-27 03:43:28 -------- d-----w- c:\users\user\appdata\local\Deployment 2011-03-27 03:43:28 -------- d-----w- c:\users\user\appdata\local\Apps 2011-03-26 03:00:10 -------- d-----w- c:\program files\Gameforge4D 2011-03-25 21:49:06 -------- d-----w- c:\windows\system32\appmgmt 2011-03-25 03:40:38 -------- d-----w- c:\progra~2\Messenger Plus! 2011-03-25 03:40:33 -------- d-----w- c:\program files\Yuna Software 2011-03-24 16:12:51 -------- d-----w- c:\users\user\appdata\local\ElevatedDiagnostics 2011-03-16 02:30:45 57344 ------w- c:\windows\system32\sx_cam_i420.dll 2011-03-16 02:30:45 28672 ------w- c:\windows\system32\MFC_InstDrvDLL.dll 2011-03-16 02:30:45 171520 ----a-w- c:\windows\system32\drivers\aveodcnt.sys 2011-03-16 02:30:45 -------- d-----w- c:\program files\AVEO 2011-03-16 02:27:50 420240 ----a-w- c:\windows\system32\mpg4c32.dll 2011-03-16 02:27:49 -------- d-----w- c:\program files\Vimicro 2011-03-12 12:34:04 -------- d-----w- C:\GrandFantasiaPT . ==================== Find3M ==================== . 2011-03-01 14:10:22 409088 ----a-w- c:\windows\system32\systemcpl.dll 2011-03-01 14:10:22 13824 ----a-w- c:\windows\system32\slwga.dll 2011-03-01 14:10:21 811520 ----a-w- c:\windows\system32\user32.dll 2011-02-02 20:11:20 222080 ------w- c:\windows\system32\MpSigStub.exe . ============= FINISH: 15:11:21,18 =============== GMER 1.0.15.15570 - http://www.gmer.net Rootkit quick scan 2011-04-08 15:20:40 Windows 6.1.7600 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2 SAMSUNG_HD161GJ rev.1AC01118 Running: gmer.exe; Driver: C:\Users\User\AppData\Local\Temp\kxldapob.sys ---- System - GMER 1.0.15 ---- Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateProcessEx [0x930BA4FE] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateSection [0x930BA322] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwLoadDriver [0x930BA45C] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) NtCreateSection Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ObMakeTemporaryObject ---- Devices - GMER 1.0.15 ---- AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Gerenciador de Filtro do Filesystem Microsoft/Microsoft Corporation) AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software) AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software) ---- EOF - GMER 1.0.15 ---- HIJACKTHIS Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 13:35:12, on 08/04/2011 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Windows\system32\taskhost.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Windows Live\Messenger\msvs.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\User\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=9c986887000000000000000000000000&tlver=1.4.19.19&ss=1&affID=17394 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {12fc3d37-2a42-4fe3-8489-81296878cba5} - (no file) O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\Run: [4StoryPrePatch] C:\Program Files\Gameforge4D\4Story\PrePatch.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [sistema Operacional] cmd.exe /c %tmp%/aaa.bat O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE') O4 - Startup: Recorte de tela e Iniciador do OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Exibir ou ocultar HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{E32122A3-8494-449B-8FCC-40D53B16C97D}: NameServer = 200.204.0.10 200.204.0.138 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- End of file - 5626 bytes
  6. The Sims 2 - Tópico oficial

    ok vou da uma olhada sim ....tipo que o pc da minha cunhada deu problema também com mesmo jogo sendo que ela ja instalo uma vez e funciono agora que começo com esse erro, aff nem posso mexer no pc ainda comprei faz pouco tempo se mexer perde a garatia ....dai melhor deixa quieto ...com os outros jogos ele ta funcionando legal ...quanto a lentidão ele ta rodando legal o the sims pensei que ia fica uma tartaruga mais ta não ta rodando bem ...unico problema mesmo é o pisca pisca. mais obrigado pela ajuda vou ve no site la pra ver o que pode ser
  7. The Sims 2 - Tópico oficial

    Intel Celerom D CPU 3,33GHz, 496MB de RAM, SIS Mirage Graphics Windows XP SP3
  8. The Sims 2 - Tópico oficial

    ola pessoal to precisando de uma ajudinha .... bom instalei o sims 2 aqui e ele ta com problema, tipo quando abre ele e tal ele carrega legal rapidinho nem demora, mais ai quando você entra em uma visinhaça pra joga ai ele fica piscando o fundo de rosa ...e aquando coloca pra montar a casa as paredes ficam piscando de vermelho, o que pode ser, configuração do jogo??? como arrumo isso ???..........se alguem poder me ajudar agradeço

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×