Ir ao conteúdo
  • Comunicados

    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.

Camario

Membros Plenos
  • Total de itens

    9
  • Registro em

  • Última visita

  • Qualificações

    0%

Reputação

0

Sobre Camario

  • Data de Nascimento 30-04-1990

Informações gerais

  • Cidade e Estado
    Rio de Janeiro
  1. Computador muito lento

    Grato pela resposta. Estou viajando a trabalho e retorno no domingo. Vou ficar devendo os logs até lá, ok?
  2. Computador muito lento

    Boa tarde. Tomei a liberdade de excluir uma série de jogos que eu não jogava mais e mais alguns programas inúteis. O desempenho do computador já melhorou um pouquinho. O log do Gmer ficou muito grande e não consegui colar aqui, portanto, estou enviando por anexo. Segue o novo log: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16533 BrowserJavaVersion: 10.55.2Run by Rafael at 13:18:28 on 2014-06-02Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.1939 [GMT -3:00].AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\AUDIODG.EXEC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\atieclxx.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\System32\spoolsv.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\system32\taskeng.exeC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Windows\DAODx.exeC:\Program Files (x86)\ASUS\EPU\EPU.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exeC:\Program Files (x86)\DAEMON Tools Lite\DTLite.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exeC:\Users\Rafael\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exeC:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\ARCGIS.exeC:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exeC:\ASUS.SYS\config\DVMExportService.exeC:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exeC:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\System32\svchost.exe -k secsvcsC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\system32\WUDFHost.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\sppsvc.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Nero\Update\NASvc.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\wuauclt.exeC:\Windows\servicing\TrustedInstaller.exeC:\Windows\system32\taskhost.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.oquefazernainternet.com/uSearch Bar = hxxp://www.oquefazernainternet.com/uSearch Page = hxxp://www.oquefazernainternet.com/mStart Page = hxxp://speedial.com/?f=1&a=spd_dnldstr_14_22_ff&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0ByByB0EtBtB0D0F0EtBzytN0D0Tzu0SzzzztAtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StCtDtA0ByC0C0CyDtGtCyC0D0EtGzzzy0D0DtGzy0E0CyBtGyD0CtBzyzy0B0BtAyB0DyBtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtByC0CzyyCzyyCtG0E0C0FzztGyD0ByBtBtGtAtDzyyBtGyBtA0F0BzztB0FyEyCyCtB0F2Q&cr=2072871278&ir=mSearch Page = hxxp://www.oquefazernainternet.com/mDefault_Search_URL = hxxp://www.oquefazernainternet.com/uProxyServer = 189.17.66.82:8080uSearchURL,(Default) = hxxp://www.oquefazernainternet.com/q/%smSearchAssistant = hxxp://www.oquefazernainternet.com/mCustomizeSearch = hxxp://www.oquefazernainternet.com/BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dlluRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [Megacubo] "C:\Program Files (x86)\Megacubo\megacubo.exe" -load:update -type:startupmRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /noguimRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -rmRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-startStartupFolder: C:\Users\Rafael\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Rafael\AppData\Roaming\Dropbox\bin\Dropbox.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabDPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cabDPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cabTCP: NameServer = 201.17.0.92 201.17.0.64TCP: Interfaces\{032D2677-97F7-4308-A326-29C6BA4B6AAB} : DHCPNameServer = 192.168.0.1TCP: Interfaces\{086CE91D-BDF1-45A8-BC36-667CF7BF4D32} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{1FD407CA-0265-4A20-B6B7-E1924EE29100} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF}\7496C646568747562772370245F6775627 : DHCPNameServer = 201.17.0.74 192.168.0.1TCP: Interfaces\{482C6070-1749-403C-BFCB-28D305DB729E} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{62972DB6-55DE-4248-BB08-609B190F8ED1} : DHCPNameServer = 201.17.0.92 201.17.0.64TCP: Interfaces\{87914073-F26F-4C0B-A15C-25D9BD1CD02C} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{8E55C799-27E0-42B9-8302-013D3B1E8CD7} : DHCPNameServer = 200.222.0.34 200.202.193.75TCP: Interfaces\{99314432-5E3B-4784-805D-632416508CE3} : DHCPNameServer = 201.17.0.92 201.17.0.64Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dllHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllSEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dllSEH: {E37CB5F0-51F5-4395-A808-5FA49E399007} - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-mStart Page = hxxp://speedial.com/?f=1&a=spd_dnldstr_14_22_ff&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0ByByB0EtBtB0D0F0EtBzytN0D0Tzu0SzzzztAtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StCtDtA0ByC0C0CyDtGtCyC0D0EtGzzzy0D0DtGzy0E0CyBtGyD0CtBzyzy0B0BtAyB0DyBtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtByC0CzyyCzyyCtG0E0C0FzztGyD0ByBtBtGtAtDzyyBtGyBtA0F0BzztB0FyEyCyCtB0F2Q&cr=2072871278&ir=x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStartx64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -sx64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-DPF: {AA570693-00E2-4907-B6F1-60A1199B030C} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cabx64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\FF - prefs.js: network.proxy.ftp - 194.11.24.156FF - prefs.js: network.proxy.ftp_port - 3128FF - prefs.js: network.proxy.http - 194.11.24.156FF - prefs.js: network.proxy.http_port - 3128FF - prefs.js: network.proxy.socks - 194.11.24.156FF - prefs.js: network.proxy.socks_port - 3128FF - prefs.js: network.proxy.ssl - 194.11.24.156FF - prefs.js: network.proxy.ssl_port - 3128FF - prefs.js: network.proxy.type - 0FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dllFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dllFF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dllFF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dllFF - plugin: C:\Users\Rafael\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dllFF - plugin: C:\Users\Rafael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll.============= SERVICES / DRIVERS ===============.R0 32519481;32519481;C:\Windows\System32\drivers\32519481.sys [2012-9-3 460888]R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-9-10 984144]R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-9-10 370288]R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-8-14 254528]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-10-25 204288]R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984]R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424]R2 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-6 1500424]R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-2-28 90112]R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-9-10 25232]R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-9-10 71600]R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-20 44808]R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2008-11-26 323584]R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-5-13 2228048]R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-4-15 377616]R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-7-18 762192]R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-2 1618888]R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-2 21009352]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-6-2 413128]R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2011-5-30 46136]R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;C:\Windows\System32\drivers\netr7364.sys [2009-6-10 707072]R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-5-26 19744]R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-5-26 40392]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-11-20 677480]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2011-6-6 231440]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-9-5 99384]S3 e1yexpress;Driver do Intel® Gigabit Network Connections;C:\Windows\System32\drivers\e1y60x64.sys [2009-6-10 281088]S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-2-28 520416]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-9-5 203320]S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-2-28 1196032].=============== Created Last 30 ================.2014-06-02 12:32:37 -------- d-----w- C:\AdwCleaner2014-06-02 04:51:40 601432 ----a-w- C:\Windows\SysWow64\nvStreaming.exe2014-06-02 04:01:37 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Auslogics2014-06-02 03:39:57 -------- d-----w- C:\Users\Rafael\AppData\Local\IsolatedStorage2014-06-02 03:39:52 -------- d-----w- C:\Users\Rafael\AppData\Local\Futuremark_Corporation2014-06-02 03:38:42 -------- d-----w- C:\Program Files (x86)\Futuremark2014-06-02 03:38:15 -------- d-----w- C:\Program Files\Futuremark2014-06-02 03:36:57 -------- d-----w- C:\ProgramData\Baidu Security2014-06-02 03:36:28 -------- d-----w- C:\Program Files (x86)\Baidu Security2014-06-02 03:33:49 -------- d-----w- C:\Program Files (x86)\SiteLookup2014-05-29 01:56:11 -------- d-----w- C:\ProgramData\SystemRequirementsLab2014-05-29 01:56:11 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab2014-05-26 22:39:45 40392 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys2014-05-26 22:39:45 34760 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll2014-05-21 13:52:02 965232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll2014-05-21 13:52:02 1266800 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuin52.dll2014-05-21 13:52:02 10594416 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icudt52.dll2014-05-21 12:38:40 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi2014-05-20 15:35:12 -------- d-----w- C:\ProgramData\Oracle2014-05-20 15:25:50 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2014-05-08 13:48:42 227704 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll.==================== Find3M ====================.2014-05-21 03:13:26 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2014-05-21 03:13:26 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2014-05-20 01:25:42 6769096 ----a-w- C:\Windows\System32\nvcpl.dll2014-05-20 01:25:42 3514144 ----a-w- C:\Windows\System32\nvsvc64.dll2014-05-20 01:25:39 927520 ----a-w- C:\Windows\System32\nvvsvc.exe2014-05-20 01:25:38 62808 ----a-w- C:\Windows\System32\nvshext.dll2014-05-20 01:25:38 387528 ----a-w- C:\Windows\System32\nvmctray.dll2014-05-20 01:25:38 2560968 ----a-w- C:\Windows\System32\nvsvcr.dll2014-05-14 23:49:42 3774821 ----a-w- C:\Windows\System32\nvcoproc.bin2014-04-30 18:29:25 1081112 ----a-w- C:\Windows\SysWow64\nvspcap.dll2014-04-30 18:29:03 1225920 ----a-w- C:\Windows\System32\nvspcap64.dll2014-03-31 16:42:42 37320 ----a-w- C:\Windows\System32\nvaudcap64v.dll.============= FINISH: 13:19:17,59 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1Install Date: 30/05/2011 14:45:36System Uptime: 02/06/2014 13:10:17 (0 hours ago).Motherboard: ASUSTeK Computer INC. | | M5A78L-M LX V2Processor: AMD Phenom II X4 965 Processor | AM3R2 | 3400/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 931 GiB total, 506,459 GiB free.D: is CDROM ()F: is CDROM ()I: is Removable.==== Disabled Device Manager Items =============.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: WAN Miniport (IKEv2)Device ID: ROOT\MS_AGILEVPNMINIPORT\0000Manufacturer: MicrosoftName: WAN Miniport (IKEv2)PNP Device ID: ROOT\MS_AGILEVPNMINIPORT\0000Service: RasAgileVpn.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (L2TP)Device ID: ROOT\MS_L2TPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta de rede remota (L2TP)PNP Device ID: ROOT\MS_L2TPMINIPORT\0000Service: Rasl2tp.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (Monitor de rede)Device ID: ROOT\MS_NDISWANBH\0000Manufacturer: MicrosoftName: Miniporta de rede remota (Monitor de rede)PNP Device ID: ROOT\MS_NDISWANBH\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (IP)Device ID: ROOT\MS_NDISWANIP\0000Manufacturer: MicrosoftName: Miniporta de rede remota (IP)PNP Device ID: ROOT\MS_NDISWANIP\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de Rede Remota (IPv6)Device ID: ROOT\MS_NDISWANIPV6\0000Manufacturer: MicrosoftName: Miniporta de Rede Remota (IPv6)PNP Device ID: ROOT\MS_NDISWANIPV6\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta WAN (PPPOE)Device ID: ROOT\MS_PPPOEMINIPORT\0000Manufacturer: MicrosoftName: Miniporta WAN (PPPOE)PNP Device ID: ROOT\MS_PPPOEMINIPORT\0000Service: RasPppoe.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (PPTP)Device ID: ROOT\MS_PPTPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta de rede remota (PPTP)PNP Device ID: ROOT\MS_PPTPMINIPORT\0000Service: PptpMiniport.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: Baidu NetDefenseDevice ID: ROOT\LEGACY_BNDEF\0000Manufacturer: Name: Baidu NetDefensePNP Device ID: ROOT\LEGACY_BNDEF\0000Service: Bndef.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta WAN (SSTP)Device ID: ROOT\MS_SSTPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta WAN (SSTP)PNP Device ID: ROOT\MS_SSTPMINIPORT\0000Service: RasSstp.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: Baidu ProtectDevice ID: ROOT\LEGACY_BPROTECT\0000Manufacturer: Name: Baidu ProtectPNP Device ID: ROOT\LEGACY_BPROTECT\0000Service: Bprotect.==== System Restore Points ===================.RP431: 02/06/2014 00:35:54 - Installed 3DMark 11RP432: 02/06/2014 00:50:56 - Removido Assassin's Creed RevelationsRP433: 02/06/2014 00:57:37 - Removed From DustRP434: 02/06/2014 00:59:38 - Removed TurboVRP435: 02/06/2014 01:19:29 - Installed Futuremark SystemInfo.==== Installed Programs ======================. Update for Microsoft Office 2007 (KB2508958)«Sleeping Dogs - Limited Edition»3DMark 11Adobe Flash Player 13 ActiveXAdobe Flash Player 13 PluginAdobe Reader XI (11.0.07) - PortuguêsAIDA64 Extreme Edition v2.20AMD APP SDK RuntimeAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD FuelAMD Media Foundation DecodersAMD VISION Engine Control CenterApple Application SupportApple Mobile Device SupportApple Software UpdateArcGIS Desktop 10ArcGIS License Manager 10Arquivo do WinRARAssassins Creed IV Black FlagAtheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet DriverµTorrentAtualizações da NVIDIA 12.4.67Auslogics Disk DefragAutoIt v3.3.10.2avast! Free AntivirusBattle.netBonjourCatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyccc-utility64CCC Help EnglishCCleanerCheat Engine 6.0Counter-Strike: SourceCounter-Strike: Source BetaD3DX10DAEMON Tools LiteDark Messiah Might and Magic Multi-PlayerDiablo IIIdoPDF 7.3 printerDota 2DropboxEPUFar Cry 3FM Genie Scout 13 version 1.0 13.3.3FMRTE 13.1.1.15FMRTE 13.3.3.62Football Manager 2013 versão 13.3.3Futuremark SystemInfoGoogle ChromeGoogle Update HelperHero Editor V0.96Hero Editor V0.96 (C:\Program Files (x86)\Hero Editor\)Hero Editor V1.04Hero Editor V1.04 (C:\Program Files (x86)\Hero Editor\)Hex Workshop v6.6HijackThis 1.99.1HxD Hex Editor version 1.7.7.0HydraVisioniTunesJava 7 Update 55Java Auto UpdaterJubler subtitle editorJuniper Networks, Inc. Setup ClientJuniper Networks, Inc. Setup Client 64-bit Activex ControlJuniper Networks, Inc. Setup Client Activex ControlJuniper Terminal Services ClientLogMeIn HamachiMódulo de Proteção Santander 3.2.0.2Macro Recorder 4.69.0Media Player Codec Pack 4.1.1Microsoft .NET Framework 4.5.1Microsoft .NET Framework 4.5.1 (Português do Brasil)Microsoft .NET Framework 4.5.1 (PTB)Microsoft Application Error ReportingMicrosoft AppLocaleMicrosoft Games for Windows - LIVE RedistributableMicrosoft Games for Windows MarketplaceMicrosoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (Portuguese (Brazil)) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (Portuguese (Brazil)) 2007Microsoft Office File Validation Add-InMicrosoft Office Groove MUI (Portuguese (Brazil)) 2007Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007Microsoft Office Office 64-bit Components 2007Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (Portuguese (Brazil)) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (Portuguese (Brazil)) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007Microsoft Office Shared MUI (Portuguese (Brazil)) 2007Microsoft Office Word MUI (Portuguese (Brazil)) 2007Microsoft Save as PDF Add-in for 2007 Microsoft Office programsMicrosoft SilverlightMicrosoft SQL Server 2008 Native ClientMicrosoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030Microsoft Windows Application Compatibility DatabaseMozilla Firefox 29.0.1 (x86 pt-BR)MSVCRTMSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)Nero Audio Pack 1Nero Blu-ray PlayerNero Blu-ray Player Help (CHM)Nero Core ComponentsNero Kwik Themes BasicNero MediaHomeNero MediaHome FreeNero MediaHome Help (CHM)Nero SharedVideoCodecsNero UpdateNirSoft VideoCacheViewNVIDIA 3D Vision Controller DriverNVIDIA Driver de controle do 3D Vision 337.88NVIDIA Driver de gráficos 337.88NVIDIA Driver de áudio HD 1.3.30.1NVIDIA Driver do 3D Vision 337.88NVIDIA GeForce Experience 2.0.1NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA Network ServiceNVIDIA PhysXNVIDIA ShadowPlay 12.4.67NVIDIA Software do sistema PhysX 9.13.1220NVIDIA Stereoscopic 3D DriverNVIDIA Update CoreNVIDIA Virtual Audio 1.2.23ODF Add-in for Microsoft OfficePainel de controle da NVIDIA 337.88PlatformPokerStarsPrerequisite installerProject64 1.6QuickTimeRealNetworks - Microsoft Visual C++ 2008 RuntimeRealPlayerRealtek Ethernet Controller DriverRealtek High Definition Audio DriverRealUpgrade 1.1SAMSUNG USB Driver for Mobile PhonesSecurity Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition SHIELD StreamingSkype Click to CallSkype™ 6.6SMPlayer 0.6.9SteamSystem Requirements Lab CYRITeam Fortress 2The Elder Scrolls V: SkyrimThe Sims™ 3The Sims™ 3 AmbitionsThe Sims™ 3 Fast Lane StuffThe Sims™ 3 GenerationsThe Sims™ 3 High-End Loft StuffThe Sims™ 3 Katy Perry's Sweet TreatsThe Sims™ 3 Late NightThe Sims™ 3 Master Suite StuffThe Sims™ 3 Outdoor Living StuffThe Sims™ 3 PetsThe Sims™ 3 ShowtimeThe Sims™ 3 Town Life StuffThe Sims™ 3 World AdventuresThe Witcher 2Ubisoft Game LauncherUnity Web PlayerUpdate for 2007 Microsoft Office System (KB967642)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767849) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767916) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 (KB2687404) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit EditionVIA Gerenciador de dispositivo de plataformaVisual Studio 2008 x64 RedistributablesVoiceOver KitWinAVI Video ConverterWindows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MessengerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWinSCP 4.3.6World of Warcraft.==== End Of File =========================== Boa tarde. Tomei a liberdade de excluir uma série de jogos que eu não jogava mais e mais alguns programas inúteis. O desempenho do computador já melhorou um pouquinho. O log do Gmer ficou muito grande e não consegui colar aqui, portanto, estou enviando por anexo. Segue o novo log: DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16533 BrowserJavaVersion: 10.55.2Run by Rafael at 13:18:28 on 2014-06-02Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.1939 [GMT -3:00].AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\AUDIODG.EXEC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\atieclxx.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\System32\spoolsv.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\system32\taskeng.exeC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Windows\DAODx.exeC:\Program Files (x86)\ASUS\EPU\EPU.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exeC:\Program Files (x86)\DAEMON Tools Lite\DTLite.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exeC:\Users\Rafael\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exeC:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\ARCGIS.exeC:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exeC:\ASUS.SYS\config\DVMExportService.exeC:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exeC:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\System32\svchost.exe -k secsvcsC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\system32\WUDFHost.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\sppsvc.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Nero\Update\NASvc.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\system32\wuauclt.exeC:\Windows\servicing\TrustedInstaller.exeC:\Windows\system32\taskhost.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.oquefazernainternet.com/uSearch Bar = hxxp://www.oquefazernainternet.com/uSearch Page = hxxp://www.oquefazernainternet.com/mStart Page = hxxp://speedial.com/?f=1&a=spd_dnldstr_14_22_ff&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0ByByB0EtBtB0D0F0EtBzytN0D0Tzu0SzzzztAtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StCtDtA0ByC0C0CyDtGtCyC0D0EtGzzzy0D0DtGzy0E0CyBtGyD0CtBzyzy0B0BtAyB0DyBtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtByC0CzyyCzyyCtG0E0C0FzztGyD0ByBtBtGtAtDzyyBtGyBtA0F0BzztB0FyEyCyCtB0F2Q&cr=2072871278&ir=mSearch Page = hxxp://www.oquefazernainternet.com/mDefault_Search_URL = hxxp://www.oquefazernainternet.com/uProxyServer = 189.17.66.82:8080uSearchURL,(Default) = hxxp://www.oquefazernainternet.com/q/%smSearchAssistant = hxxp://www.oquefazernainternet.com/mCustomizeSearch = hxxp://www.oquefazernainternet.com/BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dlluRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [Megacubo] "C:\Program Files (x86)\Megacubo\megacubo.exe" -load:update -type:startupmRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /noguimRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -rmRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-startStartupFolder: C:\Users\Rafael\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Rafael\AppData\Roaming\Dropbox\bin\Dropbox.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabDPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cabDPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cabTCP: NameServer = 201.17.0.92 201.17.0.64TCP: Interfaces\{032D2677-97F7-4308-A326-29C6BA4B6AAB} : DHCPNameServer = 192.168.0.1TCP: Interfaces\{086CE91D-BDF1-45A8-BC36-667CF7BF4D32} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{1FD407CA-0265-4A20-B6B7-E1924EE29100} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF}\7496C646568747562772370245F6775627 : DHCPNameServer = 201.17.0.74 192.168.0.1TCP: Interfaces\{482C6070-1749-403C-BFCB-28D305DB729E} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{62972DB6-55DE-4248-BB08-609B190F8ED1} : DHCPNameServer = 201.17.0.92 201.17.0.64TCP: Interfaces\{87914073-F26F-4C0B-A15C-25D9BD1CD02C} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{8E55C799-27E0-42B9-8302-013D3B1E8CD7} : DHCPNameServer = 200.222.0.34 200.202.193.75TCP: Interfaces\{99314432-5E3B-4784-805D-632416508CE3} : DHCPNameServer = 201.17.0.92 201.17.0.64Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dllHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllSEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dllSEH: {E37CB5F0-51F5-4395-A808-5FA49E399007} - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-mStart Page = hxxp://speedial.com/?f=1&a=spd_dnldstr_14_22_ff&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0ByByB0EtBtB0D0F0EtBzytN0D0Tzu0SzzzztAtN1L2XzutBtFtBtDtFtCzytFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StCtDtA0ByC0C0CyDtGtCyC0D0EtGzzzy0D0DtGzy0E0CyBtGyD0CtBzyzy0B0BtAyB0DyBtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtByC0CzyyCzyyCtG0E0C0FzztGyD0ByBtBtGtAtDzyyBtGyBtA0F0BzztB0FyEyCyCtB0F2Q&cr=2072871278&ir=x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStartx64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -sx64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-DPF: {AA570693-00E2-4907-B6F1-60A1199B030C} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cabx64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\FF - prefs.js: network.proxy.ftp - 194.11.24.156FF - prefs.js: network.proxy.ftp_port - 3128FF - prefs.js: network.proxy.http - 194.11.24.156FF - prefs.js: network.proxy.http_port - 3128FF - prefs.js: network.proxy.socks - 194.11.24.156FF - prefs.js: network.proxy.socks_port - 3128FF - prefs.js: network.proxy.ssl - 194.11.24.156FF - prefs.js: network.proxy.ssl_port - 3128FF - prefs.js: network.proxy.type - 0FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dllFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dllFF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dllFF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dllFF - plugin: C:\Users\Rafael\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dllFF - plugin: C:\Users\Rafael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll.============= SERVICES / DRIVERS ===============.R0 32519481;32519481;C:\Windows\System32\drivers\32519481.sys [2012-9-3 460888]R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-9-10 984144]R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-9-10 370288]R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-8-14 254528]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-10-25 204288]R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984]R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424]R2 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-6 1500424]R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-2-28 90112]R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-9-10 25232]R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-9-10 71600]R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-20 44808]R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2008-11-26 323584]R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-5-13 2228048]R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-4-15 377616]R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-7-18 762192]R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-2 1618888]R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-2 21009352]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-6-2 413128]R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2011-5-30 46136]R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;C:\Windows\System32\drivers\netr7364.sys [2009-6-10 707072]R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-5-26 19744]R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-5-26 40392]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-11-20 677480]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2011-6-6 231440]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-9-5 99384]S3 e1yexpress;Driver do Intel® Gigabit Network Connections;C:\Windows\System32\drivers\e1y60x64.sys [2009-6-10 281088]S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-2-28 520416]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-9-5 203320]S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-2-28 1196032].=============== Created Last 30 ================.2014-06-02 12:32:37 -------- d-----w- C:\AdwCleaner2014-06-02 04:51:40 601432 ----a-w- C:\Windows\SysWow64\nvStreaming.exe2014-06-02 04:01:37 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Auslogics2014-06-02 03:39:57 -------- d-----w- C:\Users\Rafael\AppData\Local\IsolatedStorage2014-06-02 03:39:52 -------- d-----w- C:\Users\Rafael\AppData\Local\Futuremark_Corporation2014-06-02 03:38:42 -------- d-----w- C:\Program Files (x86)\Futuremark2014-06-02 03:38:15 -------- d-----w- C:\Program Files\Futuremark2014-06-02 03:36:57 -------- d-----w- C:\ProgramData\Baidu Security2014-06-02 03:36:28 -------- d-----w- C:\Program Files (x86)\Baidu Security2014-06-02 03:33:49 -------- d-----w- C:\Program Files (x86)\SiteLookup2014-05-29 01:56:11 -------- d-----w- C:\ProgramData\SystemRequirementsLab2014-05-29 01:56:11 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab2014-05-26 22:39:45 40392 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys2014-05-26 22:39:45 34760 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll2014-05-21 13:52:02 965232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll2014-05-21 13:52:02 1266800 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuin52.dll2014-05-21 13:52:02 10594416 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icudt52.dll2014-05-21 12:38:40 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi2014-05-20 15:35:12 -------- d-----w- C:\ProgramData\Oracle2014-05-20 15:25:50 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2014-05-08 13:48:42 227704 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll.==================== Find3M ====================.2014-05-21 03:13:26 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2014-05-21 03:13:26 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2014-05-20 01:25:42 6769096 ----a-w- C:\Windows\System32\nvcpl.dll2014-05-20 01:25:42 3514144 ----a-w- C:\Windows\System32\nvsvc64.dll2014-05-20 01:25:39 927520 ----a-w- C:\Windows\System32\nvvsvc.exe2014-05-20 01:25:38 62808 ----a-w- C:\Windows\System32\nvshext.dll2014-05-20 01:25:38 387528 ----a-w- C:\Windows\System32\nvmctray.dll2014-05-20 01:25:38 2560968 ----a-w- C:\Windows\System32\nvsvcr.dll2014-05-14 23:49:42 3774821 ----a-w- C:\Windows\System32\nvcoproc.bin2014-04-30 18:29:25 1081112 ----a-w- C:\Windows\SysWow64\nvspcap.dll2014-04-30 18:29:03 1225920 ----a-w- C:\Windows\System32\nvspcap64.dll2014-03-31 16:42:42 37320 ----a-w- C:\Windows\System32\nvaudcap64v.dll.============= FINISH: 13:19:17,59 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1Install Date: 30/05/2011 14:45:36System Uptime: 02/06/2014 13:10:17 (0 hours ago).Motherboard: ASUSTeK Computer INC. | | M5A78L-M LX V2Processor: AMD Phenom II X4 965 Processor | AM3R2 | 3400/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 931 GiB total, 506,459 GiB free.D: is CDROM ()F: is CDROM ()I: is Removable.==== Disabled Device Manager Items =============.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: WAN Miniport (IKEv2)Device ID: ROOT\MS_AGILEVPNMINIPORT\0000Manufacturer: MicrosoftName: WAN Miniport (IKEv2)PNP Device ID: ROOT\MS_AGILEVPNMINIPORT\0000Service: RasAgileVpn.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (L2TP)Device ID: ROOT\MS_L2TPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta de rede remota (L2TP)PNP Device ID: ROOT\MS_L2TPMINIPORT\0000Service: Rasl2tp.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (Monitor de rede)Device ID: ROOT\MS_NDISWANBH\0000Manufacturer: MicrosoftName: Miniporta de rede remota (Monitor de rede)PNP Device ID: ROOT\MS_NDISWANBH\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (IP)Device ID: ROOT\MS_NDISWANIP\0000Manufacturer: MicrosoftName: Miniporta de rede remota (IP)PNP Device ID: ROOT\MS_NDISWANIP\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de Rede Remota (IPv6)Device ID: ROOT\MS_NDISWANIPV6\0000Manufacturer: MicrosoftName: Miniporta de Rede Remota (IPv6)PNP Device ID: ROOT\MS_NDISWANIPV6\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta WAN (PPPOE)Device ID: ROOT\MS_PPPOEMINIPORT\0000Manufacturer: MicrosoftName: Miniporta WAN (PPPOE)PNP Device ID: ROOT\MS_PPPOEMINIPORT\0000Service: RasPppoe.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (PPTP)Device ID: ROOT\MS_PPTPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta de rede remota (PPTP)PNP Device ID: ROOT\MS_PPTPMINIPORT\0000Service: PptpMiniport.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: Baidu NetDefenseDevice ID: ROOT\LEGACY_BNDEF\0000Manufacturer: Name: Baidu NetDefensePNP Device ID: ROOT\LEGACY_BNDEF\0000Service: Bndef.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta WAN (SSTP)Device ID: ROOT\MS_SSTPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta WAN (SSTP)PNP Device ID: ROOT\MS_SSTPMINIPORT\0000Service: RasSstp.Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}Description: Baidu ProtectDevice ID: ROOT\LEGACY_BPROTECT\0000Manufacturer: Name: Baidu ProtectPNP Device ID: ROOT\LEGACY_BPROTECT\0000Service: Bprotect.==== System Restore Points ===================.RP431: 02/06/2014 00:35:54 - Installed 3DMark 11RP432: 02/06/2014 00:50:56 - Removido Assassin's Creed RevelationsRP433: 02/06/2014 00:57:37 - Removed From DustRP434: 02/06/2014 00:59:38 - Removed TurboVRP435: 02/06/2014 01:19:29 - Installed Futuremark SystemInfo.==== Installed Programs ======================. Update for Microsoft Office 2007 (KB2508958)«Sleeping Dogs - Limited Edition»3DMark 11Adobe Flash Player 13 ActiveXAdobe Flash Player 13 PluginAdobe Reader XI (11.0.07) - PortuguêsAIDA64 Extreme Edition v2.20AMD APP SDK RuntimeAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD FuelAMD Media Foundation DecodersAMD VISION Engine Control CenterApple Application SupportApple Mobile Device SupportApple Software UpdateArcGIS Desktop 10ArcGIS License Manager 10Arquivo do WinRARAssassins Creed IV Black FlagAtheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet DriverµTorrentAtualizações da NVIDIA 12.4.67Auslogics Disk DefragAutoIt v3.3.10.2avast! Free AntivirusBattle.netBonjourCatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyccc-utility64CCC Help EnglishCCleanerCheat Engine 6.0Counter-Strike: SourceCounter-Strike: Source BetaD3DX10DAEMON Tools LiteDark Messiah Might and Magic Multi-PlayerDiablo IIIdoPDF 7.3 printerDota 2DropboxEPUFar Cry 3FM Genie Scout 13 version 1.0 13.3.3FMRTE 13.1.1.15FMRTE 13.3.3.62Football Manager 2013 versão 13.3.3Futuremark SystemInfoGoogle ChromeGoogle Update HelperHero Editor V0.96Hero Editor V0.96 (C:\Program Files (x86)\Hero Editor\)Hero Editor V1.04Hero Editor V1.04 (C:\Program Files (x86)\Hero Editor\)Hex Workshop v6.6HijackThis 1.99.1HxD Hex Editor version 1.7.7.0HydraVisioniTunesJava 7 Update 55Java Auto UpdaterJubler subtitle editorJuniper Networks, Inc. Setup ClientJuniper Networks, Inc. Setup Client 64-bit Activex ControlJuniper Networks, Inc. Setup Client Activex ControlJuniper Terminal Services ClientLogMeIn HamachiMódulo de Proteção Santander 3.2.0.2Macro Recorder 4.69.0Media Player Codec Pack 4.1.1Microsoft .NET Framework 4.5.1Microsoft .NET Framework 4.5.1 (Português do Brasil)Microsoft .NET Framework 4.5.1 (PTB)Microsoft Application Error ReportingMicrosoft AppLocaleMicrosoft Games for Windows - LIVE RedistributableMicrosoft Games for Windows MarketplaceMicrosoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (Portuguese (Brazil)) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (Portuguese (Brazil)) 2007Microsoft Office File Validation Add-InMicrosoft Office Groove MUI (Portuguese (Brazil)) 2007Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007Microsoft Office Office 64-bit Components 2007Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (Portuguese (Brazil)) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (Portuguese (Brazil)) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007Microsoft Office Shared MUI (Portuguese (Brazil)) 2007Microsoft Office Word MUI (Portuguese (Brazil)) 2007Microsoft Save as PDF Add-in for 2007 Microsoft Office programsMicrosoft SilverlightMicrosoft SQL Server 2008 Native ClientMicrosoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030Microsoft Windows Application Compatibility DatabaseMozilla Firefox 29.0.1 (x86 pt-BR)MSVCRTMSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)Nero Audio Pack 1Nero Blu-ray PlayerNero Blu-ray Player Help (CHM)Nero Core ComponentsNero Kwik Themes BasicNero MediaHomeNero MediaHome FreeNero MediaHome Help (CHM)Nero SharedVideoCodecsNero UpdateNirSoft VideoCacheViewNVIDIA 3D Vision Controller DriverNVIDIA Driver de controle do 3D Vision 337.88NVIDIA Driver de gráficos 337.88NVIDIA Driver de áudio HD 1.3.30.1NVIDIA Driver do 3D Vision 337.88NVIDIA GeForce Experience 2.0.1NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA Network ServiceNVIDIA PhysXNVIDIA ShadowPlay 12.4.67NVIDIA Software do sistema PhysX 9.13.1220NVIDIA Stereoscopic 3D DriverNVIDIA Update CoreNVIDIA Virtual Audio 1.2.23ODF Add-in for Microsoft OfficePainel de controle da NVIDIA 337.88PlatformPokerStarsPrerequisite installerProject64 1.6QuickTimeRealNetworks - Microsoft Visual C++ 2008 RuntimeRealPlayerRealtek Ethernet Controller DriverRealtek High Definition Audio DriverRealUpgrade 1.1SAMSUNG USB Driver for Mobile PhonesSecurity Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition SHIELD StreamingSkype Click to CallSkype™ 6.6SMPlayer 0.6.9SteamSystem Requirements Lab CYRITeam Fortress 2The Elder Scrolls V: SkyrimThe Sims™ 3The Sims™ 3 AmbitionsThe Sims™ 3 Fast Lane StuffThe Sims™ 3 GenerationsThe Sims™ 3 High-End Loft StuffThe Sims™ 3 Katy Perry's Sweet TreatsThe Sims™ 3 Late NightThe Sims™ 3 Master Suite StuffThe Sims™ 3 Outdoor Living StuffThe Sims™ 3 PetsThe Sims™ 3 ShowtimeThe Sims™ 3 Town Life StuffThe Sims™ 3 World AdventuresThe Witcher 2Ubisoft Game LauncherUnity Web PlayerUpdate for 2007 Microsoft Office System (KB967642)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767849) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767916) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 (KB2687404) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit EditionVIA Gerenciador de dispositivo de plataformaVisual Studio 2008 x64 RedistributablesVoiceOver KitWinAVI Video ConverterWindows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MessengerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWinSCP 4.3.6World of Warcraft.==== End Of File =========================== Gmer.txt
  3. Computador muito lento

    Boa noite, De um mês para cá meu computador passou a apresentar uma lentidão completamente fora do normal. Estou suspeitando de vírus. Peço, por favor, analisarem o log. Muito obrigado. OBS: O log do gmer ficou gigantesco e não consegui colar aqui, portanto, estou anexando o mesmo. DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16533 BrowserJavaVersion: 10.55.2Run by Rafael at 20:51:35 on 2014-05-28Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.2065 [GMT -3:00].AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}.============== Running Processes ===============.C:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\system32\atiesrxx.exeC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\system32\atieclxx.exeC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\Explorer.EXEC:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Windows\system32\Dwm.exeC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\system32\taskhost.exeC:\Windows\system32\taskeng.exeC:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeC:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files (x86)\ASUS\EPU\EPU.exeC:\Windows\DAODx.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files (x86)\DAEMON Tools Lite\DTLite.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exeC:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files (x86)\ArcGIS\License10.0\bin\ARCGIS.exeC:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exeC:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exeC:\ASUS.SYS\config\DVMExportService.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Users\Rafael\AppData\Roaming\Dropbox\bin\Dropbox.exeC:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exeC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeC:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\System32\svchost.exe -k secsvcsC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXEC:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exeC:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Windows\system32\SearchIndexer.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Nero\Update\NASvc.exeC:\Windows\system32\wuauclt.exeC:\Windows\system32\AUDIODG.EXEC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\Steam\Steam.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exeC:\Program Files (x86)\Steam\GameOverlayUI.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\system32\wbem\wmiprvse.exeC:\Windows\System32\cscript.exe.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.oquefazernainternet.com/uProxyServer = 189.17.66.82:8080uSearchURL,(Default) = hxxp://www.oquefazernainternet.com/q/%smSearchAssistant = hxxp://www.oquefazernainternet.com/mCustomizeSearch = hxxp://www.oquefazernainternet.com/BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllBHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllBHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dlluRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorunuRun: [Megacubo] "C:\Program Files (x86)\Megacubo\megacubo.exe" -load:update -type:startupmRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /noguimRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -rmRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-startStartupFolder: C:\Users\Rafael\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Rafael\AppData\Roaming\Dropbox\bin\Dropbox.exeStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Megacubo.lnk - C:\Program Files (x86)\Megacubo\megacubo.exeuPolicies-Explorer: NoDriveTypeAutoRun = dword:145mPolicies-System: ConsentPromptBehaviorAdmin = dword:0mPolicies-System: ConsentPromptBehaviorUser = dword:3mPolicies-System: EnableLUA = dword:0mPolicies-System: EnableUIADesktopToggle = dword:0mPolicies-System: PromptOnSecureDesktop = dword:0IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabDPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cabDPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cabTCP: NameServer = 201.17.0.92 201.17.0.64TCP: Interfaces\{032D2677-97F7-4308-A326-29C6BA4B6AAB} : DHCPNameServer = 192.168.0.1TCP: Interfaces\{086CE91D-BDF1-45A8-BC36-667CF7BF4D32} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{1FD407CA-0265-4A20-B6B7-E1924EE29100} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF}\7496C646568747562772370245F6775627 : DHCPNameServer = 201.17.0.74 192.168.0.1TCP: Interfaces\{482C6070-1749-403C-BFCB-28D305DB729E} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{62972DB6-55DE-4248-BB08-609B190F8ED1} : DHCPNameServer = 201.17.0.92 201.17.0.64TCP: Interfaces\{87914073-F26F-4C0B-A15C-25D9BD1CD02C} : DHCPNameServer = 192.168.1.1TCP: Interfaces\{8E55C799-27E0-42B9-8302-013D3B1E8CD7} : DHCPNameServer = 200.222.0.34 200.202.193.75TCP: Interfaces\{99314432-5E3B-4784-805D-632416508CE3} : DHCPNameServer = 201.17.0.92 201.17.0.64Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dllHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dllSEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dllSEH: {E37CB5F0-51F5-4395-A808-5FA49E399007} - <orphaned>mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chromex64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"x64-Run: [shadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStartx64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -sx64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-DPF: {AA570693-00E2-4907-B6F1-60A1199B030C} - hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cabx64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dllx64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>.================= FIREFOX ===================.FF - ProfilePath - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\FF - prefs.js: browser.startup.homepage - hxxp://www.globo.com/FF - prefs.js: network.proxy.ftp - 194.11.24.156FF - prefs.js: network.proxy.ftp_port - 3128FF - prefs.js: network.proxy.http - 194.11.24.156FF - prefs.js: network.proxy.http_port - 3128FF - prefs.js: network.proxy.socks - 194.11.24.156FF - prefs.js: network.proxy.socks_port - 3128FF - prefs.js: network.proxy.ssl - 194.11.24.156FF - prefs.js: network.proxy.ssl_port - 3128FF - prefs.js: network.proxy.type - 0FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dllFF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dllFF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dllFF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dllFF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dllFF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dllFF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dllFF - plugin: C:\Users\Rafael\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dllFF - plugin: C:\Users\Rafael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll.============= SERVICES / DRIVERS ===============.R0 32519481;32519481;C:\Windows\System32\drivers\32519481.sys [2012-9-3 460888]R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-9-10 984144]R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-9-10 370288]R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2011-8-14 254528]R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-10-25 204288]R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984]R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424]R2 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-6 1500424]R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-2-28 90112]R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-9-10 25232]R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-9-10 71600]R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-20 44808]R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2008-11-26 323584]R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-5-13 2228048]R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-4-15 377616]R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-7-18 762192]R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-2 1618888]R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-2 21009352]R3 amdiox64;AMD IO Driver;C:\Windows\System32\drivers\amdiox64.sys [2011-5-30 46136]R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;C:\Windows\System32\drivers\netr7364.sys [2009-6-10 707072]R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-5-26 19744]R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-5-26 40392]R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-11-20 677480]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2011-6-6 231440]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-9-5 99384]S3 e1yexpress;Driver do Intel® Gigabit Network Connections;C:\Windows\System32\drivers\e1y60x64.sys [2009-6-10 281088]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2013-9-5 203320]S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-2-28 1196032].=============== Created Last 30 ================.2014-05-26 22:39:45 40392 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys2014-05-26 22:39:45 34760 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll2014-05-26 06:02:51 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2F53E8F6-788D-4270-AF8B-5D1F598A63C3}\offreg.dll2014-05-21 13:52:02 965232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll2014-05-21 13:52:02 1266800 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuin52.dll2014-05-21 13:52:02 10594416 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icudt52.dll2014-05-21 12:38:40 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi2014-05-20 15:35:12 -------- d-----w- C:\ProgramData\Oracle2014-05-20 15:25:50 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll2014-05-08 13:48:42 227704 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll.==================== Find3M ====================.2014-05-21 03:13:26 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2014-05-21 03:13:26 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2014-04-30 18:29:25 1081112 ----a-w- C:\Windows\SysWow64\nvspcap.dll2014-04-30 18:29:03 1225920 ----a-w- C:\Windows\System32\nvspcap64.dll2014-03-31 16:42:42 37320 ----a-w- C:\Windows\System32\nvaudcap64v.dll.============= FINISH: 20:53:11,93 =============== .UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2012-11-20.01).Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1Install Date: 30/05/2011 14:45:36System Uptime: 28/05/2014 09:20:56 (11 hours ago).Motherboard: ASUSTeK Computer INC. | | M5A78L-M LX V2Processor: AMD Phenom II X4 965 Processor | AM3R2 | 3400/200mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 931 GiB total, 367,522 GiB free.D: is CDROM ()F: is CDROM ().==== Disabled Device Manager Items =============.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: WAN Miniport (IKEv2)Device ID: ROOT\MS_AGILEVPNMINIPORT\0000Manufacturer: MicrosoftName: WAN Miniport (IKEv2)PNP Device ID: ROOT\MS_AGILEVPNMINIPORT\0000Service: RasAgileVpn.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (L2TP)Device ID: ROOT\MS_L2TPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta de rede remota (L2TP)PNP Device ID: ROOT\MS_L2TPMINIPORT\0000Service: Rasl2tp.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (Monitor de rede)Device ID: ROOT\MS_NDISWANBH\0000Manufacturer: MicrosoftName: Miniporta de rede remota (Monitor de rede)PNP Device ID: ROOT\MS_NDISWANBH\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (IP)Device ID: ROOT\MS_NDISWANIP\0000Manufacturer: MicrosoftName: Miniporta de rede remota (IP)PNP Device ID: ROOT\MS_NDISWANIP\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de Rede Remota (IPv6)Device ID: ROOT\MS_NDISWANIPV6\0000Manufacturer: MicrosoftName: Miniporta de Rede Remota (IPv6)PNP Device ID: ROOT\MS_NDISWANIPV6\0000Service: NdisWan.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta WAN (PPPOE)Device ID: ROOT\MS_PPPOEMINIPORT\0000Manufacturer: MicrosoftName: Miniporta WAN (PPPOE)PNP Device ID: ROOT\MS_PPPOEMINIPORT\0000Service: RasPppoe.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta de rede remota (PPTP)Device ID: ROOT\MS_PPTPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta de rede remota (PPTP)PNP Device ID: ROOT\MS_PPTPMINIPORT\0000Service: PptpMiniport.Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}Description: Miniporta WAN (SSTP)Device ID: ROOT\MS_SSTPMINIPORT\0000Manufacturer: MicrosoftName: Miniporta WAN (SSTP)PNP Device ID: ROOT\MS_SSTPMINIPORT\0000Service: RasSstp.==== System Restore Points ===================.RP429: 24/05/2014 20:52:54 - Ponto de Verificação AgendadoRP430: 26/05/2014 19:41:08 - DirectX instalado.==== Installed Programs ======================. Update for Microsoft Office 2007 (KB2508958)«Sleeping Dogs - Limited Edition»Adobe Flash Player 13 ActiveXAdobe Flash Player 13 PluginAdobe Reader XI (11.0.07) - PortuguêsAge of Empires II HD © Microsoft Studios version 1AIDA64 Extreme Edition v2.20AMD APP SDK RuntimeAMD Catalyst Install ManagerAMD Drag and Drop TranscodingAMD FuelAMD Media Foundation DecodersAMD VISION Engine Control CenterApple Application SupportApple Mobile Device SupportApple Software UpdateArcGIS Desktop 10ArcGIS License Manager 10Arquivo do WinRARAssassin's Creed RevelationsAssassins Creed IV Black FlagAtheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet DriverµTorrentAtualizações da NVIDIA 12.4.67Auslogics Disk DefragAutoIt v3.3.10.2avast! Free AntivirusAVG PC Tuneup 2011Battle.netBonjourCatalyst Control Center - BrandingCatalyst Control Center Graphics Previews CommonCatalyst Control Center InstallProxyccc-utility64CCC Help EnglishCCleanerCheat Engine 6.0Counter-Strike: SourceCounter-Strike: Source BetaD3DX10DAEMON Tools LiteDark Messiah Might and Magic Multi-PlayerDiablo IIDiablo IIIdoPDF 7.3 printerDota 2Driver San FranciscoDropboxEPUExpress GateFar Cry 3FM Genie Scout 13 version 1.0 13.3.3FMRTE 13.1.1.15FMRTE 13.3.3.62Football Manager 2013 versão 13.3.3From DustGoogle ChromeGoogle Update HelperHero Editor V0.96Hero Editor V0.96 (C:\Program Files (x86)\Hero Editor\)Hero Editor V1.04Hero Editor V1.04 (C:\Program Files (x86)\Hero Editor\)Hex Workshop v6.6HijackThis 1.99.1Hitman AbsolutionHxD Hex Editor version 1.7.7.0HydraVisioniTunesJava 7 Update 55Java Auto UpdaterJubler subtitle editorJuniper Networks, Inc. Setup ClientJuniper Networks, Inc. Setup Client 64-bit Activex ControlJuniper Networks, Inc. Setup Client Activex ControlJuniper Terminal Services ClientLogMeIn HamachiLondon 2012: The Official Video Game of the Olympic GamesMódulo de Proteção Santander 3.2.0.2Macro Recorder 4.69.0Media Player Codec Pack 4.1.1Megacubo 10Microsoft .NET Framework 4.5.1Microsoft .NET Framework 4.5.1 (Português do Brasil)Microsoft .NET Framework 4.5.1 (PTB)Microsoft Application Error ReportingMicrosoft AppLocaleMicrosoft Games for Windows - LIVE RedistributableMicrosoft Games for Windows MarketplaceMicrosoft Office 2007 Service Pack 3 (SP3)Microsoft Office Access MUI (Portuguese (Brazil)) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (Portuguese (Brazil)) 2007Microsoft Office File Validation Add-InMicrosoft Office Groove MUI (Portuguese (Brazil)) 2007Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007Microsoft Office Office 64-bit Components 2007Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007Microsoft Office Proof (English) 2007Microsoft Office Proof (Portuguese (Brazil)) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (Portuguese (Brazil)) 2007Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007Microsoft Office Shared MUI (Portuguese (Brazil)) 2007Microsoft Office Word MUI (Portuguese (Brazil)) 2007Microsoft Save as PDF Add-in for 2007 Microsoft Office programsMicrosoft SilverlightMicrosoft SQL Server 2008 Native ClientMicrosoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2005 Redistributable (x64)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030Microsoft Windows Application Compatibility DatabaseMozilla Firefox 29.0.1 (x86 pt-BR)MSVCRTMSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)Nero Audio Pack 1Nero Blu-ray PlayerNero Blu-ray Player Help (CHM)Nero Core ComponentsNero Kwik Themes BasicNero MediaHomeNero MediaHome FreeNero MediaHome Help (CHM)Nero SharedVideoCodecsNero UpdateNirSoft VideoCacheViewNVIDIA 3D Vision Controller DriverNVIDIA Driver de controle do 3D Vision 331.82NVIDIA Driver de gráficos 331.82NVIDIA Driver do 3D Vision 331.82NVIDIA GeForce Experience 2.0.1NVIDIA Install ApplicationNVIDIA LED Visualizer 1.0NVIDIA Network ServiceNVIDIA PhysXNVIDIA ShadowPlay 12.4.67NVIDIA Software do sistema PhysX 9.13.0725NVIDIA Update CoreNVIDIA Virtual Audio 1.2.23ODF Add-in for Microsoft OfficePainel de controle da NVIDIA 331.82PlatformPokerStarsPrerequisite installerProject64 1.6QuickTimeRealNetworks - Microsoft Visual C++ 2008 RuntimeRealPlayerRealtek Ethernet Controller DriverRealtek High Definition Audio DriverRealUpgrade 1.1SAMSUNG USB Driver for Mobile PhonesSecurity Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597969) 32-Bit EditionSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office Outlook 2007 (KB2825644) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit EditionSecurity Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit EditionSecurity Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition SHIELD StreamingSkype Click to CallSkype™ 6.6SMPlayer 0.6.9SteamTeam Fortress 2The Elder Scrolls V: SkyrimThe Sims™ 3The Sims™ 3 AmbitionsThe Sims™ 3 Fast Lane StuffThe Sims™ 3 GenerationsThe Sims™ 3 High-End Loft StuffThe Sims™ 3 Katy Perry's Sweet TreatsThe Sims™ 3 Late NightThe Sims™ 3 Master Suite StuffThe Sims™ 3 Outdoor Living StuffThe Sims™ 3 PetsThe Sims™ 3 ShowtimeThe Sims™ 3 Town Life StuffThe Sims™ 3 World AdventuresThe Witcher 2TurboVUbisoft Game LauncherUnity Web PlayerUpdate for 2007 Microsoft Office System (KB967642)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767849) 32-Bit EditionUpdate for Microsoft Office 2007 suites (KB2767916) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 (KB2687404) 32-Bit EditionUpdate for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit EditionVIA Gerenciador de dispositivo de plataformaVisual Studio 2008 x64 RedistributablesVoiceOver KitWinAVI Video ConverterWindows Live Communications PlatformWindows Live EssentialsWindows Live ID Sign-in AssistantWindows Live InstallerWindows Live Language SelectorWindows Live MessengerWindows Live Photo CommonWindows Live PIMT PlatformWindows Live SOXEWindows Live SOXE DefinitionsWindows Live UX PlatformWindows Live UX Platform Language PackWinSCP 4.3.6World of Warcraft.==== End Of File =========================== gmer.txt
  4. Navegadores redirecionando para páginas aleatórias

    Não foi encontrado nenhum item malicioso... Malwarebytes Anti-Malware 1.65.0.1400 www.malwarebytes.org Versão da Base de Dados: v2012.09.18.01 Windows 7 x64 NTFS Internet Explorer 8.0.7600.16385 Rafael :: RAFAEL-PC [administrador] 18/09/2012 08:26:12 mbam-log-2012-09-18 (08-26-12).txt Tipo de Verificação: Verificação Rápida Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM Opções de verificação desativadas: P2P Objetos escaneados: 212559 Tempo decorrido: 2 minuto(s), 21 segundo(s) Processos de Memória Detectados: 0 (Não foram detectados ítens maliciosos) Módulos de Memória Detectados: 0 (Não foram detectados ítens maliciosos) Chaves de Registro Detectadas: 0 (Não foram detectados ítens maliciosos) Valores de Registro Detectadas: 0 (Não foram detectados ítens maliciosos) Itens de Dados no Registro Detectadas: 0 (Não foram detectados ítens maliciosos) Pastas Detectadas: 0 (Não foram detectados ítens maliciosos) Arquivos Detectados: 0 (Não foram detectados ítens maliciosos) (fim)
  5. Navegadores redirecionando para páginas aleatórias

    Segue o log ComboFix 12-09-16.01 - Rafael 17/09/2012 8:12.1.4 - x64 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.2417 [GMT -3:00] Executando de: c:\users\Rafael\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Criado um novo ponto de restauração . ADS - drivers: deleted 100 bytes in 1 streams. . ((((((((((((((((((((((((((((((((((((( Outras Exclusões ))))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\100 c:\windows\SysWow64\FlashPlayerInstaller.exe c:\windows\SysWow64\tmp2463.tmp c:\windows\SysWow64\tmp2474.tmp c:\windows\SysWow64\tmpA84F.tmp . . (((((((((((((((( Arquivos/Ficheiros criados de 2012-08-17 to 2012-09-17 )))))))))))))))))))))))))))) . . 2012-09-13 11:09 . 2012-09-13 11:09 73696 ----a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll 2012-09-10 11:56 . 2012-08-21 09:13 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2012-09-10 11:56 . 2012-08-21 09:13 359464 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-09-10 11:56 . 2012-08-21 09:13 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys 2012-09-10 11:56 . 2012-08-21 09:13 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-09-10 11:56 . 2012-08-21 09:13 969200 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-09-10 11:56 . 2012-08-21 09:13 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2012-09-10 11:56 . 2012-08-21 09:12 285328 ----a-w- c:\windows\system32\aswBoot.exe 2012-09-10 11:55 . 2012-08-21 09:12 41224 ----a-w- c:\windows\avastSS.scr 2012-09-10 11:55 . 2012-08-21 09:12 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe 2012-09-10 11:55 . 2012-09-10 11:55 -------- d-----w- c:\programdata\AVAST Software 2012-09-10 11:55 . 2012-09-10 11:55 -------- d-----w- c:\program files\AVAST Software 2012-09-10 11:47 . 2012-08-28 04:49 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{671923F8-2ABE-400E-A3F4-5041E5A072BC}\mpengine.dll 2012-09-03 11:12 . 2012-08-30 18:01 460888 ----a-w- c:\windows\system32\drivers\32519481.sys 2012-08-31 14:00 . 2012-08-31 14:00 -------- d-----w- c:\users\Rafael\AppData\Local\Symantec 2012-08-31 02:57 . 2012-08-31 02:57 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi 2012-08-30 14:19 . 2012-08-30 14:19 -------- d-----w- c:\programdata\Kaspersky Lab 2012-08-28 11:40 . 2012-08-28 11:40 -------- d-----w- c:\users\Rafael\AppData\Roaming\Malwarebytes 2012-08-28 11:40 . 2012-08-28 11:40 -------- d-----w- c:\programdata\Malwarebytes 2012-08-28 11:40 . 2012-08-28 11:40 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2012-08-28 11:40 . 2012-07-03 16:46 24904 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-08-22 23:45 . 2012-08-25 21:05 -------- d-----w- c:\users\Rafael\AppData\Local\PokerStars 2012-08-22 23:44 . 2012-08-22 23:45 -------- d-----w- c:\program files (x86)\PokerStars 2012-08-22 23:13 . 2012-08-22 23:13 -------- d-----w- c:\programdata\MGS 2012-08-22 23:13 . 2012-08-22 23:13 -------- d-----w- C:\Microgaming 2012-08-19 21:22 . 2012-08-19 21:22 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll 2012-08-19 21:22 . 2012-08-19 21:22 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll 2012-08-18 16:46 . 2012-08-18 16:46 -------- d-----w- c:\users\Rafael\AppData\Roaming\Softland 2012-08-18 16:46 . 2012-05-17 11:45 24968 ----a-w- c:\windows\system32\dopdfmn7.dll 2012-08-18 16:46 . 2012-05-17 11:45 21384 ----a-w- c:\windows\system32\dopdfmi7.dll 2012-08-18 16:46 . 2010-02-05 18:00 1700352 ----a-w- c:\windows\system32\GdiPlus.dll 2012-08-18 16:46 . 2012-08-18 16:46 -------- d-----w- c:\program files\Softland . . . ((((((((((((((((((((((((((((((((((((( Relatório Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-08-15 14:20 . 2012-07-09 22:26 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-08-15 14:20 . 2011-05-31 15:28 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-24 10:39 . 2012-07-24 10:39 51496 ----a-w- c:\windows\system32\drivers\stflt.sys 2012-07-12 03:13 . 2012-07-12 03:13 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll . . (((((((((((((((((((((((((( Pontos de Carregamento do Registro ))))))))))))))))))))))))))))))))))))))) . . *Nota* entradas vazias e legítimas por padrão não são apresentadas. REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2011-06-01 273544] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-26 343168] "HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2009-05-18 2157056] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-01 136176] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-05-03 158856] R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056] R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;c:\program files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-01-25 28320] R3 e1yexpress;Driver do Intel® Gigabit Network Connections;c:\windows\system32\DRIVERS\e1y60x64.sys [2009-06-10 281088] R3 gupdatem;Serviço do Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-01 136176] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904] R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-13 114144] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-05-10 51712] R4 ArcGIS License Manager;ArcGIS License Manager;c:\program files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-06 1500424] R4 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944] S0 32519481;32519481;c:\windows\system32\DRIVERS\32519481.sys [2012-08-30 460888] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-14 254528] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-10-26 204288] S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984] S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2011-06-24 55424] S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-04-02 90112] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-08-21 71600] S2 DvmMDES;DeviceVM Meta Data Export Service;c:\asus.sys\config\DVMExportService.exe [2008-11-26 323584] S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960] S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000] S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136] S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-10-26 10496512] S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-10-26 326656] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440] S3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;c:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072] S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2009-05-08 1196032] . . --- =Outros Serviços/Drivers Na Memória --- . *NewlyCreated* - WS2IFSL . Conteúdo da pasta 'Tarefas Agendadas' . 2012-09-17 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-09 13:20] . 2012-09-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-01 01:15] . 2012-09-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-01 01:15] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-08-21 09:11 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Scan Suplementar ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = astroburn-search.com mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local;<local> uInternet Settings,ProxyServer = 201.38.194.51:3128 IE: E&xportar para o Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.globo.com/ FF - prefs.js: network.proxy.ftp - 194.11.24.156 FF - prefs.js: network.proxy.ftp_port - 3128 FF - prefs.js: network.proxy.http - 194.11.24.156 FF - prefs.js: network.proxy.http_port - 3128 FF - prefs.js: network.proxy.socks - 194.11.24.156 FF - prefs.js: network.proxy.socks_port - 3128 FF - prefs.js: network.proxy.ssl - 194.11.24.156 FF - prefs.js: network.proxy.ssl_port - 3128 FF - prefs.js: network.proxy.type - 0 . - - - - ORFÃOS REMOVIDOS - - - - . Toolbar-{EFEED92A-A33D-4873-BA8F-32BAA631E54D} - (no file) AddRemove-BFlix - c:\program files (x86)\BFlix\uninstall.exe AddRemove-{08A25478-C5DD-4EA7-B168-3D687CA987FF} - c:\program files (x86)\InstallShield Installation Information\{08A25478-C5DD-4EA7-B168-3D687CA987FF}\Sims3SP05Setup.exe AddRemove-{117B6BF6-82C3-420C-B284-9247C8568E53} - c:\program files (x86)\InstallShield Installation Information\{117B6BF6-82C3-420C-B284-9247C8568E53}\setup.exe AddRemove-{3BBFD444-5FAB-49F6-98B1-A1954E831399} - c:\program files (x86)\InstallShield Installation Information\{3BBFD444-5FAB-49F6-98B1-A1954E831399}\Sims3EP06Setup.exe AddRemove-{45057FCE-5784-48BE-8176-D9D00AF56C3C} - c:\program files (x86)\InstallShield Installation Information\{45057FCE-5784-48BE-8176-D9D00AF56C3C}\setup.exe AddRemove-{71828142-5A24-4BD0-97E7-976DA08CE6CF} - c:\program files (x86)\InstallShield Installation Information\{71828142-5A24-4BD0-97E7-976DA08CE6CF}\setup.exe AddRemove-{7B11296A-F894-449C-8DF6-6AAAA7D4D118} - c:\program files (x86)\InstallShield Installation Information\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}\Sims3SP04Setup.exe AddRemove-{910F4A29-1134-49E0-AD8B-56E4A3152BD1} - c:\program files (x86)\InstallShield Installation Information\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}\setup.exe AddRemove-{9B2506E3-9A3F-45B5-96BF-509CAD584650} - c:\program files (x86)\InstallShield Installation Information\{9B2506E3-9A3F-45B5-96BF-509CAD584650}\Sims3SP06Setup.exe AddRemove-{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC} - c:\program files (x86)\InstallShield Installation Information\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}\setup.exe AddRemove-{C05D8CDB-417D-4335-A38C-A0659EDFD6B8} - c:\program files (x86)\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\setup.exe AddRemove-{C12631C6-804D-4B32-B0DD-8A496462F106} - c:\program files (x86)\InstallShield Installation Information\{C12631C6-804D-4B32-B0DD-8A496462F106}\Sims3EP05Setup.exe AddRemove-{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC} - c:\program files (x86)\InstallShield Installation Information\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\Sims3EP04Setup.exe AddRemove-{ED436EA8-4145-4703-AE5D-4D09DD24AF5A} - c:\program files (x86)\InstallShield Installation Information\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}\setup.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\AIDA64Driver] "ImagePath"="\??\c:\program files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64" . --------------------- CHAVES DO REGISTRO BLOQUEADAS --------------------- . [HKEY_USERS\S-1-5-21-312237133-1882105352-1869453569-1000\Software\G*e*n*i*e*"!\FM Genie Scout 11] "GameDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2011\\games" "ShortlistDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2011\\shortlists" "FMPath"="" "ScreenshotsDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2011" "SaveDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2011\\" "HistoryDir"="c:\\Jogos\\Football Manager\\Utilitarios\\FM Genie Scout 11\\History Points" "LangDB"="c:\\Jogos\\Football Manager\\Utilitarios\\FM Genie Scout 11\\lang_db.dat" "LastSaveGame"="" "Language"="English" "LoadLangDB"=dword:00000001 "CompressHistoryPoints"=dword:00000000 "HighlightedAttributes"=dword:00000000 "MinCondition"=dword:0000005a "GraphStep"=dword:00000003 "SkinName"="PSV Eindhoven" "LastUpdateCheck"=dword:0000a007 "VersionOf"=dword:0000007b "HighQualityGUI"=dword:00000001 "AutomaticallyUpdateCheck"=dword:00000001 "AdvancedGeneration"=dword:00000000 "TranslateStaffSkills"=dword:00000001 "TranslatePlayerSkills"=dword:00000001 "TranslatePositions"=dword:00000001 "ShowHistory"=dword:00000001 "Version"=dword:00000081 "UniqueID"="04-F155-2163" "Currency"=dword:00000056 "UseProxy"=dword:00000000 "ProxyHost"="" "ProxyPort"="" "UseAuthentication"=dword:00000000 "UserName"="" "UserPassword"="" "PlayerSearchFeatureNum"=dword:00000037 "StaffSearchFeatureNum"=dword:00000003 "ClubSearchFeatureNum"=dword:00000037 "FilterByClubFeatureNum"=dword:00000000 "CompareFeatureNum"=dword:00000000 "ShortlistFeatureNum"=dword:00000000 "ExportFeatureNum"=dword:00000000 "HistoryFeatureNum"=dword:00000000 "LanguageDBFeatureNum"=dword:00000042 "HintsFeatureNum"=dword:00000002 "GenieReportFeatureNum"=dword:00000003 "TopFormationFeatureNum"=dword:00000031 "ScreenshotFeatureNum"=dword:00000000 . [HKEY_USERS\S-1-5-21-312237133-1882105352-1869453569-1000\Software\G*e*n*i*e*"!\FM Genie Scout 12] "GameDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2012\\games" "ShortlistDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2012\\shortlists" "FMPath"="" "ScreenshotsDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2012" "SaveDir"="c:\\Users\\Rafael\\Documents\\Sports Interactive\\Football Manager 2012\\" "HistoryDir"="c:\\Jogos\\Football Manager 2012\\FM Genie Scout 12\\History Points" "LangDB"="c:\\Jogos\\Football Manager 2012\\FM Genie Scout 12\\lang_db.dat" "LastSaveGame"="" "Language"="English" "LoadLangDB"=dword:00000001 "CompressHistoryPoints"=dword:00000000 "HighlightedAttributes"=dword:00000000 "MinCondition"=dword:00000055 "GraphStep"=dword:00000000 "SkinName"="Steklo Black" "LastUpdateCheck"=dword:0000a028 "VersionOf201"=dword:0000007b "HighQualityGUI"=dword:00000001 "AutomaticallyUpdateCheck"=dword:00000001 "AdvancedGeneration"=dword:00000000 "TranslateStaffSkills"=dword:00000001 "TranslatePlayerSkills"=dword:00000001 "TranslatePositions"=dword:00000001 "ShowHistory"=dword:00000001 "ShowGuidNotification"=dword:00000000 "ShowDonateNotification"=dword:00000000 "Version"=dword:000000ce "UniqueID"="04-F155-2163" "Currency"=dword:00000056 "UseProxy"=dword:00000000 "ProxyHost"="" "ProxyPort"="" "UseAuthentication"=dword:00000000 "UserName"="" "UserPassword"="" "PlayerSearchFeatureNum"=dword:0000000e "StaffSearchFeatureNum"=dword:00000000 "ClubSearchFeatureNum"=dword:00000017 "FilterByClubFeatureNum"=dword:00000000 "CompareFeatureNum"=dword:00000000 "ShortlistFeatureNum"=dword:00000000 "ExportFeatureNum"=dword:00000000 "HistoryFeatureNum"=dword:00000000 "LanguageDBFeatureNum"=dword:00000017 "HintsFeatureNum"=dword:00000000 "GenieReportFeatureNum"=dword:00000000 "TopFormationFeatureNum"=dword:00000017 "ScreenshotFeatureNum"=dword:00000000 "AdClicksNum"=dword:00000002 "AdImpressionsNum"=dword:00000062 "GameLoadedCounter"=dword:00000035 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Outros Processos em Execução ------------------------ . c:\program files\AVAST Software\Avast\AvastSvc.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files (x86)\ASUS\EPU\EPU.exe c:\windows\DAODx.exe . ************************************************************************** . Tempo para conclusão: 2012-09-17 08:24:38 - Máquina reiniciou ComboFix-quarantined-files.txt 2012-09-17 11:24 . Pré-execução: 591.474.888.704 bytes disponíveis Pós execução: 591.607.463.936 bytes disponíveis . - - End Of File - - E399C338C40AB73FE4E69855B5A14AEF
  6. Navegadores redirecionando para páginas aleatórias

    Fala Renato, ainda estou no aguardo do seu retorno! Valeu!
  7. Navegadores redirecionando para páginas aleatórias

    Desinstalei os 3 anti-virus e instalei o avast. Segue novo log: . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 8.0.7600.16385 Run by Rafael at 10:07:09 on 2012-09-10 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.2464 [GMT -3:00] . AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Windows\system32\atieclxx.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\taskhost.exe C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\ASUS\EPU\EPU.exe C:\Windows\DAODx.exe C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\ASUS.SYS\config\DVMExportService.exe C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\WUDFHost.exe C:\Windows\System32\rundll32.exe C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\system32\sppsvc.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\taskhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = astroburn-search.com uInternet Settings,ProxyOverride = *.local;<local> uInternet Settings,ProxyServer = 201.38.194.51:3128 mWinlogon: Userinit=userinit.exe, BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll BHO: Auxiliar de Conexão do Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF}\7496C646568747562772370245F6775627 : DhcpNameServer = 201.17.0.74 192.168.0.1 TCP: Interfaces\{482C6070-1749-403C-BFCB-28D305DB729E} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{87914073-F26F-4C0B-A15C-25D9BD1CD02C} : DhcpNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll SEH: {E37CB5F0-51F5-4395-A808-5FA49E399007} - No File {18DF081C-E8AD-4283-A596-FA578C2EBDC3} {3049C3E9-B461-4BC5-8870-4C09146192CA} {72853161-30C5-4D22-B7F9-0BBC1D38A37E} {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} {9030D464-4C02-4ABF-8ECC-5164760863C6} {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot mRun-x64: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook SEH-X64: {E37CB5F0-51F5-4395-A808-5FA49E399007} - No File Hosts: 108.163.215.51 www.google-analytics.com. Hosts: 108.163.215.51 ad-emea.doubleclick.net. Hosts: 108.163.215.51 www.statcounter.com. . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.globo.com/ FF - prefs.js: network.proxy.ftp - 194.11.24.156 FF - prefs.js: network.proxy.ftp_port - 3128 FF - prefs.js: network.proxy.http - 194.11.24.156 FF - prefs.js: network.proxy.http_port - 3128 FF - prefs.js: network.proxy.socks - 194.11.24.156 FF - prefs.js: network.proxy.socks_port - 3128 FF - prefs.js: network.proxy.ssl - 194.11.24.156 FF - prefs.js: network.proxy.ssl_port - 3128 FF - prefs.js: network.proxy.type - 0 FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll FF - plugin: C:\Users\Rafael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll FF - plugin: C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8874}\plugins\npgbfnc_abn.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll . ============= SERVICES / DRIVERS =============== . R0 32519481;32519481;C:\Windows\system32\DRIVERS\32519481.sys --> C:\Windows\system32\DRIVERS\32519481.sys [?] R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?] R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984] R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424] R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-2-28 90112] R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?] R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?] R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-9-10 44808] R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2008-11-26 323584] R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-8-29 2369960] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-28 655944] R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-8-13 3064000] R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?] R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?] R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-31 136176] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-5-3 158856] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-9 250056] S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-2-27 28320] S3 e1yexpress;Driver do Intel® Gigabit Network Connections;C:\Windows\system32\DRIVERS\e1y60x64.sys --> C:\Windows\system32\DRIVERS\e1y60x64.sys [?] S3 gupdatem;Serviço do Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-31 136176] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-1 113120] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S4 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-6 1500424] . =============== Created Last 30 ================ . 2012-09-10 11:56:24 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys 2012-09-10 11:56:15 969200 ----a-w- C:\Windows\System32\drivers\aswSnx.sys 2012-09-10 11:56:07 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys 2012-09-10 11:55:46 41224 ----a-w- C:\Windows\avastSS.scr 2012-09-10 11:55:38 -------- d-----w- C:\ProgramData\AVAST Software 2012-09-10 11:55:38 -------- d-----w- C:\Program Files\AVAST Software 2012-09-10 11:47:22 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{671923F8-2ABE-400E-A3F4-5041E5A072BC}\mpengine.dll 2012-09-03 12:51:18 -------- d-----w- C:\Windows\pss 2012-09-03 11:12:19 460888 ----a-w- C:\Windows\System32\drivers\32519481.sys 2012-08-31 14:00:59 -------- d-----w- C:\Users\Rafael\AppData\Local\Symantec 2012-08-31 02:57:01 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi 2012-08-30 14:19:20 -------- d-----w- C:\ProgramData\Kaspersky Lab 2012-08-28 11:40:28 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Malwarebytes 2012-08-28 11:40:07 -------- d-----w- C:\ProgramData\Malwarebytes 2012-08-28 11:40:05 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-08-28 11:40:05 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2012-08-22 23:45:08 -------- d-----w- C:\Users\Rafael\AppData\Local\PokerStars 2012-08-22 23:44:30 -------- d-----w- C:\Program Files (x86)\PokerStars 2012-08-22 23:13:18 -------- d-----w- C:\ProgramData\MGS 2012-08-22 23:13:18 -------- d-----w- C:\Microgaming 2012-08-19 21:22:29 770384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll 2012-08-19 21:22:29 421200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll 2012-08-18 16:46:52 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Softland 2012-08-18 16:46:50 24968 ----a-w- C:\Windows\System32\dopdfmn7.dll 2012-08-18 16:46:50 21384 ----a-w- C:\Windows\System32\dopdfmi7.dll 2012-08-18 16:46:48 1700352 ----a-w- C:\Windows\System32\GdiPlus.dll 2012-08-18 16:46:46 -------- d-----w- C:\Program Files\Softland 2012-08-15 14:19:58 9826504 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe 2012-08-13 16:35:32 5115584 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll . ==================== Find3M ==================== . 2012-08-15 14:20:21 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-08-15 14:20:21 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-07-24 10:39:55 51496 ----a-w- C:\Windows\System32\drivers\stflt.sys . ============= FINISH: 10:08:09,17 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1 Install Date: 30/05/2011 14:45:36 System Uptime: 10/09/2012 10:02:21 (0 hours ago) . Motherboard: ASUSTeK Computer INC. | | M4A78T-E Processor: AMD Phenom II X4 965 Processor | AM3 | 3411/200mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 931 GiB total, 553,585 GiB free. D: is CDROM () F: is CDROM () G: is Removable . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (L2TP) Device ID: ROOT\MS_L2TPMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (L2TP) PNP Device ID: ROOT\MS_L2TPMINIPORT\0000 Service: Rasl2tp . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (Monitor de rede) Device ID: ROOT\MS_NDISWANBH\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (Monitor de rede) PNP Device ID: ROOT\MS_NDISWANBH\0000 Service: NdisWan . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (IP) Device ID: ROOT\MS_NDISWANIP\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (IP) PNP Device ID: ROOT\MS_NDISWANIP\0000 Service: NdisWan . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de Rede Remota (IPv6) Device ID: ROOT\MS_NDISWANIPV6\0000 Manufacturer: Microsoft Name: Miniporta de Rede Remota (IPv6) PNP Device ID: ROOT\MS_NDISWANIPV6\0000 Service: NdisWan . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta WAN (PPPOE) Device ID: ROOT\MS_PPPOEMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta WAN (PPPOE) PNP Device ID: ROOT\MS_PPPOEMINIPORT\0000 Service: RasPppoe . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (PPTP) Device ID: ROOT\MS_PPTPMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (PPTP) PNP Device ID: ROOT\MS_PPTPMINIPORT\0000 Service: PptpMiniport . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta WAN (SSTP) Device ID: ROOT\MS_SSTPMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta WAN (SSTP) PNP Device ID: ROOT\MS_SSTPMINIPORT\0000 Service: RasSstp . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: WAN Miniport (IKEv2) Device ID: ROOT\MS_AGILEVPNMINIPORT\0000 Manufacturer: Microsoft Name: WAN Miniport (IKEv2) PNP Device ID: ROOT\MS_AGILEVPNMINIPORT\0000 Service: RasAgileVpn . ==== System Restore Points =================== . RP323: 24/08/2012 12:49:30 - Windows Update RP324: 28/08/2012 08:05:05 - Windows Update RP325: 01/09/2012 12:24:15 - Windows Update RP326: 05/09/2012 19:35:24 - Windows Update RP327: 10/09/2012 08:42:26 - Windows Update RP328: 10/09/2012 08:48:01 - Removed AVG 2012 RP329: 10/09/2012 08:55:18 - Configuração do(a) avast! Free Antivirus RP330: 10/09/2012 09:01:02 - Removed AVG 2012 . ==== Installed Programs ====================== . Update for Microsoft Office 2007 (KB2508958) «Sleeping Dogs - Limited Edition» Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader 9 - Português AIDA64 Extreme Edition v2.20 AMD VISION Engine Control Center Apple Application Support Apple Software Update ArcGIS Desktop 10 ArcGIS License Manager 10 Arquivo do WinRAR Assassin's Creed Revelations Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver µTorrent Auslogics Disk Defrag avast! Free Antivirus AVG PC Tuneup 2011 BFlix Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy CCC Help English Cheat Engine 6.0 Counter-Strike: Source Counter-Strike: Source Beta D3DX10 DAEMON Tools Lite Dark Messiah Might and Magic Multi-Player Diablo II Diablo III Driver San Francisco EPU Express Gate F1 2011 FM Genie Scout 11 version 1.00 FM Genie Scout 12 version 1.1 Football Manager 2011 Football Manager 2012 From Dust Google Chrome Google Update Helper Hero Editor V0.96 Hero Editor V0.96 (C:\Program Files (x86)\Hero Editor\) Hero Editor V1.04 Hero Editor V1.04 (C:\Program Files (x86)\Hero Editor\) HxD Hex Editor version 1.7.7.0 HydraVision LogMeIn Hamachi London 2012: The Official Video Game of the Olympic Games Macro Recorder 4.69.0 Malwarebytes Anti-Malware versão 1.62.0.1300 Media Player Codec Pack 4.1.1 Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Access MUI (Portuguese (Brazil)) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Portuguese (Brazil)) 2007 Microsoft Office Groove MUI (Portuguese (Brazil)) 2007 Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007 Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007 Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007 Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (Portuguese (Brazil)) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Portuguese (Brazil)) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007 Microsoft Office Shared MUI (Portuguese (Brazil)) 2007 Microsoft Office Word MUI (Portuguese (Brazil)) 2007 Microsoft Save as PDF Add-in for 2007 Microsoft Office programs Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Mozilla Firefox 14.0.1 (x86 pt-BR) Mozilla Maintenance Service MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) ODF Add-in for Microsoft Office Platform PokerStars Project64 1.6 QuickTime RealNetworks - Microsoft Visual C++ 2008 Runtime RealPlayer Realtek High Definition Audio Driver RealUpgrade 1.1 Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Extended (KB2416472) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663) Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870) Skype Click to Call Skype™ 5.9 SMPlayer 0.6.9 Steam Team Fortress 2 The Sims 3 Complete Edition version 1.02 The Sims™ 3 The Sims™ 3 Ambitions The Sims™ 3 Fast Lane Stuff The Sims™ 3 Generations The Sims™ 3 High-End Loft Stuff The Sims™ 3 Katy Perry's Sweet Treats The Sims™ 3 Late Night The Sims™ 3 Master Suite Stuff The Sims™ 3 Outdoor Living Stuff The Sims™ 3 Pets The Sims™ 3 Showtime The Sims™ 3 Town Life Stuff The Sims™ 3 World Adventures The Witcher 2 TurboV Ubisoft Game Launcher Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Outlook 2007 Junk Email Filter (KB2596560) VIA Gerenciador de dispositivo de plataforma Visual Studio 2008 x64 Redistributables Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WinSCP 4.3.6 . ==== End Of File ===========================
  8. Navegadores redirecionando para páginas aleatórias

    Segue novo log . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 8.0.7600.16385 Run by Rafael at 7:07:01 on 2012-09-06 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.1922 [GMT -3:00] . AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} AV: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\taskhost.exe C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\DAODx.exe C:\Program Files (x86)\ASUS\EPU\EPU.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\ASUS.SYS\config\DVMExportService.exe C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files (x86)\AVG\AVG2012\avgtray.exe C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\System32\rundll32.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\WUDFHost.exe C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\system32\wuauclt.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe C:\Windows\splwow64.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = astroburn-search.com uInternet Settings,ProxyOverride = *.local;<local> uInternet Settings,ProxyServer = 201.38.194.51:3128 mWinlogon: Userinit=userinit.exe, BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSBHO.DLL BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: Auxiliar de Conexão do Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF}\7496C646568747562772370245F6775627 : DhcpNameServer = 201.17.0.74 192.168.0.1 TCP: Interfaces\{482C6070-1749-403C-BFCB-28D305DB729E} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{87914073-F26F-4C0B-A15C-25D9BD1CD02C} : DhcpNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll SEH: {E37CB5F0-51F5-4395-A808-5FA49E399007} - No File {18DF081C-E8AD-4283-A596-FA578C2EBDC3} {3049C3E9-B461-4BC5-8870-4C09146192CA} {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} {6D53EC84-6AAE-4787-AEEE-F4628F01010C} {72853161-30C5-4D22-B7F9-0BBC1D38A37E} {9030D464-4C02-4ABF-8ECC-5164760863C6} {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" mRun-x64: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook SEH-X64: {E37CB5F0-51F5-4395-A808-5FA49E399007} - No File Hosts: 108.163.215.51 www.google-analytics.com. Hosts: 108.163.215.51 ad-emea.doubleclick.net. Hosts: 108.163.215.51 www.statcounter.com. . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.globo.com/ FF - prefs.js: network.proxy.ftp - 194.11.24.156 FF - prefs.js: network.proxy.ftp_port - 3128 FF - prefs.js: network.proxy.http - 194.11.24.156 FF - prefs.js: network.proxy.http_port - 3128 FF - prefs.js: network.proxy.socks - 194.11.24.156 FF - prefs.js: network.proxy.socks_port - 3128 FF - prefs.js: network.proxy.ssl - 194.11.24.156 FF - prefs.js: network.proxy.ssl_port - 3128 FF - prefs.js: network.proxy.type - 0 FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll FF - plugin: C:\Users\Rafael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll FF - plugin: C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8874}\plugins\npgbfnc_abn.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll . ============= SERVICES / DRIVERS =============== . R0 32519481;32519481;C:\Windows\system32\DRIVERS\32519481.sys --> C:\Windows\system32\DRIVERS\32519481.sys [?] R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS --> C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS [?] R1 BHDrvx64;Symantec Heuristics Driver;C:\Windows\system32\Drivers\NISx64\1008030.006\BHDrvx64.sys --> C:\Windows\system32\Drivers\NISx64\1008030.006\BHDrvx64.sys [?] R1 ccHP;Symantec Hash Provider;C:\Windows\system32\Drivers\NISx64\1008030.006\ccHPx64.sys --> C:\Windows\system32\Drivers\NISx64\1008030.006\ccHPx64.sys [?] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?] R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20120906.002\IDSviA64.sys [2012-9-6 513184] R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984] R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424] R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-2-28 90112] R2 avgwd;Watchdog do AVG;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776] R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2008-11-26 323584] R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-8-29 2369960] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-28 655944] R2 Norton Internet Security;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe [2012-8-8 117648] R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-8-13 3064000] R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?] R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?] R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-7-31 138912] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?] R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?] R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?] R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272] R3 SYMNDISV;Symantec Network Filter Driver;C:\Windows\system32\Drivers\NISx64\1008030.006\SYMNDISV.SYS --> C:\Windows\system32\Drivers\NISx64\1008030.006\SYMNDISV.SYS [?] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?] S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-31 136176] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-5-3 158856] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-9 250056] S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-2-27 28320] S3 e1yexpress;Driver do Intel® Gigabit Network Connections;C:\Windows\system32\DRIVERS\e1y60x64.sys --> C:\Windows\system32\DRIVERS\e1y60x64.sys [?] S3 gupdatem;Serviço do Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-31 136176] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-1 113120] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S4 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-6 1500424] . =============== Created Last 30 ================ . 2012-09-06 10:07:04 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{292BB5FE-9341-4DE7-9F68-2665DE232C6A}\offreg.dll 2012-09-05 22:36:01 9310152 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{292BB5FE-9341-4DE7-9F68-2665DE232C6A}\mpengine.dll 2012-09-03 12:51:18 -------- d-----w- C:\Windows\pss 2012-09-03 11:12:19 460888 ----a-w- C:\Windows\System32\drivers\32519481.sys 2012-08-31 14:00:59 -------- d-----w- C:\Users\Rafael\AppData\Local\Symantec 2012-08-31 02:57:01 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi 2012-08-30 14:19:20 -------- d-----w- C:\ProgramData\Kaspersky Lab 2012-08-28 11:40:28 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Malwarebytes 2012-08-28 11:40:07 -------- d-----w- C:\ProgramData\Malwarebytes 2012-08-28 11:40:05 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-08-28 11:40:05 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2012-08-22 23:45:08 -------- d-----w- C:\Users\Rafael\AppData\Local\PokerStars 2012-08-22 23:44:30 -------- d-----w- C:\Program Files (x86)\PokerStars 2012-08-22 23:13:18 -------- d-----w- C:\ProgramData\MGS 2012-08-22 23:13:18 -------- d-----w- C:\Microgaming 2012-08-19 21:22:29 770384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll 2012-08-19 21:22:29 421200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll 2012-08-18 16:46:52 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Softland 2012-08-18 16:46:50 24968 ----a-w- C:\Windows\System32\dopdfmn7.dll 2012-08-18 16:46:50 21384 ----a-w- C:\Windows\System32\dopdfmi7.dll 2012-08-18 16:46:48 1700352 ----a-w- C:\Windows\System32\GdiPlus.dll 2012-08-18 16:46:46 -------- d-----w- C:\Program Files\Softland 2012-08-15 14:19:58 9826504 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe 2012-08-13 16:35:32 5115584 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll 2012-08-08 14:19:26 56952 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symndisv.sys 2012-08-08 14:19:26 476720 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\srtsp64.sys 2012-08-08 14:19:26 44152 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symndis.sys 2012-08-08 14:19:26 43640 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symids.sys 2012-08-08 14:19:26 402992 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\SymEFA64.sys 2012-08-08 14:19:26 334384 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\BHDrvx64.sys 2012-08-08 14:19:26 32304 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\srtspx64.sys 2012-08-08 14:19:26 279160 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symtdi.sys 2012-08-08 14:19:26 120952 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symfw.sys 2012-08-08 14:18:56 561800 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\cchpx64.sys 2012-08-08 14:18:53 -------- d-----w- C:\Windows\System32\drivers\NISx64\1008030.006 . ==================== Find3M ==================== . 2012-08-15 14:20:21 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-08-15 14:20:21 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-08-06 14:15:48 172592 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS 2012-07-24 10:39:55 51496 ----a-w- C:\Windows\System32\drivers\stflt.sys . ============= FINISH: 7:08:15,91 ===============
  9. Boa noite a todos. Estou com um problema a mais de 1 mês. Já passei uma "penca" de anti-vírus mas nenhum conseguiu resolver minha questão. De um tempo para cá, começou a aparecer nos navegadores que utilizo (ie, mozila e google chrome) uma janela de propaganda no lado inferior esquerdo da tela e as vezes quando estou navegando sou redirecionado para páginas aleatórias de propaganda, pornografia ou de pesquisas. Peço, por favor, que vocês analizem os meus registros: . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 8.0.7600.16385 Run by Rafael at 20:46:41 on 2012-09-03 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.55.1046.18.4094.2571 [GMT -3:00] . AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} AV: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\AUDIODG.EXE C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe C:\Windows\system32\Dwm.exe C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe C:\Windows\Explorer.EXE C:\Program Files\Bonjour\mDNSResponder.exe C:\ASUS.SYS\config\DVMExportService.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Windows\DAODx.exe C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe C:\Program Files (x86)\ASUS\EPU\EPU.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Program Files (x86)\Skype\Updater\Updater.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\WUDFHost.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = astroburn-search.com uInternet Settings,ProxyOverride = *.local;<local> uInternet Settings,ProxyServer = 201.38.194.51:3128 mWinlogon: Userinit=userinit.exe, BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSBHO.DLL BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: Auxiliar de Conexão do Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.santandernet.com.br/mps/plugin/Cab/GbPluginABN.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{3E596DF9-F0F3-4610-AF6D-60207F2315DF}\7496C646568747562772370245F6775627 : DhcpNameServer = 201.17.0.74 192.168.0.1 TCP: Interfaces\{482C6070-1749-403C-BFCB-28D305DB729E} : DhcpNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll SEH: {E37CB5F0-51F5-4395-A808-5FA49E399007} - No File {18DF081C-E8AD-4283-A596-FA578C2EBDC3} {3049C3E9-B461-4BC5-8870-4C09146192CA} {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} {6D53EC84-6AAE-4787-AEEE-F4628F01010C} {72853161-30C5-4D22-B7F9-0BBC1D38A37E} {9030D464-4C02-4ABF-8ECC-5164760863C6} {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" mRun-x64: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook SEH-X64: {E37CB5F0-51F5-4395-A808-5FA49E399007} - No File Hosts: 108.163.215.51 www.google-analytics.com. Hosts: 108.163.215.51 ad-emea.doubleclick.net. Hosts: 108.163.215.51 www.statcounter.com. . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.globo.com/ FF - prefs.js: network.proxy.ftp - 194.11.24.156 FF - prefs.js: network.proxy.ftp_port - 3128 FF - prefs.js: network.proxy.http - 194.11.24.156 FF - prefs.js: network.proxy.http_port - 3128 FF - prefs.js: network.proxy.socks - 194.11.24.156 FF - prefs.js: network.proxy.socks_port - 3128 FF - prefs.js: network.proxy.ssl - 194.11.24.156 FF - prefs.js: network.proxy.ssl_port - 3128 FF - prefs.js: network.proxy.type - 0 FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll FF - plugin: C:\Users\Rafael\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll FF - plugin: C:\Users\Rafael\AppData\Roaming\Mozilla\Firefox\Profiles\806hkvr9.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8874}\plugins\npgbfnc_abn.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll . ============= SERVICES / DRIVERS =============== . R0 32519481;32519481;C:\Windows\system32\DRIVERS\32519481.sys --> C:\Windows\system32\DRIVERS\32519481.sys [?] R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS --> C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS [?] R1 BHDrvx64;Symantec Heuristics Driver;C:\Windows\system32\Drivers\NISx64\1008030.006\BHDrvx64.sys --> C:\Windows\system32\Drivers\NISx64\1008030.006\BHDrvx64.sys [?] R1 ccHP;Symantec Hash Provider;C:\Windows\system32\Drivers\NISx64\1008030.006\ccHPx64.sys --> C:\Windows\system32\Drivers\NISx64\1008030.006\ccHPx64.sys [?] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?] R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20120831.001\IDSviA64.sys [2012-9-1 512672] R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-10-25 361984] R2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424] R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-2-28 90112] R2 avgwd;Watchdog do AVG;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776] R2 DvmMDES;DeviceVM Meta Data Export Service;C:\ASUS.SYS\config\DVMExportService.exe [2008-11-26 323584] R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-8-29 2369960] R2 Norton Internet Security;Norton Internet Security;C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe [2012-8-8 117648] R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-8-13 3064000] R2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-5-3 158856] R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?] R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?] R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-7-31 138912] R3 netr7364;RT73 USB Wireless LAN Card Driver for Vista;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?] R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?] R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272] R3 SYMNDISV;Symantec Network Filter Driver;C:\Windows\system32\Drivers\NISx64\1008030.006\SYMNDISV.SYS --> C:\Windows\system32\Drivers\NISx64\1008030.006\SYMNDISV.SYS [?] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?] S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-31 136176] S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-28 655944] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-9 250056] S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-2-27 28320] S3 e1yexpress;Driver do Intel® Gigabit Network Connections;C:\Windows\system32\DRIVERS\e1y60x64.sys --> C:\Windows\system32\DRIVERS\e1y60x64.sys [?] S3 gupdatem;Serviço do Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-5-31 136176] S3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-1 113120] S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S4 ArcGIS License Manager;ArcGIS License Manager;C:\Program Files (x86)\ArcGIS\License10.0\bin\lmgrd.exe [2008-11-6 1500424] . =============== Created Last 30 ================ . 2012-09-03 22:43:45 9310152 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CB525A4C-5C49-4E78-9F09-5895B241EE4A}\mpengine.dll 2012-09-03 12:51:18 -------- d-----w- C:\Windows\pss 2012-09-03 11:12:19 460888 ----a-w- C:\Windows\System32\drivers\32519481.sys 2012-08-31 14:00:59 -------- d-----w- C:\Users\Rafael\AppData\Local\Symantec 2012-08-31 02:57:01 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi 2012-08-30 14:19:20 -------- d-----w- C:\ProgramData\Kaspersky Lab 2012-08-28 11:40:28 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Malwarebytes 2012-08-28 11:40:07 -------- d-----w- C:\ProgramData\Malwarebytes 2012-08-28 11:40:05 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-08-28 11:40:05 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2012-08-22 23:45:08 -------- d-----w- C:\Users\Rafael\AppData\Local\PokerStars 2012-08-22 23:44:30 -------- d-----w- C:\Program Files (x86)\PokerStars 2012-08-22 23:13:18 -------- d-----w- C:\ProgramData\MGS 2012-08-22 23:13:18 -------- d-----w- C:\Microgaming 2012-08-19 21:22:29 770384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll 2012-08-19 21:22:29 421200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll 2012-08-18 16:46:52 -------- d-----w- C:\Users\Rafael\AppData\Roaming\Softland 2012-08-18 16:46:50 24968 ----a-w- C:\Windows\System32\dopdfmn7.dll 2012-08-18 16:46:50 21384 ----a-w- C:\Windows\System32\dopdfmi7.dll 2012-08-18 16:46:48 1700352 ----a-w- C:\Windows\System32\GdiPlus.dll 2012-08-18 16:46:46 -------- d-----w- C:\Program Files\Softland 2012-08-15 14:19:58 9826504 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe 2012-08-13 16:35:32 5115584 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll 2012-08-08 14:19:26 56952 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symndisv.sys 2012-08-08 14:19:26 476720 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\srtsp64.sys 2012-08-08 14:19:26 44152 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symndis.sys 2012-08-08 14:19:26 43640 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symids.sys 2012-08-08 14:19:26 402992 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\SymEFA64.sys 2012-08-08 14:19:26 334384 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\BHDrvx64.sys 2012-08-08 14:19:26 32304 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\srtspx64.sys 2012-08-08 14:19:26 279160 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symtdi.sys 2012-08-08 14:19:26 120952 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\symfw.sys 2012-08-08 14:18:56 561800 ----a-w- C:\Windows\System32\drivers\NISx64\1008030.006\cchpx64.sys 2012-08-08 14:18:53 -------- d-----w- C:\Windows\System32\drivers\NISx64\1008030.006 2012-08-06 20:28:03 -------- d-----w- C:\ProgramData\Symantec 2012-08-06 15:59:39 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared 2012-08-06 14:15:51 31280 ----a-r- C:\Windows\System32\drivers\SymIMV.sys 2012-08-06 14:15:48 172592 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS 2012-08-06 14:15:48 -------- d-----w- C:\Program Files\Symantec 2012-08-06 14:15:48 -------- d-----w- C:\Program Files\Common Files\Symantec Shared . ==================== Find3M ==================== . 2012-08-15 14:20:21 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-08-15 14:20:21 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-07-24 10:39:55 51496 ----a-w- C:\Windows\System32\drivers\stflt.sys . ============= FINISH: 20:48:16,01 =============== . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume1 Install Date: 30/05/2011 14:45:36 System Uptime: 03/09/2012 20:44:35 (0 hours ago) . Motherboard: ASUSTeK Computer INC. | | M4A78T-E Processor: AMD Phenom II X4 965 Processor | AM3 | 3411/200mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 931 GiB total, 549,937 GiB free. D: is CDROM () F: is CDROM () G: is Removable . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: WAN Miniport (IKEv2) Device ID: ROOT\MS_AGILEVPNMINIPORT\0000 Manufacturer: Microsoft Name: WAN Miniport (IKEv2) PNP Device ID: ROOT\MS_AGILEVPNMINIPORT\0000 Service: RasAgileVpn . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (L2TP) Device ID: ROOT\MS_L2TPMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (L2TP) PNP Device ID: ROOT\MS_L2TPMINIPORT\0000 Service: Rasl2tp . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (Monitor de rede) Device ID: ROOT\MS_NDISWANBH\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (Monitor de rede) PNP Device ID: ROOT\MS_NDISWANBH\0000 Service: NdisWan . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (IP) Device ID: ROOT\MS_NDISWANIP\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (IP) PNP Device ID: ROOT\MS_NDISWANIP\0000 Service: NdisWan . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de Rede Remota (IPv6) Device ID: ROOT\MS_NDISWANIPV6\0000 Manufacturer: Microsoft Name: Miniporta de Rede Remota (IPv6) PNP Device ID: ROOT\MS_NDISWANIPV6\0000 Service: NdisWan . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta WAN (PPPOE) Device ID: ROOT\MS_PPPOEMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta WAN (PPPOE) PNP Device ID: ROOT\MS_PPPOEMINIPORT\0000 Service: RasPppoe . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta de rede remota (PPTP) Device ID: ROOT\MS_PPTPMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta de rede remota (PPTP) PNP Device ID: ROOT\MS_PPTPMINIPORT\0000 Service: PptpMiniport . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Miniporta WAN (SSTP) Device ID: ROOT\MS_SSTPMINIPORT\0000 Manufacturer: Microsoft Name: Miniporta WAN (SSTP) PNP Device ID: ROOT\MS_SSTPMINIPORT\0000 Service: RasSstp . ==== System Restore Points =================== . RP321: 20/08/2012 07:01:20 - DirectX instalado RP322: 21/08/2012 12:46:08 - Windows Update RP323: 24/08/2012 12:49:30 - Windows Update RP324: 28/08/2012 08:05:05 - Windows Update RP325: 01/09/2012 12:24:15 - Windows Update . ==== Installed Programs ====================== . Update for Microsoft Office 2007 (KB2508958) «Sleeping Dogs - Limited Edition» Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader 9 - Português AIDA64 Extreme Edition v2.20 AMD VISION Engine Control Center Apple Application Support Apple Software Update ArcGIS Desktop 10 ArcGIS License Manager 10 Arquivo do WinRAR Assassin's Creed Revelations Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver µTorrent Auslogics Disk Defrag AVG PC Tuneup 2011 BFlix Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy CCC Help English Cheat Engine 6.0 Counter-Strike: Source Counter-Strike: Source Beta D3DX10 DAEMON Tools Lite Dark Messiah Might and Magic Multi-Player Diablo II Diablo III Driver San Francisco EPU Express Gate F1 2011 FM Genie Scout 11 version 1.00 FM Genie Scout 12 version 1.1 Football Manager 2011 Football Manager 2012 From Dust Google Chrome Google Update Helper Hero Editor V0.96 Hero Editor V0.96 (C:\Program Files (x86)\Hero Editor\) Hero Editor V1.04 Hero Editor V1.04 (C:\Program Files (x86)\Hero Editor\) HxD Hex Editor version 1.7.7.0 HydraVision LogMeIn Hamachi London 2012: The Official Video Game of the Olympic Games Macro Recorder 4.69.0 Malwarebytes Anti-Malware versão 1.62.0.1300 Media Player Codec Pack 4.1.1 Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Access MUI (Portuguese (Brazil)) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Portuguese (Brazil)) 2007 Microsoft Office Groove MUI (Portuguese (Brazil)) 2007 Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007 Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007 Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007 Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (Portuguese (Brazil)) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Portuguese (Brazil)) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007 Microsoft Office Shared MUI (Portuguese (Brazil)) 2007 Microsoft Office Word MUI (Portuguese (Brazil)) 2007 Microsoft Save as PDF Add-in for 2007 Microsoft Office programs Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Mozilla Firefox 14.0.1 (x86 pt-BR) Mozilla Maintenance Service MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Norton Internet Security ODF Add-in for Microsoft Office Platform PokerStars Project64 1.6 QuickTime RealNetworks - Microsoft Visual C++ 2008 Runtime RealPlayer Realtek High Definition Audio Driver RealUpgrade 1.1 Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Extended (KB2416472) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663) Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870) Skype Click to Call Skype™ 5.9 SMPlayer 0.6.9 Steam Team Fortress 2 The Sims 3 Complete Edition version 1.02 The Sims™ 3 The Sims™ 3 Ambitions The Sims™ 3 Fast Lane Stuff The Sims™ 3 Generations The Sims™ 3 High-End Loft Stuff The Sims™ 3 Katy Perry's Sweet Treats The Sims™ 3 Late Night The Sims™ 3 Master Suite Stuff The Sims™ 3 Outdoor Living Stuff The Sims™ 3 Pets The Sims™ 3 Showtime The Sims™ 3 Town Life Stuff The Sims™ 3 World Adventures The Witcher 2 TurboV Ubisoft Game Launcher Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Outlook 2007 Junk Email Filter (KB2596560) VIA Gerenciador de dispositivo de plataforma Visual Studio 2008 x64 Redistributables Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Messenger Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WinSCP 4.3.6 . ==== End Of File =========================== O Gmer me retornou que não há nenhuma modificação no sistema. Grato desde já, Rafael

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×