Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Anjari

Computador travando varias vezes ao dia...

Recommended Posts

Pessoal, boa noite. Estou com um problema no meu note Vaio...há algum tempo, ele tem travado quando inicializo. De uns dias pra cá, ele trava quase que uma vez por hora. Já passei Malware, AVG, CCleaner....nada. Por favor, será que vocês podem identificar algo que esteja prejudicando o desempenho do note?

Seguem os logs:

DDS:

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 9.0.8112.16455 BrowserJavaVersion: 10.9.2

Run by Dr. Ribeiro at 18:48:31 on 2012-12-12

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.55.1046.18.1014.248 [GMT -2:00]

.

AV: AVG Anti-Virus Free *Enabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}

SP: AVG Anti-Virus Free *Enabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\PROGRA~1\GbPlugin\GbpSv.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\ProgramData\DatacardService\HWDeviceService.exe

C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

C:\PROGRA~1\AVG\AVG8\avgrsx.exe

C:\PROGRA~1\AVG\AVG8\avgnsx.exe

C:\Program Files\Sony\Network Utility\NSUService.exe

C:\Program Files\Sony\VAIO Event Service\VESMgr.exe

C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe

C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe

C:\Windows\system32\DRIVERS\xaudio.exe

C:\Windows\system32\WUDFHost.exe

C:\PROGRA~1\AVG\AVG8\avgemc.exe

C:\Windows\system32\igfxext.exe

C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\AVG\AVG8\avgcsrvx.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\ProgramData\DatacardService\DCSHelper.exe

C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Windows\System32\hkcmd.exe

C:\Program Files\Apoint\Apoint.exe

C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Program Files\Ask.com\Updater\Updater.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Sony\Network Utility\LANUtil.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Apoint\ApMsgFwd.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Apoint\Apntex.exe

C:\Windows\system32\conime.exe

C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\wuauclt.exe

C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Windows\system32\svchost.exe -k hpdevmgmt

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\svchost.exe -k bthaudiosvc

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/webhp?rlz=1W1SNYX&ie=UTF-8&oe=UTF-8;

mDefault_Page_URL = hxxp://vaio.sony-latin.com

uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files\ask.com\GenericAskToolbar.dll

uURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

uURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

mURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg8\avgssie.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540003} - c:\program files\gbplugin\gbiehcef.dll

BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

BHO: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

TB: uTorrentBar_PT Toolbar: {E0301295-AB3E-4AF3-979F-3D453C5F9F48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

TB: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

uRun: [NSUFloatingUI] "c:\program files\sony\network utility\LANUtil.exe"

uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe

uRun: [HW_OPENEYE_OUC_VIVO INTERNET] "c:\program files\vivo internet\updatedog\ouc.exe"

uRun: [Google Update] "c:\users\dr. ribeiro\appdata\local\google\update\GoogleUpdate.exe" /c

uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide

mRun: [RtHDVCpl] RtHDVCpl.exe

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [Apoint] c:\program files\apoint\Apoint.exe

mRun: [iSBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"

mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe

mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe

mRun: [NWEReboot] <no file>

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\datavi~1.lnk - c:\program files\common files\dataviz\DvzIncMsgr.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\gerenc~1.lnk - c:\program files\palm\Hotsync.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe

mPolicies-Explorer: NoDriveAutoRun = dword:4

mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000

IE: Enviar para &Bluetooth - c:\program files\software widcomm\bluetooth\btsendto_ie_ctx.htm

IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

Trusted Zone: caixa.gov.br

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

TCP: NameServer = 201.82.0.62 192.168.0.1

TCP: Interfaces\{373724D6-7E53-4F5E-AF09-A169304D4BFE} : DHCPNameServer = 201.82.0.62 192.168.0.1

TCP: Interfaces\{D3B1BC4F-6734-45B5-BAB2-BDBA0ACB75CC} : DHCPNameServer = 200.174.144.15 200.174.144.14

TCP: Interfaces\{EA64642C-C23F-43C9-BB96-0F61927331D8} : DHCPNameServer = 201.82.0.62 192.168.0.1

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll

Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\13.2.0\ViProtocol.dll

Notify: GbPluginCef - c:\program files\gbplugin\gbiehCef.dll

Notify: igfxcui - igfxdev.dll

Notify: VESWinlogon - VESWinlogon.dll

AppInit_DLLs= avgrsstx.dll

SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - c:\program files\gbplugin\gbiehcef.dll

LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\

FF - prefs.js: browser.search.selectedEngine - AVG Secure Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=100000027&locale=pt_BR&apn_uid=D5482D50-785A-4969-ACAE-2D8A34448B38&apn_ptnrs=U3&apn_sauid=E29965AC-BB9A-49CC-833C-082C0A38E66C&apn_dtid=YYYYYYYYBR&&q=

FF - prefs.js: network.proxy.type - 0

FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll

FF - component: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e886d}\components\GbMzhCef.dll

FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll

FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll

FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll

FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll

FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\nokia\nokia suite\npNokiaSuiteEnabler.dll

FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll

FF - plugin: c:\users\dr. ribeiro\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll

FF - plugin: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{e0301295-ab3e-4af3-979f-3d453c5f9f48}\plugins\np-mswmp.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll

FF - plugin: c:\windows\system32\npdeployJava1.dll

FF - plugin: c:\windows\system32\npmproxy.dll

FF - ExtSQL: !HIDDEN! 2009-10-08 13:52; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

.

============= SERVICES / DRIVERS ===============

.

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\gbpkm.sys [2011-5-20 42584]

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-9 335240]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-9 27784]

R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-2-18 108552]

R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-9-4 26984]

R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2012-5-30 73216]

S3 BthAudioHF;Serviço BthAudioHF;c:\windows\system32\drivers\BthAudioHF.sys [2010-2-5 48024]

S3 BthAvrcp;Perfil AVRCP do Bluetooth;c:\windows\system32\drivers\BthAvrcp.sys [2010-2-5 28048]

S3 csr_a2dp;Perfil AV do Bluetooth;c:\windows\system32\drivers\bthav.sys [2010-2-5 66952]

S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2012-5-30 102784]

S3 FlashUSB;FlashUSB;c:\windows\system32\drivers\FlashUsb.sys [2010-7-7 16896]

S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2012-5-30 90112]

.

=============== File Associations ===============

.

ShellExec: VCExporterLaunch.exe: open="c:\program files\sony\vaio vp utilities\VCELaunch.exe" "%1"

.

=============== Created Last 30 ================

.

2012-12-11 17:19:05 6812136 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{eb0ce5f4-fb88-466f-980a-6d8e22375ef0}\mpengine.dll

2012-11-24 19:44:31 19072 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys

2012-11-24 19:42:17 -------- d-----w- c:\program files\PC Connectivity Solution

2012-11-16 17:11:58 75776 ----a-w- c:\windows\system32\synceng.dll

2012-11-16 17:08:10 2047488 ----a-w- c:\windows\system32\win32k.sys

.

==================== Find3M ====================

.

2012-12-11 21:27:29 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-12-11 21:27:29 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-11-05 12:12:46 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys

2012-11-01 21:07:32 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2012-11-01 21:07:30 821736 ----a-w- c:\windows\system32\npdeployJava1.dll

2012-11-01 21:07:30 746984 ----a-w- c:\windows\system32\deployJava1.dll

2012-10-08 07:56:24 1800704 ----a-w- c:\windows\system32\jscript9.dll

2012-10-08 07:48:03 1129472 ----a-w- c:\windows\system32\wininet.dll

2012-10-08 07:47:44 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2012-10-08 07:44:05 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2012-10-08 07:43:21 420864 ----a-w- c:\windows\system32\vbscript.dll

2012-10-08 07:40:56 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2012-09-29 21:54:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2009-06-06 00:28:32 985376 ----a-w- c:\program files\Setup.exe

.

============= FINISH: 18:56:57,34 ===============

Attach:

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft® Windows Vista™ Home Premium

Boot Device: \Device\HarddiskVolume2

Install Date: 15/07/2008 09:56:07

System Uptime: 12/12/2012 13:42:32 (5 hours ago)

.

Motherboard: Sony Corporation | | VAIO

Processor: Intel® Core2 Duo CPU T5450 @ 1.66GHz | N/A | 1667/167mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 141 GiB total, 24,221 GiB free.

D: is Removable

E: is Removable

F: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP1332: 24/11/2012 17:33:11 - Instalação de Pacote de Driver de Dispositivo: Nokia Wireless Communication Devices

RP1333: 24/11/2012 17:37:16 - Instalação de Pacote de Driver de Dispositivo: Nokia Adaptadores de rede

RP1334: 24/11/2012 17:43:15 - Instalação de Pacote de Driver de Dispositivo: Nokia Dispositivos Portáteis

RP1335: 25/11/2012 19:03:27 - Ponto de Verificação Agendado

RP1336: 26/11/2012 16:05:45 - Ponto de Verificação Agendado

RP1337: 27/11/2012 10:40:24 - Windows Update

RP1338: 28/11/2012 18:16:35 - Ponto de Verificação Agendado

RP1339: 30/11/2012 18:32:34 - Windows Update

RP1340: 01/12/2012 19:45:06 - Ponto de Verificação Agendado

RP1341: 03/12/2012 16:24:09 - Ponto de Verificação Agendado

RP1342: 04/12/2012 20:46:28 - Windows Update

RP1343: 05/12/2012 20:25:08 - Ponto de Verificação Agendado

RP1344: 06/12/2012 18:53:01 - Ponto de Verificação Agendado

RP1345: 09/12/2012 16:00:35 - Windows Update

RP1346: 10/12/2012 19:53:09 - Ponto de Verificação Agendado

RP1347: 11/12/2012 10:05:36 - Ponto de Verificação Agendado

RP1348: 12/12/2012 17:55:14 - Ponto de Verificação Agendado

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

1310

1310_Help

1310Trb

32 Bit HP CIO Components Installer

Activation Assistant for the 2007 Microsoft Office suites

Adobe AIR

Adobe Common File Installer

Adobe Flash Player 11 Plugin

Adobe Flash Player ActiveX

Adobe Photoshop Elements 6.0

Adobe Premiere Elements 4.0

Adobe Premiere Elements 4.0 Templates

Adobe Reader X (10.1.4)

Advertising Center

AIO_CDB_ProductContext

AIO_CDB_Software

AIO_Scan

Alps Pointing-device for VAIO

Apple Mobile Device Support

Apple Software Update

Ask Toolbar

µTorrent

atualizador Ask Toolbar Updater

Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

Atualização do produto Microsoft Office Word 2007 Help (KB963665)

Avanquest update

AVG Free 8.5

AVG Security Toolbar

Bonjour

BrOffice.org 3.0

Brother HL-2040

BufferChm

CCleaner

CDisplay 1.8

Click to Disc

Click to Disc Editor

Copy

CustomerResearchQFolder

Destinations

DeviceManagementQFolder

DocProc

DocProcQFolder

Documents To Go

DolbyFiles

eGames Pinball

eMule

eSupportQFolder

Fax

GearDrvs

Google Chrome

Google Earth

Google Update Helper

HDAUDIO SoftV92 Data Fax Modem with SmartCP

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

HP Customer Participation Program 8.0

HP Imaging Device Functions 8.0

HP OCR Software 8.0

HP Photosmart Essential

HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B

HP Product Assistant

HP Solution Center 8.0

HP Update

HPProductAssistant

HPSSupply

ImagXpress

Infineon USB driver 1.0.0.6

Intel® Graphics Media Accelerator Driver

iTunes

Java 7 Update 9

Java Auto Updater

Java 6 Update 7

Java SE Runtime Environment 6

JavaFX 2.1.1

LG Bluetooth Drivers

LG MC USB U330 driver

LG USB Modem Drivers

Malwarebytes Anti-Malware versão 1.65.1.1000

MarketResearch

Menu Templates - Starter Kit

Microsoft .NET Framework 3.5 Language Pack SP1 - ptb

Microsoft .NET Framework 3.5 SP1

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Client Profile PTB Language Pack

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office File Validation Add-In

Microsoft Office Home and Student 2007

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint Viewer 2007 (Portuguese (Brazil))

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Works

Microsoft_VC100_CRT_SP1_x86

Motorola Driver Installation 3.9.0

Motorola Phone Tools

Movie Templates - Starter Kit

Mozilla Firefox 14.0.1 (x86 pt-BR)

Mozilla Maintenance Service

MSVC80_x86_v2

MSVC90_x86

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 (KB941833)

MSXML 4.0 SP2 (KB973688)

Nero 9 Trial

Nero BurnRights

Nero ControlCenter

Nero CoverDesigner

Nero Disc Copy Gadget

Nero DiscSpeed

Nero DriveSpeed

Nero InfoTool

Nero Installer

Nero Live

Nero PhotoSnap

Nero Recode

Nero Rescue Agent

Nero ShowTime

Nero StartSmart

Nero Vision

Nero WaveEditor

NeroBurningROM

NeroExpress

NeroLiveGadget

neroxml

Nokia Connectivity Cable Driver

Nokia Home Media Server

Nokia Map Loader

Nokia Music

Nokia Photos

Nokia Software Updater

Nokia Suite

Norton 360

OGA Notifier 2.0.0048.0

OpenMG Limited Patch 4.7-07-15-19-01

OpenMG Secure Module 4.7.00

Pacote de Compatibilidade para o sistema Office 2007

Pacote de Driver do Windows - Infineon Technologies (FlashUSB) USB (04/16/2009 1.0.0.6)

Pacote de Driver do Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)

Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB

Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)

Palm

PC Connectivity Solution

Picture Package Music Transfer

QuickTime

Realtek High Definition Audio Driver

Recuva

Roxio Activation Module

Roxio Easy Media Creator Home

Scan

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687314) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition

Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2687315) 32-Bit Edition

Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

Setting Utility Series

SolutionCenter

SonicStage Mastering Studio

SonicStage Mastering Studio Audio Filter

SonicStage Mastering Studio Audio Filter Custom Preset

SonicStage Mastering Studio Plugins

Sony Picture Utility

Sony Video Shared Library

SoundTrax

Status

Suporte para Aplicativos Apple

Toolbox

TrayApp

UnloadSupport

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

Update Service

USB Flash Port Driver

uTorrentBar_PT Toolbar

VAIO Content Folder Setting

VAIO Content Metadata Intelligent Analyzing Manager

VAIO Content Metadata Manager Setting

VAIO Content Metadata XML Interface Library

VAIO Control Center

VAIO DVD Menu Data Basic

VAIO Entertainment Platform

VAIO Event Service

VAIO Help And Support

VAIO Launcher

VAIO Media AC3 Decoder 1.0

VAIO Media Content Collection 6.0

VAIO Media Integrated Server 6.1

VAIO Media Redistribution 6.0

VAIO Media Registration Tool

VAIO Media Registration Tool 6.0

VAIO Movie Story Template Data

VAIO MusicBox

VAIO OOBE and Welcome Center

VAIO Original Function Setting

VAIO Power Management

VAIO Smart Network

VAIO Update 3

VAIO Wallpaper Contents

VIVO INTERNET

WebReg

Windows Essentials Media Codec Pack 3.2 [32-Bit]

Windows Media Player Firefox Plugin

WinDVD for VAIO

.

==== End Of File ===========================

GMER:

GMER 1.0.15.15641 - http://www.gmer.net

Rootkit scan 2012-12-12 20:03:45

Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 TOSHIBA_ rev.DL03

Running: gmer.exe; Driver: C:\Users\DR4ABF~1.RIB\AppData\Local\Temp\pxrdapob.sys

---- Kernel code sections - GMER 1.0.15 ----

? C:\Users\DR4ABF~1.RIB\AppData\Local\Temp\mbr.sys O sistema não pode encontrar o arquivo especificado. !

---- User code sections - GMER 1.0.15 ----

.text C:\Windows\system32\services.exe[700] kernel32.dll!FreeLibrary 76E63FA4 5 Bytes JMP 3B68F2AB C:\PROGRAM FILES\GBPLUGIN\gbiehcef.dll (Gbieh Module/Caixa Economica Federal)

.text C:\Windows\system32\services.exe[700] kernel32.dll!FreeLibraryAndExitThread 76E6485E 5 Bytes JMP 3B68F223 C:\PROGRAM FILES\GBPLUGIN\gbiehcef.dll (Gbieh Module/Caixa Economica Federal)

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [740D7817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [7411B4E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [740DBB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [740CF695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [740D75E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [740CE7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [741073F5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [740DDA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [740CFFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [740CFF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [740C71CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [7415CAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [740FC8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [740CD968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [740C6853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [740C687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

IAT C:\Windows\Explorer.EXE[4088] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [740D2AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Gerenciador de Filtro do Filesystem Microsoft/Microsoft Corporation)

AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Gerenciador de Filtro do Filesystem Microsoft/Microsoft Corporation)

---- Services - GMER 1.0.15 ----

Service C:\PROGRA~1\GbPlugin\GbpSv.exe (*** hidden *** ) [AUTO] GbpSv <-- ROOTKIT !!!

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@0007e0af8f26 0xD2 0x6F 0x71 0x6F ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@24ab818c3bff 0x65 0x10 0x9D 0x2A ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@9c1874372c02 0x08 0x0D 0xB2 0x37 ...

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Type 16

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Start 2

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@ErrorControl 1

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@ImagePath C:\PROGRA~1\GbPlugin\GbpSv.exe

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@DisplayName Gbp Service

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Group GbPlugin Group

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@ObjectName LocalSystem

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Description Service for G-Buster Browser Defense

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv\Security

Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv\Security@Security 0x01 0x00 0x14 0x88 ...

Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001f8100011c (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001f8100011c@0007e0af8f26 0xD2 0x6F 0x71 0x6F ...

Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001f8100011c@24ab818c3bff 0x65 0x10 0x9D 0x2A ...

Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001f8100011c@9c1874372c02 0x08 0x0D 0xB2 0x37 ...

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@Type 16

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@Start 2

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@ErrorControl 1

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@ImagePath C:\PROGRA~1\GbPlugin\GbpSv.exe

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@DisplayName Gbp Service

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@Group GbPlugin Group

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@ObjectName LocalSystem

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv@Description Service for G-Buster Browser Defense

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv\Security (not active ControlSet)

Reg HKLM\SYSTEM\ControlSet003\Services\GbpSv\Security@Security 0x01 0x00 0x14 0x88 ...

---- EOF - GMER 1.0.15 ----

Obrigado.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá

Desculpe a demora :)

Se ainda precisa de ajuda refaça os logs, pois preciso dos mesmos com datas atualizadas: Leia Antes de Postar - Criando um novo Tópico

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Caro Diego, os logs são do dia 12 deste mês. Você acha necessário refazê-los?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • DDS

    DDS (Ver_2012-11-20.01) - NTFS_x86

    Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2

    Run by Dr. Ribeiro at 18:55:46 on 2012-12-14

    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.55.1046.18.1014.179 [GMT -2:00]

    .

    AV: AVG Anti-Virus Free *Disabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}

    SP: AVG Anti-Virus Free *Disabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}

    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    .

    ============== Running Processes ================

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\PROGRA~1\GbPlugin\GbpSv.exe

    C:\Windows\system32\SLsvc.exe

    C:\Windows\System32\spoolsv.exe

    C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

    C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

    C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

    C:\Program Files\Bonjour\mDNSResponder.exe

    C:\ProgramData\DatacardService\HWDeviceService.exe

    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

    C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

    C:\PROGRA~1\AVG\AVG8\avgrsx.exe

    C:\Program Files\Sony\Network Utility\NSUService.exe

    C:\Program Files\Sony\VAIO Event Service\VESMgr.exe

    C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

    C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

    C:\Windows\system32\SearchIndexer.exe

    C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe

    C:\Windows\system32\DRIVERS\xaudio.exe

    C:\PROGRA~1\AVG\AVG8\avgemc.exe

    C:\Windows\system32\igfxext.exe

    C:\Windows\System32\WUDFHost.exe

    C:\Windows\system32\igfxsrvc.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe

    C:\Program Files\AVG\AVG8\avgcsrvx.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\taskeng.exe

    C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\Explorer.EXE

    C:\ProgramData\DatacardService\DCSHelper.exe

    C:\Windows\system32\taskeng.exe

    C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe

    C:\Program Files\Windows Defender\MSASCui.exe

    C:\Windows\System32\hkcmd.exe

    C:\Windows\System32\igfxpers.exe

    C:\Program Files\Apoint\Apoint.exe

    C:\Program Files\Sony\ISB Utility\ISBMgr.exe

    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

    C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe

    C:\Program Files\AVG Secure Search\vprot.exe

    C:\Program Files\Ask.com\Updater\Updater.exe

    C:\Windows\system32\wbem\unsecapp.exe

    C:\Program Files\iTunes\iTunesHelper.exe

    C:\Program Files\Common Files\Java\Java Update\jusched.exe

    C:\Program Files\Windows Sidebar\sidebar.exe

    C:\Program Files\Sony\Network Utility\LANUtil.exe

    C:\Windows\ehome\ehtray.exe

    C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Program Files\Palm\Hotsync.exe

    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

    C:\Windows\ehome\ehmsas.exe

    C:\PROGRA~1\AVG\AVG8\avgnsx.exe

    C:\Users\Dr. Ribeiro\AppData\Roaming\VIVO INTERNET\ouc.exe

    C:\Program Files\iPod\bin\iPodService.exe

    C:\Program Files\Apoint\ApMsgFwd.exe

    C:\Program Files\Apoint\Apntex.exe

    C:\Windows\system32\conime.exe

    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

    C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

    C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

    C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

    C:\Windows\system32\igfxsrvc.exe

    C:\Windows\System32\mobsync.exe

    C:\Users\Dr. Ribeiro\AppData\Local\Google\Chrome\Application\chrome.exe

    C:\Windows\system32\SearchProtocolHost.exe

    C:\Windows\system32\SearchFilterHost.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k rpcss

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\system32\svchost.exe -k bthsvcs

    C:\Windows\system32\svchost.exe -k hpdevmgmt

    C:\Windows\System32\svchost.exe -k HPZ12

    C:\Windows\System32\svchost.exe -k HPZ12

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Windows\system32\svchost.exe -k bthaudiosvc

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com/webhp?rlz=1W1SNYX&ie=UTF-8&oe=UTF-8;

    mDefault_Page_URL = hxxp://vaio.sony-latin.com

    uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files\ask.com\GenericAskToolbar.dll

    uURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

    uURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    mURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

    BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg8\avgssie.dll

    BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

    BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

    BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540003} - c:\program files\gbplugin\gbiehcef.dll

    BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

    BHO: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    TB: uTorrentBar_PT Toolbar: {E0301295-AB3E-4AF3-979F-3D453C5F9F48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

    TB: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

    uRun: [NSUFloatingUI] "c:\program files\sony\network utility\LANUtil.exe"

    uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe

    uRun: [HW_OPENEYE_OUC_VIVO INTERNET] "c:\program files\vivo internet\updatedog\ouc.exe"

    uRun: [Google Update] "c:\users\dr. ribeiro\appdata\local\google\update\GoogleUpdate.exe" /c

    uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

    mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide

    mRun: [RtHDVCpl] RtHDVCpl.exe

    mRun: [igfxTray] c:\windows\system32\igfxtray.exe

    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

    mRun: [Persistence] c:\windows\system32\igfxpers.exe

    mRun: [Apoint] c:\program files\apoint\Apoint.exe

    mRun: [iSBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"

    mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe

    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe

    mRun: [NWEReboot] <no file>

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\datavi~1.lnk - c:\program files\common files\dataviz\DvzIncMsgr.exe

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\gerenc~1.lnk - c:\program files\palm\Hotsync.exe

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe

    mPolicies-Explorer: NoDriveAutoRun = dword:4

    mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

    mPolicies-System: EnableUIADesktopToggle = dword:0

    IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000

    IE: Enviar para &Bluetooth - c:\program files\software widcomm\bluetooth\btsendto_ie_ctx.htm

    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll

    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll

    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

    Trusted Zone: caixa.gov.br

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    TCP: NameServer = 201.82.0.62 192.168.0.1

    TCP: Interfaces\{373724D6-7E53-4F5E-AF09-A169304D4BFE} : DHCPNameServer = 201.82.0.62 192.168.0.1

    TCP: Interfaces\{D3B1BC4F-6734-45B5-BAB2-BDBA0ACB75CC} : DHCPNameServer = 200.174.144.15 200.174.144.14

    TCP: Interfaces\{EA64642C-C23F-43C9-BB96-0F61927331D8} : DHCPNameServer = 201.82.0.62 192.168.0.1

    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll

    Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\13.2.0\ViProtocol.dll

    Notify: GbPluginCef - c:\program files\gbplugin\gbiehCef.dll

    Notify: igfxcui - igfxdev.dll

    Notify: VESWinlogon - VESWinlogon.dll

    AppInit_DLLs= avgrsstx.dll

    SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - c:\program files\gbplugin\gbiehcef.dll

    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\

    FF - prefs.js: browser.search.selectedEngine - AVG Secure Search

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=100000027&locale=pt_BR&apn_uid=D5482D50-785A-4969-ACAE-2D8A34448B38&apn_ptnrs=U3&apn_sauid=E29965AC-BB9A-49CC-833C-082C0A38E66C&apn_dtid=YYYYYYYYBR&&q=

    FF - prefs.js: network.proxy.type - 0

    FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll

    FF - component: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e886d}\components\GbMzhCef.dll

    FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

    FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll

    FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

    FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll

    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: c:\program files\nokia\nokia suite\npNokiaSuiteEnabler.dll

    FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll

    FF - plugin: c:\users\dr. ribeiro\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll

    FF - plugin: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{e0301295-ab3e-4af3-979f-3d453c5f9f48}\plugins\np-mswmp.dll

    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll

    FF - plugin: c:\windows\system32\npdeployJava1.dll

    FF - plugin: c:\windows\system32\npmproxy.dll

    FF - ExtSQL: !HIDDEN! 2009-10-08 13:52; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

    .

    ============= SERVICES / DRIVERS ===============

    .

    R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\gbpkm.sys [2011-5-20 42584]

    R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-9 335240]

    R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-9 27784]

    R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-2-18 108552]

    R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-9-4 26984]

    R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2012-5-30 73216]

    R3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\drivers\lgbtport.sys [2009-9-29 12160]

    R3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\drivers\lgbtbus.sys [2009-9-29 10496]

    R3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\drivers\lgvmodem.sys [2009-9-29 12928]

    S3 BthAudioHF;Serviço BthAudioHF;c:\windows\system32\drivers\BthAudioHF.sys [2010-2-5 48024]

    S3 BthAvrcp;Perfil AVRCP do Bluetooth;c:\windows\system32\drivers\BthAvrcp.sys [2010-2-5 28048]

    S3 csr_a2dp;Perfil AV do Bluetooth;c:\windows\system32\drivers\bthav.sys [2010-2-5 66952]

    S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2012-5-30 102784]

    S3 FlashUSB;FlashUSB;c:\windows\system32\drivers\FlashUsb.sys [2010-7-7 16896]

    S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2012-5-30 90112]

    S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2009-6-19 19712]

    S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2009-1-29 8320]

    .

    =============== File Associations ===============

    .

    ShellExec: VCExporterLaunch.exe: open="c:\program files\sony\vaio vp utilities\VCELaunch.exe" "%1"

    .

    =============== Created Last 30 ================

    .

    2012-12-14 13:16:53 6812136 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{cfbb40d6-07fb-4037-8e67-12ed57d2eaee}\mpengine.dll

    2012-12-12 23:42:57 9728 ----a-w- c:\windows\system32\Wdfres.dll

    2012-12-12 23:42:49 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

    2012-12-12 23:42:49 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

    2012-12-12 23:42:47 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

    2012-12-12 23:42:47 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

    2012-12-12 23:42:47 16896 ----a-w- c:\windows\system32\winusb.dll

    2012-12-12 23:42:44 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

    2012-12-12 23:42:44 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

    2012-12-12 23:42:38 613888 ----a-w- c:\windows\system32\WUDFx.dll

    2012-12-12 23:42:38 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

    2012-12-12 23:42:38 196608 ----a-w- c:\windows\system32\WUDFHost.exe

    2012-12-12 19:09:09 376320 ----a-w- c:\windows\system32\dpnet.dll

    2012-12-12 19:09:08 23040 ----a-w- c:\windows\system32\dpnsvr.exe

    2012-12-12 19:09:05 2048000 ----a-w- c:\windows\system32\win32k.sys

    2012-12-12 19:08:59 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys

    2012-12-12 19:08:44 293376 ----a-w- c:\windows\system32\atmfd.dll

    2012-12-12 19:08:43 34304 ----a-w- c:\windows\system32\atmlib.dll

    2012-12-12 19:07:04 2048 ----a-w- c:\windows\system32\tzres.dll

    2012-11-24 19:44:31 19072 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys

    2012-11-24 19:42:17 -------- d-----w- c:\program files\PC Connectivity Solution

    2012-11-16 17:11:58 75776 ----a-w- c:\windows\system32\synceng.dll

    .

    ==================== Find3M ====================

    .

    2012-12-11 21:27:29 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

    2012-12-11 21:27:29 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe

    2012-11-14 02:09:22 1800704 ----a-w- c:\windows\system32\jscript9.dll

    2012-11-14 01:58:15 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

    2012-11-14 01:57:37 1129472 ----a-w- c:\windows\system32\wininet.dll

    2012-11-14 01:49:25 142848 ----a-w- c:\windows\system32\ieUnatt.exe

    2012-11-14 01:48:27 420864 ----a-w- c:\windows\system32\vbscript.dll

    2012-11-14 01:44:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb

    2012-11-05 12:12:46 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys

    2012-11-01 21:07:32 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

    2012-11-01 21:07:30 821736 ----a-w- c:\windows\system32\npdeployJava1.dll

    2012-11-01 21:07:30 746984 ----a-w- c:\windows\system32\deployJava1.dll

    2012-09-29 21:54:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

    2009-06-06 00:28:32 985376 ----a-w- c:\program files\Setup.exe

    .

    ============= FINISH: 18:58:07,04 ===============

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2012-11-20.01)

    .

    Microsoft® Windows Vista™ Home Premium

    Boot Device: \Device\HarddiskVolume2

    Install Date: 15/07/2008 09:56:07

    System Uptime: 14/12/2012 09:59:29 (9 hours ago)

    .

    Motherboard: Sony Corporation | | VAIO

    Processor: Intel® Core2 Duo CPU T5450 @ 1.66GHz | N/A | 1000/167mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 141 GiB total, 24,644 GiB free.

    D: is Removable

    E: is Removable

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP1337: 27/11/2012 10:40:24 - Windows Update

    RP1338: 28/11/2012 18:16:35 - Ponto de Verificação Agendado

    RP1339: 30/11/2012 18:32:34 - Windows Update

    RP1340: 01/12/2012 19:45:06 - Ponto de Verificação Agendado

    RP1341: 03/12/2012 16:24:09 - Ponto de Verificação Agendado

    RP1342: 04/12/2012 20:46:28 - Windows Update

    RP1343: 05/12/2012 20:25:08 - Ponto de Verificação Agendado

    RP1344: 06/12/2012 18:53:01 - Ponto de Verificação Agendado

    RP1345: 09/12/2012 16:00:35 - Windows Update

    RP1346: 10/12/2012 19:53:09 - Ponto de Verificação Agendado

    RP1347: 11/12/2012 10:05:36 - Ponto de Verificação Agendado

    RP1348: 12/12/2012 17:55:14 - Ponto de Verificação Agendado

    RP1349: 12/12/2012 21:30:08 - Windows Update

    RP1350: 13/12/2012 15:50:29 - Ponto de Verificação Agendado

    RP1351: 14/12/2012 11:50:31 - Ponto de Verificação Agendado

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    1310

    1310_Help

    1310Trb

    32 Bit HP CIO Components Installer

    Activation Assistant for the 2007 Microsoft Office suites

    Adobe AIR

    Adobe Common File Installer

    Adobe Flash Player 11 Plugin

    Adobe Flash Player ActiveX

    Adobe Photoshop Elements 6.0

    Adobe Premiere Elements 4.0

    Adobe Premiere Elements 4.0 Templates

    Adobe Reader X (10.1.4)

    Advertising Center

    AIO_CDB_ProductContext

    AIO_CDB_Software

    AIO_Scan

    Alps Pointing-device for VAIO

    Apple Mobile Device Support

    Apple Software Update

    Ask Toolbar

    µTorrent

    atualizador Ask Toolbar Updater

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    Avanquest update

    AVG Free 8.5

    AVG Security Toolbar

    Bonjour

    BrOffice.org 3.0

    Brother HL-2040

    BufferChm

    CCleaner

    CDisplay 1.8

    Click to Disc

    Click to Disc Editor

    Copy

    CustomerResearchQFolder

    Destinations

    DeviceManagementQFolder

    DocProc

    DocProcQFolder

    Documents To Go

    DolbyFiles

    eGames Pinball

    eMule

    eSupportQFolder

    Fax

    GearDrvs

    Google Chrome

    Google Earth

    Google Update Helper

    HDAUDIO SoftV92 Data Fax Modem with SmartCP

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

    HP Customer Participation Program 8.0

    HP Imaging Device Functions 8.0

    HP OCR Software 8.0

    HP Photosmart Essential

    HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B

    HP Product Assistant

    HP Solution Center 8.0

    HP Update

    HPProductAssistant

    HPSSupply

    ImagXpress

    Infineon USB driver 1.0.0.6

    Intel® Graphics Media Accelerator Driver

    iTunes

    Java 7 Update 9

    Java Auto Updater

    Java 6 Update 7

    Java SE Runtime Environment 6

    JavaFX 2.1.1

    LG Bluetooth Drivers

    LG MC USB U330 driver

    LG USB Modem Drivers

    Malwarebytes Anti-Malware versão 1.65.1.1000

    MarketResearch

    Menu Templates - Starter Kit

    Microsoft .NET Framework 3.5 Language Pack SP1 - ptb

    Microsoft .NET Framework 3.5 SP1

    Microsoft .NET Framework 4 Client Profile

    Microsoft .NET Framework 4 Client Profile PTB Language Pack

    Microsoft Office 2007 Service Pack 3 (SP3)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office File Validation Add-In

    Microsoft Office Home and Student 2007

    Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint Viewer 2007 (Portuguese (Brazil))

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

    Microsoft Visual C++ 2005 Redistributable

    Microsoft Works

    Microsoft_VC100_CRT_SP1_x86

    Motorola Driver Installation 3.9.0

    Motorola Phone Tools

    Movie Templates - Starter Kit

    Mozilla Firefox 14.0.1 (x86 pt-BR)

    Mozilla Maintenance Service

    MSVC80_x86_v2

    MSVC90_x86

    MSXML 4.0 SP2 (KB936181)

    MSXML 4.0 SP2 (KB941833)

    MSXML 4.0 SP2 (KB973688)

    Nero 9 Trial

    Nero BurnRights

    Nero ControlCenter

    Nero CoverDesigner

    Nero Disc Copy Gadget

    Nero DiscSpeed

    Nero DriveSpeed

    Nero InfoTool

    Nero Installer

    Nero Live

    Nero PhotoSnap

    Nero Recode

    Nero Rescue Agent

    Nero ShowTime

    Nero StartSmart

    Nero Vision

    Nero WaveEditor

    NeroBurningROM

    NeroExpress

    NeroLiveGadget

    neroxml

    Nokia Connectivity Cable Driver

    Nokia Home Media Server

    Nokia Map Loader

    Nokia Music

    Nokia Photos

    Nokia Software Updater

    Nokia Suite

    Norton 360

    OGA Notifier 2.0.0048.0

    OpenMG Limited Patch 4.7-07-15-19-01

    OpenMG Secure Module 4.7.00

    Pacote de Compatibilidade para o sistema Office 2007

    Pacote de Driver do Windows - Infineon Technologies (FlashUSB) USB (04/16/2009 1.0.0.6)

    Pacote de Driver do Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)

    Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB

    Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)

    Palm

    PC Connectivity Solution

    Picture Package Music Transfer

    QuickTime

    Realtek High Definition Audio Driver

    Recuva

    Roxio Activation Module

    Roxio Easy Media Creator Home

    Scan

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

    Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition

    Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition

    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

    Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Setting Utility Series

    SolutionCenter

    SonicStage Mastering Studio

    SonicStage Mastering Studio Audio Filter

    SonicStage Mastering Studio Audio Filter Custom Preset

    SonicStage Mastering Studio Plugins

    Sony Picture Utility

    Sony Video Shared Library

    SoundTrax

    Status

    Suporte para Aplicativos Apple

    Toolbox

    TrayApp

    UnloadSupport

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

    Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

    Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

    Update Service

    USB Flash Port Driver

    uTorrentBar_PT Toolbar

    VAIO Content Folder Setting

    VAIO Content Metadata Intelligent Analyzing Manager

    VAIO Content Metadata Manager Setting

    VAIO Content Metadata XML Interface Library

    VAIO Control Center

    VAIO DVD Menu Data Basic

    VAIO Entertainment Platform

    VAIO Event Service

    VAIO Help And Support

    VAIO Launcher

    VAIO Media AC3 Decoder 1.0

    VAIO Media Content Collection 6.0

    VAIO Media Integrated Server 6.1

    VAIO Media Redistribution 6.0

    VAIO Media Registration Tool

    VAIO Media Registration Tool 6.0

    VAIO Movie Story Template Data

    VAIO MusicBox

    VAIO OOBE and Welcome Center

    VAIO Original Function Setting

    VAIO Power Management

    VAIO Smart Network

    VAIO Update 3

    VAIO Wallpaper Contents

    VIVO INTERNET

    WebReg

    Windows Essentials Media Codec Pack 3.2 [32-Bit]

    Windows Media Player Firefox Plugin

    WinDVD for VAIO

    .

    ==== End Of File ===========================

    GMER 1.0.15.15641 - http://www.gmer.net

    Rootkit scan 2012-12-14 20:43:14

    Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 TOSHIBA_ rev.DL03

    Running: gmer.exe; Driver: C:\Users\DR4ABF~1.RIB\AppData\Local\Temp\pxrdapob.sys

    ---- User IAT/EAT - GMER 1.0.15 ----

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [73BF7817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [73C3B4E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [73BFBB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [73BEF695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [73BF75E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [73BEE7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [73C273F5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [73BFDA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [73BEFFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [73BEFF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [73BE71CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [73C7CAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [73C1C8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [73BED968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [73BE6853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [73BE687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    IAT C:\Windows\Explorer.EXE[1132] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [73BF2AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

    ---- Services - GMER 1.0.15 ----

    Service C:\PROGRA~1\GbPlugin\GbpSv.exe (*** hidden *** ) [AUTO] GbpSv <-- ROOTKIT !!!

    ---- Registry - GMER 1.0.15 ----

    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c

    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@0007e0af8f26 0xD2 0x6F 0x71 0x6F ...

    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@24ab818c3bff 0x65 0x10 0x9D 0x2A ...

    Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f8100011c@9c1874372c02 0x08 0x0D 0xB2 0x37 ...

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Type 16

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Start 2

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@ErrorControl 1

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@ImagePath C:\PROGRA~1\GbPlugin\GbpSv.exe

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@DisplayName Gbp Service

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Group GbPlugin Group

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@ObjectName LocalSystem

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv@Description Service for G-Buster Browser Defense

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv\Security

    Reg HKLM\SYSTEM\CurrentControlSet\Services\GbpSv\Security@Security 0x01 0x00 0x14 0x88 ...

    Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001f8100011c (not active ControlSet)

    Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001f8100011c@0007e0af8f26 0xD2 0x6F 0x71 0x6F ...

    Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001f8100011c@24ab818c3bff 0x65 0x10 0x9D 0x2A ...

    Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001f8100011c@9c1874372c02 0x08 0x0D 0xB2 0x37 ...

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@Type 16

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@Start 2

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@ErrorControl 1

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@ImagePath C:\PROGRA~1\GbPlugin\GbpSv.exe

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@DisplayName Gbp Service

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@Group GbPlugin Group

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@ObjectName LocalSystem

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv@Description Service for G-Buster Browser Defense

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv\Security (not active ControlSet)

    Reg HKLM\SYSTEM\ControlSet002\Services\GbpSv\Security@Security 0x01 0x00 0x14 0x88 ...

    ---- EOF - GMER 1.0.15 ----

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Desculpe a demora, o Diego está com problemas pessoais. Poste novo log do DDS.

    Obs: nestas festas de fim de ano nossa participação será menor.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Vou refazer o log do DDS em janeiro. Boas festas!

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • DDS (Ver_2012-11-20.01) - NTFS_x86

    Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2

    Run by Dr. Ribeiro at 22:09:51 on 2013-01-03

    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.55.1046.18.1014.378 [GMT -2:00]

    .

    AV: AVG Anti-Virus Free *Enabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}

    SP: AVG Anti-Virus Free *Enabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}

    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    .

    ============== Running Processes ================

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\PROGRA~1\GbPlugin\GbpSv.exe

    C:\Windows\system32\SLsvc.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\Explorer.EXE

    C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

    C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

    C:\Windows\system32\taskeng.exe

    C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe

    C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

    C:\Program Files\Bonjour\mDNSResponder.exe

    C:\ProgramData\DatacardService\HWDeviceService.exe

    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

    C:\ProgramData\DatacardService\DCSHelper.exe

    C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

    C:\PROGRA~1\AVG\AVG8\avgrsx.exe

    C:\Program Files\Sony\Network Utility\NSUService.exe

    C:\Program Files\Windows Defender\MSASCui.exe

    C:\Program Files\Sony\VAIO Event Service\VESMgr.exe

    C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

    C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

    C:\Windows\System32\hkcmd.exe

    C:\Windows\System32\igfxpers.exe

    C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe

    C:\Program Files\Apoint\Apoint.exe

    C:\Program Files\Sony\ISB Utility\ISBMgr.exe

    C:\Windows\system32\igfxext.exe

    C:\Windows\system32\SearchIndexer.exe

    C:\Windows\system32\igfxsrvc.exe

    C:\Program Files\AVG\AVG8\avgtray.exe

    C:\Windows\system32\DRIVERS\xaudio.exe

    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

    C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe

    C:\PROGRA~1\AVG\AVG8\avgemc.exe

    C:\Program Files\AVG Secure Search\vprot.exe

    C:\Program Files\Ask.com\Updater\Updater.exe

    C:\Program Files\iTunes\iTunesHelper.exe

    C:\Program Files\Common Files\Java\Java Update\jusched.exe

    C:\Windows\System32\WUDFHost.exe

    C:\Program Files\Windows Sidebar\sidebar.exe

    C:\Program Files\Sony\Network Utility\LANUtil.exe

    C:\Windows\ehome\ehtray.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe

    C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

    C:\Program Files\Palm\Hotsync.exe

    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

    C:\Program Files\AVG\AVG8\avgcsrvx.exe

    C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

    C:\Windows\ehome\ehmsas.exe

    C:\Users\Dr. Ribeiro\AppData\Roaming\VIVO INTERNET\ouc.exe

    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

    C:\Program Files\iPod\bin\iPodService.exe

    C:\Program Files\Apoint\ApMsgFwd.exe

    C:\Program Files\Apoint\Apntex.exe

    C:\Windows\system32\conime.exe

    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

    C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

    C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

    C:\PROGRA~1\AVG\AVG8\avgnsx.exe

    C:\Windows\system32\igfxsrvc.exe

    C:\Windows\System32\mobsync.exe

    C:\Windows\system32\SearchProtocolHost.exe

    C:\Windows\system32\SearchFilterHost.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k rpcss

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\system32\svchost.exe -k bthsvcs

    C:\Windows\system32\svchost.exe -k hpdevmgmt

    C:\Windows\System32\svchost.exe -k HPZ12

    C:\Windows\System32\svchost.exe -k HPZ12

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Windows\system32\svchost.exe -k bthaudiosvc

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com/webhp?rlz=1W1SNYX&ie=UTF-8&oe=UTF-8;

    mDefault_Page_URL = hxxp://vaio.sony-latin.com

    uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files\ask.com\GenericAskToolbar.dll

    uURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

    uURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    mURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

    BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg8\avgssie.dll

    BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

    BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

    BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540003} - c:\program files\gbplugin\gbiehcef.dll

    BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

    BHO: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    TB: uTorrentBar_PT Toolbar: {E0301295-AB3E-4AF3-979F-3D453C5F9F48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

    TB: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

    uRun: [NSUFloatingUI] "c:\program files\sony\network utility\LANUtil.exe"

    uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe

    uRun: [HW_OPENEYE_OUC_VIVO INTERNET] "c:\program files\vivo internet\updatedog\ouc.exe"

    uRun: [Google Update] "c:\users\dr. ribeiro\appdata\local\google\update\GoogleUpdate.exe" /c

    uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

    mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide

    mRun: [RtHDVCpl] RtHDVCpl.exe

    mRun: [igfxTray] c:\windows\system32\igfxtray.exe

    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

    mRun: [Persistence] c:\windows\system32\igfxpers.exe

    mRun: [Apoint] c:\program files\apoint\Apoint.exe

    mRun: [iSBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"

    mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe

    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe

    mRun: [NWEReboot] <no file>

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\datavi~1.lnk - c:\program files\common files\dataviz\DvzIncMsgr.exe

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\gerenc~1.lnk - c:\program files\palm\Hotsync.exe

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe

    mPolicies-Explorer: NoDriveAutoRun = dword:4

    mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

    mPolicies-System: EnableUIADesktopToggle = dword:0

    IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000

    IE: Enviar para &Bluetooth - c:\program files\software widcomm\bluetooth\btsendto_ie_ctx.htm

    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll

    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll

    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

    Trusted Zone: caixa.gov.br

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    TCP: NameServer = 201.82.0.62 192.168.0.1

    TCP: Interfaces\{373724D6-7E53-4F5E-AF09-A169304D4BFE} : DHCPNameServer = 201.82.0.62 192.168.0.1

    TCP: Interfaces\{D3B1BC4F-6734-45B5-BAB2-BDBA0ACB75CC} : DHCPNameServer = 200.174.144.15 200.174.144.14

    TCP: Interfaces\{EA64642C-C23F-43C9-BB96-0F61927331D8} : DHCPNameServer = 201.82.0.62 192.168.0.1

    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll

    Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\13.2.0\ViProtocol.dll

    Notify: GbPluginCef - c:\program files\gbplugin\gbiehCef.dll

    Notify: igfxcui - igfxdev.dll

    Notify: VESWinlogon - VESWinlogon.dll

    AppInit_DLLs= avgrsstx.dll

    SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - c:\program files\gbplugin\gbiehcef.dll

    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\

    FF - prefs.js: browser.search.selectedEngine - AVG Secure Search

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=100000027&locale=pt_BR&apn_uid=D5482D50-785A-4969-ACAE-2D8A34448B38&apn_ptnrs=U3&apn_sauid=E29965AC-BB9A-49CC-833C-082C0A38E66C&apn_dtid=YYYYYYYYBR&&q=

    FF - prefs.js: network.proxy.type - 0

    FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll

    FF - component: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e886d}\components\GbMzhCef.dll

    FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

    FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll

    FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

    FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll

    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: c:\program files\nokia\nokia suite\npNokiaSuiteEnabler.dll

    FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll

    FF - plugin: c:\users\dr. ribeiro\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll

    FF - plugin: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{e0301295-ab3e-4af3-979f-3d453c5f9f48}\plugins\np-mswmp.dll

    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll

    FF - plugin: c:\windows\system32\npdeployJava1.dll

    FF - plugin: c:\windows\system32\npmproxy.dll

    FF - ExtSQL: !HIDDEN! 2009-10-08 13:52; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

    .

    ============= SERVICES / DRIVERS ===============

    .

    R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-9 335240]

    R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-9 27784]

    R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-2-18 108552]

    R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-9-4 26984]

    S3 BthAudioHF;Serviço BthAudioHF;c:\windows\system32\drivers\BthAudioHF.sys [2010-2-5 48024]

    S3 BthAvrcp;Perfil AVRCP do Bluetooth;c:\windows\system32\drivers\BthAvrcp.sys [2010-2-5 28048]

    S3 csr_a2dp;Perfil AV do Bluetooth;c:\windows\system32\drivers\bthav.sys [2010-2-5 66952]

    .

    =============== File Associations ===============

    .

    ShellExec: VCExporterLaunch.exe: open="c:\program files\sony\vaio vp utilities\VCELaunch.exe" "%1"

    .

    =============== Created Last 30 ================

    .

    2013-01-01 21:04:04 6812136 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{66dc94cb-962b-4514-bd67-7ef0a6d6e532}\mpengine.dll

    2012-12-22 00:31:14 34304 ----a-w- c:\windows\system32\atmlib.dll

    2012-12-22 00:31:14 293376 ----a-w- c:\windows\system32\atmfd.dll

    2012-12-12 23:42:57 9728 ----a-w- c:\windows\system32\Wdfres.dll

    2012-12-12 23:42:49 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

    2012-12-12 23:42:49 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

    2012-12-12 23:42:47 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

    2012-12-12 23:42:47 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

    2012-12-12 23:42:47 16896 ----a-w- c:\windows\system32\winusb.dll

    2012-12-12 23:42:44 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

    2012-12-12 23:42:44 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

    2012-12-12 23:42:38 613888 ----a-w- c:\windows\system32\WUDFx.dll

    2012-12-12 23:42:38 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

    2012-12-12 23:42:38 196608 ----a-w- c:\windows\system32\WUDFHost.exe

    2012-12-12 19:09:09 376320 ----a-w- c:\windows\system32\dpnet.dll

    2012-12-12 19:09:08 23040 ----a-w- c:\windows\system32\dpnsvr.exe

    2012-12-12 19:09:05 2048000 ----a-w- c:\windows\system32\win32k.sys

    2012-12-12 19:08:59 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys

    2012-12-12 19:07:04 2048 ----a-w- c:\windows\system32\tzres.dll

    .

    ==================== Find3M ====================

    .

    2012-12-11 21:27:29 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

    2012-12-11 21:27:29 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe

    2012-11-14 02:09:22 1800704 ----a-w- c:\windows\system32\jscript9.dll

    2012-11-14 01:58:15 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

    2012-11-14 01:57:37 1129472 ----a-w- c:\windows\system32\wininet.dll

    2012-11-14 01:49:25 142848 ----a-w- c:\windows\system32\ieUnatt.exe

    2012-11-14 01:48:27 420864 ----a-w- c:\windows\system32\vbscript.dll

    2012-11-14 01:44:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb

    2012-11-05 12:12:46 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys

    2012-11-01 21:07:32 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

    2012-11-01 21:07:30 821736 ----a-w- c:\windows\system32\npdeployJava1.dll

    2012-11-01 21:07:30 746984 ----a-w- c:\windows\system32\deployJava1.dll

    2009-06-06 00:28:32 985376 ----a-w- c:\program files\Setup.exe

    .

    ============= FINISH: 22:17:05,18 ===============

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2012-11-20.01)

    .

    Microsoft® Windows Vista™ Home Premium

    Boot Device: \Device\HarddiskVolume2

    Install Date: 15/07/2008 09:56:07

    System Uptime: 03/01/2013 11:41:47 (11 hours ago)

    .

    Motherboard: Sony Corporation | | VAIO

    Processor: Intel® Core2 Duo CPU T5450 @ 1.66GHz | N/A | 1333/167mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 141 GiB total, 23,895 GiB free.

    D: is Removable

    E: is Removable

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP1349: 12/12/2012 21:30:08 - Windows Update

    RP1350: 13/12/2012 15:50:29 - Ponto de Verificação Agendado

    RP1351: 14/12/2012 11:50:31 - Ponto de Verificação Agendado

    RP1352: 15/12/2012 16:33:46 - Ponto de Verificação Agendado

    RP1353: 17/12/2012 20:58:11 - Ponto de Verificação Agendado

    RP1354: 18/12/2012 15:46:24 - Windows Update

    RP1355: 21/12/2012 21:11:26 - Windows Update

    RP1356: 21/12/2012 22:29:35 - Windows Update

    RP1357: 22/12/2012 19:46:38 - Ponto de Verificação Agendado

    RP1358: 25/12/2012 19:17:26 - Windows Update

    RP1359: 26/12/2012 18:19:15 - Ponto de Verificação Agendado

    RP1360: 27/12/2012 18:17:26 - Ponto de Verificação Agendado

    RP1361: 01/01/2013 19:01:20 - Windows Update

    RP1362: 02/01/2013 13:21:37 - Ponto de Verificação Agendado

    RP1363: 03/01/2013 12:38:45 - Ponto de Verificação Agendado

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    1310

    1310_Help

    1310Trb

    32 Bit HP CIO Components Installer

    Activation Assistant for the 2007 Microsoft Office suites

    Adobe AIR

    Adobe Common File Installer

    Adobe Flash Player 11 Plugin

    Adobe Flash Player ActiveX

    Adobe Photoshop Elements 6.0

    Adobe Premiere Elements 4.0

    Adobe Premiere Elements 4.0 Templates

    Adobe Reader X (10.1.4)

    Advertising Center

    AIO_CDB_ProductContext

    AIO_CDB_Software

    AIO_Scan

    Alps Pointing-device for VAIO

    Apple Mobile Device Support

    Apple Software Update

    Ask Toolbar

    µTorrent

    atualizador Ask Toolbar Updater

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    Avanquest update

    AVG Free 8.5

    AVG Security Toolbar

    Bonjour

    BrOffice.org 3.0

    Brother HL-2040

    BufferChm

    CCleaner

    CDisplay 1.8

    Click to Disc

    Click to Disc Editor

    Copy

    CustomerResearchQFolder

    Destinations

    DeviceManagementQFolder

    DocProc

    DocProcQFolder

    Documents To Go

    DolbyFiles

    eGames Pinball

    eMule

    eSupportQFolder

    Fax

    GearDrvs

    Google Chrome

    Google Earth

    Google Update Helper

    HDAUDIO SoftV92 Data Fax Modem with SmartCP

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

    HP Customer Participation Program 8.0

    HP Imaging Device Functions 8.0

    HP OCR Software 8.0

    HP Photosmart Essential

    HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B

    HP Product Assistant

    HP Solution Center 8.0

    HP Update

    HPProductAssistant

    HPSSupply

    ImagXpress

    Infineon USB driver 1.0.0.6

    Intel® Graphics Media Accelerator Driver

    iTunes

    Java 7 Update 9

    Java Auto Updater

    Java 6 Update 7

    Java SE Runtime Environment 6

    JavaFX 2.1.1

    LG Bluetooth Drivers

    LG MC USB U330 driver

    LG USB Modem Drivers

    Malwarebytes Anti-Malware versão 1.65.1.1000

    MarketResearch

    Menu Templates - Starter Kit

    Microsoft .NET Framework 3.5 Language Pack SP1 - ptb

    Microsoft .NET Framework 3.5 SP1

    Microsoft .NET Framework 4 Client Profile

    Microsoft .NET Framework 4 Client Profile PTB Language Pack

    Microsoft Office 2007 Service Pack 3 (SP3)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office File Validation Add-In

    Microsoft Office Home and Student 2007

    Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint Viewer 2007 (Portuguese (Brazil))

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

    Microsoft Visual C++ 2005 Redistributable

    Microsoft Works

    Microsoft_VC100_CRT_SP1_x86

    Motorola Driver Installation 3.9.0

    Motorola Phone Tools

    Movie Templates - Starter Kit

    Mozilla Firefox 14.0.1 (x86 pt-BR)

    Mozilla Maintenance Service

    MSVC80_x86_v2

    MSVC90_x86

    MSXML 4.0 SP2 (KB936181)

    MSXML 4.0 SP2 (KB941833)

    MSXML 4.0 SP2 (KB973688)

    Nero 9 Trial

    Nero BurnRights

    Nero ControlCenter

    Nero CoverDesigner

    Nero Disc Copy Gadget

    Nero DiscSpeed

    Nero DriveSpeed

    Nero InfoTool

    Nero Installer

    Nero Live

    Nero PhotoSnap

    Nero Recode

    Nero Rescue Agent

    Nero ShowTime

    Nero StartSmart

    Nero Vision

    Nero WaveEditor

    NeroBurningROM

    NeroExpress

    NeroLiveGadget

    neroxml

    Nokia Connectivity Cable Driver

    Nokia Home Media Server

    Nokia Map Loader

    Nokia Music

    Nokia Photos

    Nokia Software Updater

    Nokia Suite

    Norton 360

    OGA Notifier 2.0.0048.0

    OpenMG Limited Patch 4.7-07-15-19-01

    OpenMG Secure Module 4.7.00

    Pacote de Compatibilidade para o sistema Office 2007

    Pacote de Driver do Windows - Infineon Technologies (FlashUSB) USB (04/16/2009 1.0.0.6)

    Pacote de Driver do Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)

    Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB

    Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)

    Palm

    PC Connectivity Solution

    Picture Package Music Transfer

    QuickTime

    Realtek High Definition Audio Driver

    Recuva

    Roxio Activation Module

    Roxio Easy Media Creator Home

    Scan

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

    Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition

    Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition

    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

    Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Setting Utility Series

    SolutionCenter

    SonicStage Mastering Studio

    SonicStage Mastering Studio Audio Filter

    SonicStage Mastering Studio Audio Filter Custom Preset

    SonicStage Mastering Studio Plugins

    Sony Picture Utility

    Sony Video Shared Library

    SoundTrax

    Status

    Suporte para Aplicativos Apple

    Toolbox

    TrayApp

    UnloadSupport

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

    Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

    Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

    Update Service

    USB Flash Port Driver

    uTorrentBar_PT Toolbar

    VAIO Content Folder Setting

    VAIO Content Metadata Intelligent Analyzing Manager

    VAIO Content Metadata Manager Setting

    VAIO Content Metadata XML Interface Library

    VAIO Control Center

    VAIO DVD Menu Data Basic

    VAIO Entertainment Platform

    VAIO Event Service

    VAIO Help And Support

    VAIO Launcher

    VAIO Media AC3 Decoder 1.0

    VAIO Media Content Collection 6.0

    VAIO Media Integrated Server 6.1

    VAIO Media Redistribution 6.0

    VAIO Media Registration Tool

    VAIO Media Registration Tool 6.0

    VAIO Movie Story Template Data

    VAIO MusicBox

    VAIO OOBE and Welcome Center

    VAIO Original Function Setting

    VAIO Power Management

    VAIO Smart Network

    VAIO Update 3

    VAIO Wallpaper Contents

    VIVO INTERNET

    WebReg

    Windows Essentials Media Codec Pack 3.2 [32-Bit]

    Windows Media Player Firefox Plugin

    WinDVD for VAIO

    .

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • DDS (Ver_2012-11-20.01) - NTFS_x86

    Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2

    Run by Dr. Ribeiro at 22:09:51 on 2013-01-03

    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.55.1046.18.1014.378 [GMT -2:00]

    .

    AV: AVG Anti-Virus Free *Enabled/Updated* {0C939084-9E57-CBDB-EA61-0B0C7F62AF82}

    SP: AVG Anti-Virus Free *Enabled/Updated* {B7F27160-B86D-C455-D0D1-307E04E5E53F}

    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    .

    ============== Running Processes ================

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\PROGRA~1\GbPlugin\GbpSv.exe

    C:\Windows\system32\SLsvc.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\Explorer.EXE

    C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

    C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

    C:\Windows\system32\taskeng.exe

    C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe

    C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

    C:\Program Files\Bonjour\mDNSResponder.exe

    C:\ProgramData\DatacardService\HWDeviceService.exe

    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

    C:\ProgramData\DatacardService\DCSHelper.exe

    C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

    C:\PROGRA~1\AVG\AVG8\avgrsx.exe

    C:\Program Files\Sony\Network Utility\NSUService.exe

    C:\Program Files\Windows Defender\MSASCui.exe

    C:\Program Files\Sony\VAIO Event Service\VESMgr.exe

    C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

    C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

    C:\Windows\System32\hkcmd.exe

    C:\Windows\System32\igfxpers.exe

    C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe

    C:\Program Files\Apoint\Apoint.exe

    C:\Program Files\Sony\ISB Utility\ISBMgr.exe

    C:\Windows\system32\igfxext.exe

    C:\Windows\system32\SearchIndexer.exe

    C:\Windows\system32\igfxsrvc.exe

    C:\Program Files\AVG\AVG8\avgtray.exe

    C:\Windows\system32\DRIVERS\xaudio.exe

    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

    C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe

    C:\PROGRA~1\AVG\AVG8\avgemc.exe

    C:\Program Files\AVG Secure Search\vprot.exe

    C:\Program Files\Ask.com\Updater\Updater.exe

    C:\Program Files\iTunes\iTunesHelper.exe

    C:\Program Files\Common Files\Java\Java Update\jusched.exe

    C:\Windows\System32\WUDFHost.exe

    C:\Program Files\Windows Sidebar\sidebar.exe

    C:\Program Files\Sony\Network Utility\LANUtil.exe

    C:\Windows\ehome\ehtray.exe

    C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe

    C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe

    C:\Program Files\Palm\Hotsync.exe

    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

    C:\Program Files\AVG\AVG8\avgcsrvx.exe

    C:\Program Files\Sony\VAIO Power Management\SPMgr.exe

    C:\Windows\ehome\ehmsas.exe

    C:\Users\Dr. Ribeiro\AppData\Roaming\VIVO INTERNET\ouc.exe

    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

    C:\Program Files\iPod\bin\iPodService.exe

    C:\Program Files\Apoint\ApMsgFwd.exe

    C:\Program Files\Apoint\Apntex.exe

    C:\Windows\system32\conime.exe

    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

    C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

    C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

    C:\PROGRA~1\AVG\AVG8\avgnsx.exe

    C:\Windows\system32\igfxsrvc.exe

    C:\Windows\System32\mobsync.exe

    C:\Windows\system32\SearchProtocolHost.exe

    C:\Windows\system32\SearchFilterHost.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k rpcss

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k GPSvcGroup

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\system32\svchost.exe -k bthsvcs

    C:\Windows\system32\svchost.exe -k hpdevmgmt

    C:\Windows\System32\svchost.exe -k HPZ12

    C:\Windows\System32\svchost.exe -k HPZ12

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Windows\system32\svchost.exe -k bthaudiosvc

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com/webhp?rlz=1W1SNYX&ie=UTF-8&oe=UTF-8;

    mDefault_Page_URL = hxxp://vaio.sony-latin.com

    uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - c:\program files\ask.com\GenericAskToolbar.dll

    uURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

    uURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    mURLSearchHooks: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>

    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

    BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg8\avgssie.dll

    BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

    BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

    BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540003} - c:\program files\gbplugin\gbiehcef.dll

    BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

    BHO: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    TB: uTorrentBar_PT Toolbar: {E0301295-AB3E-4AF3-979F-3D453C5F9F48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\13.2.0.5\AVG Secure Search_toolbar.dll

    TB: uTorrentBar_PT Toolbar: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - c:\program files\utorrentbar_pt\prxtbuTor.dll

    TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files\ask.com\GenericAskToolbar.dll

    uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

    uRun: [NSUFloatingUI] "c:\program files\sony\network utility\LANUtil.exe"

    uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe

    uRun: [HW_OPENEYE_OUC_VIVO INTERNET] "c:\program files\vivo internet\updatedog\ouc.exe"

    uRun: [Google Update] "c:\users\dr. ribeiro\appdata\local\google\update\GoogleUpdate.exe" /c

    uRun: [NokiaSuite.exe] c:\program files\nokia\nokia suite\NokiaSuite.exe -tray

    mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide

    mRun: [RtHDVCpl] RtHDVCpl.exe

    mRun: [igfxTray] c:\windows\system32\igfxtray.exe

    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

    mRun: [Persistence] c:\windows\system32\igfxpers.exe

    mRun: [Apoint] c:\program files\apoint\Apoint.exe

    mRun: [iSBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"

    mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe

    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe

    mRun: [NWEReboot] <no file>

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\datavi~1.lnk - c:\program files\common files\dataviz\DvzIncMsgr.exe

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\gerenc~1.lnk - c:\program files\palm\Hotsync.exe

    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe

    mPolicies-Explorer: NoDriveAutoRun = dword:4

    mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

    mPolicies-System: EnableUIADesktopToggle = dword:0

    IE: E&xportar para o Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000

    IE: Enviar para &Bluetooth - c:\program files\software widcomm\bluetooth\btsendto_ie_ctx.htm

    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll

    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll

    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

    Trusted Zone: caixa.gov.br

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

    TCP: NameServer = 201.82.0.62 192.168.0.1

    TCP: Interfaces\{373724D6-7E53-4F5E-AF09-A169304D4BFE} : DHCPNameServer = 201.82.0.62 192.168.0.1

    TCP: Interfaces\{D3B1BC4F-6734-45B5-BAB2-BDBA0ACB75CC} : DHCPNameServer = 200.174.144.15 200.174.144.14

    TCP: Interfaces\{EA64642C-C23F-43C9-BB96-0F61927331D8} : DHCPNameServer = 201.82.0.62 192.168.0.1

    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll

    Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\13.2.0\ViProtocol.dll

    Notify: GbPluginCef - c:\program files\gbplugin\gbiehCef.dll

    Notify: igfxcui - igfxdev.dll

    Notify: VESWinlogon - VESWinlogon.dll

    AppInit_DLLs= avgrsstx.dll

    SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - c:\program files\gbplugin\gbiehcef.dll

    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\

    FF - prefs.js: browser.search.selectedEngine - AVG Secure Search

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=100000027&locale=pt_BR&apn_uid=D5482D50-785A-4969-ACAE-2D8A34448B38&apn_ptnrs=U3&apn_sauid=E29965AC-BB9A-49CC-833C-082C0A38E66C&apn_dtid=YYYYYYYYBR&&q=

    FF - prefs.js: network.proxy.type - 0

    FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll

    FF - component: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e886d}\components\GbMzhCef.dll

    FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

    FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll

    FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

    FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll

    FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll

    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: c:\program files\nokia\nokia suite\npNokiaSuiteEnabler.dll

    FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll

    FF - plugin: c:\users\dr. ribeiro\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll

    FF - plugin: c:\users\dr. ribeiro\appdata\roaming\mozilla\firefox\profiles\yq1hot3g.default\extensions\{e0301295-ab3e-4af3-979f-3d453c5f9f48}\plugins\np-mswmp.dll

    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll

    FF - plugin: c:\windows\system32\npdeployJava1.dll

    FF - plugin: c:\windows\system32\npmproxy.dll

    FF - ExtSQL: !HIDDEN! 2009-10-08 13:52; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

    .

    ============= SERVICES / DRIVERS ===============

    .

    R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-9 335240]

    R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2008-10-9 27784]

    R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-2-18 108552]

    R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-9-4 26984]

    S3 BthAudioHF;Serviço BthAudioHF;c:\windows\system32\drivers\BthAudioHF.sys [2010-2-5 48024]

    S3 BthAvrcp;Perfil AVRCP do Bluetooth;c:\windows\system32\drivers\BthAvrcp.sys [2010-2-5 28048]

    S3 csr_a2dp;Perfil AV do Bluetooth;c:\windows\system32\drivers\bthav.sys [2010-2-5 66952]

    .

    =============== File Associations ===============

    .

    ShellExec: VCExporterLaunch.exe: open="c:\program files\sony\vaio vp utilities\VCELaunch.exe" "%1"

    .

    =============== Created Last 30 ================

    .

    2013-01-01 21:04:04 6812136 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{66dc94cb-962b-4514-bd67-7ef0a6d6e532}\mpengine.dll

    2012-12-22 00:31:14 34304 ----a-w- c:\windows\system32\atmlib.dll

    2012-12-22 00:31:14 293376 ----a-w- c:\windows\system32\atmfd.dll

    2012-12-12 23:42:57 9728 ----a-w- c:\windows\system32\Wdfres.dll

    2012-12-12 23:42:49 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

    2012-12-12 23:42:49 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

    2012-12-12 23:42:47 73216 ----a-w- c:\windows\system32\WUDFSvc.dll

    2012-12-12 23:42:47 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll

    2012-12-12 23:42:47 16896 ----a-w- c:\windows\system32\winusb.dll

    2012-12-12 23:42:44 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

    2012-12-12 23:42:44 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

    2012-12-12 23:42:38 613888 ----a-w- c:\windows\system32\WUDFx.dll

    2012-12-12 23:42:38 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

    2012-12-12 23:42:38 196608 ----a-w- c:\windows\system32\WUDFHost.exe

    2012-12-12 19:09:09 376320 ----a-w- c:\windows\system32\dpnet.dll

    2012-12-12 19:09:08 23040 ----a-w- c:\windows\system32\dpnsvr.exe

    2012-12-12 19:09:05 2048000 ----a-w- c:\windows\system32\win32k.sys

    2012-12-12 19:08:59 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys

    2012-12-12 19:07:04 2048 ----a-w- c:\windows\system32\tzres.dll

    .

    ==================== Find3M ====================

    .

    2012-12-11 21:27:29 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

    2012-12-11 21:27:29 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe

    2012-11-14 02:09:22 1800704 ----a-w- c:\windows\system32\jscript9.dll

    2012-11-14 01:58:15 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

    2012-11-14 01:57:37 1129472 ----a-w- c:\windows\system32\wininet.dll

    2012-11-14 01:49:25 142848 ----a-w- c:\windows\system32\ieUnatt.exe

    2012-11-14 01:48:27 420864 ----a-w- c:\windows\system32\vbscript.dll

    2012-11-14 01:44:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb

    2012-11-05 12:12:46 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys

    2012-11-01 21:07:32 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

    2012-11-01 21:07:30 821736 ----a-w- c:\windows\system32\npdeployJava1.dll

    2012-11-01 21:07:30 746984 ----a-w- c:\windows\system32\deployJava1.dll

    2009-06-06 00:28:32 985376 ----a-w- c:\program files\Setup.exe

    .

    ============= FINISH: 22:17:05,18 ===============

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2012-11-20.01)

    .

    Microsoft® Windows Vista™ Home Premium

    Boot Device: \Device\HarddiskVolume2

    Install Date: 15/07/2008 09:56:07

    System Uptime: 03/01/2013 11:41:47 (11 hours ago)

    .

    Motherboard: Sony Corporation | | VAIO

    Processor: Intel® Core2 Duo CPU T5450 @ 1.66GHz | N/A | 1333/167mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 141 GiB total, 23,895 GiB free.

    D: is Removable

    E: is Removable

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP1349: 12/12/2012 21:30:08 - Windows Update

    RP1350: 13/12/2012 15:50:29 - Ponto de Verificação Agendado

    RP1351: 14/12/2012 11:50:31 - Ponto de Verificação Agendado

    RP1352: 15/12/2012 16:33:46 - Ponto de Verificação Agendado

    RP1353: 17/12/2012 20:58:11 - Ponto de Verificação Agendado

    RP1354: 18/12/2012 15:46:24 - Windows Update

    RP1355: 21/12/2012 21:11:26 - Windows Update

    RP1356: 21/12/2012 22:29:35 - Windows Update

    RP1357: 22/12/2012 19:46:38 - Ponto de Verificação Agendado

    RP1358: 25/12/2012 19:17:26 - Windows Update

    RP1359: 26/12/2012 18:19:15 - Ponto de Verificação Agendado

    RP1360: 27/12/2012 18:17:26 - Ponto de Verificação Agendado

    RP1361: 01/01/2013 19:01:20 - Windows Update

    RP1362: 02/01/2013 13:21:37 - Ponto de Verificação Agendado

    RP1363: 03/01/2013 12:38:45 - Ponto de Verificação Agendado

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    1310

    1310_Help

    1310Trb

    32 Bit HP CIO Components Installer

    Activation Assistant for the 2007 Microsoft Office suites

    Adobe AIR

    Adobe Common File Installer

    Adobe Flash Player 11 Plugin

    Adobe Flash Player ActiveX

    Adobe Photoshop Elements 6.0

    Adobe Premiere Elements 4.0

    Adobe Premiere Elements 4.0 Templates

    Adobe Reader X (10.1.4)

    Advertising Center

    AIO_CDB_ProductContext

    AIO_CDB_Software

    AIO_Scan

    Alps Pointing-device for VAIO

    Apple Mobile Device Support

    Apple Software Update

    Ask Toolbar

    µTorrent

    atualizador Ask Toolbar Updater

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    Avanquest update

    AVG Free 8.5

    AVG Security Toolbar

    Bonjour

    BrOffice.org 3.0

    Brother HL-2040

    BufferChm

    CCleaner

    CDisplay 1.8

    Click to Disc

    Click to Disc Editor

    Copy

    CustomerResearchQFolder

    Destinations

    DeviceManagementQFolder

    DocProc

    DocProcQFolder

    Documents To Go

    DolbyFiles

    eGames Pinball

    eMule

    eSupportQFolder

    Fax

    GearDrvs

    Google Chrome

    Google Earth

    Google Update Helper

    HDAUDIO SoftV92 Data Fax Modem with SmartCP

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

    HP Customer Participation Program 8.0

    HP Imaging Device Functions 8.0

    HP OCR Software 8.0

    HP Photosmart Essential

    HP Photosmart, Officejet, PSC and Deskjet All-In-One Driver Software 8.0.B

    HP Product Assistant

    HP Solution Center 8.0

    HP Update

    HPProductAssistant

    HPSSupply

    ImagXpress

    Infineon USB driver 1.0.0.6

    Intel® Graphics Media Accelerator Driver

    iTunes

    Java 7 Update 9

    Java Auto Updater

    Java 6 Update 7

    Java SE Runtime Environment 6

    JavaFX 2.1.1

    LG Bluetooth Drivers

    LG MC USB U330 driver

    LG USB Modem Drivers

    Malwarebytes Anti-Malware versão 1.65.1.1000

    MarketResearch

    Menu Templates - Starter Kit

    Microsoft .NET Framework 3.5 Language Pack SP1 - ptb

    Microsoft .NET Framework 3.5 SP1

    Microsoft .NET Framework 4 Client Profile

    Microsoft .NET Framework 4 Client Profile PTB Language Pack

    Microsoft Office 2007 Service Pack 3 (SP3)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office File Validation Add-In

    Microsoft Office Home and Student 2007

    Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint Viewer 2007 (Portuguese (Brazil))

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

    Microsoft Visual C++ 2005 Redistributable

    Microsoft Works

    Microsoft_VC100_CRT_SP1_x86

    Motorola Driver Installation 3.9.0

    Motorola Phone Tools

    Movie Templates - Starter Kit

    Mozilla Firefox 14.0.1 (x86 pt-BR)

    Mozilla Maintenance Service

    MSVC80_x86_v2

    MSVC90_x86

    MSXML 4.0 SP2 (KB936181)

    MSXML 4.0 SP2 (KB941833)

    MSXML 4.0 SP2 (KB973688)

    Nero 9 Trial

    Nero BurnRights

    Nero ControlCenter

    Nero CoverDesigner

    Nero Disc Copy Gadget

    Nero DiscSpeed

    Nero DriveSpeed

    Nero InfoTool

    Nero Installer

    Nero Live

    Nero PhotoSnap

    Nero Recode

    Nero Rescue Agent

    Nero ShowTime

    Nero StartSmart

    Nero Vision

    Nero WaveEditor

    NeroBurningROM

    NeroExpress

    NeroLiveGadget

    neroxml

    Nokia Connectivity Cable Driver

    Nokia Home Media Server

    Nokia Map Loader

    Nokia Music

    Nokia Photos

    Nokia Software Updater

    Nokia Suite

    Norton 360

    OGA Notifier 2.0.0048.0

    OpenMG Limited Patch 4.7-07-15-19-01

    OpenMG Secure Module 4.7.00

    Pacote de Compatibilidade para o sistema Office 2007

    Pacote de Driver do Windows - Infineon Technologies (FlashUSB) USB (04/16/2009 1.0.0.6)

    Pacote de Driver do Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)

    Pacote de Idiomas do Microsoft .NET Framework 3.5 SP1 - PTB

    Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)

    Palm

    PC Connectivity Solution

    Picture Package Music Transfer

    QuickTime

    Realtek High Definition Audio Driver

    Recuva

    Roxio Activation Module

    Roxio Easy Media Creator Home

    Scan

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

    Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition

    Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition

    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

    Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Setting Utility Series

    SolutionCenter

    SonicStage Mastering Studio

    SonicStage Mastering Studio Audio Filter

    SonicStage Mastering Studio Audio Filter Custom Preset

    SonicStage Mastering Studio Plugins

    Sony Picture Utility

    Sony Video Shared Library

    SoundTrax

    Status

    Suporte para Aplicativos Apple

    Toolbox

    TrayApp

    UnloadSupport

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

    Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

    Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

    Update Service

    USB Flash Port Driver

    uTorrentBar_PT Toolbar

    VAIO Content Folder Setting

    VAIO Content Metadata Intelligent Analyzing Manager

    VAIO Content Metadata Manager Setting

    VAIO Content Metadata XML Interface Library

    VAIO Control Center

    VAIO DVD Menu Data Basic

    VAIO Entertainment Platform

    VAIO Event Service

    VAIO Help And Support

    VAIO Launcher

    VAIO Media AC3 Decoder 1.0

    VAIO Media Content Collection 6.0

    VAIO Media Integrated Server 6.1

    VAIO Media Redistribution 6.0

    VAIO Media Registration Tool

    VAIO Media Registration Tool 6.0

    VAIO Movie Story Template Data

    VAIO MusicBox

    VAIO OOBE and Welcome Center

    VAIO Original Function Setting

    VAIO Power Management

    VAIO Smart Network

    VAIO Update 3

    VAIO Wallpaper Contents

    VIVO INTERNET

    WebReg

    Windows Essentials Media Codec Pack 3.2 [32-Bit]

    Windows Media Player Firefox Plugin

    WinDVD for VAIO

    .

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Baixe o Kaspersky AVP Tool de um desses 2 links:

    http://devbuilds.kaspersky-labs.com/devbuilds/AVPTool/

    http://dnl-us6.kaspersky-labs.com/devbuilds/AVPTool/

    Você será conduzido a uma página da Kaspersky, solicitando um email para cadastro, nome e sobrenome. Somente o campo "email" é obrigatório.

    Informe seu email depois clique no botão Submit Form.

    A página será recarregada. Clique no botão Download

    Salve-o em sua área de trabalho.

    Execute o arquivo e aguarde a instalação.

    ** Usuários do Windows Vista e Windows 7:

    Clique com o direito sobre o arquivo, depois clique em Executar como administrador

    Na tela do contrato de licença, marque a opção I accept the license agreement e depois clique no botão Start. Aparentemente o programa congela e nada acontece. É normal, apenas aguarde até aparecer a tela inicial do programa, e então clique no ícone Settings:

    KRT_settings.png

    Nesta tela, marque a caixa ao lado de:

    • Meu Computador
    • Disco local (C:)

    Marque também todas as unidades que aparecem abaixo de Disco Local, caso houverem. Depois clique na aba Automatic Scan

    KRT_install2_.png

    De volta à tela inicial do programa, clique no botão Start scanning

    Tenha paciência, é um pouco demorado.

    Quando terminar, caso tenha detectado algo, o programa irá lhe perguntar o que fazer.

    Marque o quadradinho ao lado de Apply to all objects e depois clique em Skip (queremos apenas o log).

    KRT_detection_.png

    Enquanto durar o exame, a tela inicial exibirá uma barra de progresso. Quando terminar, o programa exibirá o status concluído e um botão que ficará na cor laranja, caso nada tenha sido detectado, e na cor vermelha, caso tenha encontrado algo.

    Caso tenha detectado algo, o programa também exibirá uma tela de alerta, avisando que o seu sistema está desprotegido e sugerindo um produto da Kaspersky. Clique no botão No, thanks.

    De volta à tela principal, caso tenha sido detectado algo, então salve o log. Se você fechar o programa e esquecer de salvar o log, terá que repetir todo o scan novamente.

    Para salvar o log, clique no ícone Reports (ao lado do ícone "Settings"). Na próxima janela, clique em Detected Threats, depois clique no ícone de disquete para salvar o log.

    Escolha um local de fácil acesso e salve como log.txt

    Copie todo o conteúdo desse bloco de notas e cole na sua próxima resposta.

    Se nada for detectado, então não precisa salvar o log. Apenas poste aqui avisando.

    Para sair do programa, basta clicar no X no canto superior direito.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Desculpe a demora, mas não consigo colocar o log do Kaspersky aqui....ficou imenso, o bloco de notas quase não abre. O programa achou 36 alertas. Vou tentar refazer o log e desmenbra-lo para colocar aqui.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Status: Detected (events: 36)

    15/01/2013 16:10:33 Detected Trojan program Trojan.Win32.Midhos.uvp C:\Arquivos de programas\eGames\eGames Pinball\eGames Pinball\Game\pinball.exe High

    15/01/2013 17:31:58 Detected Trojan program Exploit.Java.CVE-2010-4452.a C:\Documents and Settings\Dr. Ribeiro\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\79efab09-1ce06993 High

    15/01/2013 17:49:20 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0001.res Medium

    15/01/2013 18:03:00 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS LIMEWARE\supercharged (best quality).mp3 High

    15/01/2013 18:03:00 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS LIMEWARE\oakley music.mp3 High

    15/01/2013 18:26:39 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0005.res Medium

    15/01/2013 18:26:40 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//data0000.res//# Medium

    15/01/2013 18:26:47 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//# Medium

    15/01/2013 18:26:43 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//#//data0001.res Medium

    15/01/2013 18:26:44 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//#//data0005.res Medium

    15/01/2013 19:12:21 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0001.res Medium

    15/01/2013 19:12:22 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0005.res Medium

    15/01/2013 19:12:22 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//data0000.res//# Medium

    15/01/2013 19:12:23 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//# Medium

    15/01/2013 19:12:23 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//#//data0001.res Medium

    15/01/2013 19:12:23 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//#//data0005.res Medium

    15/01/2013 19:13:20 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS LIMEWARE\supercharged (best quality).mp3 High

    15/01/2013 19:13:58 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS LIMEWARE\oakley music.mp3 High

    15/01/2013 19:37:05 Detected Trojan program Trojan.Win32.Midhos.uvp C:\Program Files\eGames\eGames Pinball\eGames Pinball\Game\pinball.exe High

    15/01/2013 20:17:24 Detected Trojan program Exploit.Java.CVE-2010-4452.a C:\Users\Dr. Ribeiro\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\79efab09-1ce06993 High

    15/01/2013 20:25:03 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0001.res Medium

    15/01/2013 20:25:04 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Users\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0005.res Medium

    15/01/2013 20:25:06 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//data0000.res//# Medium

    15/01/2013 20:25:09 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//# Medium

    15/01/2013 20:25:09 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//#//data0001.res Medium

    15/01/2013 20:25:09 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Users\Dr. Ribeiro\Documents\DIVERSOS\freeripmp3.exe//data0038//#//data0005.res Medium

    15/01/2013 20:25:40 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Users\Dr. Ribeiro\Documents\DIVERSOS LIMEWARE\oakley music.mp3 High

    15/01/2013 20:25:42 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Users\Dr. Ribeiro\Documents\DIVERSOS LIMEWARE\supercharged (best quality).mp3 High

    15/01/2013 20:32:18 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0001.res Medium

    15/01/2013 20:32:19 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//data0000.res//data0005.res Medium

    15/01/2013 20:32:20 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//data0000.res//# Medium

    15/01/2013 20:32:22 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//# Medium

    15/01/2013 20:32:22 Detected adware not-a-virus:AdWare.Win32.Excite.a C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//#//data0001.res Medium

    15/01/2013 20:32:22 Detected adware not-a-virus:AdWare.Win32.MyWay.f C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe//data0038//#//data0005.res Medium

    15/01/2013 20:33:03 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS LIMEWARE\oakley music.mp3 High

    15/01/2013 20:33:07 Detected Trojan program Trojan-Downloader.WMA.FakeDRM.bj C:\Users\Dr. Ribeiro\Meus documentos\DIVERSOS LIMEWARE\supercharged (best quality).mp3 High

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    As infecções apontadas:

    C:\Documents and Settings\Dr. Ribeiro\Meus documentos\DIVERSOS\freeripmp3.exe

    C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS LIMEWARE\oakley music.mp3

    C:\Documents and Settings\Dr. Ribeiro\Documents\DIVERSOS LIMEWARE\supercharged (best quality).mp3

    Exclua elas e monitore o comportamento do computador.

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Desculpe a demora. Exclui os arquivos e o note ficou muito melhor, ainda trava um pouco, mas nem sombra de antes. Continuo com problemas quando inicializo, as vezes ele demora muito para responder, as vezes o Google Chrome trava, mas no geral melhorou muito.

    Obrigado

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Esse tipo de problema não tem relação com malware. Recomendo que use um otimizador de registro como o CCleaner, ele costuma melhorar o desempenho da máquina.

    Mais alguma dúvida?

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×