Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Entre para seguir isso  
felipebdr

Computador não entra no windows

Recommended Posts

Olá, meu computador está reiniciando todas as vezes que tento ligá-lo em modo normal, antes mesmo de entrar no windows. Só consigo ligá-lo em modo de segurança.

Abaixo vão os logs:

DDS (Ver_10-03-17.01) - NTFSX64 NETWORK

Run by Felipe at 13:20:12.60 on Wed 09/01/2010

Internet Explorer: 8.0.6001.18943

Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1252.55.1033.18.2046.1097 [GMT -3:00]

AV: avast! antivirus 4.8.1229 [VPS 081121-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

SP: Spybot - Search and Destroy *enabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}

SP: AVG Anti-Spyware *disabled* (Outdated) {48F2E28D-ED66-4646-9C11-B3055B0AF604}

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

SP: avast! antivirus 4.8.1229 [VPS 081121-0] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

============== Running Processes ===============

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\Explorer.EXE

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files\Avast4\ashSimpl.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Felipe\Desktop\dds.scr

C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uSearch Page = hxxp://www.google.com

uStart Page = hxxp://www.uptodateonline.com/online/index.do

uSearch Bar = hxxp://www.google.com/ie

mLocal Page = c:\windows\syswow64\blank.htm

uInternet Settings,ProxyOverride = *.local

uSearchURL,(Default) = hxxp://g.msn.com.br/0SEPTBR/SAOS01?FORM=TOOLBR

mWinlogon: Userinit=userinit.exe

BHO: Facilitador de Leitor de Link Adobe PDF: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelper.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files (x86)\real\realplayer\rpbrowserrecordplugin.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files (x86)\avg\avg8\avgssie.dll

BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~2\spybot~1\SDHelper.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files (x86)\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files (x86)\microsoft office\office12\GrooveShellExtensions.dll

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files (x86)\java\jre6\bin\ssv.dll

BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files (x86)\google\google toolbar\GoogleToolbar_32.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files (x86)\google\googletoolbarnotifier\5.5.5126.1836\swg.dll

BHO: GbIehObj Class: {c41a1c0e-ea6c-11d4-b1b8-444553540000} - c:\program files (x86)\gbplugin\gbieh.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll

BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files (x86)\windows live\toolbar\wltcore.dll

TB: BS.Player ControlBar: {2c688203-7eb3-4327-9995-1cb417ba23f9} - c:\program files (x86)\bs.player controlbar\BSToolbar.dll

TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files (x86)\windows live\toolbar\wltcore.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files (x86)\google\google toolbar\GoogleToolbar_32.dll

TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File

TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

uRun: [MsnMsgr] "c:\program files (x86)\windows live\messenger\MsnMsgr.Exe" /background

uRun: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files (x86)\common files\ahead\lib\NMBgMonitor.exe"

uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe

uRun: [spybotSD TeaTimer] c:\program files (x86)\spybot - search & destroy\TeaTimer.exe

uRun: [swg] "c:\program files (x86)\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun

uRun: [WMPNSCFG] c:\program files (x86)\windows media player\WMPNSCFG.exe

mRun: [GrooveMonitor] "c:\program files (x86)\microsoft office\office12\GrooveMonitor.exe"

mRun: [avast!] c:\progra~1\avast4\ashDisp.exe

mRun: [NBKeyScan] "c:\program files (x86)\nero\nero8\nero backitup\NBKeyScan.exe"

mRun: [TkBellExe] "c:\program files (x86)\common files\real\update_ob\realsched.exe" -osboot

mRun: [sunJavaUpdateSched] "c:\program files (x86)\java\jre6\bin\jusched.exe"

mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 8.0\reader\Reader_sl.exe"

mRun: [Adobe ARM] "c:\program files (x86)\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [AppleSyncNotifier] c:\program files (x86)\common files\apple\mobile device support\AppleSyncNotifier.exe

mRun: [iTunesHelper] "c:\program files (x86)\itunes\iTunesHelper.exe"

mRun: [QuickTime Task] "c:\program files (x86)\quicktime\QTTask.exe" -atboottime

dRun: [msnmsgr] "c:\program files (x86)\msn messenger\msnmsgr.exe" /background

StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\gerenc~1.lnk - c:\program files (x86)\palmone\Hotsync.exe

StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\hotsyn~1.lnk - c:\program files (x86)\palmone\Hotsync.exe

StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0)

mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xportar para o Microsoft Excel - c:\progra~2\micros~1\office12\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files (x86)\google\google toolbar\component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

IE: {49783ED4-258D-4f9f-BE11-137C18D3E543} - c:\poker\titan poker\casino.exe

IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\programs\partygaming\partypoker\RunApp.exe

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files (x86)\windows live\writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~2\micros~1\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~1\office12\REFIEBAR.DLL

IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~2\spybot~1\SDHelper.dll

Trusted Zone: bancobrasil.com.br\www14

Trusted Zone: bancobrasil.com.br\www2

Trusted Zone: bb.com.br\www

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab

DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/en-us/wlscctrl2.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_01-windows-i586.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_01-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {DB6BF2CD-4F59-4F1C-AA9C-D08C0B61A931} - hxxps://www14.bancobrasil.com.br/plugin/GbpDist.cab

TCP: {8A1E355E-11DB-4534-8AF2-C2EF9D2A130F} = 143.107.253.3 143.107.51.2

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files (x86)\microsoft office\office12\GrooveSystemServices.dll

Notify: GbPluginBb - c:\program files (x86)\gbplugin\gbieh.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files (x86)\microsoft office\office12\GrooveShellExtensions.dll

SEH: GbPluginObj Class: {e37cb5f0-51f5-4395-a808-5fa49e399f83} - c:\program files (x86)\gbplugin\gbieh.dll

BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\google toolbar\GoogleToolbar_64.dll

BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.5.5126.1836\swg64.dll

TB-X64: BS.Player ControlBar: {2C688203-7EB3-4327-9995-1CB417BA23F9} - c:\program files (x86)\bs.player controlbar\BSToolbar64.dll

TB-X64: DAEMON Tools Toolbar: {32099AAC-C132-4136-9E9A-4E364A424E17} - c:\program files (x86)\daemon tools toolbar\DTToolbar64.dll

TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\google toolbar\GoogleToolbar_64.dll

TB-X64: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File

TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File

mRun-x64: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

mRun-x64: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

mRun-x64: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe

IE-X64: {00000000-0000-0000-0000-000000000000} - c:\microgaming\poker\copacabanapokermpp\MPPoker.exe

STS-X64: Windows DreamScene: {E31004D1-A431-41B8-826F-E902F9D95C81} - %SystemRoot%\System32\DreamScene.dll

Hosts: 127.0.0.1 www.spywareinfo.com

============= SERVICES / DRIVERS ===============

R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk60x64.sys [2007-12-6 391680]

S1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-4-1 89680]

S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-4-1 22096]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2007-8-16 65616]

S2 avast! Antivirus;avast! Antivirus;c:\program files\avast4\ashServ.exe [2008-5-19 138680]

S2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard;c:\program files (x86)\avg anti-spyware 7.5\guard.exe --> c:\program files (x86)\avg anti-spyware 7.5\guard.exe [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 GbpSv;Gbp Service;c:\progra~2\gbplugin\GbpSv.exe [2010-1-6 55072]

S2 gupdate;Google Update Service (gupdate);c:\program files (x86)\google\update\GoogleUpdate.exe [2010-4-27 135664]

S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\spybot - search & destroy\SDWinSec.exe [2009-2-6 1153368]

S3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\avast4\ashMaiSv.exe [2008-5-19 254040]

S3 avast! Web Scanner;avast! Web Scanner;c:\program files\avast4\ashWebSv.exe [2008-5-19 352920]

S3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-6-18 27648]

S3 nmwcdcx64;Nokia USB Generic;c:\windows\system32\drivers\ccdcmbox64.sys [2009-12-30 25088]

S3 nmwcdx64;Nokia USB Phone Parent;c:\windows\system32\drivers\ccdcmbx64.sys [2010-1-21 18944]

S3 PerfHost;Performance Counter DLL Host;c:\windows\syswow64\perfhost.exe [2008-6-18 19968]

S3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\drivers\usbaapl64.sys [2010-4-19 50688]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework64\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 1020768]

S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;c:\windows\microsoft.net\framework64\v2.0.50727\mscorsvw.exe [2010-1-6 89920]

============== File Associations ===============

JSEFile=c:\windows\syswow64\WScript.exe "%1" %*

=============== Created Last 30 ================

2010-08-16 21:43:10 0 d-----w- C:\Mosby

2010-08-16 21:41:14 229482 ----a-w- c:\windows\syswow64\jpicpl32.cpl

2010-08-15 10:53:20 50688 ----a-w- c:\windows\system32\rtutils.dll

2010-08-15 10:53:19 36864 ----a-w- c:\windows\syswow64\rtutils.dll

2010-08-15 10:34:06 1426816 ----a-w- c:\windows\system32\drivers\tcpip.sys

2010-08-15 10:33:55 453120 ----a-w- c:\windows\system32\drivers\srv.sys

2010-08-15 10:33:54 175104 ----a-w- c:\windows\system32\drivers\srv2.sys

2010-08-15 10:33:47 2752000 ----a-w- c:\windows\system32\win32k.sys

2010-08-15 10:30:51 1869824 ----a-w- c:\windows\system32\msxml3.dll

2010-08-15 10:30:49 1248768 ----a-w- c:\windows\syswow64\msxml3.dll

2010-08-15 10:26:29 274944 ----a-w- c:\windows\syswow64\schannel.dll

2010-08-15 10:26:28 343040 ----a-w- c:\windows\system32\schannel.dll

2010-08-10 08:15:58 94208 ----a-w- c:\windows\syswow64\QuickTimeVR.qtx

2010-08-10 08:15:58 69632 ----a-w- c:\windows\syswow64\QuickTime.qts

2010-08-02 17:54:03 11584512 ----a-w- c:\windows\syswow64\shell32.dll

==================== Find3M ====================

2010-08-31 16:31:43 34997 ----a-w- c:\programdata\nvModes.dat

2010-06-27 21:06:42 641052 ----a-w- c:\windows\system32\prfh0416.dat

2010-06-27 21:06:42 124482 ----a-w- c:\windows\system32\prfc0416.dat

2010-06-26 21:45:45 51200 ----a-w- c:\windows\inf\infpub.dat

2010-06-26 21:45:44 86016 ----a-w- c:\windows\inf\infstor.dat

2010-06-26 21:45:43 143360 ----a-w- c:\windows\inf\infstrng.dat

2010-06-26 06:30:12 1147904 ----a-w- c:\windows\system32\wininet.dll

2010-06-26 06:25:54 77312 ----a-w- c:\windows\system32\iesetup.dll

2010-06-26 06:25:54 132096 ----a-w- c:\windows\system32\iesysprep.dll

2010-06-26 06:05:49 916480 ----a-w- c:\windows\syswow64\wininet.dll

2010-06-26 06:05:41 1210368 ----a-w- c:\windows\syswow64\urlmon.dll

2010-06-26 06:04:40 206848 ----a-w- c:\windows\syswow64\occache.dll

2010-06-26 06:03:22 611840 ----a-w- c:\windows\syswow64\mstime.dll

2010-06-26 06:03:04 5951488 ----a-w- c:\windows\syswow64\mshtml.dll

2010-06-26 06:03:02 599040 ----a-w- c:\windows\syswow64\msfeeds.dll

2010-06-26 06:03:02 55296 ----a-w- c:\windows\syswow64\msfeedsbs.dll

2010-06-26 06:02:31 25600 ----a-w- c:\windows\syswow64\jsproxy.dll

2010-06-26 06:02:15 71680 ----a-w- c:\windows\syswow64\iesetup.dll

2010-06-26 06:02:15 1986560 ----a-w- c:\windows\syswow64\iertutil.dll

2010-06-26 06:02:15 164352 ----a-w- c:\windows\syswow64\ieui.dll

2010-06-26 06:02:15 109056 ----a-w- c:\windows\syswow64\iesysprep.dll

2010-06-26 06:02:14 55808 ----a-w- c:\windows\syswow64\iernonce.dll

2010-06-26 06:02:14 184320 ----a-w- c:\windows\syswow64\iepeers.dll

2010-06-26 06:02:14 11077120 ----a-w- c:\windows\syswow64\ieframe.dll

2010-06-26 06:02:09 387584 ----a-w- c:\windows\syswow64\iedkcs32.dll

2010-06-26 04:47:47 162816 ----a-w- c:\windows\system32\ieUnatt.exe

2010-06-26 04:25:02 133632 ----a-w- c:\windows\syswow64\ieUnatt.exe

2010-06-26 04:24:51 173056 ----a-w- c:\windows\syswow64\ie4uinit.exe

2010-06-26 04:24:17 13312 ----a-w- c:\windows\syswow64\msfeedssync.exe

2010-06-19 13:58:10 37412 ----a-w- c:\windows\system32\prfd0416.dat

2010-06-19 13:58:10 37412 ----a-w- c:\windows\inf\perflib\0416\perfd.dat

2010-06-19 13:58:10 37412 ----a-w- c:\windows\inf\perflib\0416\perfc.dat

2010-06-19 13:58:10 318818 ----a-w- c:\windows\system32\prfi0416.dat

2010-06-19 13:58:10 318818 ----a-w- c:\windows\inf\perflib\0416\perfi.dat

2010-06-19 13:58:10 318818 ----a-w- c:\windows\inf\perflib\0416\perfh.dat

2010-06-08 18:00:36 4697992 ----a-w- c:\windows\system32\ntoskrnl.exe

2010-01-07 21:39:43 665600 ----a-w- c:\windows\inf\drvindex.dat

2008-06-27 23:32:20 174 --sha-w- c:\program files\desktop.ini

2008-06-27 23:32:20 174 --sha-w- c:\program files (x86)\desktop.ini

2006-11-02 15:14:32 30674 ----a-w- c:\windows\inf\perflib\0409\perfd.dat

2006-11-02 15:14:32 30674 ----a-w- c:\windows\inf\perflib\0409\perfc.dat

2006-11-02 15:14:32 287440 ----a-w- c:\windows\inf\perflib\0409\perfi.dat

2006-11-02 15:14:32 287440 ----a-w- c:\windows\inf\perflib\0409\perfh.dat

2006-11-02 10:52:12 287440 ----a-w- c:\windows\inf\perflib\0000\perfi.dat

2006-11-02 10:52:12 287440 ----a-w- c:\windows\inf\perflib\0000\perfh.dat

2006-11-02 10:52:10 30674 ----a-w- c:\windows\inf\perflib\0000\perfd.dat

2006-11-02 10:52:10 30674 ----a-w- c:\windows\inf\perflib\0000\perfc.dat

============= FINISH: 13:26:37.16 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft® Windows Vista™ Ultimate

Boot Device: \Device\HarddiskVolume1

Install Date: 7/13/2007 9:07:03 PM

System Uptime: 9/1/2010 12:53:36 PM (1 hours ago)

Motherboard: Gigabyte Technology Co., Ltd. | | 965P-DS3

Processor: Intel® Core2 CPU 6300 @ 1.86GHz | Socket 775 | 1866/266mhz

==== Disk Partitions =========================

A: is Removable

C: is FIXED (NTFS) - 233 GiB total, 64.782 GiB free.

D: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Microsoft 6to4 Adapter

Device ID: ROOT\*6TO4MP\0003

Manufacturer: Microsoft

Name: Microsoft 6to4 Adapter #4

PNP Device ID: ROOT\*6TO4MP\0003

Service: tunnel

==== System Restore Points ===================

==== Installed Programs ======================

Adobe Flash Player 10 ActiveX

Adobe Reader 8.2.3 - Português

Apple Application Support

Apple Software Update

Arquivo do WinRAR

µTorrent

Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)

Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

Atualização do produto Microsoft Office Word 2007 Help (KB963665)

avast! Antivirus

BS.Player ControlBar

BS.Player FREE

CCleaner (remove only)

CuteFTP 8 Home

DAEMON Tools Toolbar

Detector de Feed do Windows Live Toolbar (Windows Live Toolbar)

Extensão do Windows Live Toolbar (Windows Live Toolbar)

FastDictionary 2007

Ferramenta de Carregamento do Windows Live

Google Toolbar for Internet Explorer

Google Update Helper

HijackThis 2.0.2

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

ICM Trainer

IRPF2008 Windows - Declaração de Ajuste Anual

iSilo

Java 2 Runtime Environment, SE v1.4.1_01

Java 6 Update 2

Java 6 Update 20

Java 6 Update 3

Java 6 Update 5

Java 6 Update 7

Junk Mail filter update

K-Lite Mega Codec Pack 3.9.5

Logitech SetPoint

Logitech Updater

Menus Inteligentes (Windows Live Toolbar)

MetaProducts Mass Downloader

Microsoft Choice Guard

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Access MUI (Portuguese (Brazil)) 2007

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office Groove MUI (Portuguese (Brazil)) 2007

Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Search Enhancement Pack

Microsoft Silverlight

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Sync Framework Runtime Native v1.0 (x86)

Microsoft Sync Framework Services Native v1.0 (x86)

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

MSVC80_x86_v2

MSVC90_x86

MSVCRT

MSXML 4.0 SP2 (KB927978)

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 (KB941833)

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Nero 8 Trial

neroxml

Nokia Connectivity Cable Driver

OpenOffice.org Installer 1.0

palmOne

PartyPoker

PC Connectivity Solution

Poker Tracker Version 2.16.03d

PokerAce Hud (remove only)

QuickTime

RealPlayer

Safari

Security Update for 2007 Microsoft Office System (KB2277947)

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB976321)

Security Update for 2007 Microsoft Office System (KB982312)

Security Update for 2007 Microsoft Office System (KB982331)

Security Update for Microsoft Office Access 2007 (KB979440)

Security Update for Microsoft Office Excel 2007 (KB982308)

Security Update for Microsoft Office InfoPath 2007 (KB979441)

Security Update for Microsoft Office Outlook 2007 (KB980376)

Security Update for Microsoft Office PowerPoint 2007 (KB982158)

Security Update for Microsoft Office Publisher 2007 (KB982124)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Security Update for Microsoft Office Word 2007 (KB2251419)

Spelling Dictionaries Support For Adobe Reader 8

Spybot - Search & Destroy

TeamSpeak 2 RC2

Texas Grab'em

Titan Poker

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Office OneNote 2007 (KB980729)

Update for Outlook 2007 Junk Email Filter (kb2279264)

VCRedistSetup

Visual C++ 8.0 Runtime Setup Package (x64)

Visualizador do Marcador (Windows Live Toolbar)

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Favorites para Windows Live Toolbar

Windows Live Galeria de Fotos

Windows Live Mail

Windows Live Messenger

Windows Live OneCare safety scanner

Windows Live Sign-in Assistant

Windows Live Sync

Windows Live Toolbar

Windows Live Writer

==== End Of File ===========================

GMER 1.0.15.15281 - http://www.gmer.net

Rootkit scan 2010-09-01 14:24:52

Windows 6.0.6002 Service Pack 2

Running: gmer.exe

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xAE 0x94 0xFF 0x7C ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x2A 0x34 0xBB 0x61 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xC4 0x00 0xBF 0x43 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xCB 0x27 0x80 0xFE ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xAE 0x94 0xFF 0x7C ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x2A 0x34 0xBB 0x61 ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xC4 0x00 0xBF 0x43 ...

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xCB 0x27 0x80 0xFE ...

---- EOF - GMER 1.0.15 ----

Desde já agradeço pela ajuda,

Felipe

Compartilhar este post


Link para o post
Compartilhar em outros sites

Por gentileza, realize um teste de memória usando o MemTest. Mais informações abaixo:

http://www.techspot.com/vb/topic62524.html

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Não consigo rodar o teste de memória. Baixei o mem test para USB, instalei o arquivo e dei boot pelo USB. Antes de entrar no windows (modo normal) aparece novamente a mesma tela azul dizendo que tem erro e o computador reinicia automaticamente.

    Tentei novamente o boot pelo USB mas desta vez selecionando para modo de segurança. Ele entrou no Windows porém não fez nenhum teste como seria esperado.

    Alguma ideia de como devo proceder?

    Obrigado

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Se aparece uma tela azul deve ter um código, poderia copiar e passa-la, por gentileza?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Aparecem vários números, mas a tela só aparece por poucos segundos. O que consegui pegar por enquanto é: nvlddmkm.sys

    Caso não seja este por favor me avise que tento pegar as outras coisas que aparecem.

    Muito obrigado

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Pelo arquivo indicado mostra que possui um problema com o driver da sua placa de vídeo, não tem relação com malware. Recomendo que tente reinstalar os drivers.

    http://www.vistaforums.com/nvlddmkm-sys-error-code-w-bsod-8800-gtx-t1352.html

    Caso o problema mesmo assim persista, poste na seção de "Telas Azuis":

    http://forum.clubedohardware.com.br/telas-azuis/f170

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Reinstalei os drivers mas mesmo assim o problema persiste. Vou postar na seção telas azuis como orientado.

    Muito obrigado,

    Felipe

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.
    Entre para seguir isso  





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×