Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Entre para seguir isso  
idejunior

Sistema lento ao inicializar...

Recommended Posts

Boa tarde,

Meu computador está lento ao inicializar e não consigo gravar em um cartão de memória.

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1

Run by GSPatton at 12:45:02 on 2012-07-15

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.6142.4119 [GMT -3:00]

.

AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}

SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

C:\Program Files (x86)\Incredimail Backup8\Backup8Sch.exe

C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE

C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe

C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe

C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

C:\Windows\splwow64.exe

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe

C:\Program Files\Web Assistant\ExtensionUpdaterService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Windows\splwow64.exe

C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Users\GSPatton\AppData\Local\Facebook\Messenger\2.1.4570.0\FacebookMessenger.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

C:\Program Files (x86)\AVG\AVG2012\avgtray.exe

C:\Program Files (x86)\AVG Secure Search\vprot.exe

C:\Users\GSPatton\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe

C:\Users\GSPatton\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler64.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe

C:\Program Files (x86)\Nero\Update\NASvc.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files (x86)\AVG\AVG2012\avgcfgex.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com.br/

mWinlogon: Userinit=userinit.exe

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll

BHO: Web Assistant: {336d0c35-8a85-403a-b9d2-65c292c39087} - C:\Program Files\Web Assistant\Extension32.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll

BHO: YouTube To ALLPlayer: {61db16c5-b733-43f4-872e-b20dc9e72740} - C:\PROGRA~2\ALLPLA~1\YOUTUB~1.DLL

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll

BHO: Auxiliar de Conexão do Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll

TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [incrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c

uRun: [ALLUpdate] "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep"

uRun: [EPSON TX210 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFDL.EXE /FU "C:\Windows\TEMP\E_S8438.tmp" /EF "HKCU"

uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

uRun: [ApacheTomcatMonitor7.0_Tomcat7] "C:\Program Files (x86)\Apache Software Foundation\Tomcat 7.0\bin\Tomcat7w.exe" //MS//Tomcat7

uRun: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"

uRun: [Facebook Update] "C:\Users\GSPatton\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

uRun: [<NO NAME>]

uRun: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray

uRun: [Google Update] "C:\Users\GSPatton\AppData\Local\Google\Update\GoogleUpdate.exe" /c

mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"

mRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [NBAgent] "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart

StartupFolder: C:\Users\GSPatton\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\FACEBO~1.LNK - C:\Users\GSPatton\AppData\Local\Facebook\Messenger\2.1.4570.0\FacebookMessenger.exe

StartupFolder: C:\Users\GSPatton\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: EnableLinkedConnections = 1 (0x1)

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

TCP: DhcpNameServer = 189.6.0.133 189.6.0.131

TCP: Interfaces\{7A8C13DA-E54F-4D03-8135-227C0F644C5E} : DhcpNameServer = 189.6.0.133 189.6.0.131

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}

{336D0C35-8A85-403a-B9D2-65C292C39087}

{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

{61DB16C5-B733-43F4-872E-B20DC9E72740}

{72853161-30C5-4D22-B7F9-0BBC1D38A37E}

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{95B7759C-8C7F-4BF1-B163-73684A933233}

{9FDDE16B-836F-4806-AB1F-1455CBEFF289}

{B4F3A835-0E21-4959-BA22-42B3008E02FF}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{95B7759C-8C7F-4BF1-B163-73684A933233}

mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

mRun-x64: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"

mRun-x64: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [NBAgent] "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart

SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\GSPatton\AppData\Roaming\Mozilla\Firefox\Profiles\fpm5eysv.default\

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B36fc1bef-0b29-4a5f-8c5d-06c97d752aec%7D&mid=45fabf465cd747d180303182087bbd79-52a40a5c0c94a72aa557ef237686c8ff035e2e96&ds=AVG&v=10.0.0.7〈=pt-br&pr=fr&d=2012-03-10%2013%3A21%3A20&sap=ku&q=

FF - prefs.js: network.proxy.type - 0

FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dll

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\npsitesafety.dll

FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll

FF - plugin: C:\Program Files (x86)\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll

FF - plugin: C:\Users\GSPatton\AppData\Local\Facebook\Messenger\2.1.4570.0\npFbDesktopPlugin.dll

FF - plugin: C:\Users\GSPatton\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll

FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll

FF - plugin: C:\Windows\SysWOW64\npmproxy.dll

.

============= SERVICES / DRIVERS ===============

.

R0 AVGIDSHA;AVGIDSHA;C:\Windows\system32\DRIVERS\avgidsha.sys --> C:\Windows\system32\DRIVERS\avgidsha.sys [?]

R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]

R0 hotcore3;hc3ServiceName;C:\Windows\system32\DRIVERS\hotcore3.sys --> C:\Windows\system32\DRIVERS\hotcore3.sys [?]

R0 NBVol;Nero Backup Volume Filter Driver;C:\Windows\system32\DRIVERS\NBVol.sys --> C:\Windows\system32\DRIVERS\NBVol.sys [?]

R0 NBVolUp;Nero Backup Volume Upper Filter Driver;C:\Windows\system32\DRIVERS\NBVolUp.sys --> C:\Windows\system32\DRIVERS\NBVolUp.sys [?]

R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]

R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]

R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]

R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]

R2 avgwd;Watchdog do AVG;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-2-14 193288]

R2 Backup8 Scheduler;Backup8 Scheduler;C:\Program Files (x86)\Incredimail Backup8\Backup8Sch.exe [2012-7-5 1268736]

R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]

R2 MyEpson Portal Service;MyEpson Portal Service;C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [2011-11-28 703584]

R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-9-23 641832]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272]

R2 vToolbarUpdater11.2.0;vToolbarUpdater11.2.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe [2012-7-9 935008]

R2 Web Assistant Updater;Web Assistant Updater;C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [2012-5-27 185856]

R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\avgidsdrivera.sys --> C:\Windows\system32\DRIVERS\avgidsdrivera.sys [?]

R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\avgidsfiltera.sys --> C:\Windows\system32\DRIVERS\avgidsfiltera.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe [2012-7-4 5160568]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-3-10 136176]

S2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-3-10 1262400]

S2 Tomcat7;Apache Tomcat 7.0 Tomcat7;C:\Program Files (x86)\Apache Software Foundation\Tomcat 7.0\bin\Tomcat7.exe [2012-2-17 77312]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-4-6 250056]

S3 gupdatem;Serviço do Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-3-10 136176]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]

S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-4-25 113120]

S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

.

=============== Created Last 30 ================

.

2012-07-15 14:50:37 -------- d-----w- C:\Users\GSPatton\AppData\Local\{9CF57CB1-DA16-48E8-AE6E-B54B7A7C567A}

2012-07-15 14:50:06 -------- d-----w- C:\Users\GSPatton\AppData\Local\{687A44B4-E7E4-46BB-A4F5-B7C5C61E2E6A}

2012-07-15 01:11:16 -------- d-----w- C:\Users\GSPatton\AppData\Local\{1883B30D-0325-41F9-B08B-13E5DED9EA0B}

2012-07-15 01:10:34 -------- d-----w- C:\Users\GSPatton\AppData\Local\{38840549-3439-42DC-8919-41BE8F0FBCF1}

2012-07-11 21:26:33 -------- d-----w- C:\Users\GSPatton\AppData\Local\{4D8FE98B-9F50-4FFF-9BAA-6A14D8E5695B}

2012-07-11 09:25:47 -------- d-----w- C:\Users\GSPatton\AppData\Local\{800FFC82-5F65-464E-8EFB-9AC110F0A9BA}

2012-07-11 09:25:21 -------- d-----w- C:\Users\GSPatton\AppData\Local\{F99351E0-7810-456A-B859-9044609F30AA}

2012-07-11 06:14:17 3148800 ----a-w- C:\Windows\System32\win32k.sys

2012-07-11 01:23:39 2004480 ----a-w- C:\Windows\System32\msxml6.dll

2012-07-08 19:47:40 -------- d-----w- C:\Users\GSPatton\AppData\Local\{972DF587-3516-457F-BD93-561B74F3E686}

2012-07-08 19:47:17 -------- d-----w- C:\Users\GSPatton\AppData\Local\{2AAE3187-A672-4140-A2F8-41013372A95B}

2012-07-07 19:28:17 -------- d-----w- C:\Users\GSPatton\AppData\Local\{2A3F517A-752D-4E4B-BA6B-9C4ECA5742ED}

2012-07-07 19:27:55 -------- d-----w- C:\Users\GSPatton\AppData\Local\{69C04323-B914-401A-98B0-1675080FC3FA}

2012-07-06 21:53:08 -------- d-----w- C:\Users\GSPatton\AppData\Local\{426D9EB4-301E-4771-85DF-981453970589}

2012-07-06 21:52:22 -------- d-----w- C:\Users\GSPatton\AppData\Local\{C76CF7AB-EA64-488D-80BC-82376105AD3F}

2012-07-06 02:07:01 -------- d-----w- C:\Users\GSPatton\AppData\Roaming\backup8

2012-07-06 02:06:59 -------- d-----w- C:\Program Files (x86)\Incredimail Backup8

2012-07-06 02:04:09 -------- d-----w- C:\Program Files (x86)\Static IncrediMail Backup

2012-07-05 14:44:02 -------- d-----w- C:\Users\GSPatton\AppData\Local\{67726358-CB57-45B5-900C-D33F24F2213B}

2012-07-05 02:43:27 -------- d-----w- C:\Users\GSPatton\AppData\Local\{70BDE993-E1DC-4BA2-B59A-4767591D35D3}

2012-07-04 14:42:52 -------- d-----w- C:\Users\GSPatton\AppData\Local\{B5206962-2465-4C24-BF77-04BB22DD9811}

2012-07-04 02:42:17 -------- d-----w- C:\Users\GSPatton\AppData\Local\{71805867-990F-4E42-A99B-E61BE3E66F18}

2012-07-04 02:41:54 -------- d-----w- C:\Users\GSPatton\AppData\Local\{DCBC5DC4-3F4F-4315-8711-F960D8B48E6C}

2012-07-03 14:41:28 -------- d-----w- C:\Users\GSPatton\AppData\Local\{FBC9722C-9200-4813-B72F-34361CDE8AD4}

2012-07-03 02:40:01 -------- d-----w- C:\Users\GSPatton\AppData\Local\{A7623231-8B00-431B-849B-6D5C7279B513}

2012-07-03 02:39:22 -------- d-----w- C:\Users\GSPatton\AppData\Local\{84AE26D6-DDF4-4126-AA4E-6C60F3D7B67E}

2012-07-01 23:35:46 -------- d-----w- C:\Users\GSPatton\AppData\Roaming\Star Watermark

2012-07-01 23:35:34 -------- d-----w- C:\Program Files (x86)\Star Watermark Professional

2012-06-30 16:11:46 -------- d-----w- C:\Windows\pss

2012-06-30 15:57:10 -------- d-----w- C:\Users\GSPatton\AppData\Local\{3BE645E0-B0EC-447A-BF56-13C5D9F024B5}

2012-06-30 15:56:48 -------- d-----w- C:\Users\GSPatton\AppData\Local\{51A55A48-B5ED-4B85-8C7F-31C699B9DF69}

2012-06-30 01:48:57 -------- d-----w- C:\Users\GSPatton\AppData\Local\{61703BD9-867E-4820-A400-2CC8E0277CEF}

2012-06-29 11:47:58 -------- d-----w- C:\Users\GSPatton\AppData\Local\{F7FAE3EF-E1D2-406D-8CA0-F74710ACC4AE}

2012-06-28 23:47:23 -------- d-----w- C:\Users\GSPatton\AppData\Local\{28E54B74-1BBB-412E-98E1-25B7FD7187F9}

2012-06-28 11:46:35 -------- d-----w- C:\Users\GSPatton\AppData\Local\{9A15D2DC-B989-4E96-8C0C-574D7C6D6B1D}

2012-06-28 11:46:08 -------- d-----w- C:\Users\GSPatton\AppData\Local\{7E7CC341-0FEA-4C23-AD95-11F4E23A7B78}

2012-06-27 14:51:10 -------- d-----w- C:\Users\GSPatton\AppData\Local\{3AD310DF-DF99-4058-9827-A82FA5EF974A}

2012-06-27 14:50:49 -------- d-----w- C:\Users\GSPatton\AppData\Local\{5E55D1F5-7EF9-4D0A-9EA1-33411DBEBBFB}

2012-06-26 15:54:23 -------- d-----w- C:\Users\GSPatton\AppData\Local\{9BE62C7E-CA3E-487E-9FFD-12F2043C6352}

2012-06-26 03:53:14 -------- d-----w- C:\Users\GSPatton\AppData\Local\{738C9FD4-DF9F-407F-9C19-8F065F715663}

2012-06-26 03:52:46 -------- d-----w- C:\Users\GSPatton\AppData\Local\{724438AD-9F8A-4BAC-9CA9-A91A4EA358ED}

2012-06-26 03:00:32 -------- d-----w- C:\Users\GSPatton\PSafe

2012-06-26 03:00:01 289952 ----a-r- C:\Windows\System32\drivers\360FltOEM.sys

2012-06-26 02:49:25 -------- d-----w- C:\Users\GSPatton\AppData\Roaming\AnvSoft

2012-06-26 02:49:02 -------- d-----w- C:\Program Files (x86)\AnvSoft

2012-06-24 06:28:02 -------- d-----w- C:\Users\GSPatton\AppData\Local\{8FA77D4D-021C-4017-91D0-8CA9ED8926A8}

2012-06-24 06:27:40 -------- d-----w- C:\Users\GSPatton\AppData\Local\{5FDE9379-FDEF-4F23-9991-46CAF7640D25}

2012-06-23 18:27:13 -------- d-----w- C:\Users\GSPatton\AppData\Local\{67434FD8-583C-4C2A-A16C-C191C0CB58EF}

2012-06-23 16:46:25 -------- d-----w- C:\Program Files (x86)\MDIConverter

2012-06-23 16:41:52 443904 ----a-w- C:\Windows\SysWow64\MDIVWCTL.DLL

2012-06-23 16:41:52 180224 ----a-w- C:\Windows\SysWow64\ijl11.dll

2012-06-23 16:41:52 16384 ----a-w- C:\Windows\SysWow64\MSPGIMME.DLL

2012-06-23 16:41:52 1033216 ----a-w- C:\Windows\SysWow64\MSPCORE.DLL

2012-06-23 16:41:51 -------- d-----w- C:\Program Files (x86)\MDIConvertor

2012-06-23 16:24:32 -------- d-----w- C:\Users\GSPatton\AppData\Roaming\NeroDigital

2012-06-23 16:08:41 -------- d-----w- C:\Users\GSPatton\AppData\Roaming\NeroDigital

2012-06-23 06:26:46 -------- d-----w- C:\Users\GSPatton\AppData\Local\{5B06B0A8-4AFC-49CC-8D99-F09148C10127}

2012-06-23 06:26:24 -------- d-----w- C:\Users\GSPatton\AppData\Local\{BF24900D-1DA4-412F-AB93-D14C8FB942B2}

2012-06-23 03:26:56 -------- d-----w- C:\Users\GSPatton\AppData\Local\Nero_AG

2012-06-23 02:09:51 -------- d-----w- C:\Users\GSPatton\AppData\Local\Nero

2012-06-22 19:07:15 -------- d-----w- C:\ProgramData\Nero

2012-06-22 18:48:28 15920 ----a-w- C:\Windows\System32\drivers\NBVolUp.sys

2012-06-22 18:47:54 72240 ----a-w- C:\Windows\System32\drivers\NBVol.sys

2012-06-22 18:47:53 -------- d-----w- C:\Program Files (x86)\Nero

2012-06-22 18:25:32 -------- d-----w- C:\Users\GSPatton\AppData\Local\{E87037D6-13C2-48AB-A806-BDFEB3F039C6}

2012-06-22 18:25:00 -------- d-----w- C:\Users\GSPatton\AppData\Local\{78E6D6CC-F581-4333-816B-9FAF5153AD39}

2012-06-22 18:14:40 248672 ----a-w- C:\Windows\SysWow64\d3dx11_43.dll

2012-06-22 18:14:40 2106216 ----a-w- C:\Windows\SysWow64\D3DCompiler_43.dll

2012-06-22 18:14:40 1868128 ----a-w- C:\Windows\SysWow64\d3dcsx_43.dll

2012-06-22 18:14:39 470880 ----a-w- C:\Windows\SysWow64\d3dx10_43.dll

2012-06-22 18:14:39 1998168 ----a-w- C:\Windows\SysWow64\D3DX9_43.dll

2012-06-22 18:13:19 1974616 ----a-w- C:\Windows\SysWow64\D3DCompiler_42.dll

2012-06-22 18:12:00 1892184 ----a-w- C:\Windows\SysWow64\D3DX9_42.dll

2012-06-22 18:09:11 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll

2012-06-22 10:40:20 2622464 ----a-w- C:\Windows\System32\wucltux.dll

2012-06-22 10:39:33 99840 ----a-w- C:\Windows\System32\wudriver.dll

2012-06-22 10:39:15 36864 ----a-w- C:\Windows\System32\wuapp.exe

2012-06-22 10:39:15 186752 ----a-w- C:\Windows\System32\wuwebv.dll

2012-06-17 02:38:17 -------- d-----w- C:\Users\GSPatton\AppData\Local\Babylon

2012-06-17 02:38:14 -------- d-----w- C:\Users\GSPatton\AppData\Roaming\Babylon

2012-06-17 02:38:14 -------- d-----w- C:\ProgramData\Babylon

2012-06-17 02:38:00 141312 ----a-w- C:\Windows\SysWow64\zlibwapi.dll

2012-06-16 03:57:54 -------- d-----w- C:\Users\GSPatton\AppData\Local\{260E6AB5-9487-4FAA-A70E-ABF37C58C0D8}

2012-06-16 03:10:13 -------- d-----w- C:\Program Files (x86)\Oracle

2012-06-16 03:05:25 -------- d-----w- C:\Users\GSPatton\AppData\Local\Macromedia

2012-06-16 02:17:44 772504 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll

2012-06-15 16:00:23 -------- d-----w- C:\Program Files (x86)\DOOM 3

.

==================== Find3M ====================

.

2012-07-12 14:39:12 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-07-12 14:39:12 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll

2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll

2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll

2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll

2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll

2012-06-02 12:12:17 2311680 ----a-w- C:\Windows\System32\jscript9.dll

2012-06-02 12:05:28 1392128 ----a-w- C:\Windows\System32\wininet.dll

2012-06-02 12:04:50 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

2012-06-02 12:01:40 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

2012-06-02 11:57:08 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2012-06-02 08:33:25 1800192 ----a-w- C:\Windows\SysWow64\jscript9.dll

2012-06-02 08:25:08 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

2012-06-02 08:25:03 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2012-06-02 08:20:33 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2012-06-02 08:16:52 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys

2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys

2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys

2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll

2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll

2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll

2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll

2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll

2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll

2012-05-31 02:33:12 298280 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr

2012-05-31 02:33:12 298280 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe

2012-05-31 02:26:52 298280 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0

2012-05-15 09:29:47 889664 ----a-w- C:\Windows\System32\nvvsvc.exe

2012-05-15 09:29:46 63296 ----a-w- C:\Windows\System32\nvshext.dll

2012-05-15 09:29:46 2561856 ----a-w- C:\Windows\System32\nvsvcr.dll

2012-05-15 09:29:46 118080 ----a-w- C:\Windows\System32\nvmctray.dll

2012-05-15 09:29:25 3149632 ----a-w- C:\Windows\System32\nvsvc64.dll

2012-05-15 09:28:42 6151488 ----a-w- C:\Windows\System32\nvcpl.dll

2012-05-15 05:21:50 423744 ----a-w- C:\Windows\SysWow64\nvStreaming.exe

2012-05-04 22:29:16 687504 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-05-04 11:06:22 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe

2012-05-04 11:00:43 366592 ----a-w- C:\Windows\System32\qdvd.dll

2012-05-04 10:03:53 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2012-05-04 10:03:50 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2012-05-04 09:59:54 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll

2012-05-01 05:40:20 209920 ----a-w- C:\Windows\System32\profsvc.dll

2012-04-28 05:32:05 1112064 ----a-w- C:\Windows\System32\rdpcorets.dll

2012-04-28 03:55:21 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys

2012-04-26 05:41:56 77312 ----a-w- C:\Windows\System32\rdpwsx.dll

2012-04-26 05:41:55 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll

2012-04-26 05:34:27 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe

2012-04-24 21:46:15 560184 ----a-w- C:\Windows\System32\drivers\sptd.sys

2012-04-24 05:37:37 184320 ----a-w- C:\Windows\System32\cryptsvc.dll

2012-04-24 05:37:37 140288 ----a-w- C:\Windows\System32\cryptnet.dll

2012-04-24 05:37:36 1462272 ----a-w- C:\Windows\System32\crypt32.dll

2012-04-24 04:36:42 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll

2012-04-24 04:36:42 1158656 ----a-w- C:\Windows\SysWow64\crypt32.dll

2012-04-24 04:36:42 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll

2012-04-22 16:51:38 25600 ----a-w- C:\Windows\System32\drivers\pccsmcfdx64.sys

2012-04-19 07:50:26 28480 ----a-w- C:\Windows\System32\drivers\avgidsha.sys

.

============= FINISH: 12:47:16,50 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume2

Install Date: 10/03/2012 12:43:02

System Uptime: 15/07/2012 12:05:37 (0 hours ago)

.

Motherboard: ASUSTeK Computer INC. | | M4A785TD-M EVO

Processor: AMD Athlon II X3 435 Processor | AM3 | 2900/200mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 466 GiB total, 267,626 GiB free.

D: is FIXED (NTFS) - 1863 GiB total, 316,708 GiB free.

E: is CDROM (UDF)

F: is Removable

G: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

No restore point in system.

.

==== Installed Programs ======================

.

"Nero SoundTrax Help

Ace MP3 To WAV Converter

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader X (10.1.3) - Português

Advertising Center

ALLConverter PRO 1.3

ALLPlayer V5.X

America's Army 3

Any Video Converter 3.4.0

Ashampoo Burning Studio 11 v.11.0.4

Ashampoo Burning Studio 2010 Advanced 9.25

ASUSUpdate

Biblioteca Autodidata 2.1 versão Apostila CAIXA 2012

ConvertXtoDVD 4.1.19.365

D3DX10

DAEMON Tools Lite

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

DolbyFiles

Doom 3

DreaMule 3.2

Emissor de Nota Fiscal Eletrônica (NF-e) 2.0

Epson Easy Photo Print 2

Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)

EPSON Scan

Facebook Messenger 2.1.4570.0

falador

Foxit Reader 5.1

Free Mp3 Wma Converter V 2.2

getTube 2012 - Downloader de áudio e vídeo

Google Chrome

Google Chrome Canary

Google Update Helper

Hard Disk Low Level Format Tool 4.25

Heavy Weapon Deluxe

HeidiSQL 7.0.0.4053

High-Definition Video Playback

ImagXpress

ImgBurn

IncrediMail

IncrediMail 2.0

Incredimail Backup Pro V 4.0

Incredimail Backup8 version 1.251

IRPF2011 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País

IRPF2012 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País

Java Auto Updater

Java 6 Update 33

Java 7 Update 5

JavaFX 2.1.1

JDownloader 0.9

L&H TTS3000 Português (Brasil)

LibreOffice 3.5

LibreOffice 3.5 Help Pack (Portuguese (Brazil))

MDI2PDF 2.61

MDIConverter 4.3

Menu Templates - Starter Kit

Messenger Companion

MFC RunTime files

Microsoft Office 2010 Service Pack 1 (SP1)

Microsoft Office Access MUI (English) 2010

Microsoft Office Access Setup Metadata MUI (English) 2010

Microsoft Office Excel MUI (English) 2010

Microsoft Office Groove MUI (English) 2010

Microsoft Office InfoPath MUI (English) 2010

Microsoft Office OneNote MUI (English) 2010

Microsoft Office Outlook Connector

Microsoft Office Outlook MUI (English) 2010

Microsoft Office PowerPoint MUI (English) 2010

Microsoft Office Professional Plus 2010

Microsoft Office Proof (English) 2010

Microsoft Office Proof (French) 2010

Microsoft Office Proof (Spanish) 2010

Microsoft Office Proofing (English) 2010

Microsoft Office Publisher MUI (English) 2010

Microsoft Office ScreenTip Language 2010 - Português

Microsoft Office Shared MUI (English) 2010

Microsoft Office Shared Setup Metadata MUI (English) 2010

Microsoft Office Word MUI (English) 2010

Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit

Microsoft Silverlight

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft_VC100_CRT_SP1_x86

Movie Templates - Starter Kit

Mozilla Firefox 13.0.1 (x86 pt-BR)

Mozilla Maintenance Service

MSVC80_x86_v2

MSVC90_x86

MSVCRT

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

Mu

MyEpson Portal

Nero 11

Nero 11 Cliparts

Nero 11 Disc Menus 1

Nero 11 Disc Menus 2

Nero 11 Disc Menus 3

Nero 11 Disc Menus Basic

Nero 11 Effects Basic

Nero 11 Image Samples

Nero 11 Kwik Themes 1

Nero 11 Kwik Themes 2

Nero 11 Kwik Themes 3

Nero 11 Kwik Themes 4

Nero 11 Kwik Themes Basic

Nero 11 PiP Effects 1

Nero 11 PiP Effects Basic

Nero 11 Video Samples

Nero 11 Video Transitions 1

Nero 9

Nero Audio Pack 1

Nero BackItUp 11

Nero BackItUp 11 Help (CHM)

Nero Burning ROM 11

Nero Burning ROM 11 Help (CHM)

Nero BurningROM

Nero BurnRights

Nero ControlCenter

Nero ControlCenter 11

Nero ControlCenter 11 Help (CHM)

Nero Core Components 11

Nero CoverDesigner

Nero CoverDesigner 11

Nero CoverDesigner 11 Help (CHM)

Nero CoverDesigner Help

Nero Disc Copy Gadget

Nero Disc Copy Gadget Help

Nero DiscSpeed

Nero DriveSpeed

Nero Express

Nero Express 11

Nero Express 11 Help (CHM)

Nero InfoTool

Nero Installer

Nero Kwik Media

Nero Kwik Media Help (CHM)

Nero Live

Nero Live Help

Nero PhotoSnap

Nero PhotoSnap Help

Nero Recode

Nero Recode 11

Nero Recode 11 Help (CHM)

Nero Recode Help

Nero Rescue Agent

Nero RescueAgent 11

Nero RescueAgent 11 Help (CHM)

Nero RescueAgent Help

Nero ShowTime

Nero SoundTrax 11

Nero SoundTrax 11 Help (CHM)

Nero StartSmart

Nero StartSmart Help

Nero Update

Nero Video 11

Nero Video 11 Help (CHM)

Nero Vision

Nero WaveEditor

Nero WaveEditor 11

Nero WaveEditor 11 Help (CHM)

Nero WaveEditor Help

nero.prerequisites.msi

NeroBurningROM

NeroExpress

neroxml

Nokia Connectivity Cable Driver

Nokia Suite

Notepad++

NVIDIA PhysX

NVIDIA Stereoscopic 3D Driver

Paragon Partition Manager™ 11 Free

PC Connectivity Solution

Photo Notifier and Animation Creator

PunkBuster Services

Real Alternative 1.9.0 Lite

Screen Capturer

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition

Security Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit Edition

Security Update for Microsoft InfoPath 2010 (KB2553431) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553091)

Security Update for Microsoft Office 2010 (KB2553096)

Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition

Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition

Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition

Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)

Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition

SoundTrax

Star Watermark Professional version 1.0.5

Static IncrediMail Backup 2.9

Steam

UniView - Visualizador de imagens

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft Office 2010 (KB2494150)

Update for Microsoft Office 2010 (KB2553065)

Update for Microsoft Office 2010 (KB2553092)

Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition

Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition

Update for Microsoft Office 2010 (KB2566458)

Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition

Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition

Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition

Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition

Visual Studio 2008 x64 Redistributables

Vuze

WEBZEN Browser Extension

welcome

Windows 7 USB/DVD Download Tool

Windows Live Communications Platform

Windows Live Essentials

Windows Live Installer

Windows Live Messenger

Windows Live Messenger Companion Core

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

Windows Media Player Firefox Plugin

Wisdom-soft AutoScreenRecorder 3.1 Free

XMedia Recode version 3.1.0.0

XP Codec Pack

YouTube to ALLPlayer

Zuma's Revenge!

.

==== End Of File ===========================

GMER 1.0.15.15641 - http://www.gmer.net

Rootkit scan 2012-07-15 16:47:10

Windows 6.1.7601 Service Pack 1

Running: gmer.exe

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x36 0xE1 0x30 0x1F ...

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0xA0 0x02 0x00 0x00 ...

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x23 0x82 0x2C 0xAF ...

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0

Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x04 0xA6 0x55 0xE6 ...

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x64 0xF6 0xFA 0x0B ...

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0xA0 0x02 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x23 0x82 0x2C 0xAF ...

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x04 0xA6 0x55 0xE6 ...

---- EOF - GMER 1.0.15 ----

Valeu a ajuda

Idemilson

Compartilhar este post


Link para o post
Compartilhar em outros sites

Baixe o Kaspersky AVP Tool de um desses 2 links:

http://devbuilds.kaspersky-labs.com/devbuilds/AVPTool/

http://dnl-us6.kaspersky-labs.com/devbuilds/AVPTool/

Você será conduzido a uma página da Kaspersky, solicitando um email para cadastro, nome e sobrenome. Somente o campo "email" é obrigatório.

Informe seu email depois clique no botão Submit Form.

A página será recarregada. Clique no botão Download

Salve-o em sua área de trabalho.

Execute o arquivo e aguarde a instalação.

** Usuários do Windows Vista e Windows 7:

Clique com o direito sobre o arquivo, depois clique em Executar como administrador

Na tela do contrato de licença, marque a opção I accept the license agreement e depois clique no botão Start. Aparentemente o programa congela e nada acontece. É normal, apenas aguarde até aparecer a tela inicial do programa, e então clique no ícone Settings:

KRT_settings.png

Nesta tela, marque a caixa ao lado de:

  • Meu Computador
  • Disco local (C:)

Marque também todas as unidades que aparecem abaixo de Disco Local, caso houverem. Depois clique na aba Automatic Scan

KRT_install2_.png

De volta à tela inicial do programa, clique no botão Start scanning

Tenha paciência, é um pouco demorado.

Quando terminar, caso tenha detectado algo, o programa irá lhe perguntar o que fazer.

Marque o quadradinho ao lado de Apply to all objects e depois clique em Skip (queremos apenas o log).

KRT_detection_.png

Enquanto durar o exame, a tela inicial exibirá uma barra de progresso. Quando terminar, o programa exibirá o status concluído e um botão que ficará na cor laranja, caso nada tenha sido detectado, e na cor vermelha, caso tenha encontrado algo.

Caso tenha detectado algo, o programa também exibirá uma tela de alerta, avisando que o seu sistema está desprotegido e sugerindo um produto da Kaspersky. Clique no botão No, thanks.

De volta à tela principal, caso tenha sido detectado algo, então salve o log. Se você fechar o programa e esquecer de salvar o log, terá que repetir todo o scan novamente.

Para salvar o log, clique no ícone Reports (ao lado do ícone "Settings"). Na próxima janela, clique em Detected Threats, depois clique no ícone de disquete para salvar o log.

Escolha um local de fácil acesso e salve como log.txt

Copie todo o conteúdo desse bloco de notas e cole na sua próxima resposta.

Se nada for detectado, então não precisa salvar o log. Apenas poste aqui avisando.

Para sair do programa, basta clicar no X no canto superior direito.

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Prezado Renato,

    Executei o procesimento solicitado, mas ao final, salvei o LOG de modo errado! :wub:

    Ao invéz de somente as ameaças, salvei o LOG completo!

    Posso enviar o log completo?

    Caso seja necessário, farei novamente o procedimento para enviar apenas as ameaças.

    Obrigado,

    Idemilson

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Abra novamente a ferramenta e filtre o log apenas para ameaças, não é necessário nova execução, o log fica salvo.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Renato,

    Segue o Log

    Status: Detected (events: 15)

    21/07/2012 09:14:50 Detected Trojan program Trojan-Dropper.Win32.HeliosBinder.up D:\Copiar\Documents\Vuze Downloads\Microsoft.Office.2003.Professional.Edition.Portable.By.Cantabriatorrent\Thinstall\Microsoft Office Professional Edition 2003\4000001900002h\msohelp.exe High

    21/07/2012 09:35:42 Detected Trojan program Trojan-Dropper.Win32.VB.aooq D:\Copiar\Downloads\IncrediMail.Backup.Pro.v2.6.rar//IncrediMail.Backup.Pro.v2.6/IncrediMail Backup Pro 2.6.exe//data0016 High

    21/07/2012 09:44:27 Detected unknown threat Packed.Multi.MultiPacked.gen D:\Copiar\Downloads\mu_online_brasil.exe//joga.exe Medium

    21/07/2012 10:12:13 Detected unknown threat Packed.Multi.MultiPacked.gen D:\Copiar\Downloads\mu_online_brasil_patch.exe//joga.exe Medium

    21/07/2012 10:23:41 Detected Trojan program Trojan-Dropper.Win32.VB.aooq D:\Copiar\Downloads\IncrediMail.Backup.Pro.v2.6\IncrediMail Backup Pro 2.6.exe//data0016 High

    21/07/2012 12:46:54 Detected Trojan program HEUR:Trojan.Win32.Generic D:\Disco D\NOTE001\Diversos\SistemasComerciais.rar//sistemas comerciais/Lan Maxx.rar//Lan Maxx/_Lan Maxx ( Instalar_Esta‡Æo )/Instalar_LanCliente.exe//Client.exe//ASPack High

    21/07/2012 13:33:11 Detected Trojan program Backdoor.Win32.Poison.clep D:\Disco F\Importante\pendrive\MS Office 2007 Portable\MSOffice2007 Settings\1000000600002i\svchost.exe High

    21/07/2012 13:33:13 Detected Trojan program Backdoor.Win32.Poison.clep D:\Disco F\Importante\pendrive\MS Office 2007 Portable\MSOffice2007-6in1-Settings\1000000600002i\svchost.exe High

    21/07/2012 14:06:32 Detected Trojan program Trojan-Spy.HTML.Fraud.gen D:\Export\BKP-Entrada.imm.extracted\email3779.eml High

    21/07/2012 14:19:17 Detected Trojan program Trojan.Win32.Dm.mm D:\Ideraldo\Segurança\AMARO FILHO\aresregular211_installer.exe High

    21/07/2012 15:08:41 Detected Trojan program Trojan.Win32.CD_open.eb D:\Instaladores\PEN2GB\Blok Free 1.2.exe//ci-temp0.cab//bfssc.exe High

    21/07/2012 16:31:01 Detected Trojan program Trojan-Downloader.Java.Small.at D:\Junior\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\3764c70-4d18f3c0/afp.class High

    21/07/2012 17:50:49 Detected Trojan program Trojan.Win32.Dm.mm D:\Pen16GB\Segurança1.rar//Seguran‡a/AMARO FILHO/aresregular211_installer.exe High

    21/07/2012 17:50:50 Detected Trojan program Trojan.Win32.Dm.mm D:\Pen16GB\Segurança.rar//Seguran‡a/AMARO FILHO/aresregular211_installer.exe High

    21/07/2012 17:57:29 Detected Trojan program Trojan-Downloader.Multi.MusLdr.c D:\Suzanna\eMule\Recebidos\music avatar.wma High

    Abraço,

    Idemilson

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Tudo que foi detectado são programas que você mesmo baixou ou copiou. Recomendo que tenha cautela com as fontes e o tipo de programas que usa.

    A lentidão no seu sistema não tem relação com malware. Recomendo que atualize seu sistema operacional, também o Adobe, Java ou qualquer outro programa do gênero. Desinstale programas não usados.

    Caso o problema persista, poste em Sistemas Operacionais.

    Dúvidas?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Renato,

    Não existe mais duvida!

    Pode dar como finalizado este !

    Gostaria no entanto de fazer uma pergunta, existe algum tipo de configuração no Windows 7 Ultimate 64 Bits que impeça a gravação de dados em um cartão micro SD ?

    Já fiz o teste em outro computador e funcionou !

    Grato,

    Idemilson

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Gostaria no entanto de fazer uma pergunta, existe algum tipo de configuração no Windows 7 Ultimate 64 Bits que impeça a gravação de dados em um cartão micro SD ?

    Poste isso no setor de sistemas operacionais.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caso o autor do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com a moderação solicitando o desbloqueio.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Visitante
    Este tópico está impedido de receber novos posts.
    Entre para seguir isso  





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×