Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
DricaLucia

Remover Malware ssave oun no Google Chrome

Recommended Posts

Oi pessoal

 

Preciso da ajuda de vocês para excluir a extensão ssave oun no meu Google Chrome. Toda vez que eu o excluo, ele é reinstalado quando reinicio o navegador - por enquanto estou o deixando desativado. O programa já foi desinstalado do meu computador.

 

Ja executei alguns programas para remover Malwares e nenhum conseguiu retirar do navegador.

 

Adriana Lúcia

 

Aqui estão os logs para analise:

 

DDS

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.17126  BrowserJavaVersion: 10.55.2
Run by Usuário at 11:24:49 on 2014-07-04
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.55.1046.18.8119.6449 [GMT -3:00]
.
AV: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials *Enabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Microsoft Security Essentials *Enabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com.br
uSearch Bar = hxxp://www.bing.com/search?q={searchTerms}
uSearch Page = hxxp://www.bing.com/search?q={searchTerms}
uDefault_Search_URL = hxxp://www.google.com
mStart Page = hxxp://speedial.com/?f=1&a=spd_bxi01_14_22_ch&cd=2XzuyEtN2Y1L1QzutDtDtDtByBtBzy0B0AyE0EtAyB0C0DzztN0D0Tzu0SzzzztCtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzytByEtA0B0A0DtGyDtA0DyDtGyC0BtD0EtGtDyBzzzytGyDtAzz0FyEtDtC0B0B0FyByE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtB0E0EzzyEtA0EtG0Azy0AtCtG0ByD0AyBtGtCtAtAtAtGyC0F0FtCtA0AtC0CzyyDtBzy2Q&cr=6414996&ir=
mSearch Bar = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
uSearchAssistant = hxxp://www.bing.com/search?q={searchTerms}
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: ssh2 Class: {2E3C3651-B19C-4DD9-A979-901EC3E930AF} - C:\Program Files (x86)\Scpad\scpsssh2.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: IEExtension.VDownloaderBHO: {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - 
BHO: Auxiliar de Conexão de Conta da Microsoft: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540007} - C:\Program Files (x86)\GbPlugin\gbiehAbn.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>
mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{4B819932-4FCE-4155-889D-441B368FEABB} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{4B819932-4FCE-4155-889D-441B368FEABB}\2456C6B696E6F5E4F575962756C6563737F5033323436453 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{4B819932-4FCE-4155-889D-441B368FEABB}\5427F6463303834373 : DHCPNameServer = 192.168.1.5
TCP: Interfaces\{4B819932-4FCE-4155-889D-441B368FEABB}\7316E6461627 : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{4B819932-4FCE-4155-889D-441B368FEABB}\E49636F6C65625F646279676575637 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{5B41F4DA-6D47-4BFF-A709-A85F08B25240} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{81E1F0B0-9AA3-40C9-A8F5-0D51FAB2E876} : DHCPNameServer = 208.67.222.222 208.67.220.220
TCP: Interfaces\{81E1F0B0-9AA3-40C9-A8F5-0D51FAB2E876}\94E666F6E6F627F6E68616F513 : DHCPNameServer = 172.16.0.1
TCP: Interfaces\{81E1F0B0-9AA3-40C9-A8F5-0D51FAB2E876}\94E666F6E6F627F6E68616F524F63717575623 : DHCPNameServer = 172.16.0.1
TCP: Interfaces\{81E1F0B0-9AA3-40C9-A8F5-0D51FAB2E876}\E4F627F6E6861602449676964716C6 : DHCPNameServer = 200.238.99.254 200.238.112.68
TCP: Interfaces\{973521DA-713E-4A8B-B4EC-52A02FCAE634} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{973521DA-713E-4A8B-B4EC-52A02FCAE634}\0527F646573616F6D21607 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{973521DA-713E-4A8B-B4EC-52A02FCAE634}\143737963747455636 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{98D03292-AC6B-4CE2-A7D6-98B8F23CFC45} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{B4FD5F03-3282-406E-857F-8912DF61D91A} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{B4FD5F03-3282-406E-857F-8912DF61D91A}\0527F64645563747 : DHCPNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify:  GbPluginAbn - C:\PROGRA~2\GbPlugin\gbiehAbn.dll
Notify:  GbPluginUni - C:\Program Files (x86)\GbPlugin\gbiehUni.dll
SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Program Files (x86)\Scpad\scpLIB.dll
STS: compIB Class - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Program Files (x86)\Scpad\scpLIB.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - C:\Program Files (x86)\GbPlugin\gbiehAbn.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = hxxp://speedial.com/?f=1&a=spd_bxi01_14_22_ch&cd=2XzuyEtN2Y1L1QzutDtDtDtByBtBzy0B0AyE0EtAyB0C0DzztN0D0Tzu0SzzzztCtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDzytByEtA0B0A0DtGyDtA0DyDtGyC0BtD0EtGtDyBzzzytGyDtAzz0FyEtDtC0B0B0FyByE2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtB0E0EzzyEtA0EtG0Azy0AtCtG0ByD0AyBtGtCtAtAtAtGyC0F0FtCtA0AtC0CzyyDtBzy2Q&cr=6414996&ir=
x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-BHO: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - <orphaned>
x64-TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file>
x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
x64-IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - <orphaned>
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-1-25 268512]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-7-27 52760]
R1 360FltOEM;360FltOEM mini-filter driver;C:\Windows\System32\drivers\360FltOEM.sys [2012-8-3 289952]
R1 Bfilter;Baidu Antivirus Minifilter Driver;C:\Windows\System32\drivers\Bfilter.sys [2014-3-25 52032]
R1 Bfmon;Baidu FS Monitor Driver;C:\Windows\System32\drivers\Bfmon.sys [2014-3-25 34624]
R1 Bprotect;Baidu Protect;C:\Windows\System32\drivers\Bprotect.sys [2014-3-25 128992]
R1 eamonm;eamonm;C:\Windows\System32\drivers\eamonm.sys [2013-9-17 239320]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2014-2-24 1343408]
R2 epfwwfpr;epfwwfpr;C:\Windows\System32\drivers\epfwwfpr.sys [2013-9-17 157432]
R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2014-6-29 527928]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-9-27 133928]
R2 SoilIO;SoilIO;C:\Windows\System32\drivers\SoilIO.sys [2009-12-11 17912]
R3 BthAvrcp;Perfil AVRCP do Bluetooth;C:\Windows\System32\drivers\BthAvrcp.sys [2009-8-13 29184]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2014-4-12 158976]
R3 IntcDAud;Áudio do vídeo Intel®;C:\Windows\System32\drivers\IntcDAud.sys [2014-4-12 317440]
R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2011-2-2 164464]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\System32\drivers\JME.sys [2011-2-2 115312]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\System32\drivers\netr28x.sys [2013-2-25 2426672]
R3 NisSrv;Inspeção de Rede da Microsoft;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-3-11 347872]
R3 soilkbc;soilkbc;C:\Windows\System32\drivers\Soilkbc.sys [2009-12-3 13816]
R3 SoilMC;SoilMC;C:\Windows\System32\drivers\SoilMC.sys [2009-12-3 13304]
S2 bavsvc;Baidu AntiVirus Service;"C:\Program Files (x86)\Baidu Security\Baidu Antivirus\bavsvc.exe" --> C:\Program Files (x86)\Baidu Security\Baidu Antivirus\bavsvc.exe [?]
S2 bhipssvc;Baidu Hips Service;"C:\Program Files (x86)\Baidu Security\Baidu Antivirus\bhipssvc.exe" --> C:\Program Files (x86)\Baidu Security\Baidu Antivirus\bhipssvc.exe [?]
S3 andnetadb;ADB Interface DriverNet;C:\Windows\System32\drivers\lgandnetadb.sys [2013-4-18 31744]
S3 AndNetDiag;LGE AndroidNet USB Serial Port;C:\Windows\System32\drivers\lgandnetdiag64.sys [2013-4-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem;C:\Windows\System32\drivers\lgandnetmodem64.sys [2013-6-28 36352]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [2013-6-12 31920]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2013-8-3 57840]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-6-11 111616]
S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-10-19 25816]
S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-7-2 63704]
S3 PSKMAD;PSKMAD;C:\Windows\System32\drivers\PSKMAD.sys [2014-6-29 47632]
S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2012-11-3 19936]
S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2012-11-3 13280]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-7-4 56832]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-6-19 1255736]
S4 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S4 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S4 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2012-7-3 168448]
S4 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2012-7-3 131072]
S4 EpsonCustomerParticipation;EpsonCustomerParticipation;C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe [2011-6-9 555392]
S4 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2013-2-5 1512448]
S4 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-7-2 1809720]
S4 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-7-2 860472]
S4 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-8-14 39056]
S4 scpVista;scpVista;C:\Program Files (x86)\Scpad\scpVista.exe [2013-7-13 360624]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
.
=============== Created Last 30 ================
.
2014-07-04 14:24:53 -------- d-----w- C:\Users\Usußrio\AppData\Local\Microsoft
2014-07-04 12:31:46 1030144 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-07-04 12:31:45 792576 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-07-04 12:23:21 -------- d-----w- C:\Program Files\ESET
2014-07-04 12:14:44 -------- d-----w- C:\Users\Usuário\AppData\Roaming\QuickScan
2014-07-04 02:26:50 -------- d-----w- C:\Program Files\Enigma Software Group
2014-07-04 02:25:15 -------- d-----w- C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-07-04 02:25:03 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2014-07-04 00:21:58 1031560 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F175B398-4D7C-45D0-BC4F-C6D6A941A431}\gapaengine.dll
2014-07-04 00:20:52 10779000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1DDC5401-4B65-41B2-A6CB-9A69126B2618}\mpengine.dll
2014-07-02 20:33:19 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-07-02 20:30:34 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-07-02 20:30:33 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-07-02 20:30:33 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-02 17:13:21 10779000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-07-01 16:27:05 -------- d-----w- C:\ProgramData\Wideblue installer
2014-07-01 16:26:00 -------- d-----w- C:\ProgramData\7047c34044e6fa2d
2014-06-29 17:39:16 22752 ----a-w- C:\Windows\System32\PCloudBroom64.exe
2014-06-29 17:01:33 47632 ----a-w- C:\Windows\System32\drivers\PSKMAD.sys
2014-06-29 17:01:30 -------- d-----w- C:\Windows\SysWow64\DASBOOT
2014-06-21 18:27:28 811218 ----a-w- C:\Users\Usuário\AppData\Roaming\unins000.exe
2014-06-12 01:51:35 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-06-12 01:51:35 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-06-12 01:51:34 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-06-12 01:51:34 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2014-06-12 01:51:30 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2014-06-12 01:51:30 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2014-06-12 01:51:30 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2014-06-12 01:51:30 1882112 ----a-w- C:\Windows\System32\msxml3.dll
2014-06-12 01:51:30 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2014-06-12 01:51:30 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2014-06-12 01:51:29 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2014-06-12 01:51:29 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2014-06-12 01:46:23 506368 ----a-w- C:\Windows\System32\aepdu.dll
2014-06-12 01:46:22 424448 ----a-w- C:\Windows\System32\aeinv.dll
.
==================== Find3M  ====================
.
2014-07-04 14:20:46 31088 ----a-w- C:\Windows\SysWow64\drivers\gbpndisrd.sys
2014-05-30 10:02:37 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-05-30 10:02:09 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-05-30 09:39:43 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-05-30 09:39:23 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-05-30 09:38:29 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-05-30 09:21:23 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-05-30 09:21:05 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-05-30 09:20:36 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-05-30 09:11:24 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-05-30 09:08:22 5782528 ----a-w- C:\Windows\System32\jscript9.dll
2014-05-30 09:02:39 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-05-30 08:55:36 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-05-30 08:44:28 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-05-30 08:43:06 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-05-30 08:42:16 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-05-30 08:28:33 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-05-30 08:27:56 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-05-30 08:24:19 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-05-30 08:23:22 2040832 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-05-30 08:10:46 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-05-30 07:56:56 2266112 ----a-w- C:\Windows\System32\wininet.dll
2014-05-30 07:56:50 4244992 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-05-30 07:50:09 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-05-30 07:49:38 1964544 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-05-30 07:21:10 1790976 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-05-25 18:27:38 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-25 18:27:38 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-05-12 10:25:56 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-04-14 23:13:43 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-04-12 02:19:32 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2010-01-26 13:11:08 444283 ----a-w- C:\Program Files\Common Files\WinPcapNmap.exe
.
============= FINISH: 11:35:08,85 ===============
 
ATTACH
 
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume1
Install Date: 02/02/2011 07:16:24
System Uptime: 04/07/2014 11:20:14 (0 hours ago)
.
Motherboard: Houter                       |  | Oro PC                      
Processor: Intel® Core i5 CPU       M 450  @ 2.40GHz | CPU 1 | 1724/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 466 GiB total, 112,876 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{0000111B-0000-1000-8000-00805F9B34FB}_VID&00010046_PID&0802\8&55BF9E4&0&98F537004E3D_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{0000111B-0000-1000-8000-00805F9B34FB}_VID&00010046_PID&0802\8&55BF9E4&0&98F537004E3D_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{00000004-0000-1000-8000-0002EE000002}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{00000004-0000-1000-8000-0002EE000002}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{00000000-DECA-FADE-DECA-DEAFDECACAFE}_VID&000205AC_PID&12A6\8&55BF9E4&0&74E1B6ED37A5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{00000000-DECA-FADE-DECA-DEAFDECACAFE}_VID&000205AC_PID&12A6\8&55BF9E4&0&74E1B6ED37A5_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{0000111D-0000-1000-8000-00805F9B34FB}_VID&00010046_PID&0802\8&55BF9E4&0&98F537004E3D_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{0000111D-0000-1000-8000-00805F9B34FB}_VID&00010046_PID&0802\8&55BF9E4&0&98F537004E3D_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{00005601-0000-1000-8000-0002EE000001}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{00005601-0000-1000-8000-0002EE000001}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{00000002-0000-1000-8000-0002EE000002}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{00000002-0000-1000-8000-0002EE000002}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{00001132-0000-1000-8000-00805F9B34FB}_VID&000205AC_PID&12A6\8&55BF9E4&0&74E1B6ED37A5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{00001132-0000-1000-8000-00805F9B34FB}_VID&000205AC_PID&12A6\8&55BF9E4&0&74E1B6ED37A5_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{0000111B-0000-1000-8000-00805F9B34FB}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{0000111B-0000-1000-8000-00805F9B34FB}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Service: 
.
Class GUID: 
Description: Dispositivo Periférico Bluetooth
Device ID: BTHENUM\{00005005-0000-1000-8000-0002EE000001}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Manufacturer: 
Name: Dispositivo Periférico Bluetooth
PNP Device ID: BTHENUM\{00005005-0000-1000-8000-0002EE000001}_LOCALMFG&000A\8&55BF9E4&0&0021FECDE8E5_C00000000
Service: 
.
==== System Restore Points ===================
.
RP486: 28/06/2014 17:01:23 - Windows Update
RP487: 02/07/2014 14:12:00 - Windows Update
RP488: 02/07/2014 16:03:06 - Removido PC Connectivity Solution
RP489: 03/07/2014 23:25:54 - Installed SpyHunter
RP490: 04/07/2014 08:54:08 - Removed SpyHunter
RP491: 04/07/2014 09:20:44 - Instalado ESET NOD32 Antivirus
RP492: 04/07/2014 09:31:56 - Windows Update
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
ABBYY FineReader 6.0 Sprint
Adobe AIR
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color - Photoshop Specific
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash Player 11 Plugin
Adobe Flash Player 13 ActiveX
Adobe Fonts All
Adobe Help Viewer CS3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop CS3
Adobe Reader XI (11.0.02)
Adobe Setup
Adobe Stock Photos CS3
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
Apple Mobile Device Support
Apple Software Update
µTorrent
Atualização do produto Microsoft Office Excel 2007 Help (KB963678)
Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)
Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)
Atualização do produto Microsoft Office Word 2007 Help (KB963665)
Audacity 2.0
AVI ReComp 1.5.3
AviSynth 2.5
Bonjour
Bullzip MS Access to MySQL 3.0.0.148
Camtasia Studio 6
CCleaner
CDBurnerXP
Click to Call with Skype
Corel Graphics - Windows Shell Extension
Corel Graphics - Windows Shell Extension 64 Bit
Corel Photo Album 6
CorelDRAW Graphics Suite X5
CorelDRAW Graphics Suite X5 - BR
CorelDRAW Graphics Suite X5 - Capture
CorelDRAW Graphics Suite X5 - Common
CorelDRAW Graphics Suite X5 - Connect
CorelDRAW Graphics Suite X5 - Custom Data
CorelDRAW Graphics Suite X5 - Draw
CorelDRAW Graphics Suite X5 - Filters
CorelDRAW Graphics Suite X5 - FontNav
CorelDRAW Graphics Suite X5 - IPM
CorelDRAW Graphics Suite X5 - PHOTO-PAINT
CorelDRAW Graphics Suite X5 - Photozoom Plugin
CorelDRAW Graphics Suite X5 - Redist
CorelDRAW Graphics Suite X5 - Setup Files
CorelDRAW Graphics Suite X5 - VBA
CorelDRAW Graphics Suite X5 - VideoBrowser
CorelDRAW Graphics Suite X5 - VSTA
CorelDRAW Graphics Suite X5 - WT
CorelDRAW® Graphics Suite X5
D-Book 6.5.4
D3DX10
Desinstalar impressora EPSON TX300F Series
Driver 1.3
Easy Hi-Q Recorder 2.2
EF Englishtown Advanced Speech Recognition versão 4.6.449.1
Epson Connect
Epson Customer Participation
Epson Easy Photo Print 2
Epson Event Manager
EPSON NX330 Series Printer Uninstall
EPSON Print CD
EPSON Reference Guide
EPSON Scan
EPSON Web-To-Page
EpsonNet Print
ESET NOD32 Antivirus
Facebook Video Calling 1.2.0.287
FileZilla Client 3.8.0
FormatFactory 3.3.4.0
Free Video Flip and Rotate version 2.1.9.822
FreeSoundcloudDownloader
Galeria de Fotos
Google Chrome
Google Update Helper
i-CO2 v1.0
iCloud
IDT Audio
Intel® Control Center
Intel® Processor Graphics
Interchange Fourth Edition Self-study, Intro content
IPM 1.6
iTunes
Java 7 Update 55
Java Auto Updater
Java 6 Update 31
Java 6 Update 31 (64-bit)
Java 7 Update 5 (64-bit)
JavaFX 2.1.1
JMicron Ethernet Adapter NDIS Driver
JMicron Flash Media Controller Driver
Junk Mail filter update
K-Lite Mega Codec Pack 8.4.0
Lame ACM MP3 Codec
LG PC Suite
LG United Mobile Drivers
Módulo de Proteção - Banco Santander (Brasil) S.A.
Malwarebytes Anti-Malware versão 2.0.2.1012
Memory Optimizer version 1.2.1
Microsoft .NET Framework 4.5.1
Microsoft .NET Framework 4.5.1 (Português do Brasil)
Microsoft .NET Framework 4.5.1 (PTB)
Microsoft Antimalware Service PT-BR Language Pack
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010
Microsoft Office Access MUI (Portuguese (Brazil)) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (Portuguese (Brazil)) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (Portuguese (Brazil)) 2007
Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007
Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (Portuguese (Brazil)) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (Portuguese (Brazil)) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007
Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007
Microsoft Office Shared MUI (Portuguese (Brazil)) 2007
Microsoft Office SharePoint Designer 2007
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office SharePoint Designer MUI (Portuguese (Brazil)) 2007
Microsoft Office Word MUI (Portuguese (Brazil)) 2007
Microsoft Security Client
Microsoft Security Client PT-BR Language Pack
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual Studio 11 Developer Preview Pre-Clean Tool
Microsoft Visual Studio Tools for Applications 2.0 Runtime
Movie Maker
MSI to redistribute MS VS2005 CRT libraries
MSVC80_x64_v2
MSVC80_x86_v2
MSVC90_x64
MSVC90_x86
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NirSoft VideoCacheView
OSD 1.10
Panda Cloud Cleaner
PDF Settings
PDFCreator
Photo Common
Photo Gallery
PHP Editor 2.22
Picture Control Utility x64
QuickTime 7
Ralink RT2860 Wireless LAN Card
RealDownloader
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealNetworks - Microsoft Visual C++ 2010 Runtime
RealPlayer
RealUpgrade 1.1
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2880513) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition 
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition 
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition 
Security Update for Microsoft Office SharePoint Designer 2007 (KB2596810) 32-Bit Edition 
Security Update for Microsoft Office Word 2007 (KB2880515) 32-Bit Edition 
Skype™ 6.11
Software para Impressoras EPSON
Suporte para Aplicativos Apple
Synaptics Pointing Device Driver
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition
VDownloader 3.9.1693
Visual Basic for Applications ® Core
Visual Basic for Applications ® Core - English
Visual Basic for Applications ® Core - Portuguese (Brazil)
Visual Studio 2010 x64 Redistributables
VobSub 2.23
WampServer 2.4
Webcam 1.5
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinPcap 4.1.1
WinRAR 4.01 (64-bit)
Wireless Transfer App for Windows 1.31
.
==== End Of File ===========================
 
GMER
 
GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-07-04 16:23:43
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HM500JI rev.2AC101C4 465,76GB
Running: gmer.exe; Driver: C:\Users\USURIO~2\AppData\Local\Temp\ugliqfog.sys
 
 
---- Registry - GMER 2.1 ----
 
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\0002721fcd22 (not active ControlSet)                             
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\0002721fce59 (not active ControlSet)                             
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\0002721fcfb6 (not active ControlSet)                             
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\00027221b53c (not active ControlSet)                             
 
---- User code sections - GMER 2.1 ----
 
.text  ...                                                                                                                         * 2
.text  ...                                                                                                                         * 2
.text  C:\PROGRA~2\GbPlugin\GbpSv.exe[760] C:\Windows\syswow64\kernel32.dll!FreeLibrary                                            00000000751e3488 5 bytes JMP 000000017483844e
.text  C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe[1668] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter  00000000751e8791 4 bytes [C2, 04, 00, 00]
.text  C:\PROGRA~2\GbPlugin\GbpSv.exe[760] C:\Windows\syswow64\kernel32.dll!FreeLibraryAndExitThread                               00000000751fd552 5 bytes JMP 00000001748383c6
.text  C:\PROGRA~2\GbPlugin\GbpSv.exe[760] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69                                 0000000075401465 2 bytes [40, 75]
.text  C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe[1668] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69       0000000075401465 2 bytes [40, 75]
.text  C:\PROGRA~2\GbPlugin\GbpSv.exe[760] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155                                00000000754014bb 2 bytes [40, 75]
.text  C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe[1668] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155      00000000754014bb 2 bytes [40, 75]
.text  C:\PROGRA~2\GbPlugin\GbpSv.exe[760] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW + 493                                 0000000075722c9e 4 bytes CALL 71ab0000
.text  C:\PROGRA~2\GbPlugin\GbpSv.exe[760] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll                                              0000000077761287 6 bytes JMP 71a7000a
 
---- Registry - GMER 2.1 ----
 
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\00027221b53c@d0c1b1c1b8bb                                        0x9D 0x3A 0xF2 0xB9 ...
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\00027221b53c@0021fecde8e5                                        0xA0 0x3E 0x26 0xF0 ...
Reg    HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\00027221b53c@98f537004e3d                                        0xCE 0x4A 0x1B 0xB8 ...
 
---- EOF - GMER 2.1 ----
 

attach.txt

dds.txt

gmer.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites
Olá

 

Desculpe a demora :)

 

Se ainda precisa de ajuda refaça os logs, pois preciso dos mesmos com datas atualizadas: Leia Antes de Postar - Criando um novo Tópico

 

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

ATENÇÃO 4: Não anexe os logs, obrigado!

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×