Procurar

Palavras-chaves

Últimos assuntos

» OpenTip (...by Kaspersky.com)
pendriver infectado, talvez seja um worm Empty

Sáb Mar 23, 2024 10:28 am por joram

» KpRm ( ... by Kernel-panik )
pendriver infectado, talvez seja um worm Empty

Ter Ago 11, 2020 9:47 pm por joram

» ESET Rogue Applications Remover ( ... by Eset.com )
pendriver infectado, talvez seja um worm Empty

Sáb Ago 01, 2020 7:49 am por joram

» PW Clean 2.7 ( ... by Doutor PW )
pendriver infectado, talvez seja um worm Empty

Ter maio 15, 2018 9:27 am por joram

» CKScanner ( ... by askey127 )
pendriver infectado, talvez seja um worm Empty

Sáb maio 05, 2018 1:12 pm por joram

» AdwCleaner ( ... by XPlode )
pendriver infectado, talvez seja um worm Empty

Seg Abr 16, 2018 8:47 am por joram

» ZHPDiag ( ... de Nicolas Coolman )
pendriver infectado, talvez seja um worm Empty

Sáb Abr 14, 2018 8:56 am por joram

» Argente - Registry Cleaner ( ... by Argente Software )
pendriver infectado, talvez seja um worm Empty

Dom Nov 19, 2017 4:36 pm por joram

» ListChkdskResult ( ... by SleepyDude )
pendriver infectado, talvez seja um worm Empty

Dom Set 24, 2017 1:39 pm por joram

abril 2024

Seg	Ter	Qua	Qui	Sex	Sáb	Dom
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30

Calendário

Parceiros

Os membros mais mencionados

Nenhum usuário

pendriver infectado, talvez seja um worm

Edvan

Edvan: Membro; Mensagens : 428
Data de inscrição : 14/02/2013
Idade : 43
Localização : Natal/RN

Mensagem nº1

pendriver infectado, talvez seja um worm

por Edvan Qui Ago 22, 2013 3:51 pm

Log para analise: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

Vou rodar o Adwcleaner.

############################## | UsbFix V 7.130 | [Supressão]

Usuário: f002699 (Administrador) # FUN0131
Atualizado em 20/08/2013 por El Desaparecido
Começou em 16:41:55 | 22/08/2013

Site: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Upload Malware: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
Contato: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]

PC: MIRANDA (MIRANDA) (X86-based PC)
CPU: Processador Intel Pentium III Xeon (2611)
RAM -> [Total : 2013 | Free : 1438]
BIOS: BIOS Date: 05/04/10 15:10:43 Ver: 08.00.14
BOOT: Normal boot

OS: Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disco fixo # 466 Gb (414 Mb livre - 89%) [] # NTFS
D:\ -> CD-ROM
E:\ -> Disco removível # 4 Gb (606 Mb livre - 16%) [TALITA] # FAT32

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [HDAudDeck] - C:\Arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe 1
HKLM\SOFTWARE | Run : [IgfxTray] - C:\WINDOWS\system32\igfxtray.exe
HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe
HKLM\SOFTWARE | Run : [Persistence] - C:\WINDOWS\system32\igfxpers.exe
HKLM\SOFTWARE | Run : [Adobe Reader Speed Launcher] - "C:\Arquivos de programas\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKLM\SOFTWARE | Run : [avast5] - C:\ARQUIV~1\ALWILS~1\Avast5\avastUI.exe /nogui
HKLM\SOFTWARE | Run : [NeroFilterCheck] - C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NeroCheck.exe
HKLM\SOFTWARE | Run : [NBKeyScan] - "C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [TkBellExe] - "C:\Arquivos de programas\Real\RealPlayer\update\realsched.exe" -osboot
HKLM\SOFTWARE | Run : [Iminent] - C:\Arquivos de programas\Iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"
HKLM\SOFTWARE | Run : [IminentMessenger] - C:\Arquivos de programas\Iminent\Iminent.Messengers.exe
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-20\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-21-2586132527-314635491-3328972525-21046\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\ctfmon.exe
HKU\S-1-5-21-2586132527-314635491-3328972525-21046\SOFTWARE | Run : [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - "C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
HKU\S-1-5-21-2586132527-314635491-3328972525-21046\SOFTWARE | Run : [swg] - "C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-18\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE

################## | Processos parados |

Parado! C:\Arquivos de programas\Alwil Software\Avast5\AvastSvc.exe (1328)
Parado! C:\WINDOWS\system32\spoolsv.exe (1508)
Parado! C:\Documents and Settings\All Users\Dados de aplicativos\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe (1800)
Parado! C:\Arquivos de programas\Java\jre6\bin\jqs.exe (468)
Parado! C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBService.exe (516)
Parado! C:\Arquivos de programas\Arquivos comuns\Umbrella\umbrella.exe (1236)
Parado! C:\WINDOWS\system32\wbem\wmiapsrv.exe (1852)
Parado! C:\WINDOWS\Explorer.EXE (2520)
Parado! C:\Documents and Settings\All Users\Dados de aplicativos\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe (3496)
Parado! C:\Arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe (592)
Parado! C:\WINDOWS\system32\igfxtray.exe (1212)
Parado! C:\WINDOWS\system32\hkcmd.exe (680)
Parado! C:\WINDOWS\system32\igfxsrvc.exe (752)
Parado! C:\WINDOWS\system32\igfxpers.exe (1920)
Parado! C:\ARQUIV~1\ALWILS~1\Avast5\avastUI.exe (2072)
Parado! C:\Arquivos de programas\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (2376)
Parado! C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe (2396)
Parado! C:\Arquivos de programas\Real\RealPlayer\update\realsched.exe (2476)
Parado! C:\Arquivos de programas\Iminent\Iminent.exe (2668)
Parado! C:\Arquivos de programas\Iminent\Iminent.Messengers.exe (2772)
Parado! C:\WINDOWS\system32\ctfmon.exe (2840)
Parado! C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexStoreSvr.exe (2948)
Parado! C:\Arquivos de programas\Arquivos comuns\Nero\Lib\NMIndexingService.exe (3192)
Parado! C:\WINDOWS\system32\wuauclt.exe (3428)
Parado! C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jucheck.exe (1900)

################## | Ficheiros # pastas infeciosos |

Supprimido ! E:\SAM_0871 modified.jpg.lnk
Supprimido ! E:\SAM_0876 modified.jpg.lnk
Supprimido ! E:\forminha de docinhos.doc.lnk
Supprimido ! E:\SAM_0870.JPG.lnk
Supprimido ! E:\SAM_0872.JPG.lnk
Supprimido ! E:\SAM_0882.JPG.lnk
Supprimido ! E:\SAM_0888.JPG.lnk
Supprimido ! E:\XP-Codec-Pack_2.4.6.exe.lnk
Supprimido ! E:\RealPlayer.exe.lnk
Supprimido ! E:\~WRL0001.tmp.lnk
Supprimido ! E:\forminha de docinhos.pdf.lnk
Supprimido ! E:\forminha de docinhosss.pdf.lnk
Não supprimido ! E:\AUTORUN.INF

(!) Ficheiros temporários suprimido.

################## | Registro |

################## | Mountpoints2 |

################## | Listing |

[08/08/2013 - 14:37:11 | D ]     C:\Arquivos de programas
[25/01/2012 - 17:00:08 | N | 0]     C:\AUTOEXEC.BAT
[25/01/2012 - 16:56:08 | N | 211]     C:\boot.ini
[02/03/2006 - 09:00:00 | N | 4952]     C:\Bootfont.bin
[25/01/2012 - 17:00:08 | N | 0]     C:\CONFIG.SYS
[18/02/2013 - 17:36:38 | D ]     C:\d926283efba4cb11b961
[17/09/2012 - 17:37:26 | D ]     C:\Documents and Settings
[25/01/2012 - 17:07:47 | D ]     C:\Intel
[25/01/2012 - 17:00:08 | N | 0]     C:\IO.SYS
[25/01/2012 - 17:00:08 | N | 0]     C:\MSDOS.SYS
[25/01/2012 - 17:38:18 | RHD ]     C:\MSOCache
[02/03/2006 - 09:00:00 | N | 47564]     C:\NTDETECT.COM
[25/01/2012 - 17:50:51 | N | 251696]     C:\ntldr
[22/08/2013 - 08:02:11 | ASH | 2145386496]     C:\pagefile.sys
[23/05/2012 - 13:43:34 | SHD ]     C:\RECYCLER
[07/08/2013 - 08:54:26 | D ]     C:\sigap
[25/01/2012 - 17:03:24 | SHD ]     C:\System Volume Information
[26/10/2012 - 09:49:52 | D ]     C:\TALITA
[22/08/2013 - 16:47:45 | D ]     C:\UsbFix
[22/08/2013 - 16:48:02 | A | 6420]     C:\UsbFix [Clean 1] FUN0131.txt
[02/08/2013 - 15:58:26 | D ]     C:\WINDOWS
[07/07/2013 - 18:53:42 | D ]     E:\fotos máquina erineide
[07/07/2013 - 18:46:54 | D ]     E:\fotos talita
[01/08/2013 - 17:30:36 | N | 1380937]     E:\SAM_0871 modified.jpg
[01/08/2013 - 15:38:52 | N | 362]     E:\masks
[01/08/2013 - 15:44:16 | N | 801676]     E:\SAM_0876 modified.jpg
[09/08/2013 - 09:26:04 | D ]     E:\niver de hyann
[09/08/2013 - 09:26:38 | D ]     E:\niver de pedro lucas
[19/08/2013 - 17:59:54 | N | 376832]     E:\forminha de docinhos.doc
[23/07/2013 - 14:20:48 | D ]     E:\viagem
[07/12/2012 - 14:28:12 | N | 2103793]     E:\SAM_0870.JPG
[24/07/2013 - 00:45:16 | N | 2120138]     E:\SAM_0872.JPG
[24/07/2013 - 00:45:44 | N | 2106110]     E:\SAM_0882.JPG
[01/08/2013 - 15:45:06 | N | 780890]     E:\SAM_0888.JPG
[14/08/2013 - 19:02:40 | N | 150291]     E:\forminha de docinhos.pdf
[19/08/2013 - 18:20:58 | N | 151619]     E:\forminha de docinhosss.pdf
[21/08/2013 - 18:48:22 | N | 82686]     E:\VIOLÊNCIA.pptx
[01/08/2013 - 14:31:52 | D ]     E:\pedro lucas
[24/10/2012 - 15:15:52 | H | 16]     E:\AUTORUN.INF
[16/02/2009 - 21:55:52 | N | 7751011]     E:\XP-Codec-Pack_2.4.6.exe
[10/10/2012 - 11:56:56 | N | 27498976]     E:\RealPlayer.exe
[02/05/2012 - 14:44:01 | A | 802342]     P:\Normas Terceiro Setor - 2011.pdf
[06/03/2013 - 09:18:13 | A | 52514]     P:\9635-0.xlsx
[16/07/2013 - 13:43:24 | D ]     P:\nadia
[17/09/2012 - 16:45:08 | D ]     P:\Compras e Licitação
[13/08/2013 - 15:24:15 | D ]     P:\JORGE
[22/07/2008 - 17:49:28 | N | 27648]     P:\Diligência da Bienal do livro 2007.doc
[20/01/2012 - 14:40:24 | A | 373248]     P:\20-01-12.xls
[24/05/2013 - 09:15:39 | D ]     P:\CASA DE VANDO
[26/06/2009 - 07:57:00 | N | 89106]     P:\segurança_de_cd_03.jpg
[14/04/2008 - 15:21:18 | N | 623845]     P:\Importação Complemento0001.pdf
[01/07/2013 - 10:40:58 | A | 665609]     P:\nota fiscal 56492013.pdf
[13/08/2013 - 17:02:21 | D ]     P:\VANESSA
[01/06/2010 - 09:10:51 | N | 20089]     P:\Maria del Pilar.pdf
[19/08/2013 - 15:39:45 | D ]     P:\Pedro Projetos
[08/11/2011 - 11:38:40 | N | 68608]     P:\Plan_contrat_Venc_97_2003.xls
[04/06/2013 - 11:06:56 | D ]     P:\EXTRATOS BANCARIOS B BRASIL 2011
[29/12/2011 - 11:14:59 | D ]     P:\Assad
[19/08/2013 - 16:12:56 | D ]     P:\FOTOS DE ALIETE
[26/04/2013 - 14:39:51 | D ]     P:\IÊDO
[22/08/2013 - 09:11:49 | D ]     P:\RH
[06/08/2013 - 11:34:08 | D ]     P:\Helaine
[22/08/2011 - 16:21:44 | D ]     P:\FOTOS Treinamento FUNPEC
[04/07/2013 - 17:42:00 | D ]     P:\SICAP - DEFESA MPRN
[30/05/2012 - 08:03:32 | D ]     P:\INFRAS
[15/04/2010 - 09:38:30 | N | 20480]     P:\Pasta1.xls
[20/04/2009 - 11:02:56 | D ]     P:\caixa
[09/06/2010 - 11:54:32 | N | 353262]     P:\oficio pnud.pdf
[28/12/2012 - 08:59:20 | D ]     P:\CONFRATERNIZAÇÃO SÃO JOÃO FUNPEC 2011
[12/03/2010 - 08:31:36 | N | 254464]     P:\Oficios 476.2010- Linux 1.doc
[16/08/2013 - 09:25:32 | D ]     P:\Verônica
[12/04/2013 - 15:47:29 | D ]     P:\TERMOS 2012
[19/08/2013 - 15:50:20 | A | 481708]     P:\123.pdf
[09/06/2010 - 17:10:00 | N | 1654272]     P:\SINTEC MODELO.xls
[02/07/2012 - 16:20:09 | D ]     P:\Relatório e Plano de Providências - Severino Cesario
[06/09/2012 - 16:49:49 | N | 2922860]     P:\CONTRATO Nº 3415.21.1412 UFRN FUNPEC.pdf
[20/08/2013 - 14:34:30 | D ]     P:\CPL - IMPORTAÇÃO - CONTROLE DE CONTRATOS
[01/11/2012 - 08:22:25 | A | 49890]     P:\CertidaoUnificadaEmissaoRel - FUNPEC.pdf
[19/01/2010 - 08:35:00 | N | 264704]     P:\IMOBILIZADO HANNA 2009.xls
[05/11/2009 - 10:13:48 | N | 481280]     P:\orelhas.doc
[21/08/2012 - 09:58:27 | A | 18432]     P:\TABELA KRIS - FINANCIAMENTO.xls
[03/06/2013 - 10:04:00 | D ]     P:\BNB 2013
[23/03/2012 - 15:31:17 | A | 20076]     P:\Vera Lourdes Pestana.pdf
[09/07/2013 - 15:22:27 | D ]     P:\BASE WK - 2013 - teste consolidação
[17/12/2012 - 08:44:26 | D ]     P:\George
[25/04/2013 - 10:19:01 | A | 13800]     P:\Emilie Saraiva.pdf
[29/11/2011 - 16:08:03 | N | 5320104]     P:\PROPOSTA PORTOSEGURO0001.pdf
[16/10/2009 - 11:57:14 | N | 78336]     P:\Doc FM.doc
[16/12/2011 - 15:48:37 | D ]     P:\FOTOS - FUNPEC Natal Solidario 2011
[08/05/2013 - 17:14:04 | D ]     P:\EXTRATOS BANCARIOS CREDSUPER 2013
[29/07/2011 - 07:46:29 | D ]     P:\Sim Shalom
[22/08/2011 - 16:01:21 | N | 5222]     P:\DIPJ 2011 - Recibo.pdf
[10/04/2013 - 18:04:53 | A | 27136]     P:\Analise Curricular - Edital 07 2013 - FUNPEC.xls
[11/03/2010 - 14:09:06 | N | 68096]     P:\TELEFONES FUNPEC 2010 - GRUPO CONTABILIDADE.xls
[02/07/2010 - 15:34:47 | N | 24576]     P:\requisões rub. 36.doc
[02/02/2012 - 13:24:33 | A | 23040]     P:\DARF COM PROBLEMA.xls
[11/04/2013 - 10:44:11 | A | 307712]     P:\Projetos 2013 - Fernando.xls
[17/07/2013 - 11:41:43 | D ]     P:\Emerson
[18/02/2011 - 15:28:27 | N | 1802184]     P:\Dirf.txt
[09/04/2010 - 11:54:23 | N | 80384]     P:\Ofício nº 04 - Ministerio da Saude.doc
[01/10/2010 - 16:31:01 | D ]     P:\EXTRATOS BNB 2009
[19/01/2011 - 16:42:13 | D ]     P:\EXTRATOS BANCARIOS CEF 2009
[15/03/2012 - 14:40:05 | D ]     P:\Legislação para atualização da página da FUNPEC
[07/12/2011 - 11:10:55 | N | 20090]     P:\Joseane 2008.pdf
[22/08/2013 - 11:05:47 | A | 1774347]     P:\ARQUIVO.docx
[12/03/2010 - 08:29:35 | N | 21504]     P:\Oficio Linus.doc
[14/08/2013 - 11:21:00 | D ]     P:\MARLY MARIA
[25/03/2011 - 11:59:15 | N | 129649689]     P:\EXTRATOS BANCARIOS B BRASIL 2010.rar
[02/09/2010 - 17:41:31 | N | 78336]     P:\contrato clt.xls
[14/10/2009 - 16:31:00 | N | 10229]     P:\http.docx
[05/05/2011 - 09:15:53 | N | 34304]     P:\Oficio CEF - Caução.doc
[05/11/2012 - 17:41:44 | D ]     P:\ROBERTA-extratos
[13/09/2012 - 14:38:18 | A | 59392]     P:\DESPESA FUNPEC 2009.xls
[21/08/2013 - 16:31:47 | D ]     P:\Patrícia Pontes
[06/03/2013 - 14:37:55 | A | 23040]     P:\Dados Pessoais - Festa.doc
[12/09/2012 - 16:28:11 | D ]     P:\APRESENTAÇÃO UFRN X FUNPEC
[22/05/2012 - 14:31:40 | D ]     P:\FOTOS TREINAMENTO_INCÊNDIO_FUNPEC_27-01-2012
[15/07/2011 - 17:43:39 | D ]     P:\Documento
[31/05/2011 - 10:49:37 | N | 87552]     P:\Ofício ENVIO 1319-2011.doc
[20/06/2012 - 10:00:46 | A | 334486]     P:\Termo Referência - Supr.Informática (100732012).pdf
[22/08/2013 - 15:05:55 | D ]     P:\SETOR DE EMPENHOS
[21/03/2013 - 14:27:40 | A | 36864]     P:\FLUXO DE CAIXA 2012 2011.xls
[04/07/2013 - 17:13:07 | N | 129812]     P:\SERPE.pdf
[22/05/2013 - 08:57:54 | D ]     P:\COM INTANGIVEL
[22/04/2013 - 08:47:32 | A | 1405526]     P:\PT-101.01.11635_GEOFLU_Relatório Parcial Abril de 2013 FUNPEC Copy.pdf
[17/05/2010 - 15:09:21 | | 3318784]     P:\Contatos.pst
[19/08/2013 - 17:48:54 | A | 433479]     P:\notificação.jpg
[17/09/2012 - 09:51:16 | D ]     P:\RELATÓRIO DE ATIVIDADES - FUNDAÇÕES DE APOIO
[03/02/2012 - 17:36:31 | A | 43008]     P:\INVENTARIO LOJINHA - 2011.xls
[19/08/2013 - 14:09:41 | D ]     P:\CPD
[26/09/2012 - 11:34:08 | D ]     P:\ACOMPANHAMENTOS DE OBRA - CPL
[08/05/2012 - 08:58:05 | A | 190976]     P:\Movimento de Saída de Processos.xls
[10/04/2013 - 08:12:09 | D ]     P:\FOTOS- FESTA DOS ANIVERSARIANTES
[18/04/2011 - 14:36:27 | N | 41483]     P:\Consulta Contribuinte Municipal - FUNPEC.pdf
[16/09/2010 - 11:01:57 | N | 76800]     P:\Dilig.034 Conv.138-2006-NUPLAN.doc
[21/08/2013 - 15:28:24 | A | 48285]     P:\Memorando TCU.docx
[24/05/2010 - 09:20:18 | N | 1083710]     P:\Documentos - Juridico.PDF
[01/02/2010 - 06:53:08 | N | 847625]     P:\CopSeg.cmp
[03/06/2013 - 10:03:01 | D ]     P:\EXTRATOS BNB 2013
[27/04/2012 - 14:10:49 | A | 687616]     P:\PRESTAÇÃO DE CONTAS - FORMULARIOS IN 97-01 - 2006 A 20 12 - A Encaminhar final ( 270412).xls
[26/07/2013 - 11:16:47 | D ]     P:\Ewerton
[29/01/2013 - 17:50:25 | A | 284160]     P:\rubrica 36 - erro.xls
[16/05/2013 - 13:04:07 | A | 57291]     P:\DARF_ERIVALDO_2COTA.pdf
[27/07/2012 - 14:44:15 | A | 23040]     P:\PROCURAÇÃO POR INSTRUMENTO PARTICULAR - JORGE LINS.doc
[17/08/2012 - 12:47:29 | A | 17890]     P:\872011 editado.txt
[12/03/2010 - 08:24:39 | N | 254464]     P:\Oficios 476.2010- Linux.doc
[07/08/2013 - 16:17:39 | D ]     P:\SÃO JOÃO 2013
[09/10/2009 - 08:52:23 | D ]     P:\certidoes
[22/08/2013 - 09:28:05 | D ]     P:\Andrea
[10/02/2011 - 15:15:02 | N | 20992]     P:\Declaração FUNPEC - ECOBIO.doc
[21/02/2013 - 10:56:06 | D ]     P:\SIG
[28/02/2011 - 10:57:26 | D ]     P:\Parte da Conciliação de projetos vigentes-ARQUIVO
[04/05/2011 - 10:50:28 | N | 81408]     P:\Controle de provisões.xls
[16/04/2009 - 11:09:39 | N | 261120]     P:\SIPAC 2006.xls
[22/08/2013 - 16:14:44 | D ]     P:\Fernando
[03/07/2013 - 10:51:45 | D ]     P:\Homologação - CPL
[13/10/2011 - 17:42:51 | D ]     P:\SECRETARIA
[03/04/2008 - 16:29:58 | N | 891839]     P:\Contratos novo0001.pdf
[15/08/2013 - 15:36:43 | D ]     P:\CONCILIACAO
[27/01/2011 - 16:36:00 | D ]     P:\EXTRATOS CREDSUPER 2010
[30/05/2012 - 08:20:29 | D ]     P:\EXTRATOS BNB 2012
[07/05/2009 - 16:11:42 | N | 363937]     P:\marconi.pdf
[23/02/2010 - 10:21:25 | D ]     P:\EXTRATOS BANCARIOS B BRASIL 2009
[28/08/2012 - 16:06:03 | A | 64512]     P:\Memorando nº 023.1 12 - GC (PROGRAMA VALIDADOR DE NFE E RETANÇÃO DO INSS ).doc
[12/04/2013 - 15:46:22 | D ]     P:\TERMOS DE RESPONSABILIDADE 2012
[14/02/2013 - 09:16:41 | D ]     P:\Nova pasta (2)
[07/08/2013 - 17:04:34 | D ]     P:\MICHELY - IMPORTAÇÃO
[24/08/2011 - 14:07:59 | N | 115712]     P:\Planilha Levantamento Projetos - com detalhamento V1.2.xls
[09/05/2013 - 16:45:24 | D ]     P:\talita
[13/12/2011 - 11:55:59 | D ]     P:\GPD
[21/08/2012 - 08:21:41 | D ]     P:\WKRadar
[30/12/2010 - 11:33:34 | D ]     P:\DOAÇÃO NO VARELA SANTIAGO DIA 27-12-2010
[12/07/2013 - 13:42:42 | A | 13601]     P:\Ana Lidia Rodrigues de Melo.pdf
[23/04/2013 - 15:23:09 | A | 432]     P:\Atalho para SETOR DE EMPENHOS.lnk
[11/05/2009 - 14:00:58 | N | 29696]     P:\3ª Reunião Ordinária do Conselho - 17.07.08.doc
[23/10/2009 - 14:49:38 | | 27136]     P:\Reunião Ordinária realizada em.doc
[09/04/2010 - 15:54:11 | N | 1172480]     P:\Ofício nº 05 2010.doc
[14/10/2008 - 16:59:42 | N | 1288657]     P:\importacao.pdf
[15/12/2011 - 14:51:47 | A | 327168]     P:\HARABELLO 0712.xls
[08/02/2013 - 15:21:59 | D ]     P:\ALEUDA
[04/02/2013 - 16:02:44 | D ]     P:\Etiquetas
[09/05/2011 - 09:57:35 | D ]     P:\EXTRATOS BANCARIOS B BRASIL 2010
[08/01/2013 - 07:53:49 | A | 26624]     P:\Memorando BNDES1.doc
[19/01/2012 - 11:34:16 | A | 22016]     P:\LINK CFC LEI 11638.doc
[06/10/2011 - 17:38:57 | D ]     P:\FOTOS PALESTRA HIPERTENSÃO E DIABETES
[11/04/2013 - 16:39:15 | D ]     P:\IMOBILIZADO 2012
[17/02/2012 - 14:38:56 | D ]     P:\EXTRATOS BNB 2011
[23/10/2012 - 15:37:46 | D ]     P:\RELATÓRIO DE ATIVIDADES - MODELO 2012
[30/08/2011 - 10:39:13 | N | 301056]     P:\Planilha de Custos - Versão II.xls
[30/04/2013 - 17:25:26 | D ]     P:\Diana Rocha
[26/03/2009 - 09:09:05 | D ]     P:\SICAP
[16/08/2013 - 15:08:18 | D ]     P:\Roberta
[21/02/2013 - 10:42:09 | A | 16392]     P:\PEDRO C PORTO.pdf
[04/06/2010 - 17:35:27 | N | 79872]     P:\MODELO DE DOCUMENTOS FUNPEC.doc
[29/08/2011 - 17:52:39 | D ]     P:\COMPRAS PESQUISA DE MERCADO
[28/02/2008 - 11:57:57 | N | 26624]     P:\Plano de Trabalho-Consult. REGESUS-fevereiro2008.doc
[20/01/2010 - 08:38:29 | N | 280064]     P:\Modelo de RELATORIO DE VIAGEM.doc
[14/08/2013 - 11:33:10 | D ]     P:\JOANA
[12/12/2011 - 16:28:43 | N | 189440]     P:\SUPRIMENTO 2011.xls
[19/01/2012 - 15:10:33 | D ]     P:\CONFRATERNIZAÇÃO NATALINA 2010
[27/06/2012 - 11:55:13 | D ]     P:\Nova pasta
[10/06/2010 - 13:39:31 | N | 1346048]     P:\MODELO SINTEC.xls
[17/11/2009 - 16:11:05 | N | 84480]     P:\IMOBILIZADO 2009 - ADRIANA.xls
[22/08/2011 - 16:00:44 | N | 24896]     P:\DIPJ 2011.pdf
[07/01/2013 - 08:25:32 | D ]     P:\EXTRATOS CREDSUPER 2011
[24/05/2010 - 09:21:26 | N | 226532]     P:\Estatuto Social - FUNPEC.PDF
[19/08/2013 - 11:07:38 | D ]     P:\OBRAS
[10/03/2010 - 10:24:05 | N | 58880]     P:\Cadastro Grupo Contabiliade.xls
[19/03/2008 - 09:03:29 | N | 22528]     P:\Ofício a MEJC atraso entrega de bem licitação notificação.doc
[20/06/2012 - 10:02:51 | A | 459264]     P:\Termo Ref. - Supr,informática - 100732012.doc
[24/09/2010 - 12:19:03 | D ]     P:\Nadson
[11/03/2010 - 10:28:34 | N | 23552]     P:\LISTA DE PROJETOS - ROBERTA.xls
[18/04/2012 - 09:15:29 | A | 12742]     P:\Tatiana Matoso - Pendencia IRRF 2012.xlsx
[23/05/2013 - 08:06:35 | D ]     P:\Ofícios 2007
[23/05/2013 - 15:31:31 | D ]     P:\allan
[26/03/2008 - 08:50:26 | D ]     P:\MEC-UNESCO - PIC
[21/05/2008 - 16:17:29 | D ]     P:\SICAP_ANtigo
[16/09/2011 - 08:54:06 | N | 257536]     P:\x - Cunho da pesquisa 252011 UN-RNCE.doc
[09/01/2009 - 17:01:26 | N | 241]     P:\Conta Corrente.url
[21/03/2013 - 07:57:18 | A | 22098]     P:\Francisco de Assis - Ap 201 - Fev 2013.pdf
[27/07/2011 - 11:47:27 | D ]     P:\GRAFICOS RELATORIO 2009
[17/05/2013 - 14:19:32 | D ]     P:\YOARA
[25/03/2011 - 09:25:09 | N | 10677]     P:\Alvaro Fernandes.pdf
[04/05/2012 - 16:44:15 | A | 139264]     P:\DADOS DOS PROJETOS - SICAP 2012.xls
[22/05/2013 - 15:41:20 | N | 144327]     P:\DECLARAÇÃO DE CONFORMIDADE.pdf
[24/02/2011 - 09:10:34 | N | 24064]     P:\Mensagem declaração IR..doc
[27/02/2013 - 15:46:54 | D ]     P:\EXTRATOS CREDSUPER 2012
[29/04/2013 - 17:18:09 | A | 13900]     P:\GUILHERME FULGENCIO.pdf
[01/08/2012 - 12:18:02 | D ]     P:\FUNPEC - SÃO JOÃO SOLIDÁRIO DE 2012
[20/06/2012 - 10:02:50 | A | 162]     P:\~$rmo Ref. - Supr,informática - 100732012.doc
[22/08/2011 - 15:12:24 | N | 330752]     P:\Planilha de Custos - Projeto de Pesquisa - Versão Ia.xls
[09/12/2009 - 12:23:02 | N | 42496]     P:\MODELO GECON-trabalho 3 unidade.doc
[30/10/2009 - 11:06:41 | N | 168777]     P:\Digitalizar0001.pdf
[16/10/2009 - 11:23:30 | N | 33169]     P:\Doc FM.docx
[24/07/2012 - 16:56:12 | A | 18999]     P:\NOTAS CANCELADAS.pdf
[04/12/2009 - 09:38:14 | N | 24064]     P:\Oficio Gustavo.doc
[26/04/2013 - 14:34:27 | D ]     P:\Edilson
[05/08/2013 - 17:49:27 | D ]     P:\COMPRAS
[29/08/2012 - 16:10:28 | A | 12018]     P:\8888.TXT
[13/03/2012 - 15:32:38 | A | 16691]     P:\RECEITA 2010.xlsx
[10/08/2012 - 10:05:17 | A | 46847]     P:\Memorando 023 ( atualização NF ELETRONICA 100812).docx
[23/11/2011 - 10:42:14 | N | 147590]     P:\NF TRES CORAÇÕES_10001.pdf
[15/03/2013 - 12:43:13 | D ]     P:\WK 5.18
[24/02/2012 - 09:53:50 | A | 113152]     P:\2312006 - Simulação Numérica.xls
[07/12/2011 - 11:09:25 | N | 20500]     P:\Joseane 2007.pdf
[07/10/2010 - 09:14:36 | N | 440653]     P:\SICAP 2009 FUNPEC.pdf
[26/06/2013 - 09:26:27 | D ]     P:\DIGITALIZAÇÕES_ Prestação Contas
[17/06/2011 - 15:37:39 | D ]     P:\EXTRATOS BANCARIOS CEF 2010
[09/07/2013 - 17:32:16 | D ]     P:\JEAN
[17/08/2012 - 12:45:50 | A | 932910]     P:\872011- lançamento final-3.txt
[19/08/2013 - 17:41:56 | D ]     P:\AJU
[20/08/2013 - 17:06:04 | D ]     P:\PASTA DA CONTABILIDADE 2013
[10/08/2012 - 09:50:28 | A | 68096]     P:\Memorando 021- GC ( NOTAS ELETRONICAS ).doc
[24/02/2012 - 10:01:05 | A | 105472]     P:\1082007 - Injeção de Vapor.xls
[23/05/2013 - 14:24:18 | D ]     P:\Gratificação curso e concurso
[26/12/2011 - 14:55:35 | N | 10851]     P:\Hostina Maria.pdf
[09/05/2011 - 09:58:08 | D ]     P:\EXTRATOS BNB 2010
[19/07/2013 - 11:44:43 | D ]     P:\Importação
[23/04/2010 - 16:42:59 | N | 1347483]     P:\FINEP INFRA ESTRUTURA II.PDF
[12/08/2013 - 08:09:10 | A | 187]     P:\Atalho para KINGSTON (F).lnk
[04/03/2013 - 15:09:21 | D ]     P:\EXTRATOS BANCARIOS B BRASIL 2012
[29/03/2012 - 16:07:11 | A | 20159]     P:\CICLAMIO LEITE BARRETO.pdf
[02/08/2013 - 10:50:42 | A | 12288]     P:\photothumb.db
[22/07/2013 - 09:37:16 | A | 257417]     P:\digitalizar0004.pdf
[28/06/2011 - 08:22:28 | D ]     P:\lista 2011 de projetos dos funcionários da contabilidade
[07/08/2013 - 16:13:58 | D ]     P:\Bruno
[20/08/2013 - 15:34:05 | D ]     P:\FOTOS FINANCEIRO
[15/08/2013 - 10:10:49 | D ]     P:\CEIÇA
[04/07/2013 - 17:12:03 | N | 128825]     P:\Jácome Engenharia.pdf
[16/03/2010 - 17:37:58 | N | 585579]     P:\Scan_Pic0002.jpg
[30/11/2011 - 15:16:35 | D ]     P:\MARIANA
[21/07/2010 - 14:06:35 | D ]     P:\ELETROBRAS
[21/01/2010 - 08:40:40 | N | 108544]     P:\IMOBILIZADO Vanessa 2009.xls
[19/08/2013 - 11:43:20 | D ]     P:\Leila
[17/08/2012 - 12:00:47 | D ]     P:\Lilian
[02/08/2010 - 17:41:45 | N | 75891]     P:\ISS%20na%20loca%C3%A7%C3%A3o%20bens%20m%C3%B3veis%20e%20procedimentos%20fiscais%20-%20Parecer.pdf
[25/06/2013 - 17:22:29 | D ]     P:\Adriana Aguiar
[22/08/2013 - 14:32:40 | D ]     P:\Hortevan
[07/06/2013 - 16:09:37 | D ]     P:\PRESTAÇÃO DE CONTAS
[23/11/2011 - 08:51:08 | N | 25837]     P:\Fatura Cosern - Arquivo Funpec - Novembro.pdf
[09/08/2013 - 11:30:32 | D ]     P:\EXTRATOS BANCARIOS B BRASIL 2013
[07/08/2013 - 10:50:59 | D ]     P:\Mayane
[08/02/2011 - 10:47:56 | D ]     P:\EXTRATOS BANCARIOS CEF 2011
[19/03/2013 - 13:02:58 | D ]     P:\GAAP
[19/01/2012 - 09:17:15 | A | 1539072]     P:\Demonstrativo Uso de Rendimentos 2102006..xls
[11/03/2013 - 08:31:39 | A | 74240]     P:\LISTA DE PROJETOS - FERNANDO.xls
[28/04/2011 - 09:50:20 | N | 19820]     P:\Ana Karina.pdf
[11/02/2010 - 16:09:42 | D ]     P:\Dirf2010
[08/11/2011 - 09:43:48 | D ]     P:\LUCIANA CPL
[03/02/2012 - 16:50:24 | A | 357376]     P:\472011 nov - extrato.xls
[29/04/2013 - 11:25:55 | A | 13851]     P:\ANTONIO CARLOS.pdf
[24/05/2013 - 09:15:39 | D ]     P:\Zoraia
[11/11/2011 - 15:49:28 | N | 5207277]     P:\HARABELLO 1 - ANDREIA.xlsx
[06/09/2012 - 16:26:20 | D ]     P:\pagamento
[22/07/2010 - 15:02:10 | N | 257024]     P:\Despacho para empenho.doc
[13/06/2013 - 10:06:39 | A | 23518]     P:\Francisco de Assis - Ap 201 B - Monte Carlo.pdf
[25/04/2011 - 11:20:12 | N | 11388]     P:\GRACIANA OLIVEIRA.pdf
[16/10/2012 - 15:25:22 | D ]     P:\Exec
[24/05/2010 - 15:33:35 | D ]     P:\Junior
[08/02/2012 - 17:31:59 | A | 245248]     P:\Projetos 2011 -fernando.xls
[11/02/2010 - 13:59:10 | N | 24691]     P:\INSS 012010.pdf
[21/05/2008 - 17:27:50 | N | 19968]     P:\Gaiola dos Saguis0001.pdf.doc
[21/03/2013 - 07:48:50 | A | 23610]     P:\Francisco de Assis - Ap 201 - Março 2013.pdf
[24/07/2012 - 09:50:17 | A | 36864]     P:\LISTA DE SUGESTÃO DE LIVROS PARA AQUISIÇÃO.doc
[06/08/2013 - 17:44:24 | A | 13]     S:\Versao.log
[06/08/2013 - 17:43:12 | A | 32671744]     S:\Funpec.new
[25/03/2011 - 09:20:47 | N | 2885069]     S:\PrintScreen45_Setup.exe
[04/08/2011 - 12:03:16 | D ]     S:\imagens_sistema
[25/02/2013 - 16:42:35 | D ]     S:\dll
[04/08/2008 - 15:13:18 | N | 104]     S:\atualiza.bat
[26/07/2010 - 10:35:10 | N | 24]     S:\Funpec.ini
[22/09/2008 - 14:50:16 | A | 70]     S:\sigap.Ini
[16/05/2008 - 15:29:58 | N | 414208]     S:\Swap.exe
[15/04/2013 - 13:41:05 | A | 7370]     X:\Impressão de fax em página inteira.pdf
[15/04/2013 - 13:41:05 | A | 210944]     X:\Reformulação de itens.xls
[15/04/2013 - 13:41:05 | A | 1181655]     X:\CAMPO ESCOLA Conc Bancária 2008.pdf
[15/04/2013 - 13:41:05 | A | 20992]     X:\PROTOCOLO DE ENVIO DE DOCUMENTOS.doc
[15/04/2013 - 13:41:05 | A | 512792]     X:\Convênio 172009 - Justificativa.pdf
[15/04/2013 - 13:41:05 | A | 27136]     X:\declaração.xls
[22/08/2013 - 11:54:09 | D ]     X:\Nadia
[15/04/2013 - 13:41:05 | A | 243200]     X:\Rendimento CAS HUOL 2002.xls
[16/04/2013 - 12:35:45 | D ]     X:\Luciana trabalho para o TCU
[15/04/2013 - 13:41:05 | A | 185415]     X:\Digitalizar0006.pdf
[15/04/2013 - 13:41:05 | A | 28672]     X:\cálculos conv 133 2003.doc
[16/04/2013 - 11:39:56 | D ]     X:\Wallace
[16/04/2013 - 12:37:58 | D ]     X:\Kadja - Arquivos de Segurança
[23/04/2013 - 13:28:47 | D ]     X:\PRESTAÇÃO PETROBRAS
[15/04/2013 - 13:41:05 | A | 34304]     X:\CONTROLE DAS DILIGENCIAS.xls
[15/04/2013 - 13:41:05 | A | 16752]     X:\Att Fernando.pdf
[16/04/2013 - 12:52:51 | D ]     X:\ADIELSON
[15/04/2013 - 13:41:05 | A | 364823]     X:\Solicitação de Prorrogação de Prazo Rede 10.pdf
[13/08/2013 - 16:30:51 | D ]     X:\JUSSARA
[16/04/2013 - 12:09:42 | D ]     X:\Renio
[15/04/2013 - 13:41:05 | A | 638368]     X:\CartilhaIFE - CGU .pdf
[08/07/2013 - 16:10:27 | A | 1499136]     X:\pretacao-contas.xls
[15/04/2013 - 13:41:04 | A | 73216]     X:\Projetos encerrados e prestado contas.xls
[15/04/2013 - 13:41:05 | A | 83968]     X:\RECIBO redic.doc
[16/04/2013 - 12:41:08 | D ]     X:\HUMBERTO
[16/04/2013 - 11:41:21 | D ]     X:\TCU 2012
[15/04/2013 - 13:41:05 | A | 20480]     X:\Dilig22308.doc
[10/06/2013 - 11:50:47 | D ]     X:\INFORMES CENPES
[18/07/2013 - 11:05:08 | D ]     X:\Regiani
[15/08/2013 - 10:27:07 | A | 220160]     X:\Projetos Vigentes.xls
[08/05/2013 - 11:45:48 | D ]     X:\Prestação de Contas
[16/04/2013 - 11:44:46 | D ]     X:\TALITA
[16/04/2013 - 12:32:21 | D ]     X:\Luciana Trindade
[15/04/2013 - 13:41:05 | A | 336896]     X:\PC - 61 2007 gestao sus JAN 07 A JAN 08 PARCIAL 1 MOD.xls
[16/04/2013 - 12:31:34 | D ]     X:\MAPA DE COTAÇÃO
[16/04/2013 - 12:43:55 | D ]     X:\CONVENIO 93
[15/04/2013 - 13:41:05 | A | 23552]     X:\RECIBO DEZ08 a JUL09.doc
[15/04/2013 - 13:41:05 | A | 626267]     X:\portaria profª Zeneide substituindo prof ze luiz.pdf
[15/04/2013 - 13:41:05 | A | 1640736]     X:\CAMPO ESCOLA Conc Bancário 2009.pdf
[15/04/2013 - 13:41:05 | A | 80384]     X:\MODELO RECIBO FINEP.doc
[15/04/2013 - 13:41:05 | A | 522202]     X:\PORTARIA PROF MARTINELLI - SUPERINTENDENTE SUBSTITUTO0001.pdf
[15/04/2013 - 13:41:05 | A | 164583]     X:\Nomeação da Reitora - 2011_Angela Maria P Cruz.pdf
[15/04/2013 - 13:41:05 | A | 222720]     X:\orelhas1.doc
[22/08/2013 - 14:38:30 | D ]     X:\Leilane
[16/04/2013 - 12:13:52 | D ]     X:\Patricia 2007
[15/04/2013 - 13:41:05 | A | 1654272]     X:\SINTEC MODELO.xls
[21/08/2013 - 17:57:58 | D ]     X:\SILVIA
[15/04/2013 - 13:41:05 | A | 20992]     X:\PROTOCOLO DE ENVIO DE DOCUMENTOS 03.08.doc
[15/04/2013 - 13:41:05 | A | 411136]     X:\Prestação de Contas RCT-Rev1 cenpes modelo novo.xls
[26/06/2013 - 15:10:24 | D ]     X:\Kadja
[15/04/2013 - 13:41:05 | A | 604053]     X:\PC SUP FUNDOS - SEDIS.pdf
[15/04/2013 - 13:41:05 | A | 75776]     X:\ESPELHO SIGAP DA PASTA.doc
[16/04/2013 - 12:41:18 | D ]     X:\fauf
[15/04/2013 - 13:41:05 | A | 935519]     X:\Portaria Jorge Lins.pdf
[15/04/2013 - 13:41:05 | A | 812544]     X:\PCPregularização 22.01.0694.00 NOVO MODELO CARTA 06.10.10.doc
[15/04/2013 - 13:41:05 | A | 1105313]     X:\PORTARIA PROF. MARTINELLI0001.pdf
[16/04/2013 - 12:44:00 | D ]     X:\ALLAN GARCIA
[21/08/2013 - 17:23:31 | D ]     X:\ELEONORA
[15/04/2013 - 13:41:05 | A | 12122]     X:\PROJETOS COM DEVOLUÇÃO DE RECURSOS.xlsx
[15/04/2013 - 13:41:05 | A | 1316358]     X:\Diligência CENPES - Gestão de Alarmes.pdf
[16/04/2013 - 12:31:33 | D ]     X:\MODELO FORMULÁRIOS DE PC
[16/04/2013 - 12:42:12 | D ]     X:\fabiana Lucena
[15/04/2013 - 13:41:05 | A | 37376]     X:\Relação de Equipamentos mod.xls
[16/04/2013 - 12:40:43 | D ]     X:\INCRA FORMAÇÃO BÁSICA
[16/04/2013 - 11:40:58 | D ]     X:\VICTOR
[16/04/2013 - 12:40:44 | D ]     X:\INCRA
[15/04/2013 - 13:41:05 | A | 528805]     X:\Portaria Prof. Zeneide Autenticada.pdf
[15/04/2013 - 13:41:05 | A | 20992]     X:\PROTOCOLO DE ENVIO DE DOCUMENTO 04.08.doc

################## | Vaccin |

C:\Autorun.inf -> Vacina criada por UsbFix (El Desaparecido)
P:\Autorun.inf -> Vacina criada por UsbFix (El Desaparecido)
X:\Autorun.inf -> Vacina criada por UsbFix (El Desaparecido)

################## | E.O.F | [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] |

Edvan

Edvan: Membro; Mensagens : 428
Data de inscrição : 14/02/2013
Idade : 43
Localização : Natal/RN

Mensagem nº2

Re: pendriver infectado, talvez seja um worm

por Edvan Qui Ago 22, 2013 4:05 pm

# AdwCleaner v3.000 - Report created 22/08/2013 at 17:03:17
# Updated 20/08/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : f002699 - FUN0131
# Running from : C:\Documents and Settings\f002699\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : BrowserProtect
[#] Service Deleted : SProtection

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Dados de aplicativos\Babylon
[!] Folder Deleted : C:\Documents and Settings\All Users\Dados de aplicativos\BrowserProtect
Folder Deleted : C:\Documents and Settings\All Users\Dados de aplicativos\Iminent
Folder Deleted : C:\Documents and Settings\All Users\Menu Iniciar\Programas\Iminent
Folder Deleted : C:\Arquivos de programas\BabylonToolbar
Folder Deleted : C:\Arquivos de programas\Iminent
Folder Deleted : C:\Arquivos de programas\Arquivos comuns\Umbrella
Folder Deleted : C:\DOCUME~1\f002699\CONFIG~1\Temp\Iminent
Folder Deleted : C:\Documents and Settings\f002699\Dados de aplicativos\BabSolution
Folder Deleted : C:\Documents and Settings\f002699\Dados de aplicativos\Babylon
Folder Deleted : C:\Documents and Settings\f002699\Dados de aplicativos\BabylonToolbar
Folder Deleted : C:\Documents and Settings\f002699\Dados de aplicativos\Iminent
Folder Deleted : C:\Documents and Settings\f002699\Menu Iniciar\Programas\BrowserProtect
Folder Deleted : C:\Documents and Settings\f001838\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl
File Deleted : C:\Documents and Settings\f002699\Dados de aplicativos\Mozilla\Firefox\Profiles\1b0skx38.default\bprotector_extensions.sqlite
File Deleted : C:\Documents and Settings\f002699\Dados de aplicativos\Mozilla\Firefox\Profiles\1b0skx38.default\bprotector_prefs.js

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{58BD07EB-0EE0-4DF0-8121-DC9B693373DF}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Key Deleted : HKLM\SOFTWARE\Classes\b
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Deleted : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\Iminent
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Key Deleted : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandle.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
Key Deleted : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\BrowserProtect
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Iminent
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Arquivos de programas\Iminent\Iminent.exe]
Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Arquivos de programas\Iminent\Iminent.Messengers.exe]
Key Deleted : HKCU\Software\5855dbd1b73be548
Key Deleted : HKLM\SOFTWARE\5855dbd1b73be548
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Babylon
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\Umbrella
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{118D6CE9-5F18-42F9-958A-14676A629FDE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IMBoosterARP
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\docume~1\alluse~1\dadosd~1\browse~1\261095~1.52\{c16c1~1\browse~1.dll

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v22.0 (pt-BR)

[ File : C:\Documents and Settings\f002699\Dados de aplicativos\Mozilla\Firefox\Profiles\1b0skx38.default\prefs.js ]

Line Deleted : user_pref("browser.search.order.1", "Search the web (Babylon)");
Line Deleted : user_pref("browser.search.selectedEngine", "Search the web (Babylon)");

*************************

AdwCleaner[R0].txt - [23084 octets] - [22/08/2013 17:02:37]
AdwCleaner[S0].txt - [23037 octets] - [22/08/2013 17:03:17]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [23098 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.4 (08.22.2013:1)
OS: Microsoft Windows XP x86
Ran by f002699 on 22/08/2013 at 17:14:05,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC}
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B2468513CA2D6943A1A233CD3F88CE7

~~~ Files

~~~ Folders

~~~ FireFox

Successfully deleted the following from C:\Documents and Settings\f002699\Dados de aplicativos\mozilla\firefox\profiles\1b0skx38.default\prefs.js

user_pref("browser.newtab.url", "hxxp://br.hao123.com/?tn=bbl_pay_hp_01_hao123_br&babsrc=NT_ss&mntrId=3c58379900000000000014dae96ff93f");

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 22/08/2013 at 17:17:52,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

joram

joram: Administrador Fundador; Mensagens : 626
Data de inscrição : 14/08/2012
Idade : 70
Localização : Rio de Janeiro

Mensagem nº3

Re: pendriver infectado, talvez seja um worm

por joram Qui Ago 22, 2013 4:43 pm

Boa Tarde! Edvan

|- Poste novo log de ZHPDiag.

A+

Última edição por joram em Qui Ago 22, 2013 4:50 pm, editado 1 vez(es)

Edvan

Edvan: Membro; Mensagens : 428
Data de inscrição : 14/02/2013
Idade : 43
Localização : Natal/RN

Mensagem nº4

Re: pendriver infectado, talvez seja um worm

por Edvan Qui Ago 22, 2013 4:48 pm

# DelFix v10.4 - Logfile created 22/08/2013 at 17:49:03
# Updated 19/07/2013 by Xplode
# Username : f002699 - FUN0131
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

~ Removing disinfection tools ...

Deleted : C:\USBFix
Deleted : C:\ZHP
Deleted : C:\Arquivos de programas\ZHPDiag
Deleted : C:\PhysicalDisk0_MBR.bin
Deleted : C:\UsbFix [Clean 1] FUN0131.txt
Deleted : C:\Documents and Settings\f002699\Desktop\adwcleaner.exe
Deleted : C:\Documents and Settings\f002699\Desktop\JRT.exe
Deleted : C:\Documents and Settings\f002699\Desktop\JRT.txt
Deleted : C:\Documents and Settings\f002699\Desktop\UsbFix [Clean 1] FUN0131.txt
Deleted : C:\Documents and Settings\f002699\Desktop\usbfix.exe
Deleted : C:\Documents and Settings\f002699\Desktop\ZHPDiag.txt
Deleted : C:\Documents and Settings\f002699\Desktop\ZHPDiag2.exe
Deleted : C:\Documents and Settings\All Users\Desktop\MBRCheck.lnk
Deleted : C:\Documents and Settings\All Users\Desktop\ZHPDiag.lnk
Deleted : C:\Documents and Settings\All Users\Desktop\ZHPFix.lnk
Deleted : HKCU\Software\USBFix
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\USBFix
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

~ Cleaning system restore ...

Deleted : RP #286 [Ponto de verificação do sistema | 05/24/2013 19:42:19]
Deleted : RP #287 [Ponto de verificação do sistema | 05/27/2013 17:43:30]
Deleted : RP #288 [Ponto de verificação do sistema | 05/29/2013 15:18:46]
Deleted : RP #289 [Ponto de verificação do sistema | 05/31/2013 15:22:56]
Deleted : RP #290 [Ponto de verificação do sistema | 06/03/2013 11:49:18]
Deleted : RP #291 [Ponto de verificação do sistema | 06/04/2013 13:03:18]
Deleted : RP #292 [Ponto de verificação do sistema | 06/05/2013 13:45:27]
Deleted : RP #293 [Ponto de verificação do sistema | 06/06/2013 14:20:41]
Deleted : RP #294 [Ponto de verificação do sistema | 06/07/2013 14:54:30]
Deleted : RP #295 [Ponto de verificação do sistema | 06/10/2013 14:38:18]
Deleted : RP #296 [Ponto de verificação do sistema | 06/11/2013 15:19:58]
Deleted : RP #297 [Ponto de verificação do sistema | 06/12/2013 15:24:42]
Deleted : RP #298 [Ponto de verificação do sistema | 06/13/2013 16:25:41]
Deleted : RP #299 [Ponto de verificação do sistema | 06/14/2013 18:46:03]
Deleted : RP #300 [Ponto de verificação do sistema | 06/17/2013 15:18:13]
Deleted : RP #301 [Ponto de verificação do sistema | 06/18/2013 18:32:14]
Deleted : RP #302 [Ponto de verificação do sistema | 06/19/2013 19:12:22]
Deleted : RP #303 [Ponto de verificação do sistema | 06/21/2013 15:17:12]
Deleted : RP #304 [Ponto de verificação do sistema | 06/25/2013 14:21:15]
Deleted : RP #305 [Ponto de verificação do sistema | 06/26/2013 15:16:35]
Deleted : RP #306 [Ponto de verificação do sistema | 06/27/2013 15:18:47]
Deleted : RP #307 [Ponto de verificação do sistema | 06/28/2013 16:26:50]
Deleted : RP #308 [Ponto de verificação do sistema | 07/02/2013 15:28:14]
Deleted : RP #309 [Ponto de verificação do sistema | 07/03/2013 15:36:14]
Deleted : RP #310 [Ponto de verificação do sistema | 07/05/2013 12:28:02]
Deleted : RP #311 [Ponto de verificação do sistema | 07/08/2013 14:12:04]
Deleted : RP #312 [Ponto de verificação do sistema | 07/09/2013 16:21:23]
Deleted : RP #313 [Ponto de verificação do sistema | 07/10/2013 20:28:32]
Deleted : RP #314 [Ponto de verificação do sistema | 07/12/2013 17:07:47]
Deleted : RP #315 [Ponto de verificação do sistema | 07/15/2013 13:16:50]
Deleted : RP #316 [Ponto de verificação do sistema | 07/25/2013 15:21:47]
Deleted : RP #317 [Ponto de verificação do sistema | 07/26/2013 18:12:43]
Deleted : RP #318 [Ponto de verificação do sistema | 07/30/2013 12:19:43]
Deleted : RP #319 [Ponto de verificação do sistema | 07/31/2013 12:42:11]
Deleted : RP #320 [Ponto de verificação do sistema | 08/01/2013 12:56:17]
Deleted : RP #321 [Ponto de verificação do sistema | 08/02/2013 15:16:59]
Deleted : RP #322 [Ponto de verificação do sistema | 08/05/2013 15:04:25]
Deleted : RP #323 [Ponto de verificação do sistema | 08/06/2013 15:15:31]
Deleted : RP #324 [Ponto de verificação do sistema | 08/07/2013 15:20:12]
Deleted : RP #325 [Ponto de verificação do sistema | 08/08/2013 15:28:10]
Deleted : RP #326 [Ponto de verificação do sistema | 08/09/2013 19:06:35]
Deleted : RP #327 [Ponto de verificação do sistema | 08/12/2013 15:17:38]
Deleted : RP #328 [Ponto de verificação do sistema | 08/13/2013 16:09:03]
Deleted : RP #329 [Ponto de verificação do sistema | 08/14/2013 17:47:08]
Deleted : RP #330 [Ponto de verificação do sistema | 08/15/2013 18:52:27]
Deleted : RP #331 [Ponto de verificação do sistema | 08/19/2013 15:17:16]
Deleted : RP #332 [Ponto de verificação do sistema | 08/21/2013 12:27:51]
Deleted : RP #333 [Ponto de verificação do sistema | 08/22/2013 15:21:10]
Deleted : RP #334 [Removed Java(TM) 6 Update 20 | 08/22/2013 20:12:14]
Deleted : RP #335 [Instalado Java 7 Update 25 | 08/22/2013 20:12:44]

New restore point created !

~ Resetting system settings ... OK

########## - EOF - ##########