Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Michel Metran

Virus no Dexpot?

Recommended Posts

Olá,
Recentemente eu instalei o Dexpot no meu PC, buscando trabalhar com múltipla áreas de trabalho.
Ao baixar o arquivo o mesmo encontrava-se infectado!, isso no site do fabricante do software!, que é bastante reconhecido dentre os programas que permitem ao usúario ter mais de uma área de trabalho no Windows.

Estranhei e antes de baixar o arquivo li dezenas de sites sobre esse virus que vem no dexpot. Vários ites falavam que isso trata-se de um "falso positivo" que vários anti-virus apontavam... mas que o programa era confiavel.

Após instalar o programa, meu Facebook saiu disparando mensagens para amigos... o Skype também! Até tentou ligar para meus contatos!

Já troquei a senha do Facebook.

Já rodei o HitmanPro e limpei vários erros encontrados.
Já rodei o Malwarebytes Anti-Malware, e tirei um monte de arquivos infectados.

Rodei antivirus no PC e no Smarfone (pensando que a infecção podia ser no celular) e nada foi encontrado.

Mas, ainda tô na dúvida desta infeccção.
O que eu estranho é que sempre, ao abrir o Firefox (navegador que uso), ele aparece uma mensagem dizendo que tentou baixar o Dexpot_1613_r2429.exe no baixaki e no site do fabricante, porém o download foi Malsucedido, com a hora que ocorreu... coincidente com a hora que abri o Firefox.

Fica evidente que o navegador está tentando puxar o arquivo novamente.

Tá estranho isso aqui. Acho que o facebook já parou de distarar mensagens.
Confesso que ainda não desistalei o Dexpot, pois o serviço de várias áreas de trabalho é importante para mim.

Gostaria de resolver a desinfecção e me manter com o programa, que sempre utilizei com segurança no passado.

Se alguém puder ajudar, agradeceria imensamente.
PS: Não consegui rodar o GMER.exe... ele trava meu Windows 8, aparece uma tela azul, falando de um erro WHA_UNCORRECTABLE_ERROR....


Segue o arquivo Attach, gerado pelo DDS.scr

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 8 Single LanguageBoot Device: \Device\HarddiskVolume1Install Date: 24/12/2013 19:59:23System Uptime: 21/06/2014 00:59:48 (1 hours ago).Motherboard: ASUSTeK COMPUTER INC. |  | K46CMProcessor: Intel(R) Core(TM) i7-3517U CPU @ 1.90GHz | SOCKET 0 | 2401/100mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 100 GiB total, 33,81 GiB free.D: is FIXED (NTFS) - 200 GiB total, 16,526 GiB free.E: is FIXED (NTFS) - 397 GiB total, 146,442 GiB free.F: is CDROM ()G: is CDROM ()H: is CDROM ().==== Disabled Device Manager Items =============.==== System Restore Points ===================.No restore point in system..==== Image File Execution Options =============.IFEO: Acrobat.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: acrodist.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: adobe air application installer.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: asuswspanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: formscentralforacrobat.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: pdvdlaunchpolicy.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: Acrobat.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: acrodist.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: adobe air application installer.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: asuswspanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: formscentralforacrobat.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: pdvdlaunchpolicy.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe".==== Installed Programs ======================.7-Zip 9.20a Versão 1.2 - (compilação 1.2.1.283) (c) 2014 ANAAdobe Acrobat XI ProAdobe AIRAdobe Flash Player 13 PluginAdobe Reader X (10.1.9) MUIAngry IP ScannerArcGIS 10.1 for DesktopArcGIS 10.1 License ManagerArcSoft Panorama Maker 4 ProASUS Instant ConnectASUS InstantOnASUS LifeFrame3ASUS Live UpdateASUS Power4Gear HybridASUS Screen SaverASUS Smart GestureASUS Splendid Video Enhancement TechnologyASUS TutorASUS USB Charger PlusASUS WebStorage Sync AgentASUSDVDATK PackageµTorrentavast! Free AntivirusB1 Free ArchiverBS.Player FREECCleanercGPSmapper Free 0100dClassic ShellCorel Graphics - Windows Shell ExtensionCorelDRAW Graphics Suite X5CorelDRAW Graphics Suite X5 - CaptureCorelDRAW Graphics Suite X5 - CommonCorelDRAW Graphics Suite X5 - ConnectCorelDRAW Graphics Suite X5 - Custom DataCorelDRAW Graphics Suite X5 - DrawCorelDRAW Graphics Suite X5 - ENCorelDRAW Graphics Suite X5 - FiltersCorelDRAW Graphics Suite X5 - FontNavCorelDRAW Graphics Suite X5 - IPMCorelDRAW Graphics Suite X5 - PHOTO-PAINTCorelDRAW Graphics Suite X5 - Photozoom PluginCorelDRAW Graphics Suite X5 - RedistCorelDRAW Graphics Suite X5 - Setup FilesCorelDRAW Graphics Suite X5 - VBACorelDRAW Graphics Suite X5 - VideoBrowserCorelDRAW Graphics Suite X5 - VSTACorelDRAW Graphics Suite X5 - Windows Shell Extension 64 BitCorelDRAW Graphics Suite X5 - WTCorelDRAW(R) Graphics Suite X5CutePDF Writer 3.0D3DX10DAEMON Tools LiteDexpotDropboxEVEREST Ultimate Edition v5.50ExpressCacheExt2Fsd 0.52FileZilla Client 3.7.4.1FileZilla ServerFotosizer 2.08Free M4a to MP3 Converter 8.2Free Mp3 Wma Converter V 2.2Free WMA to MP3 Converter 1.16FreeUndelete 2.1.36867.1Galeria de FotografiasGaleria de FotosGalería de fotosGarmin MapSourceGarmin POI LoaderGarmin Training CenterGarmin USB DriversGBBD Banco do BrasilGBBD Guardião - Itaú 30 horasGeoSetter 3.4.16GlobalMapper 15 (64-bit)GMapTool 0.8.186aGoogle ChromeGoogle DriveGoogle EarthGoogle Update HelperGoogle+ Auto BackupHotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)Intel(R) Dynamic Platform and Thermal FrameworkIntel(R) Management Engine ComponentsIntel(R) Processor GraphicsIntel(R) Rapid Start TechnologyIntel(R) SDK for OpenCL - CPU Only Runtime PackageIntel® Trusted Connect Service ClientJava 7 Update 51 (64-bit)Java 7 Update 55Java Auto UpdaterJava SE Development Kit 7 Update 51 (64-bit)K-Lite Codec Pack 10.2.0 BasicMacrium Reflect Free EditionMalwarebytes Anti-Malware versão 1.75.0.1300MediaMonkey 4.0Microsoft Application Error ReportingMicrosoft Office Professional Plus 2013 - pt-brMicrosoft OneDriveMicrosoft SilverlightMicrosoft SQL Server 2005 Compact Edition [ENU]Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219Microsoft Visual Studio Tools for Applications 2.0 - ENUMicrosoft Visual Studio Tools for Applications 2.0 RuntimeMiniTool Partition Wizard Home Edition 8.1.1Movie MakerMozilla Firefox 30.0 (x86 pt-BR)Mozilla Maintenance ServiceMSVCRTMSVCRT110MSVCRT110_amd64MyBitCast 2.0MyFreeCodecnanoCAD 5.0Nero 12Nero Burning ROMNero Burning ROM Help (CHM)Nero ControlCenterNero Core ComponentsNero ExpressNero Express Help (CHM)Nero SharedVideoCodecsNo-IP DUCNotepad++NVIDIA Driver de gráficos 306.97NVIDIA Install ApplicationNVIDIA Optimus 1.10.8NVIDIA PhysXNVIDIA PhysX System Software 9.12.0613NVIDIA Update 1.10.8NVIDIA Update ComponentsOffice 15 Click-to-Run Extensibility ComponentOffice 15 Click-to-Run Licensing ComponentOffice 15 Click-to-Run Localization ComponentPainel de controle da NVIDIA 306.97PDF Password Remover v3.0Photo CommonPhoto GalleryPicasa 3Picasa UploaderPIE Free v6.7Qualcomm Atheros Bluetooth Suite (64)Qualcomm Atheros Client Installation ProgramR for Windows 3.0.2Realtek Ethernet Controller DriverRealtek High Definition Audio DriverRealtek PCIE Card ReaderSamsung KiesSAMSUNG USB Driver for Mobile PhonesShared C Run-time for x64Skype Click to CallSkype™ 6.14Sweet Home 3D version 4.3TagScanner 5.1.649TeamViewer 9Tinn-R 3.0.2.5TRC-Brasil 13.10 2013-10-20TreeSize Free V2.7TuneUp Utilities 2012TuneUp Utilities Language Pack (en-US)Universal Maps Downloader 6.86Visual Basic for Applications (R) CoreVisual Basic for Applications (R) Core - EnglishWindows Driver Package - ASUS (ATP) Mouse  (01/10/2013 1.0.0.170)Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0)Windows Live Communications PlatformWindows Live EssentialsWindows Live InstallerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWinFlashWing IDE 4.1.5-1WinPcap 4.1.3WinSCP 5.1.7Wireshark 1.10.5 (32-bit).==== End Of File ===========================


Segue o Log do DDS.scr

DDS (Ver_2012-11-20.01) - NTFS_AMD64Internet Explorer: 10.0.9200.16384  BrowserJavaVersion: 10.55.2Run by Michel at 1:09:12 on 2014-06-21Microsoft Windows 8 Single Language  6.2.9200.0.1252.55.1046.18.8077.4528 [GMT -3:00].AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}.============== Running Processes ===============.C:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\PROGRA~2\GbPlugin\GbpSv.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\dwm.exeC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exeC:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exeC:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exeC:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exeC:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exeC:\Program Files (x86)\Bluetooth Suite\adminservice.exeC:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exeC:\Program Files (x86)\ArcGIS\License10.1\bin\ARCGIS.exeC:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exeC:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exeC:\Windows\system32\DptfParticipantProcessorService.exeC:\Windows\system32\dashost.exeC:\Windows\system32\DptfPolicyConfigTDPService.exeC:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exeC:\Program Files (x86)\FileZilla Server\FileZilla Server.exeC:\Program Files\Intel\iCLS Client\HeciServer.exeC:\Windows\SysWOW64\irstrtsv.exeC:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exec:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exeC:\Program Files\Macrium\Reflect\ReflectService.exeC:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exeC:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\System32\alg.exeC:\Windows\system32\taskhostex.exeC:\Program Files\ASUS\P4G\BatteryLife.exeC:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exeC:\Program Files (x86)\ASUS\Splendid\ColorUService.exeC:\Program Files (x86)\Dexpot\dexpot.exeC:\Program Files (x86)\ASUS\Splendid\ACMON.exeC:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exeC:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exeC:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exeC:\Windows\Explorer.EXEC:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exeC:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exeC:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exeC:\Windows\system32\igfxpers.exeC:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exeC:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exeC:\Program Files\Classic Shell\ClassicStartMenu.exeC:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exeC:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exeC:\Windows\System32\RuntimeBroker.exeC:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exeC:\Windows\System32\igfxtray.exeC:\Windows\System32\hkcmd.exeC:\Program Files\Realtek\Audio\HDA\RAVCpl64.exeC:\Program Files (x86)\Bluetooth Suite\BtTray.exeC:\Program Files (x86)\Bluetooth Suite\BtvStack.exeC:\Users\Michel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exeC:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exeC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Program Files (x86)\Samsung\Kies\Kies.exeC:\Program Files (x86)\No-IP\DUC40.exeC:\Users\Michel\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exeC:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exeC:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXEC:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exeC:\Program Files (x86)\Dexpot\Dexpot64.exeC:\Program Files (x86)\Dexpot\plugins\MouseEvents.exeC:\Program Files (x86)\Dexpot\plugins\DexControl.exeC:\Program Files (x86)\Dexpot\plugins\Dexcube.exeC:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Notepad++\notepad++.exeC:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exeC:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exeC:\Program Files (x86)\No-IP\ducservice.exeC:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exeC:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exeC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exeC:\Windows\SysWOW64\ctfmon.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = www.google.comuSearch Bar = hxxp://www.google.com/ieuSearch Page = hxxp://www.google.comuDefault_Page_URL = hxxp://asus13.msn.comuDefault_Search_URL = hxxp://www.google.com/ieuSearchAssistant = hxxp://www.google.com/ieuSearchURL,(Default) = hxxp://www.google.com/search?q=%smWinlogon: Userinit = userinit.exe,BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dllBHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dllBHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllBHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dllBHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dllBHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLLBHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllBHO: ClassicIEBHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dllBHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dllTB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dllTB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dlluRun: [SkyDrive] "C:\Users\Michel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /backgrounduRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostartuRun: [DIMDownloading your update...1300677038363] "C:\Program Files (x86)\Corel\CorelDRAW Graphics Suite X5\Programs\DIM.exe" "c:\programdata\corel\downloads\540215253_610005\1300677038363\dim_params.xml" -Launch=3 -uibase="c:\users\michel\appdata\roaming\corel\messages\540215253_610005\en\messagecache1\workflow"uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preloaduRun: [GoogleChromeAutoLaunch_ABA838D1AB29E25FB0D77DCA9110CD1C] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window                                                                                                                                                                                        uRun: [NoIPDUCv4] "C:\Program Files (x86)\No-IP\DUC40.exe" /minimizemRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"                                                                                                                                                                                                          mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"                                                                                                                                                                                                         mRun: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe /S                                                                                                                                                                                          mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"                                                                                                                                                                                                             mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /noguimRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"                                                                                                                                                                                                         mRun: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exeStartupFolder: C:\Users\Michel\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Michel\AppData\Roaming\Dropbox\bin\Dropbox.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:255mPolicies-System: DisableCAD = dword:1mPolicies-Windows\System: EnableSmartScreen = dword:0IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dllIE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dllIE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exeIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dllIE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllTrusted Zone: itau.com.brTCP: NameServer = 192.168.1.1TCP: Interfaces\{CC2E9CEF-149B-4AEA-9214-A960A1B84EE8} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{CC2E9CEF-149B-4AEA-9214-A960A1B84EE8}\1405D405 : DHCPNameServer = 192.168.1.1TCP: Interfaces\{CC2E9CEF-149B-4AEA-9214-A960A1B84EE8}\2554445434143514 : DHCPNameServer = 189.4.128.68 192.168.0.1TCP: Interfaces\{CC2E9CEF-149B-4AEA-9214-A960A1B84EE8}\94E6475627E65647 : DHCPNameServer = 189.7.152.31 189.7.152.36 192.168.0.1TCP: Interfaces\{CC2E9CEF-149B-4AEA-9214-A960A1B84EE8}\95F6572C0A378616C6C62C0AE6F6472C0A071637371212 : DHCPNameServer = 192.168.0.1Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLLHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllHandler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllNotify:  GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dllNotify:  GbPluginUni - C:\Program Files (x86)\GbPlugin\gbiehUni.dllAppInit_DLLs= C:\Windows\SysWOW64\nvinit.dllSSODL: WebCheck - <orphaned>SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dllSEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dllmASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromeIFEO: Acrobat.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: acrodist.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: adobe air application installer.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"IFEO: asuswspanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dllx64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dllx64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dllx64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dllx64-BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dllx64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLLx64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllx64-BHO: ClassicIEBHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dllx64-BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dllx64-TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dllx64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dllx64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exex64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exex64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -sx64-Run: [BtTray] "C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"x64-Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"                                                                                                                                                                                     x64-Run: [Classic Start Menu] "C:\Program Files\Classic Shell\ClassicStartMenu.exe" -autorunx64-mPolicies-System: DisableCAD = dword:1x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dllx64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dllx64-IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exex64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dllx64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dllx64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>x64-Notify: igfxcui - igfxdev.dllx64-SSODL: WebCheck - <orphaned>x64-IFEO: Acrobat.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: acrodist.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: adobe air application installer.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"x64-IFEO: asuswspanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe".Note: multiple IFEO entries found. Please refer to Attach.txt.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Michel\AppData\Roaming\Mozilla\Firefox\Profiles\ebeo0j73.default\FF - prefs.js: browser.startup.homepage - hxxps://www.google.com.br/FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dllFF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dllFF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dllFF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dllFF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dllFF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dllFF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dllFF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dllFF - plugin: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLLFF - plugin: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dllFF - plugin: C:\Users\Michel\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dllFF - plugin: C:\Users\Michel\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dllFF - plugin: C:\Users\Michel\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dllFF - plugin: C:\Users\Michel\AppData\Local\GAS Tecnologia\GBBD\npsf_uni_64.dllFF - plugin: C:\Users\Michel\AppData\Roaming\Mozilla\Firefox\Profiles\ebeo0j73.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}\plugins\npietab2.dllFF - plugin: C:\Users\Michel\AppData\Roaming\Mozilla\Firefox\Profiles\ebeo0j73.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}\plugins\npietab2_x64.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll.---- FIREFOX POLICIES ----FF - user.js: network.http.max-persistent-connections-per-server - 4FF - user.js: nglayout.initialpaint.delay - 600FF - user.js: content.notify.interval - 600000FF - user.js: content.max.tokenizing.time - 1800000FF - user.js: content.switch.threshold - 600000.============= SERVICES / DRIVERS ===============.R0 aswRvrt;avast! Revert;C:\Windows\System32\Drivers\aswRvrt.sys [2013-12-24 65776]R0 aswVmm;avast! VM Monitor;C:\Windows\System32\Drivers\aswVmm.sys [2013-12-24 205320]R0 excsd;ExpressCache Storage Filter Driver;C:\Windows\System32\Drivers\excsd.sys [2013-6-8 112552]R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-5-16 652344]R0 nvpciflt;nvpciflt;C:\Windows\System32\Drivers\nvpciflt.sys [2012-10-8 30056]R1 aswSnx;aswSnx;C:\Windows\System32\Drivers\aswSnx.sys [2013-12-24 1032416]R1 aswSP;aswSP;C:\Windows\System32\Drivers\aswsp.sys [2013-12-24 409832]R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]R1 excfs;ExpressCache File System Filter Driver;C:\Windows\System32\Drivers\excfs.sys [2013-6-8 26024]R1 Ext2Fsd;Linux ext2 file system driver;C:\Windows\System32\Drivers\ext2fsd.sys [2014-6-16 769304]R2 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe [2012-1-5 1408904]R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-4-13 277120]R2 aswFsBlk;aswFsBlk;C:\Windows\System32\Drivers\aswFsBlk.sys [2013-12-24 38984]R2 aswMonFlt;aswMonFlt;C:\Windows\System32\Drivers\aswMonFlt.sys [2013-12-24 84328]R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2012-10-9 219776]R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-24 50344]R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]R2 ClickToRunSvc;Serviço Clique para Executar do Microsoft Office;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2014-4-29 2279608]R2 DptfParticipantProcessorService;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application;C:\Windows\System32\DptfParticipantProcessorService.exe [2013-5-16 31632]R2 DptfPolicyConfigTDPService;Intel(R) Dynamic Platform and Thermal Framework Config TDP Service Application;C:\Windows\System32\DptfPolicyConfigTDPService.exe [2013-5-16 33168]R2 ExpressCache;ExpressCache;C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [2013-1-8 107944]R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2014-5-26 528424]R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-6-8 129856]R2 irstrtsv;Intel(R) Rapid Start Technology Service;C:\Windows\SysWOW64\irstrtsv.exe [2013-6-8 193576]R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-6-8 166720]R2 NoIPDUCService4;NO-IP DUC v4.1.0;C:\Program Files (x86)\No-IP\ducservice.exe [2014-5-2 11776]R2 ReflectService.exe;Macrium Reflect Image Mounting Service;C:\Program Files\Macrium\Reflect\ReflectService.exe [2013-12-20 1142768]R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2011-11-2 2072896]R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-6-8 365376]R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-9-18 17152]R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-6-8 88728]R3 ATP;ASUS Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2013-4-16 65784]R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-6-8 33944]R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-6-8 178840]R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-6-8 76952]R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-6-8 576152]R3 BthLEEnum;Driver de Baixa Energia do Bluetooth;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]R3 DptfDevDram;DptfDevDram;C:\Windows\System32\Drivers\DptfDevDram.sys [2013-5-16 107920]R3 DptfDevFan;DptfDevFan;C:\Windows\System32\Drivers\DptfDevFan.sys [2013-5-16 43408]R3 DptfDevGen;DptfDevGen;C:\Windows\System32\Drivers\DptfDevGen.sys [2013-5-16 65424]R3 DptfDevProc;DptfDevProc;C:\Windows\System32\Drivers\DptfDevProc.sys [2013-5-16 229776]R3 DptfManager;DptfManager;C:\Windows\System32\Drivers\DptfManager.sys [2013-5-16 363920]R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\Drivers\dtsoftbus01.sys [2013-12-25 283064]R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2013-5-16 21152]R3 IntcDAud;Áudio do vídeo Intel(R);C:\Windows\System32\Drivers\IntcDAud.sys [2013-5-16 342528]R3 irstrtdv;Intel(R) Rapid Start Technology Driver;C:\Windows\System32\Drivers\irstrtdv.sys [2013-6-8 43800]R3 RSBASTOR;Realtek PCIE CardReader Driver - BA;C:\Windows\System32\Drivers\RtsBaStor.sys [2013-6-8 294544]R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2013-6-8 690832]R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2011-10-31 11856]S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-12-24 418376]S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-12-24 701512]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudbus.sys [2014-5-2 110336]S3 DptfDevPch;DptfDevPch;C:\Windows\System32\Drivers\DptfDevPch.sys [2013-5-16 97680]S3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-12-24 25928]S3 McAWFwk;McAfee Activation Service;C:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [2013-12-24 334608]S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2013-12-24 19152]S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2013-12-24 12504]S3 Spring;Spring;C:\Program Files (x86)\Baidu-Security-2014-4.4.4.73687\Baidu Antivirus\Spring64.sys [2014-6-18 110336]S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudmdm.sys [2014-5-2 206080]S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]S4 TeamViewer9;TeamViewer 9;C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-1-28 5037888].=============== File Associations ===============.FileExt: .txt: Applications\notepad++.exe="C:\Program Files (x86)\Notepad++\notepad++.exe" "%1" [UserChoice].=============== Created Last 30 ================.2014-06-20 23:39:50    --------    d-----w-    C:\ProgramData\HitmanPro2014-06-19 00:39:00    --------    d-----w-    C:\Users\Michel\AppData\Roaming\VirtuaWin2014-06-19 00:36:53    --------    d-----w-    C:\Program Files (x86)\Virtual Dimension2014-06-19 00:13:39    --------    d-----w-    C:\Users\Michel\Desktop 42014-06-19 00:13:34    --------    d-----w-    C:\Users\Michel\Desktop 32014-06-19 00:10:00    --------    d-----r-    C:\Users\Michel\Desktop 22014-06-19 00:05:16    --------    d-----w-    C:\Program Files (x86)\Baidu-Security-2014-4.4.4.736872014-06-19 00:02:20    --------    d-----w-    C:\Users\Michel\AppData\Roaming\Dexpot2014-06-19 00:02:17    --------    d-----w-    C:\Program Files (x86)\Dexpot2014-06-18 23:51:29    --------    d-----w-    C:\Program Files (x86)\Desktops2014-06-16 03:54:35    769304    ----a-w-    C:\Windows\System32\drivers\ext2fsd.sys2014-06-16 03:42:26    --------    d-----w-    C:\Program Files\Ext2Fsd2014-06-14 16:41:13    --------    d-----w-    C:\Program Files (x86)\Nsasoft2014-06-14 16:34:34    --------    d-----w-    C:\Users\Michel\.swt2014-06-14 16:34:27    --------    d-----w-    C:\Program Files\Angry IP Scanner2014-06-14 15:34:39    --------    d-----w-    C:\Users\Michel\AppData\Roaming\ClassicShell2014-06-14 15:34:29    --------    d-----w-    C:\ProgramData\ClassicShell2014-06-14 15:33:42    --------    d-----w-    C:\Program Files\Classic Shell2014-06-06 02:47:52    --------    d-----w-    C:\Program Files (x86)\FileZilla Server2014-06-05 04:04:15    --------    d-----w-    C:\ProgramData\Vitalwerks2014-06-05 03:56:07    --------    d-----w-    C:\Users\Michel\AppData\Local\Vitalwerks2014-06-05 03:56:05    --------    d-----w-    C:\Program Files (x86)\No-IP2014-06-04 02:19:47    --------    d-----w-    C:\Program Files (x86)\Free WMA to MP3 Converter2014-06-04 01:13:58    --------    d-----w-    C:\Program Files (x86)\Free mp3 Wma Converter2014-06-03 17:59:42    4216840    ----a-w-    C:\Program Files (x86)\Common Files\vcredist_2008_sp1_x86.exe2014-06-03 17:59:11    --------    d-----w-    C:\Program Files (x86)\B1 Free Archiver2014-06-03 12:47:15    34624    ----a-w-    C:\Windows\System32\TURegOpt.exe2014-06-03 12:47:14    25920    ----a-w-    C:\Windows\System32\authuitu.dll2014-06-03 12:47:14    21312    ----a-w-    C:\Windows\SysWow64\authuitu.dll2014-06-03 12:47:03    --------    d-----w-    C:\Program Files (x86)\TuneUp Utilities 20122014-06-03 12:46:54    --------    d-sh--w-    C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}2014-06-01 23:07:47    --------    d-----w-    C:\Users\Michel\AppData\Roaming\FileAdvisor2014-06-01 22:39:16    --------    d-----w-    C:\Users\Michel\AppData\Roaming\TuneUp Software2014-06-01 22:39:16    --------    d-----w-    C:\Users\Michel\AppData\Local\TuneUp Software2014-06-01 22:38:08    --------    d-----w-    C:\ProgramData\TuneUp Software2014-06-01 22:37:57    --------    d-sh--w-    C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}2014-06-01 22:37:54    --------    d--h--w-    C:\ProgramData\Common Files2014-06-01 22:37:07    --------    d-----w-    C:\ProgramData\Baidu Security2014-06-01 22:37:00    --------    d-----w-    C:\ProgramData\baidu2014-06-01 22:35:49    --------    d-----w-    C:\Users\Michel\AppData\Roaming\Time Inspector2014-06-01 22:35:44    --------    d-----w-    C:\Users\Michel\AppData\Roaming\AdvertismentImages2014-06-01 22:35:38    --------    d-----w-    C:\Program Files (x86)\Free M4a to MP3 Converter2014-05-31 21:15:11    --------    d-----w-    C:\Users\Michel\AppData\Roaming\TagScanner2014-05-31 21:15:09    --------    d-----w-    C:\Program Files (x86)\TagScanner2014-05-28 19:25:37    --------    d-----w-    C:\Program Files (x86)\Hidro 1.22014-05-23 23:07:42    258224    ----a-w-    C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10240.bin.==================== Find3M  ====================.2014-06-21 04:00:12    62    ----a-w-    C:\Users\Michel\AppData\Roaming\sp_data.sys2014-04-20 13:17:42    284864    ----a-w-    C:\Windows\System32\StartMenuHelper64.dll2014-04-20 13:17:38    244928    ----a-w-    C:\Windows\SysWow64\StartMenuHelper32.dll2014-04-14 23:13:43    96168    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll2014-04-11 08:39:22    206080    ----a-w-    C:\Windows\System32\drivers\ssudmdm.sys2014-04-11 08:39:22    110336    ----a-w-    C:\Windows\System32\drivers\ssudbus.sys.============= FINISH:  1:09:22,70 ===============

Compartilhar este post


Link para o post
Compartilhar em outros sites
diego_moicano    472
Olá

 

Desculpe a demora :)

 

Se ainda precisa de ajuda refaça os logs, pois preciso dos mesmos com datas atualizadas: Leia Antes de Postar - Criando um novo Tópico

 

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

ATENÇÃO 4: Não anexe os logs, obrigado!

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×