Ir ao conteúdo
  • Cadastre-se
ginhoam

Computador muuuuito lento

Recommended Posts

Prezados, me ajudem, por favor.
Meu computador está muito lento.

Suspeito que esteja infectado. 
Poderiam me ajudar em como devo proceder?

Seguem os logs:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.17041  BrowserJavaVersion: 10.55.2
Run by George at 8:34:05 on 2014-05-19
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4061.1347 [GMT -3:00]
.
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\FBAgent.exe
C:\Windows\system32\WLANExt.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe
C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWlan.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Users\George\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\George\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Users\George\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\George\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Sweet Home 3D\jre6\bin\javaw.exe
C:\Users\George\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\George\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\George\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - 
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [Google Update] "C:\Users\George\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [bitTorrent] "C:\Users\George\AppData\Roaming\BitTorrent\BitTorrent.exe"  /MINIMIZED
uRun: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [AdobeBridge] <no file>
mRun: [updateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
mRun: [updateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
mRun: [setwallpaper] c:\programdata\SetWallpaper.cmd
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\FANCYS~1.LNK - C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SRSPRE~1.LNK - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: itau.com.br
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{4884640A-B889-485E-838F-3DF5452122EE}\841677B637F54363F5230323 : DHCPNameServer = 200.222.122.133 200.222.123.101
TCP: Interfaces\{4884640A-B889-485E-838F-3DF5452122EE}\D4164656962716 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{68ED217B-27E0-49C9-A7A2-09FC80995EDF} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{68ED217B-27E0-49C9-A7A2-09FC80995EDF}\4363F5841677B637F5230323 : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Notify:  GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll
Notify:  GbPluginUni - C:\Program Files (x86)\GbPlugin\gbiehUni.dll
SSODL: WebCheck - <orphaned>
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files (x86)\GbPlugin\gbiehuni.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
x64-BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
x64-Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe
x64-Run: [EeeStorageBackup] C:\Program Files (x86)\ASUS\Asus WebStorage\BackupService.exe
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\System32\NvCpl.dll,NvStartup
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\George\AppData\Roaming\Mozilla\Firefox\Profiles\jugjk0c8.default\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\George\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll
FF - plugin: C:\Users\George\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll
FF - plugin: C:\Users\George\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
.
---- FIREFOX POLICIES ----
FF - user.js: extensions.delta.tlbrSrchUrl - 
FF - user.js: extensions.delta.id - 2891ebe7000000000000001e640c43ce
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15899
FF - user.js: extensions.delta.vrsn - 1.8.21.5
FF - user.js: extensions.delta.vrsni - 1.8.21.5
FF - user.js: extensions.delta.vrsnTs - 1.8.21.521:08:32
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - pt
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.ffxUnstlRst - true
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta_i.babTrack - affID=121563&tsp=4942
FF - user.js: extensions.delta_i.babExt - 
FF - user.js: extensions.delta_i.srcExt - ss
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-2 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-2 208416]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2011-8-28 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2011-8-27 423240]
R2 AFBAgent;AFBAgent;C:\Windows\System32\FBAgent.exe [2009-11-18 359552]
R2 ASMMAP64;ASMMAP64;C:\Program Files\ATKGFNEX\ASMMAP64.sys [2009-11-18 14904]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-4-28 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2011-8-27 79184]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2014-4-28 50344]
R2 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]
R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2014-3-13 519224]
R2 OberonGameConsoleService;Oberon Media Game Console service;C:\Program Files (x86)\ASUS\Game Park\GameConsole\OberonGameConsoleService.exe [2009-11-18 44312]
R2 Realtek11nCU;Realtek11nCU;C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2014-3-4 36864]
R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2012-5-17 35104]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2009-10-15 117760]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\System32\drivers\L1C62x64.sys [2009-9-4 62464]
R3 NETw1v64;Intel® Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw1v64.sys [2009-7-20 7058432]
R3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\System32\drivers\rtwlanu.sys [2014-3-4 1045608]
S2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-11 85328]
S2 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AmUStor;AM USB Stroage Driver;C:\Windows\System32\drivers\AmUStor.sys [2009-8-21 44032]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-4-6 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-4-10 111616]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\System32\drivers\SiSG664.sys [2009-6-10 56832]
S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-8-29 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\drivers\wdcsam64.sys [2011-2-16 14464]
.
=============== Created Last 30 ================
.
2014-05-18 13:55:22 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-05-16 06:56:56 10651704 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1E5C0357-4C8A-427F-AF83-22C07054E0A5}\mpengine.dll
2014-05-14 13:49:33 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-05-14 13:49:32 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-05-14 12:14:03 10594416 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icudt52.dll
2014-05-14 12:14:02 1266800 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuin52.dll
2014-05-14 12:14:01 965232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll
2014-05-14 06:23:01 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-05-14 06:23:00 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-05-03 22:08:17 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2014-04-28 20:58:10 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-04-28 20:57:59 43152 ----a-w- C:\Windows\avastSS.scr
2014-04-27 14:19:23 -------- d-----w- C:\Program Files (x86)\Bigasoft
.
==================== Find3M  ====================
.
2014-05-15 11:15:36 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2014-05-15 11:15:36 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2014-05-14 15:28:38 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-14 15:28:38 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-28 20:58:04 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-04-28 20:58:03 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-04-28 20:58:03 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-04-28 20:58:03 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-04-01 01:46:48 130712 ----a-w- C:\Windows\SysWow64\MSSTDFMT.DLL
2014-04-01 01:46:48 1070232 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2014-03-31 12:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-03-13 23:06:00 31088 ----a-w- C:\Windows\SysWow64\drivers\gbpndisrd.sys
2014-03-06 09:31:33 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-03-06 08:59:04 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-03-06 08:57:34 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-03-06 08:57:20 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-03-06 08:29:40 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-03-06 08:29:14 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-03-06 08:28:15 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-03-06 08:15:54 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-06 08:11:41 5784064 ----a-w- C:\Windows\System32\jscript9.dll
2014-03-06 08:02:34 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-03-06 08:02:33 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-03-06 08:01:01 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-06 07:56:43 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-03-06 07:46:36 4254720 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-03-06 07:38:13 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-03-06 07:36:40 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-03-06 07:13:43 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-03-06 07:11:15 2043904 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-03-06 06:40:39 1967104 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-03-06 06:22:40 2260480 ----a-w- C:\Windows\System32\wininet.dll
2014-03-06 05:41:49 1789440 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-03-04 09:47:01 5550016 ----a-w- C:\Windows\System32\ntoskrnl.exe
2014-03-04 09:44:21 362496 ----a-w- C:\Windows\System32\wow64win.dll
2014-03-04 09:44:21 243712 ----a-w- C:\Windows\System32\wow64.dll
2014-03-04 09:44:21 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2014-03-04 09:44:20 39936 ----a-w- C:\Windows\System32\wincredprovider.dll
2014-03-04 09:44:10 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-03-04 09:44:08 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-03-04 09:44:06 340992 ----a-w- C:\Windows\System32\schannel.dll
2014-03-04 09:44:03 722944 ----a-w- C:\Windows\System32\objsel.dll
2014-03-04 09:44:03 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-03-04 09:44:03 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2014-03-04 09:44:00 424960 ----a-w- C:\Windows\System32\KernelBase.dll
2014-03-04 09:43:56 57344 ----a-w- C:\Windows\System32\cngprovider.dll
2014-03-04 09:43:56 52736 ----a-w- C:\Windows\System32\dpapiprovider.dll
2014-03-04 09:43:56 44544 ----a-w- C:\Windows\System32\dimsroam.dll
2014-03-04 09:43:56 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-03-04 09:43:55 56832 ----a-w- C:\Windows\System32\adprovider.dll
2014-03-04 09:43:55 53760 ----a-w- C:\Windows\System32\capiprovider.dll
2014-03-04 09:43:50 455168 ----a-w- C:\Windows\System32\winlogon.exe
2014-03-04 09:20:11 3969984 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2014-03-04 09:20:11 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2014-03-04 09:16:54 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2014-03-04 09:16:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2014-03-04 09:16:18 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2014-03-04 08:09:30 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2014-03-04 08:09:29 2048 ----a-w- C:\Windows\SysWow64\user.exe
.
============= FINISH:  8:40:16,51 ===============
 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume2
Install Date: 27.08.2011 17:48:19
System Uptime: 17.05.2014 18:41:57 (38 hours ago)
.
Motherboard: ASUSTeK Computer Inc.         |  | UL30VT    
Processor: Genuine Intel® CPU           U7300  @ 1.30GHz | Socket 478 | 793/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 116 GiB total, 24,13 GiB free.
D: is FIXED (NTFS) - 335 GiB total, 45,64 GiB free.
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP328: 07.05.2014 19:04:29 - Installed Java 7 Update 55
RP329: 12.05.2014 09:30:28 - Windows Update
RP330: 14.05.2014 10:41:44 - Windows Update
RP331: 18.05.2014 10:47:58 - Removed Java 6 Update 39
RP332: 18.05.2014 10:52:13 - Installed Java 7 Update 55
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
Adobe AIR
Adobe Flash Player 13 ActiveX
Adobe Flash Player 13 Plugin
Adobe Photoshop CS6
Adobe Reader 9.5.5 MUI
Alcor Micro USB Card Reader
Alice Greenfingers
AP Tuner 3.08
Apple Mobile Device Support
Apple Software Update
ASUS AI Recovery
ASUS AP Bank
ASUS Data Security Manager
ASUS FancyStart
ASUS LifeFrame3
ASUS Live Update
ASUS MultiFrame
ASUS Power4Gear Hybrid
ASUS SmartLogon
ASUS Virtual Camera
Asus WebStorage
ASUS_UL_Series_Screensaver
ATK Generic Function Service
ATK Hotkey
ATK Media
ATKOSD2
avast! Free Antivirus
Bigasoft VOB Converter 3.2.3.4772
Bing Bar
BitTorrent
Bonjour
CDDRV_Installer
Chicken Invaders 2
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
ControlDeck
CyberLink LabelPrint
CyberLink Power2Go
D3DX10
Dream Day Wedding Married in Manhattan
Dropbox
Easy Subtitles Synchronizer
erLT
ETDWare PS/2-x64 7.0.5.9_WHQL
Express Gate
Fast Boot
Game Park Console
Garmin USB Drivers
Garmin WebUpdater
Google Chrome
Guardião Banco Itau 3.4.2.0
IRPF2012 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País
IRPF2014 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País
Island Wars 2
iTunes
Java 7 Update 55
Java Auto Updater
Java 6 Update 45 (64-bit)
JavaFX 2.1.1
Junk Mail filter update
KhalInstallWrapper
LightScribe System Software  1.14.25.1
Logitech SetPoint
Módulo de Segurança - Banco do Brasil
Malwarebytes Anti-Malware versão 1.75.0.1300
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (Portuguese (Brazil)) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (Portuguese (Brazil)) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (Portuguese (Brazil)) 2007
Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007
Microsoft Office Live Add-in 1.5
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007
Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007
Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (Portuguese (Brazil)) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (Portuguese (Brazil)) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007
Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2007
Microsoft Office Shared MUI (Portuguese (Brazil)) 2007
Microsoft Office Word MUI (Portuguese (Brazil)) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft_VC80_CRT_x86
Microsoft_VC90_CRT_x86
Mozilla Firefox 29.0.1 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero 8 Essentials
neroxml
NVIDIA Drivers
PDF Settings CS6
PDFCreator
Piggly
Plugin Letras.mus.br 1.10
QuickTime
Realtek High Definition Audio Driver
REALTEK Wireless LAN Driver and Utility
Receitanet
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2878236) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition 
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition 
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition 
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition 
Security Update for Microsoft Office Word 2007 (KB2878237) 32-Bit Edition 
SES Driver
Skype Click to Call
Skype™ 6.14
Smileyville
SRS Premium Sound Control Panel
Suporte para Aplicativos Apple
Sweet Home 3D version 4.1
The KMPlayer (remove only)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505) 32-Bit Edition
USB 2.0 VGA UVC WebCam
WIDCOMM Bluetooth Software
Winamp
Winamp Detectar Aplicação
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0)
Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM  (01/19/2011 1.0.0009.0)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Player Firefox Plugin
WinFlash
WinRAR archiver
Wireless Console 3
Youtube to MP3 Converter v. 1.4
YTD Video Downloader 4.7.2
.
==== Event Viewer Messages From Past Week ========
.
19.05.2014 07:54:58, Error: Service Control Manager [7023]  - The Peer Name Resolution Protocol service terminated with the following error:  %%-2140993535
19.05.2014 07:54:58, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  %%-2140993535
19.05.2014 07:54:58, Error: Microsoft-Windows-PNRPSvc [102]  - The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630801.
18.05.2014 23:31:40, Error: Service Control Manager [7001]  - The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:  After starting, the service hung in a start-pending state.
18.05.2014 23:31:33, Error: Service Control Manager [7022]  - The Peer Name Resolution Protocol service hung on starting.
16.05.2014 08:06:07, Error: Service Control Manager [7022]  - The Windows Update service hung on starting.
.
==== End Of File ===========================

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-05-19 11:26:11
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 ST950032 rev.0002 465,76GB
Running: gmer.exe; Driver: C:\Users\George\AppData\Local\Temp\kwldqpow.sys
 
 
---- Kernel code sections - GMER 2.1 ----
 
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528                                                                             fffff80003600000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575                                                                             fffff8000360002f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...]
.text     C:\Windows\system32\DRIVERS\USBPORT.SYS!DllUnload                                                                                              fffff8800447bd8c 12 bytes {MOV RAX, 0xfffffa8005c2e2a0; JMP RAX}
 
---- User code sections - GMER 2.1 ----
 
.text     C:\Windows\system32\services.exe[596] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                    000000007780ef8d 1 byte [62]
.text     C:\PROGRA~2\GbPlugin\GbpSv.exe[856] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll                                                                 0000000077af1287 6 bytes JMP 71a8000a
.text     C:\PROGRA~2\GbPlugin\GbpSv.exe[856] C:\Windows\syswow64\kernel32.dll!FreeLibrary                                                               0000000077113488 6 bytes JMP 71af000a
.text     C:\PROGRA~2\GbPlugin\GbpSv.exe[856] C:\Windows\syswow64\kernel32.dll!FreeLibraryAndExitThread                                                  000000007712d552 5 bytes JMP 0000000174bd9d76
.text     C:\PROGRA~2\GbPlugin\GbpSv.exe[856] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                      000000007713a2fd 1 byte [62]
.text     C:\Windows\System32\svchost.exe[972] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                     000000007780ef8d 1 byte [62]
.text     C:\Windows\System32\svchost.exe[392] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                     000000007780ef8d 1 byte [62]
.text     C:\Windows\system32\svchost.exe[1032] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                    000000007780ef8d 1 byte [62]
.text     C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE[2028] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                               000000007713a2fd 1 byte [62]
.text     C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe[1224] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                            000000007780ef8d 1 byte [62]
.text     C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe[1660] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112         000000007713a2fd 1 byte [62]
.text     C:\Windows\Explorer.EXE[3896] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                            000000007780ef8d 1 byte [62]
.text     C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWlan.exe[4016] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112             000000007713a2fd 1 byte [62]
.text     C:\Windows\System32\igfxpers.exe[4100] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                                                   000000007780ef8d 1 byte [62]
.text     C:\Program Files\Alwil Software\Avast5\AvastUI.exe[4720] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter                          0000000077118791 8 bytes [31, C0, C2, 04, 00, 90, 90, ...]
.text     C:\Program Files\Alwil Software\Avast5\AvastUI.exe[4720] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                 000000007713a2fd 1 byte [62]
.text     C:\Program Files (x86)\iTunes\iTunesHelper.exe[4868] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                     000000007713a2fd 1 byte [62]
.text     C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe[5016] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189                      000000007780ef8d 1 byte [62]
.text     C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe[4572] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                 000000007713a2fd 1 byte [62]
.text     C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[3824] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                         000000007713a2fd 1 byte [62]
.text     C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe[6296] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                              000000007713a2fd 1 byte [62]
.text     C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe[7260] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112  000000007713a2fd 1 byte [62]
.text     C:\Windows\SysWOW64\ctfmon.exe[5144] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                     000000007713a2fd 1 byte [62]
.text     C:\Users\George\Desktop\gmer.exe[8692] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112                                                   000000007713a2fd 1 byte [62]
 
---- Kernel IAT/EAT - GMER 2.1 ----
 
IAT       C:\Windows\system32\drivers\pci.sys[ntoskrnl.exe!IoAttachDeviceToDeviceStack]                                                                  [fffff880010a1650] \SystemRoot\System32\Drivers\spsc.sys [unknown section]
IAT       C:\Windows\system32\drivers\pci.sys[ntoskrnl.exe!IoDetachDevice]                                                                               [fffff880010a15dc] \SystemRoot\System32\Drivers\spsc.sys [unknown section]
IAT       C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort]                                                                 [fffff8800106c35c] \SystemRoot\System32\Drivers\spsc.sys [unknown section]
IAT       C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar]                                                                        [fffff8800106c224] \SystemRoot\System32\Drivers\spsc.sys [unknown section]
IAT       C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar]                                                                       [fffff8800106ca24] \SystemRoot\System32\Drivers\spsc.sys [unknown section]
IAT       C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort]                                                                [fffff8800106cba0] \SystemRoot\System32\Drivers\spsc.sys [unknown section]
 
---- Devices - GMER 2.1 ----
 
Device    \Driver\a4smf34t \Device\Scsi\a4smf34t1Port1Path0Target0Lun0                                                                                   fffffa8005e1a2c0
Device    \Driver\a4smf34t \Device\Scsi\a4smf34t1                                                                                                        fffffa8005e1a2c0
Device    \FileSystem\Ntfs \Ntfs                                                                                                                         fffffa80049c12c0
Device    \FileSystem\fastfat \Fat                                                                                                                       fffffa8005bec2c0
Device    \Driver\usbehci \Device\USBFDO-7                                                                                                               fffffa800482f2c0
Device    \Driver\usbuhci \Device\USBPDO-5                                                                                                               fffffa8005c312c0
Device    \Driver\usbehci \Device\USBFDO-3                                                                                                               fffffa800482f2c0
Device    \Driver\usbuhci \Device\USBPDO-1                                                                                                               fffffa8005c312c0
Device    \Driver\cdrom \Device\CdRom0                                                                                                                   fffffa80070ef2c0
Device    \Driver\NetBT \Device\NetBT_Tcpip_{8C6920A0-1FD6-42C8-A03B-50B4BF10FD7A}                                                                       fffffa8005a1a2c0
Device    \Driver\usbuhci \Device\USBPDO-6                                                                                                               fffffa8005c312c0
Device    \Driver\usbuhci \Device\USBFDO-4                                                                                                               fffffa8005c312c0
Device    \Driver\usbuhci \Device\USBFDO-0                                                                                                               fffffa8005c312c0
Device    \Driver\usbuhci \Device\USBPDO-2                                                                                                               fffffa8005c312c0
Device    \Driver\NetBT \Device\NetBT_Tcpip_{68ED217B-27E0-49C9-A7A2-09FC80995EDF}                                                                       fffffa8005a1a2c0
Device    \Driver\NetBT \Device\NetBT_Tcpip_{DAF45391-C249-4BE5-8CB5-93DFFB274D13}                                                                       fffffa8005a1a2c0
Device    \Driver\usbehci \Device\USBPDO-7                                                                                                               fffffa800482f2c0
Device    \Driver\usbuhci \Device\USBFDO-5                                                                                                               fffffa8005c312c0
Device    \Driver\usbehci \Device\USBPDO-3                                                                                                               fffffa800482f2c0
Device    \Driver\usbuhci \Device\USBFDO-1                                                                                                               fffffa8005c312c0
Device    \Driver\volmgr \Device\HarddiskVolume1                                                                                                         fffffa80049b52c0
Device    \Driver\volmgr \Device\FtControl                                                                                                               fffffa80049b52c0
Device    \Driver\volmgr \Device\VolMgrControl                                                                                                           fffffa80049b52c0
Device    \Driver\volmgr \Device\HarddiskVolume2                                                                                                         fffffa80049b52c0
Device    \Driver\volmgr \Device\HarddiskVolume3                                                                                                         fffffa80049b52c0
Device    \Driver\NetBT \Device\NetBT_Tcpip_{4884640A-B889-485E-838F-3DF5452122EE}                                                                       fffffa8005a1a2c0
Device    \Driver\NetBT \Device\NetBt_Wins_Export                                                                                                        fffffa8005a1a2c0
Device    \Driver\usbuhci \Device\USBFDO-6                                                                                                               fffffa8005c312c0
Device    \Driver\usbuhci \Device\USBPDO-4                                                                                                               fffffa8005c312c0
Device    \Driver\usbuhci \Device\USBFDO-2                                                                                                               fffffa8005c312c0
Device    \Driver\usbuhci \Device\USBPDO-0                                                                                                               fffffa8005c312c0
Device    \Driver\a4smf34t \Device\ScsiPort1                                                                                                             fffffa8005e1a2c0
 
---- Modules - GMER 2.1 ----
 
Module    \SystemRoot\System32\Drivers\a4smf34t.SYS                                                                                                      fffff88006da3000-fffff88006de8000 (282624 bytes)
 
---- Threads - GMER 2.1 ----
 
Thread    C:\Windows\System32\spoolsv.exe [1772:3252]                                                                                                    000007fef10410c8
Thread    C:\Windows\System32\spoolsv.exe [1772:2128]                                                                                                    000007fef1016144
Thread    C:\Windows\System32\spoolsv.exe [1772:3348]                                                                                                    000007fef95b5fd0
Thread    C:\Windows\System32\spoolsv.exe [1772:3264]                                                                                                    000007fef0dc3438
Thread    C:\Windows\System32\spoolsv.exe [1772:3312]                                                                                                    000007fef95b63ec
Thread    C:\Windows\System32\spoolsv.exe [1772:1944]                                                                                                    000007fef9b25e5c
Thread    C:\Windows\System32\spoolsv.exe [1772:1880]                                                                                                    000007fef10e5074
Thread    C:\Windows\system32\svchost.exe [2104:2736]                                                                                                    000007fef4d48470
Thread    C:\Windows\system32\svchost.exe [2104:2456]                                                                                                    000007fef4d52418
Thread    C:\Windows\system32\svchost.exe [2104:3316]                                                                                                    000007feea66f130
Thread    C:\Windows\system32\svchost.exe [2104:8880]                                                                                                    000007feea664734
Thread    C:\Windows\system32\svchost.exe [2104:10136]                                                                                                   000007feea664734
Thread    C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2172:2216]                                                     000007fef89db528
Thread    C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2172:2220]                                                     000007fef889b334
Thread    C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2172:2292]                                                     000007fef8891030
Thread    C:\Windows\system32\svchost.exe [2360:896]                                                                                                     000007fef95b5fd0
Thread    C:\Windows\system32\svchost.exe [2360:3912]                                                                                                    000007fef0dc3438
Thread    C:\Windows\system32\svchost.exe [2360:6432]                                                                                                    000007fef95b63ec
Thread    C:\Windows\system32\svchost.exe [3048:2412]                                                                                                    000007fefa072f9c
Thread    C:\Windows\System32\svchost.exe [2892:6576]                                                                                                    000007feebe49688
Thread    C:\Windows\system32\taskhost.exe [7128:6964]                                                                                                   000007fef535ef24
 
---- Registry - GMER 2.1 ----
 
Reg       HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002243d525b7                                                                    
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1                                                                                             771343423
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2                                                                                             285507792
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0                                                                                             1
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                                               
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                            C:\Program Files (x86)\DAEMON Tools Lite\
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                            0xD4 0xC3 0x97 0x02 ...
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                            0
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                         0x27 0xDE 0x76 0x3C ...
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                                                      
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                   0x20 0x01 0x00 0x00 ...
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                0x3E 0xAC 0xB9 0x77 ...
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                                                 
Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                           0x66 0xFE 0x4F 0x8F ...
Reg       HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002243d525b7 (not active ControlSet)                                                
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                                           
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                C:\Program Files (x86)\DAEMON Tools Lite\
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                0xD4 0xC3 0x97 0x02 ...
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                0
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                             0x27 0xDE 0x76 0x3C ...
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)                                  
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                       0x20 0x01 0x00 0x00 ...
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                    0x3E 0xAC 0xB9 0x77 ...
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)                             
Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                               0x66 0xFE 0x4F 0x8F ...
 
---- Files - GMER 2.1 ----
 
File      C:\ADSM_PData_0150                                                                                                                             0 bytes
File      C:\ADSM_PData_0150\DB                                                                                                                          0 bytes
File      C:\ADSM_PData_0150\DB\SI.db                                                                                                                    624 bytes
File      C:\ADSM_PData_0150\DB\UL.db                                                                                                                    16 bytes
File      C:\ADSM_PData_0150\DB\VL.db                                                                                                                    16 bytes
File      C:\ADSM_PData_0150\DB\WAL.db                                                                                                                   2048 bytes
File      C:\ADSM_PData_0150\DragWait.exe                                                                                                                315392 bytes executable
File      C:\ADSM_PData_0150\_avt                                                                                                                        512 bytes
 
---- EOF - GMER 2.1 ----

Compartilhar este post


Link para o post
Compartilhar em outros sites
Olá

 

Desculpe a demora :)

 

Se ainda precisa de ajuda refaça os logs, pois preciso dos mesmos com datas atualizadas: Leia Antes de Postar - Criando um novo Tópico

 

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

ATENÇÃO 4: Não anexe os logs, obrigado!

 

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites





Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×