Ir ao conteúdo
  • Cadastre-se
Eduardo Fagundes

RESOLVIDO Inicializaçao extremamente lenta

Recommended Posts

Seguem os meus LOGS:

 

DDS

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.16428  BrowserJavaVersion: 10.51.2
Run by Patty at 22:06:37 on 2014-04-03
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.55.1046.18.3002.988 [GMT -3:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Auxiliar de Conexão de Conta da Microsoft: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --blacklist-accelerated-compositing --blacklist-webgl --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --flag-switches-begin --flag-switches-end --disable-accelerated-2d-canvas --disable-accelerated-layers --restore-last-session
uRunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --blacklist-accelerated-compositing --blacklist-webgl --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --flag-switches-begin --flag-switches-end --disable-accelerated-2d-canvas --disable-accelerated-layers --restore-last-session
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe                                                                                                                                                                                                    
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &Enviar para o OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Baixar com Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm
IE: E&xportar para o Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{8B2E6DF3-1CC1-473D-A7B8-45B4260C26B3} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\44F65776C61637 : DHCPNameServer = 192.168.1.251 192.168.1.252
TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\564657162746F6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\8405D2052796E647D29354D2C416375627A456470213130323 : DHCPNameServer = 192.168.223.1
TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\B41494F4D495 : DHCPNameServer = 108.168.162.137 8.8.4.4
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify:  GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
.
Note: multiple IFEO entries found. Please refer to Attach.txt
Hosts: 127.0.0.1 validation.sls.microsoft.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Patty\AppData\Roaming\Mozilla\Firefox\Profiles\ad3nnp1f.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Patty\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Users\Patty\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll
FF - plugin: C:\Users\Patty\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll
FF - plugin: C:\Users\Patty\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.searchgol.tlbrSrchUrl - 
FF - user.js: extensions.searchgol.id - 36c047ae000000000000c417fe42d39c
FF - user.js: extensions.searchgol.appId - {4277F7CF-0000-46CF-BA49-D624465C4BAB}
FF - user.js: extensions.searchgol.instlDay - 15981
FF - user.js: extensions.searchgol.vrsn - 1.8.16.19
FF - user.js: extensions.searchgol.vrsni - 1.8.16.19
FF - user.js: extensions.searchgol.vrsnTs - 1.8.16.1923:16:14
FF - user.js: extensions.searchgol.prtnrId - searchgol
FF - user.js: extensions.searchgol.prdct - searchgol
FF - user.js: extensions.searchgol.aflt - babsst
FF - user.js: extensions.searchgol.smplGrp - none
FF - user.js: extensions.searchgol.tlbrId - base
FF - user.js: extensions.searchgol.instlRef - sst
FF - user.js: extensions.searchgol.dfltLng - pt
FF - user.js: extensions.searchgol.excTlbr - false
FF - user.js: extensions.searchgol.ffxUnstlRst - false
FF - user.js: extensions.searchgol.admin - false
FF - user.js: extensions.searchgol.autoRvrt - false
FF - user.js: extensions.searchgol.rvrt - false
FF - user.js: extensions.searchgol.newTab - false
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-7-20 65336]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-7-20 204880]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-7-20 1030952]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-7-20 378944]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-7-21 283064]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-7-20 33400]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-7-20 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-7 46808]
R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2014-1-10 452136]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64;C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2014-3-20 2138936]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\System32\drivers\L1C62x64.sys [2009-6-10 57344]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-8-21 14112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 KMService;KMService;C:\Windows\System32\srvany.exe --> C:\Windows\System32\srvany.exe [?]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-2-7 71168]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-11 111616]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-7-21 19456]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-2-7 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-7-21 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-7-21 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-7-21 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-2-7 117248]
S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-7-21 1255736]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S4 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S4 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-9-1 4308320]
.
=============== Created Last 30 ================
.
2014-03-27 01:13:54 29496 ----a-w- C:\Windows\System32\authuitu.dll
2014-03-27 01:13:53 25400 ----a-w- C:\Windows\SysWow64\authuitu.dll
2014-03-27 01:13:29 -------- d-----w- C:\Users\Patty\AppData\Local\TuneUp Software
2014-03-20 02:01:13 -------- d-----w- C:\ProgramData\Oracle
2014-03-20 02:00:11 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-03-16 01:48:52 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_5.dll
2014-03-16 01:48:51 527192 ----a-w- C:\Windows\SysWow64\XAudio2_7.dll
2014-03-16 01:48:49 2106216 ----a-w- C:\Windows\SysWow64\D3DCompiler_43.dll
2014-03-16 01:48:47 1998168 ----a-w- C:\Windows\SysWow64\D3DX9_43.dll
2014-03-16 01:48:46 22360 ----a-w- C:\Windows\SysWow64\X3DAudio1_7.dll
2014-03-16 01:48:44 81768 ----a-w- C:\Windows\SysWow64\xinput1_3.dll
2014-03-12 23:51:14 -------- d-----w- C:\Users\Patty\AppData\Local\Skype
2014-03-12 23:50:42 -------- d-----r- C:\Program Files (x86)\Skype
.
==================== Find3M  ====================
.
2014-04-02 00:27:06 31088 ----a-w- C:\Windows\SysWow64\drivers\gbpndisrd.sys
2014-03-20 13:44:28 40760 ----a-w- C:\Windows\System32\TURegOpt.exe
2014-03-20 13:44:20 43320 ----a-w- C:\Windows\System32\uxtuneup.dll
2014-03-20 13:44:20 36152 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
2014-02-07 21:22:25 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-07 21:22:25 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-01-16 11:59:44 270496 ------w- C:\Windows\System32\MpSigStub.exe
.
============= FINISH: 22:07:38,84 ===============
 
 
 
 
ATTACH
 
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate 
Boot Device: \Device\HarddiskVolume1
Install Date: 20/07/2013 19:29:34
System Uptime: 02/04/2014 22:15:23 (24 hours ago)
.
Motherboard: Acer             |  | Aspire 5734Z    
Processor: Pentium® Dual-Core CPU       T4500  @ 2.30GHz | uPGA-478 | 2300/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 233 GiB total, 43,666 GiB free.
D: is CDROM ()
E: is CDROM ()
G: is FIXED (NTFS) - 0 GiB total, 0,068 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP75: 31/03/2014 18:52:54 - Ponto de Verificação Agendado
RP76: 01/04/2014 21:24:54 - Instalado Acer Crystal Eye Webcam
RP77: 01/04/2014 21:30:21 - Removido Acer Crystal Eye Webcam
.
==== Image File Execution Options =============
.
IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: unins000.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
IFEO: uninst.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: unins000.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
x64-IFEO: uninst.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
.
==== Installed Programs ======================
.
Adobe Flash Player 12 Plugin
Adobe Photoshop CS6
Adobe Reader XI - Português
Adobe Shockwave Player 12.0
Atheros Client Installation Program
µTorrent
aTube Catcher
avast! Free Antivirus
Broadcom 802.11 Network Adapter
CCleaner
CDisplay 1.8
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Corel Graphics - Windows Shell Extension
Corel Graphics - Windows Shell Extension 32 Bit
CorelDRAW Graphics Suite X6 - BR (x64)
CorelDRAW Graphics Suite X6 - Capture (x64)
CorelDRAW Graphics Suite X6 - Common (x64)
CorelDRAW Graphics Suite X6 - Connect (x64)
CorelDRAW Graphics Suite X6 - Custom Data (x64)
CorelDRAW Graphics Suite X6 - Draw (x64)
CorelDRAW Graphics Suite X6 - Filters (x64)
CorelDRAW Graphics Suite X6 - FontNav (x64)
CorelDRAW Graphics Suite X6 - IPM
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64)
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64)
CorelDRAW Graphics Suite X6 - Redist (x64)
CorelDRAW Graphics Suite X6 - Setup Files (x64)
CorelDRAW Graphics Suite X6 - VBA (x64)
CorelDRAW Graphics Suite X6 - VideoBrowser (x64)
CorelDRAW Graphics Suite X6 - VSTA (x64)
CorelDRAW Graphics Suite X6 - Writing Tools (x64)
CorelDRAW Graphics Suite X6 (64-Bit)
CorelDRAW Graphics Suite X6 (x64)
D3DX10
DAEMON Tools Lite
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Defraggler
DriverEasy 4.6.3
DVD Shrink 3.2
Facebook Video Calling 1.2.0.287
FormatFactory 3.2.0.1
Galeria de Fotos
GBBD Banco do Brasil
GBBD Caixa Economica Federal
Google Chrome
Google Update Helper
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)
Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)
Intel® C++ Redistributables for Windows* on Intel® 64
Java 7 Update 51
Java Auto Updater
Malwarebytes Anti-Malware versão 1.75.0.1300
Microsoft .NET Framework 4 Client Profile PTB Language Pack
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Office Access MUI (Portuguese (Brazil)) 2010
Microsoft Office Excel MUI (Portuguese (Brazil)) 2010
Microsoft Office Groove MUI (Portuguese (Brazil)) 2010
Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010
Microsoft Office Office 32-bit Components 2010
Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010
Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010
Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (Portuguese (Brazil)) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (Portuguese (Brazil)) 2010
Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010
Microsoft Office Shared 32-bit MUI (Portuguese (Brazil)) 2010
Microsoft Office Shared MUI (Portuguese (Brazil)) 2010
Microsoft Office Word MUI (Portuguese (Brazil)) 2010
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual Basic for Applications 7.1 (x64)
Microsoft Visual Basic for Applications 7.1 (x64) English
Microsoft Visual Basic for Applications 7.1 (x64) Portuguese (Brazil)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual Studio Tools for Applications 2.0 - ENU
Microsoft Visual Studio Tools for Applications 2.0 Runtime
Microsoft_VC80_CRT_x86
Microsoft_VC90_CRT_x86
MiPony 2.1.0
Movie Maker
Mozilla Firefox 27.0.1 (x86 pt-BR)
Mozilla Maintenance Service
MPC-HC 1.6.8
MSVCRT
MSVCRT110
MSVCRT110_amd64
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)
PDF Settings CS6
Photo Common
Photo Gallery
Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2760781) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826023) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2826035) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
Security Update for Microsoft Outlook 2010 (KB2837597) 64-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
Skype™ 6.14
Slice Audio File Splitter
Speccy
swMSM
TeamViewer 8
TuneUp Utilities 2014
TuneUp Utilities 2014 (pt-BR)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition
VSO ConvertXToDVD
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
WinRAR 4.20 (32-bit)
.
==== End Of File ===========================
 
 
 
 
 
O gmer ficou grande, se precisarem eu posto depois!!
 
De antemão agradeço aos analistas pelo excelente trabalho, e também a todos no forum que prontamente nos auxiliam com tudo que precisamos!!!!
 

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
Olá

 

Desculpe a demora :)

 

Se ainda precisa de ajuda refaça os logs, pois preciso dos mesmos com datas atualizadas: Leia Antes de Postar - Criando um novo Tópico

 

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

ATENÇÃO 4: Não anexe os logs, obrigado!

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Ultimate 

Boot Device: \Device\HarddiskVolume1

Install Date: 20/07/2013 19:29:34

System Uptime: 22/04/2014 21:10:51 (0 hours ago)

.

Motherboard: Acer             |  | Aspire 5734Z    

Processor: Pentium® Dual-Core CPU       T4500  @ 2.30GHz | uPGA-478 | 2300/200mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 233 GiB total, 25,058 GiB free.

D: is CDROM ()

E: is CDROM ()

G: is FIXED (NTFS) - 0 GiB total, 0,068 GiB free.

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP80: 19/04/2014 22:13:03 - Windows Update

RP81: 20/04/2014 21:47:54 - Windows Update

.

==== Image File Execution Options =============

.

IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: unins000.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: uninst.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: unins000.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: uninst.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

.

==== Installed Programs ======================

.

Adobe Flash Player 12 Plugin

Adobe Photoshop CS6

Adobe Reader XI - Português

Adobe Shockwave Player 12.0

Atheros Client Installation Program

µTorrent

aTube Catcher

avast! Free Antivirus

Broadcom 802.11 Network Adapter

CCleaner

CDisplay 1.8

Cisco EAP-FAST Module

Cisco LEAP Module

Cisco PEAP Module

Corel Graphics - Windows Shell Extension

Corel Graphics - Windows Shell Extension 32 Bit

CorelDRAW Graphics Suite X6 - BR (x64)

CorelDRAW Graphics Suite X6 - Capture (x64)

CorelDRAW Graphics Suite X6 - Common (x64)

CorelDRAW Graphics Suite X6 - Connect (x64)

CorelDRAW Graphics Suite X6 - Custom Data (x64)

CorelDRAW Graphics Suite X6 - Draw (x64)

CorelDRAW Graphics Suite X6 - Filters (x64)

CorelDRAW Graphics Suite X6 - FontNav (x64)

CorelDRAW Graphics Suite X6 - IPM

CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64)

CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64)

CorelDRAW Graphics Suite X6 - Redist (x64)

CorelDRAW Graphics Suite X6 - Setup Files (x64)

CorelDRAW Graphics Suite X6 - VBA (x64)

CorelDRAW Graphics Suite X6 - VideoBrowser (x64)

CorelDRAW Graphics Suite X6 - VSTA (x64)

CorelDRAW Graphics Suite X6 - Writing Tools (x64)

CorelDRAW Graphics Suite X6 (64-Bit)

CorelDRAW Graphics Suite X6 (x64)

D3DX10

DAEMON Tools Lite

Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition

Defraggler

DriverEasy 4.6.3

DVD Shrink 3.2

Facebook Video Calling 1.2.0.287

FormatFactory 3.2.0.1

Galeria de Fotos

GBBD Banco do Brasil

GBBD Caixa Economica Federal

Google Chrome

Google Update Helper

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946040)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946308)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB946344)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947540)

Hotfix for Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789)

Intel® C++ Redistributables for Windows* on Intel® 64

IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País

Java 7 Update 51

Java Auto Updater

Malwarebytes Anti-Malware versão 1.75.0.1300

Microsoft .NET Framework 4.5.1

Microsoft .NET Framework 4.5.1 (Português do Brasil)

Microsoft .NET Framework 4.5.1 (PTB)

Microsoft Application Error Reporting

Microsoft Office Access MUI (Portuguese (Brazil)) 2010

Microsoft Office Excel MUI (Portuguese (Brazil)) 2010

Microsoft Office Groove MUI (Portuguese (Brazil)) 2010

Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010

Microsoft Office Office 32-bit Components 2010

Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010

Microsoft Office Professional Plus 2010

Microsoft Office Proof (English) 2010

Microsoft Office Proof (Portuguese (Brazil)) 2010

Microsoft Office Proof (Spanish) 2010

Microsoft Office Proofing (Portuguese (Brazil)) 2010

Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010

Microsoft Office Shared 32-bit MUI (Portuguese (Brazil)) 2010

Microsoft Office Shared MUI (Portuguese (Brazil)) 2010

Microsoft Office Word MUI (Portuguese (Brazil)) 2010

Microsoft SQL Server 2005 Compact Edition [ENU]

Microsoft Visual Basic for Applications 7.1 (x64)

Microsoft Visual Basic for Applications 7.1 (x64) English

Microsoft Visual Basic for Applications 7.1 (x64) Portuguese (Brazil)

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2005 Redistributable (x64)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219

Microsoft Visual Studio Tools for Applications 2.0 - ENU

Microsoft Visual Studio Tools for Applications 2.0 Runtime

Microsoft_VC80_CRT_x86

Microsoft_VC90_CRT_x86

MiPony 2.1.0

Movie Maker

Mozilla Firefox 28.0 (x86 pt-BR)

Mozilla Maintenance Service

MPC-HC 1.6.8

MSVCRT

MSVCRT110

MSVCRT110_amd64

PDF Settings CS6

Photo Common

Photo Gallery

Receitanet

Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)

Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)

Security Update for Microsoft Excel 2010 (KB2826033) 64-Bit Edition

Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition

Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition

Security Update for Microsoft Office 2010 (KB2760781) 64-Bit Edition

Security Update for Microsoft Office 2010 (KB2826023) 64-Bit Edition

Security Update for Microsoft Office 2010 (KB2826035) 64-Bit Edition

Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition

Security Update for Microsoft Word 2010 (KB2863926) 64-Bit Edition

Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition

Skype™ 6.14

Slice Audio File Splitter

Speccy

swMSM

TeamViewer 8

TuneUp Utilities 2014

TuneUp Utilities 2014 (pt-BR)

Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition

Update for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit Edition

Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition

Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition

Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition

Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition

Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition

Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition

Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition

Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition

Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition

Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition

Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition

Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition

Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition

Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition

Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition

Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition

Update for Microsoft Visio 2010 (KB2553444) 64-Bit Edition

Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition

VSO ConvertXToDVD

Windows Live Communications Platform

Windows Live Essentials

Windows Live ID Sign-in Assistant

Windows Live Installer

Windows Live Photo Common

Windows Live PIMT Platform

Windows Live SOXE

Windows Live SOXE Definitions

Windows Live UX Platform

Windows Live UX Platform Language Pack

WinRAR 4.20 (32-bit)

.

==== End Of File ===========================

 


 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 

Internet Explorer: 11.0.9600.17041  BrowserJavaVersion: 10.51.2

Run by Patty at 21:16:23 on 2014-04-22

Microsoft Windows 7 Ultimate   6.1.7601.1.1252.55.1046.18.3002.1636 [GMT -3:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\PROGRA~2\GbPlugin\GbpSv.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\taskeng.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com

mWinlogon: Userinit = userinit.exe,

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: Auxiliar de Conexão de Conta da Microsoft: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL

BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

uRunOnce: [Application Restart #1] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --blacklist-accelerated-compositing --blacklist-webgl --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --flag-switches-begin --flag-switches-end --disable-accelerated-2d-canvas --disable-accelerated-layers --restore-last-session

uRunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  --blacklist-accelerated-compositing --blacklist-webgl --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --flag-switches-begin --flag-switches-end --disable-accelerated-2d-canvas --disable-accelerated-layers --restore-last-session

mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe                                                                                                                                                                                                    

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: &Enviar para o OneNote - C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105

IE: Baixar com Mipony - C:\Program Files (x86)\MiPony\Browser\IEContext.htm

IE: E&xportar para o Microsoft Excel - C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

TCP: NameServer = 192.168.1.1

TCP: Interfaces\{8B2E6DF3-1CC1-473D-A7B8-45B4260C26B3} : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC} : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\35F6C616E67656E2 : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\44F65776C61637 : DHCPNameServer = 192.168.1.251 192.168.1.252

TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\564657162746F6 : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\8405D2052796E647D29354D2C416375627A456470213130323 : DHCPNameServer = 192.168.223.1

TCP: Interfaces\{D33EF4A2-A8FA-4CC4-A793-D06E17FD1ADC}\B41494F4D495 : DHCPNameServer = 108.168.162.137 8.8.4.4

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

Notify:  GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL

x64-Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-Notify: igfxcui - igfxdev.dll

x64-SSODL: WebCheck - <orphaned>

x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

x64-IFEO: AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: ccleaner64.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: drivereasy.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: switchboard.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

x64-IFEO: teamviewer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"

.

Note: multiple IFEO entries found. Please refer to Attach.txt

Hosts: 127.0.0.1 validation.sls.microsoft.com

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Patty\AppData\Roaming\Mozilla\Firefox\Profiles\ad3nnp1f.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\Users\Patty\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll

FF - plugin: C:\Users\Patty\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll

FF - plugin: C:\Users\Patty\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll

FF - plugin: C:\Users\Patty\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll

FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll

.

---- FIREFOX POLICIES ----

FF - user.js: extensions.searchgol.tlbrSrchUrl - 

FF - user.js: extensions.searchgol.id - 36c047ae000000000000c417fe42d39c

FF - user.js: extensions.searchgol.appId - {4277F7CF-0000-46CF-BA49-D624465C4BAB}

FF - user.js: extensions.searchgol.instlDay - 15981

FF - user.js: extensions.searchgol.vrsn - 1.8.16.19

FF - user.js: extensions.searchgol.vrsni - 1.8.16.19

FF - user.js: extensions.searchgol.vrsnTs - 1.8.16.1923:16:14

FF - user.js: extensions.searchgol.prtnrId - searchgol

FF - user.js: extensions.searchgol.prdct - searchgol

FF - user.js: extensions.searchgol.aflt - babsst

FF - user.js: extensions.searchgol.smplGrp - none

FF - user.js: extensions.searchgol.tlbrId - base

FF - user.js: extensions.searchgol.instlRef - sst

FF - user.js: extensions.searchgol.dfltLng - pt

FF - user.js: extensions.searchgol.excTlbr - false

FF - user.js: extensions.searchgol.ffxUnstlRst - false

FF - user.js: extensions.searchgol.admin - false

FF - user.js: extensions.searchgol.autoRvrt - false

FF - user.js: extensions.searchgol.rvrt - false

FF - user.js: extensions.searchgol.newTab - false

FF - user.js: network.http.max-persistent-connections-per-server - 4

FF - user.js: nglayout.initialpaint.delay - 600

FF - user.js: content.notify.interval - 600000

FF - user.js: content.max.tokenizing.time - 1800000

FF - user.js: content.switch.threshold - 600000

.

============= SERVICES / DRIVERS ===============

.

R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-7-20 65336]

R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-7-20 204880]

R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-7-20 1030952]

R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-7-20 378944]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-7-21 283064]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-7-20 33400]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-7-20 80816]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-10-7 46808]

R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2014-1-10 452136]

R2 PSI_SVC_2_x64;Protexis Licensing V2 x64;C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]

R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2014-3-20 2138936]

R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\System32\drivers\L1C62x64.sys [2009-6-10 57344]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-8-21 14112]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]

S2 KMService;KMService;C:\Windows\System32\srvany.exe --> C:\Windows\System32\srvany.exe [?]

S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-2-7 71168]

S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-4-20 111616]

S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-7-21 19456]

S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2011-2-7 88960]

S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2013-7-21 29696]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-7-21 57856]

S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-7-21 30208]

S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2011-2-7 117248]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-7-21 1255736]

S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]

S4 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S4 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-9-1 4308320]

.

=============== Created Last 30 ================

.

2014-04-22 01:10:49 -------- d-----w- C:\Users\Patty\.receitanet

2014-04-22 01:10:04 -------- d-----w- C:\Program Files (x86)\Programas RFB

2014-04-22 00:21:39 -------- d--h--w- C:\Program Files (x86)\InstallJammer Registry

2014-04-22 00:21:35 -------- d-----w- C:\Arquivos de Programas RFB

2014-04-21 00:55:59 1850880 ----a-w- C:\Program Files\Internet Explorer\MemoryAnalyzer.dll

2014-04-20 01:31:47 10651704 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AADF20C0-3760-4673-829F-14CAE29FD535}\mpengine.dll

2014-04-20 01:11:40 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys

2014-04-20 01:09:32 243712 ----a-w- C:\Windows\System32\wow64.dll

2014-04-20 01:09:31 362496 ----a-w- C:\Windows\System32\wow64win.dll

2014-04-20 01:09:31 25600 ----a-w- C:\Windows\SysWow64\setup16.exe

2014-04-20 01:09:31 16384 ----a-w- C:\Windows\System32\ntvdm64.dll

2014-04-20 01:09:30 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll

2014-04-20 01:09:30 13312 ----a-w- C:\Windows\System32\wow64cpu.dll

2014-04-20 01:09:26 5120 ----a-w- C:\Windows\SysWow64\wow32.dll

2014-04-20 01:09:25 7680 ----a-w- C:\Windows\SysWow64\instnm.exe

2014-04-20 01:09:24 2048 ----a-w- C:\Windows\SysWow64\user.exe

2014-04-20 01:06:59 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys

2014-04-20 01:06:41 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll

2014-04-20 01:06:40 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll

2014-03-27 01:13:54 29496 ----a-w- C:\Windows\System32\authuitu.dll

2014-03-27 01:13:53 25400 ----a-w- C:\Windows\SysWow64\authuitu.dll

2014-03-27 01:13:29 -------- d-----w- C:\Users\Patty\AppData\Local\TuneUp Software

.

==================== Find3M  ====================

.

2014-04-23 00:11:25 31088 ----a-w- C:\Windows\SysWow64\drivers\gbpndisrd.sys

2014-03-31 12:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe

2014-03-20 13:44:28 40760 ----a-w- C:\Windows\System32\TURegOpt.exe

2014-03-20 13:44:20 43320 ----a-w- C:\Windows\System32\uxtuneup.dll

2014-03-20 13:44:20 36152 ----a-w- C:\Windows\SysWow64\uxtuneup.dll

2014-03-20 01:59:55 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll

2014-03-06 09:32:16 2724864 ----a-w- C:\Windows\System32\mshtml.tlb

2014-03-06 09:31:33 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll

2014-03-06 08:59:04 66048 ----a-w- C:\Windows\System32\iesetup.dll

2014-03-06 08:57:34 548352 ----a-w- C:\Windows\System32\vbscript.dll

2014-03-06 08:57:20 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll

2014-03-06 08:32:07 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2014-03-06 08:29:40 139264 ----a-w- C:\Windows\System32\ieUnatt.exe

2014-03-06 08:29:14 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe

2014-03-06 08:28:15 752640 ----a-w- C:\Windows\System32\jscript9diag.dll

2014-03-06 08:15:54 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe

2014-03-06 08:11:41 5784064 ----a-w- C:\Windows\System32\jscript9.dll

2014-03-06 08:02:34 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll

2014-03-06 08:02:33 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll

2014-03-06 08:01:01 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll

2014-03-06 07:56:43 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll

2014-03-06 07:46:36 4254720 ----a-w- C:\Windows\SysWow64\jscript9.dll

2014-03-06 07:38:13 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

2014-03-06 07:36:40 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll

2014-03-06 07:13:43 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll

2014-03-06 07:11:15 2043904 ----a-w- C:\Windows\System32\inetcpl.cpl

2014-03-06 06:40:39 1967104 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

2014-03-06 06:22:40 2260480 ----a-w- C:\Windows\System32\wininet.dll

2014-03-06 05:41:49 1789440 ----a-w- C:\Windows\SysWow64\wininet.dll

2014-03-04 09:17:05 44032 ----a-w- C:\Windows\apppatch\acwow64.dll

2014-02-07 21:22:25 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2014-02-07 21:22:25 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

2014-02-07 01:23:30 3156480 ----a-w- C:\Windows\System32\win32k.sys

2014-02-04 02:35:56 190912 ----a-w- C:\Windows\System32\drivers\storport.sys

2014-02-04 02:35:35 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

2014-02-04 02:32:12 624128 ----a-w- C:\Windows\System32\qedit.dll

2014-02-04 02:28:36 2048 ----a-w- C:\Windows\System32\iologmsg.dll

2014-02-04 02:04:11 509440 ----a-w- C:\Windows\SysWow64\qedit.dll

2014-02-04 02:00:39 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll

2014-01-29 02:32:18 484864 ----a-w- C:\Windows\System32\wer.dll

2014-01-29 02:06:47 381440 ----a-w- C:\Windows\SysWow64\wer.dll

2014-01-28 02:32:46 228864 ----a-w- C:\Windows\System32\wwansvc.dll

.

============= FINISH: 21:19:14,71 ===============

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro Eduardo Fagundes

 

Caro(a)
 
Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.
 
Por favor, atente para o seguinte:
  • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
Sempre coloque suas respostas neste tópico... Não abra outro!
Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
Respeite a ordem das instruções passadas.
Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

# Etapa nº 1 #

 
Faça o download Junkware Removal Tool e salve em seu Desktop.
  • Desative seus programas de proteção (antivírus etc) para evitar qualquer conflito.
  • Clique duas vezes JRT.exe
    • Se seu sistema for Windows Vista ou Windows 7 ou Windows 8, clique com o botão direito do mouse e peça para Executar como Administrador.

    [*]Seja paciente e aguarde o scan terminar.[*]Abra o log JRT.txt que está em seu Desktop.[*]Copie todo conteúdo e cole em sua próximo mensagem.

 
# Etapa nº 2 #
 

  • Clique duas vezes no adwcleaner.exe
  • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png

  • Clique em Pesquisar
No final do scan será aberto um log com o resultado.
Caso algo seja detectado, clique então no botão Remover.
Novamente, no final do scan será aberto um log com o resultado.
Copie todo seu conteúdo e cole em sua próxima resposta.


 
# Etapa nº 3 #
 
Faça o download do Malwarebytes Anti-Malware:
  • Link1
  • Link alternativo
    • Clique duas vezes em mbam-setup.exe, escolha a linguagem e siga as instruções para o software ser instalado.
    • Certifique-se que esteja marcada a caixa Atualizar Malwarebytes Anti-Malware e Executar Malwarebytes Anti-Malware, e clique em concluir.
    • Se existirem atualizações, elas serão baixadas e instaladas.
    • Quando as atualizações terminarem, abrirá uma janela do programa. Marque "Verificação Rápida", e depois clique no botão Verificar.
    • O scan iniciará e poderá ser demorado. Por favor seja paciente.
    • Quando o scan estiver completo, clique em Ok, depois em Mostrar Resultados para ver o log.
    • Se algo for encontrado, certifique-se que tudo está marcado e clique em Remover.
    • Quando a desinfecção terminar, automaticamente um log surgirá aberto num documento do Bloco de Notas e pode ser questionado para reiniciar o PC. (Leia a nota)
    • O log é automaticamente guardado e pode ser consultado clicando na tab Logs do menu principal.
    • Copie e cole o conteúdo desse log na sua próxima resposta.

Nota: Em infecções mais complicadas, poderá haver a necessidade de reiniciar o PC. Caso lhe seja pedido para reiniciar, por favor, faça-o imediatamente.

 
Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.1.4 (04.06.2014:1)

OS: Windows 7 Ultimate x64

Ran by Patty on 24/04/2014 at 19:41:53,93

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escort.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortapp.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escorteng.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\escortlbr.dll

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\esrv.exe

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-319744528-3899853375-514738880-1000\Software\sweetim

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C5CBB76-7379-4490-AA5B-B037C0A36381}

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

 

 

 

~~~ Files

 

Successfully deleted: [File] "C:\end"

 

 

 

~~~ Folders

 

Successfully deleted: [Folder] "C:\ProgramData\babylon"

Successfully deleted: [Folder] "C:\ProgramData\bitguard"

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"

 

 

 

~~~ FireFox

 

Successfully deleted: [File] C:\Users\Patty\AppData\Roaming\mozilla\firefox\profiles\ad3nnp1f.default\user.js

Successfully deleted: [File] C:\Users\Patty\AppData\Roaming\mozilla\firefox\profiles\ad3nnp1f.default\bprotector_extensions.sqlite

Successfully deleted: [File] C:\Users\Patty\AppData\Roaming\mozilla\firefox\profiles\ad3nnp1f.default\bprotector_prefs.js

Successfully deleted the following from C:\Users\Patty\AppData\Roaming\mozilla\firefox\profiles\ad3nnp1f.default\prefs.js

 

user_pref("extensions.searchgol.admin", false);

user_pref("extensions.searchgol.aflt", "babsst");

user_pref("extensions.searchgol.appId", "{4277F7CF-0000-46CF-BA49-D624465C4BAB}");

user_pref("extensions.searchgol.autoRvrt", "false");

user_pref("extensions.searchgol.dfltLng", "pt");

user_pref("extensions.searchgol.excTlbr", false);

user_pref("extensions.searchgol.ffxUnstlRst", false);

user_pref("extensions.searchgol.id", "36c047ae000000000000c417fe42d39c");

user_pref("extensions.searchgol.instlDay", "15981");

user_pref("extensions.searchgol.instlRef", "sst");

user_pref("extensions.searchgol.newTab", false);

user_pref("extensions.searchgol.prdct", "searchgol");

user_pref("extensions.searchgol.prtnrId", "searchgol");

user_pref("extensions.searchgol.rvrt", "false");

user_pref("extensions.searchgol.smplGrp", "none");

user_pref("extensions.searchgol.tlbrId", "base");

user_pref("extensions.searchgol.tlbrSrchUrl", "");

user_pref("extensions.searchgol.vrsn", "1.8.16.19");

user_pref("extensions.searchgol.vrsnTs", "1.8.16.1923:16:14");

user_pref("extensions.searchgol.vrsni", "1.8.16.19");

Emptied folder: C:\Users\Patty\AppData\Roaming\mozilla\firefox\profiles\ad3nnp1f.default\minidumps [99 files]

 

 

 

~~~ Chrome

 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [blacklisted Policy]

 

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 24/04/2014 at 19:54:43,22

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Compartilhar este post


Link para o post
Compartilhar em outros sites
# AdwCleaner v3.202 - Relatório criado 24/04/2014 às 19:58:06
# Atualizado 23/04/2014 por Xplode
# Sistema Operacional : Windows 7 Ultimate Service Pack 1 (64 bits)
# Usuário : Patty - NOTEBOOK
# Executando de : C:\Users\Patty\Desktop\AdwCleaner.exe
# Opção : Limpar
 
***** [ Serviços ] *****
 
 
***** [ Arquivos / Pastas ] *****
 
Pasta Deletada : C:\Program Files (x86)\searchgol
Pasta Deletada : C:\Users\Patty\AppData\Roaming\searchgol
Arquivo Deletada : C:\Users\Patty\AppData\Roaming\Mozilla\Firefox\Profiles\ad3nnp1f.default\searchplugins\searchgol.xml
Arquivo Deletada : C:\Windows\System32\Tasks\BitGuard
Arquivo Deletada : C:\Windows\System32\Tasks\EPUpdater
 
***** [ Atalhos ] *****
 
 
***** [ Registro ] *****
 
Chave Deletedo : HKCU\Software\5808dd9b03bbd14
Chave Deletedo : HKLM\SOFTWARE\5808dd9b03bbd14
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{88AF4F6A-C6B7-4229-9275-824E98BF97F9}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{3860D897-7DCD-473C-9744-B21DB133AB20}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
 
***** [ Navegadores ] *****
 
-\\ Internet Explorer v11.0.9600.17041
 
 
-\\ Mozilla Firefox v28.0 (pt-BR)
 
[ Arquivo : C:\Users\Patty\AppData\Roaming\Mozilla\Firefox\Profiles\ad3nnp1f.default\prefs.js ]
 
 
-\\ Google Chrome v34.0.1847.116
 
[ Arquivo : C:\Users\Patty\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deletedo [search Provider] : hxxp://br.ask.com/web?q={searchTerms}
Deletedo [Homepage] : hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=36C0C417FE42D39C&affID=125035&tsp=5024
Deletedo [Extension] : aipfmkinhleccnodemkoofnnofpbbpac
 
*************************
 
AdwCleaner[R0].txt - [1883 octets] - [24/04/2014 19:55:35]
AdwCleaner[s0].txt - [1771 octets] - [24/04/2014 19:58:06]
 
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1831 octets] ##########

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Versão da Base de Dados:  v2014.04.24.09
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17041
Patty :: NOTEBOOK [administrador]
 
24/04/2014 20:13:03
mbam-log-2014-04-24 (20-13-03).txt
 
Tipo de Verificação:  Verificação Rápida 
Opções de verificações ativadas: Memória | Inicialização | Registro | Sistema de arquivos  | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opções de verificação desativadas: P2P
Objetos escaneados:  228989
Tempo decorrido: 5 minuto(s), 8 segundo(s)
 
Processos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)
 
Módulos de Memória Detectados: 0
(Não foram detectados ítens maliciosos)
 
Chaves de Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
 
Valores de Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
 
Itens de Dados no Registro Detectadas: 0
(Não foram detectados ítens maliciosos)
 
Pastas Detectadas: 0
(Não foram detectados ítens maliciosos)
 
Arquivos Detectados: 1
C:\$Recycle.Bin\S-1-5-21-319744528-3899853375-514738880-1000\$RGMS0NY.exe (PUP.Optional.Spigot.A) -> Enviado para a Quarentena e deletado com sucesso.
 
(fim)

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro Eduardo Fagundes

 

Demora não é sempre culpa de malware ;)

 

Vamos dar um olhada :)

 

Leia as instruções contidas neste link:
 
 
Nas instruções contidas no link acima, poderá verificar quais os fóruns onde os Analistas estão devidamente habilitados a utilizar corretamente a ferramenta:"Fóruns para receber ajuda com logs do ComboFix"
  1. Faça o download do ComboFix de um dos links oficiais listados abaixo e salve no seu desktop:

[*]Temporariamente e durante a execução destas instruções, é muito importante que mantenha desabilitados os seus programas de proteção (Antivirus, Antispyware e Firewall). Reative as proteções após a execução do(s) procedimento(s) abaixo mencionado(s).[*]Duplo clique no icone desktopicon.png que está no desktop.[*]Leia e aceite as condições, digitando 1 e enter.[*]Computadores com Windows XP deverão instalar o Console de Recuperação:

  • Se o seu computador tem instalado o Windows XP e ainda não tem instalado o Console de Recuperação, por favor certifique-se que está conectado à Internet, e clique em "Sim".
  • Clique em "OK" ao EULA.
  • Quando o Console de Recuperação estiver já instalado, clique em "SIM" para continuar.

[*]O ComboFix será executado, por favor seja paciente e aguarde. [*]Atenção: Não utilize o mouse nem o teclado enquanto a ferramenta estiver sendo executada, isso pode fazer com que o computador pare.[*]Poderá surgir o aviso que é necessário reiniciar o computador. 

NÃO REINICIE!!! O ComboFix reiniciará o computador automaticamente.[*]Quando a ferramenta terminar de rodar, gerará um log (o arquivo C:\ComboFix.txt). Copie e cole o conteúdo desse arquivo na sua proxima resposta.


NÃO utilize a ferramenta por conta própria. É uma ferramenta poderosa criada pra lidar com infecções sofisticadas e caso não a utilize corretamente poderá danificar o seu computador.
  • Existem vários malwares que impedem a execução correta da ferramenta e com isso danificar gravemente o computador. Analistas habilitados a utilizar o ComboFix conhecem esses casos e sabem lidar com estas situações.
  • Muitos dos Analistas não respondem a topicos em que vejam que o ComboFix foi utilizado sem supervisão.
  • Existem varias ferramentas anti-malware generalistas em que os autores ao elaborarem a programação das mesmas, estão pensando nos usuários finais e para serem usadas sem supervisão. O Combofix não é uma ferramenta desse tipo, e assim sendo e até por respeito ao autor da ferramenta, não utilize sem supervisão.

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
Saudações diego

 

segue o log do combofix

 

ComboFix 14-04-30.01 - Patty 01/05/2014  16:28:45.1.2 - x64

Microsoft Windows 7 Ultimate   6.1.7601.1.1252.55.1046.18.3002.1791 [GMT -3:00]

Executando de: c:\users\Patty\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((((((   Outras Exclusões   )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

C:\install.exe

c:\users\Patty\AppData\Roaming\inst.exe

.

.

((((((((((((((((   Arquivos/Ficheiros criados de 2014-04-01 to 2014-05-01  ))))))))))))))))))))))))))))

.

.

2014-05-01 19:56 . 2014-05-01 19:56 -------- d-----w- c:\users\Default\AppData\Local\temp

2014-04-27 16:47 . 2014-04-27 16:47 -------- d-s---w- c:\windows\system32\CompatTel

2014-04-27 16:47 . 2014-04-17 08:31 10651704 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{265608AF-90A7-4093-B368-5AEEE260B4D8}\mpengine.dll

2014-04-27 16:46 . 2014-04-14 02:24 465408 ----a-w- c:\windows\system32\aepdu.dll

2014-04-27 16:46 . 2014-04-14 02:19 424448 ----a-w- c:\windows\system32\aeinv.dll

2014-04-24 22:56 . 2010-08-30 11:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll

2014-04-24 22:55 . 2014-04-24 23:06 -------- d-----w- C:\AdwCleaner

2014-04-24 22:41 . 2014-04-24 22:41 -------- d-----w- c:\windows\ERUNT

2014-04-22 01:10 . 2014-04-22 01:19 -------- d-----w- c:\users\Patty\.receitanet

2014-04-22 01:10 . 2014-04-22 01:10 -------- d-----w- c:\program files (x86)\Programas RFB

2014-04-22 00:21 . 2014-04-22 01:10 -------- d--h--w- c:\program files (x86)\InstallJammer Registry

2014-04-22 00:21 . 2014-04-22 00:21 -------- d-----w- C:\Arquivos de Programas RFB

2014-04-21 00:55 . 2014-03-06 08:26 1850880 ----a-w- c:\program files\Internet Explorer\MemoryAnalyzer.dll

2014-04-20 01:11 . 2014-02-04 02:35 190912 ----a-w- c:\windows\system32\drivers\storport.sys

2014-04-20 01:09 . 2014-03-04 09:44 243712 ----a-w- c:\windows\system32\wow64.dll

2014-04-20 01:09 . 2014-03-04 09:44 1163264 ----a-w- c:\windows\system32\kernel32.dll

2014-04-20 01:09 . 2014-03-04 09:44 362496 ----a-w- c:\windows\system32\wow64win.dll

2014-04-20 01:09 . 2014-03-04 09:44 16384 ----a-w- c:\windows\system32\ntvdm64.dll

2014-04-20 01:09 . 2014-03-04 09:16 25600 ----a-w- c:\windows\SysWow64\setup16.exe

2014-04-20 01:09 . 2014-03-04 09:44 13312 ----a-w- c:\windows\system32\wow64cpu.dll

2014-04-20 01:09 . 2014-03-04 09:17 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll

2014-04-20 01:09 . 2014-03-04 09:16 5120 ----a-w- c:\windows\SysWow64\wow32.dll

2014-04-20 01:09 . 2014-03-04 08:09 7680 ----a-w- c:\windows\SysWow64\instnm.exe

2014-04-20 01:09 . 2014-03-04 08:09 2048 ----a-w- c:\windows\SysWow64\user.exe

2014-04-20 01:06 . 2014-01-24 02:37 1684928 ----a-w- c:\windows\system32\drivers\ntfs.sys

2014-04-20 01:06 . 2014-02-04 02:32 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll

2014-04-20 01:06 . 2014-02-04 02:04 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll

.

.

.

(((((((((((((((((((((((((((((((((((((   Relatório Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2014-04-30 10:26 . 2013-07-26 01:34 31088 ----a-w- c:\windows\SysWow64\drivers\gbpndisrd.sys

2014-03-31 12:35 . 2011-02-07 04:22 270496 ------w- c:\windows\system32\MpSigStub.exe

2014-03-31 06:51 . 2013-07-21 04:41 90655440 ----a-w- c:\windows\system32\MRT.exe

2014-03-20 13:44 . 2013-11-28 22:45 40760 ----a-w- c:\windows\system32\TURegOpt.exe

2014-03-20 13:44 . 2014-03-27 01:13 29496 ----a-w- c:\windows\system32\authuitu.dll

2014-03-20 13:44 . 2014-03-27 01:13 25400 ----a-w- c:\windows\SysWow64\authuitu.dll

2014-03-20 13:44 . 2014-01-06 21:45 43320 ----a-w- c:\windows\system32\uxtuneup.dll

2014-03-20 13:44 . 2014-01-06 21:45 36152 ----a-w- c:\windows\SysWow64\uxtuneup.dll

2014-03-20 01:59 . 2014-03-20 02:00 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

2014-03-04 09:17 . 2014-04-20 01:09 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2014-02-07 21:22 . 2013-07-21 23:42 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2014-02-07 21:22 . 2013-07-21 23:42 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

.

.

((((((((((((((((((((((((((   Pontos de Carregamento do Registro   )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por padrão não são apresentadas. 

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-07-03 3673184]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ GbPluginBb]

2013-10-07 14:32 1487912 ----a-w- c:\program files (x86)\GbPlugin\gbieh.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin

"20131121"=c:\program files\AVAST Software\Avast\setup\emupdate\aee137bf-b0a6-47cd-87b0-e5e8b8e4fb12.exe /check

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"

.

R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys;c:\windows\SYSNATIVE\drivers\GbpKm.sys [x]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 KMService;KMService;c:\windows\system32\srvany.exe;c:\windows\SYSNATIVE\srvany.exe [x]

R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]

R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]

R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]

R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]

R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]

R3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R4 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]

R4 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]

S0 aswRvrt;aswRvrt; [x]

S0 aswVmm;aswVmm; [x]

S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]

S2 GbpSv;Gbp Service;c:\progra~2\GbPlugin\GbpSv.exe;c:\progra~2\GbPlugin\GbpSv.exe [x]

S2 PSI_SVC_2_x64;Protexis Licensing V2 x64;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe;c:\program files\Common Files\Protexis\License Service\PsiService_2.exe [x]

S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [x]

S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]

S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2014-04-25 10:24 1078088 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe

.

Conteúdo da pasta 'Tarefas Agendadas'

.

2014-04-27 c:\windows\Tasks\DriverEasy Scheduled Scan.job

- c:\program files\Easeware\DriverEasy\DriverEasy.exe [2013-11-17 04:16]

.

2013-12-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-319744528-3899853375-514738880-1000Core.job

- c:\users\Patty\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-29 22:59]

.

2013-12-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-319744528-3899853375-514738880-1000UA.job

- c:\users\Patty\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-08-29 22:59]

.

2014-04-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-20 23:08]

.

2014-05-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-07-20 23:08]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 108144]

.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs

UxTuneUp

.

------- Scan Suplementar -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: &Enviar para o OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105

IE: Baixar com Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm

IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000

Trusted Zone: bancobrasil.com.br\www

Trusted Zone: bancobrasil.com.br\www14

Trusted Zone: bancobrasil.com.br\www2

Trusted Zone: bb.com.br\www

TCP: DhcpNameServer = 192.168.1.1

FF - ProfilePath - c:\users\Patty\AppData\Roaming\Mozilla\Firefox\Profiles\ad3nnp1f.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

.

- - - - ORFÃOS REMOVIDOS - - - -

.

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

.

.

.

--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Tempo para conclusão: 2014-05-01  17:00:44

ComboFix-quarantined-files.txt  2014-05-01 20:00

.

Pré-execução: 132.466.905.088 bytes disponíveis

Pós execução: 131.959.103.488 bytes disponíveis

.

- - End Of File - - 7876D457AAF6C1205652DF242765477A

A36C5E4F47E84449FF07ED3517B43A31

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro Eduardo Fagundes

 

# Etapa nº 1 #
 
Faça o download do Kaspersky AVP Tool de um desses links:
 
Você será direcionado a uma página da Kaspersky, solicitando um email para cadastro, nome e sobrenome. 
Somente o campo "email" é obrigatório.
Informe seu email depois clique no botão Submit Form.
A página será recarregada. Clique no botão Download
Salve-o em sua área de trabalho (Desktop).
Execute o arquivo e aguarde a instalação.
  • ** Usuários do Windows Vista e Windows 7: Clique com o direito sobre o arquivo, depois clique em Executar como administrador

  • Na tela do contrato de licença, marque a opção I accept the license agreement e depois clique no botão Start.
Aparentemente o programa congela e nada acontece. É normal, apenas aguarde até aparecer a tela inicial do programa, e então clique no ícone Settings:

 
KRT_settings.png
 
Nesta tela, marque a caixa ao lado de:
Meu Computador; 
Disco local (C:);
Marque também todas as unidades que aparecem abaixo de Disco Local, caso houverem;
Depois clique na aba Automatic Scan.

 
KRT_install2_.png
 
De volta à tela inicial do programa, clique no botão Start scanning;
Tenha paciência, é um pouco demorado;
Quando terminar, caso tenha detectado algo, o programa irá lhe perguntar o que fazer;
Marque o quadradinho ao lado de Apply to all objects e depois clique em Skip (queremos apenas o log).

 
KRT_detection_.png
 
Uma vez finalizado o scan, proceda da seguinte forma:
Na tela principal, caso tenha sido detectado algo, então salve o log
Se você fechar o programa e esquecer de salvar o log, terá que repetir todo o scan novamente.
Para salvar o log, clique no ícone Reports (ao lado do ícone "Settings"). 
Na próxima janela, clique em Detected Threats, depois clique no ícone de disquete para salvar o log.
Escolha um local de fácil acesso e salve como log.txt
Copie todo o conteúdo desse bloco de notas e cole em sua próxima resposta.
Se nada for detectado, então não precisa salvar o log, apenas avise.
Para sair do programa, basta clicar no X no canto superior direito.

 

Observações:
Enquanto durar o scan, a tela inicial exibirá uma barra de progresso. Quando terminar, o programa exibirá o status concluído e um botão que ficará na cor
laranja
, caso nada tenha sido detectado; e na cor
vermelha
, caso tenha encontrado algo. Caso tenha detectado algo, o programa também exibirá uma tela de alerta, avisando que o seu sistema está desprotegido e sugerindo um produto da Kaspersky. Clique no botão
No, thanks
.

 
# Etapa nº 2 #
 
Faça o download do SecurityCheck e salve em seu Desktop
Clique duas vezes no SecurityCheck.exe
  • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png

Pressione qualquer tecla para continuar... será aberto um relatório
Copie todo seu conteúdo e cole em sua próxima resposta

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites

Bom dia

 

Estou tendo problemas durante o scan do Kaspersky. Na primeira tentativa, após 28h (!!!?!!) de scan reparei que o programa estava travado em um arquivo de uma pasta windows.old. Esta pasta esta vazia com exceção de 4 arquivos temporarios. Quando o Kaspersky chega nesses arquivos ele para, o tempo continua contando mas o antivirus nao scaneia nenhum outro arquivo. 

Alguma dica de como apagar esses arquivos temporários? Tentei deletar os arquivos, a pasta e o diretório windows.old, mas ele dá um erro dizendo que os itens não se encontram mais naquele local.

 

Obrigado

Compartilhar este post


Link para o post
Compartilhar em outros sites

Vamos mudar de programa ;)

 

Faça o download do SUPERAntiSpyware e salve em seu Desktop
Clique duas vezes no SUPERAntiSpyware.exe
  • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png

Clique em Express Install e depois em Start Trial
À direita clique no botão Check for Updates, aguarde e OK
Deixe marcado Quick Scan e clique em Scan Your Computer
Quando o scan terminar clique em Continue
Para remover as ameaças encontradas clique no botão Remove Threats
Clique em OK, depois em Finished e View Scan Logs
Selecione o log e clique no botão View Selected Log
Copie todo seu conteúdo e cole em sua próxima resposta

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
SUPERAntiSpyware Scan Log


 

Generated 05/08/2014 at 09:51 PM

 

Application Version : 5.7.1018

 

Core Rules Database Version : 11219

Trace Rules Database Version: 9031

 

Scan type       : Quick Scan

Total Scan Time : 00:05:11

 

Operating System Information

Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)

UAC On - Administrator

 

Memory items scanned      : 651

Memory threats detected   : 0

Registry items scanned    : 56774

Registry threats detected : 0

File items scanned        : 10611

File threats detected     : 41

 

Adware.Tracking Cookie

C:\Users\Patty\AppData\Roaming\Microsoft\Windows\Cookies\6LX5D5I8.txt [ /ad.propellerads.com ]

.imrworldwide.com [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

www.googleadservices.com [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

media.flixcar.com [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

C:\Users\Patty\AppData\Roaming\Microsoft\Windows\Cookies\BMOST01W.txt [ /doubleclick.net ]

C:\Users\Patty\AppData\Roaming\Microsoft\Windows\Cookies\X7SLA8LB.txt [ /ads.yahoo.com ]

C:\Users\Patty\AppData\Roaming\Microsoft\Windows\Cookies\DRDNRO5R.txt [ /c.atdmt.com ]

tracking.olx-st.com [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

tracking.olx-st.com [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

tracking.olx-st.com [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

.doubleclick.net [ C:\USERS\PATTY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\AD3NNP1F.DEFAULT\COOKIES.SQLITE ]

.doubleclick.net [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.medianexus.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.legolas-media.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.legolas-media.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.imrworldwide.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.histats.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.histats.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.lcg.112.2o7.net [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.statcounter.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.palxxx.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.sexlog.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

accounts.google.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.stats.paypal.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.mediafire.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.2o7.net [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.yadro.ru [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.w.click105.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.xiti.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.xiti.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

statse.webtrendslive.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.mediafire.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.mediafire.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.mediafire.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

.mediafire.com [ C:\USERS\PATTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

Compartilhar este post


Link para o post
Compartilhar em outros sites
 Results of screen317's Security Check version 0.99.82  

 Windows 7 Service Pack 1 x64 (UAC is enabled)  

 Internet Explorer 11  

``````````````Antivirus/Firewall Check:`````````````` 

avast! Antivirus   

 Antivirus up to date!   

`````````Anti-malware/Other Utilities Check:````````` 

 TuneUp Utilities 2014   

 TuneUp Utilities 2014 (pt-BR)  

 TuneUp Utilities 2014   

 Java 7 Update 51  

 Java version out of Date! 

  Adobe Flash Player 12.0.0.44 Flash Player out of Date!  

 Adobe Reader XI  

 Mozilla Firefox (28.0) 

 Google Chrome 34.0.1847.116  

 Google Chrome 34.0.1847.131  

````````Process Check: objlist.exe by Laurent````````  

 AVAST Software Avast AvastSvc.exe  

 AVAST Software Avast AvastUI.exe  

`````````````````System Health check````````````````` 

 Total Fragmentation on Drive C: = 

````````````````````End of Log`````````````````````` 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro Eduardo Fagundes

 

Vamos fazer as correções/atualizações recomendadas ;)
 
# Etapa nº 1 #
 
Atualize o Java.
 
Atenção: Desinstale TODAS as versões antigas do Java.
  • Feche todos os programas especialmente o seu Navegador (IE, Firefox etc).
  • Acesse o site Java para Windows
  • Clique em 4531602912_e9606174d3_o.gif
  • Na janela que surgir clique em Executar;
  • Siga os procedimentos de instalação.

 
# Etapa nº 2 #
 
Atualize o Flash Player
 
Aguardo retorno :)
 
Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
 Results of screen317's Security Check version 0.99.82  

 Windows 7 Service Pack 1 x64 (UAC is enabled)  

 Internet Explorer 11  

``````````````Antivirus/Firewall Check:`````````````` 

avast! Antivirus   

 Antivirus up to date!   

`````````Anti-malware/Other Utilities Check:````````` 

 TuneUp Utilities 2014   

 TuneUp Utilities 2014 (pt-BR)  

 TuneUp Utilities 2014   

 Java 7 Update 55  

 Adobe Flash Player 13.0.0.206  

 Adobe Reader XI  

 Mozilla Firefox (28.0) 

 Google Chrome 34.0.1847.116  

 Google Chrome 34.0.1847.131  

````````Process Check: objlist.exe by Laurent````````  

 AVAST Software Avast AvastSvc.exe  

 AVAST Software Avast AvastUI.exe  

`````````````````System Health check````````````````` 

 Total Fragmentation on Drive C: = 

````````````````````End of Log`````````````````````` 

Compartilhar este post


Link para o post
Compartilhar em outros sites

Caro Eduardo Fagundes

 

>>>> Como está o computador?
 
# Etapa nº 1 #
 
Vamos desinstalar o ComboFix:
 
Renomeie o combofix.exe para uninstall.exe, clique duas vezes nele e aguarde o programa ser removido. 
 
Ou se preferir vá em,
 
iniciar > executar e digite  Combofix /Uninstall e clique OK, na janela que aparecer clique em executar e aguarde o programa ser removido.
 
# Etapa nº 2 #
 
Faça download do OTC by OldTimer e salve em seu desktop.
  • Clique duas vezes no ícone 4142006426_4719050954_o.gif
  • Clique em executar;
  • Clique em seu único botão (imagem abaixo):
4141259853_5a542d5908_o.jpgPermita que seu computador seja reiniciado.

 
# Etapa nº 3 #
 
  • Novamente: clique duas vezes no adwcleaner.exe
    • Atenção: Usuários Windows Vista, 7 e 8, cliquem com o botão direito do mouse e escolha: execadmin.png

  • Clique em Desinstalar
  • Clique em Sim, aguarde.
 
# Etapa nº 4 #
 
<<@>> Instale o CCleaner
 
O CCleaner é um excelente utilitário de limpeza para o computador, que lhe ajudará no desempenho do computador. Faça o download dele aqui CCleaner
IMPORTANTE: Após a instalação vá até o local onde o programa foi instalado, C:\Arquivos de programas\CCleaner, clique duas vezes na pasta, numa área vazia desta janela, clique com o botão direito do mouse e escolha Novo > pasta e crie uma nova pasta; coloque o nome de backups!
Abra o programa e clique em Executar Limpeza;
clique no botão Registro > Procurar Erros > Corrigir erro(s) seleciona(s)...
 
Obs: Não se esqueça de aceitar o backup das correções, e salvá-los nas pasta criada acima!

<<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!
 
Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
Visitante
Este tópico está impedido de receber novos posts.





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×