Ir ao conteúdo
  • Comunicados

    • diego_moicano

      Gostaria de se tornar um analista em Remoção de Malware?   07-12-2015

      Gostaria de se tornar um analista em Remoção de Malware? O Fórum Clube do Hardware deu início a um programa de treinamento em análises de log. Os interessados deverão enviar um email para aprendizes (arroba) clubedohardware (ponto) com (ponto) br respondendo as seguintes perguntas: Por que você gostaria de aprender a analisar logs? Possui tempo hábil para o treinamento? Tem conhecimentos em informática? Se sim descreva-os. Possui inglês para leitura? Qual seu objetivo após completar o treinamento?   Não se esqueça de incluir no e-mail o seu nome de usuário (fornecer o link também), idade e cidade onde vive. Adicione também qualquer experiência e/ou razão sobre o porquê você seria um bom Analista. É digno de nota que apenas os que forem selecionados receberão resposta por MP (Mensagem Pessoal), não existe um padrão na escolha dos futuros aprendizes, todos os e-mails serão lidos e serão analisados de forma imparcial, portanto não será permitido reclamações neste aspecto. O treinamento é dado no próprio fórum. Quando um aprendiz é selecionado ele é movido para um novo grupo, onde terá acesso a fóruns fechados para os demais usuários onde poderá dar inicio ao seu treinamento. Importante: A cada 30 dias os e-mails não selecionados serão apagados, portanto você pode enviar um novo e-mail após 1 mês, e-mails enviados antes serão desconsiderados.  
    • Gabriel Torres

      Seja um moderador do Clube do Hardware!   12-02-2016

      Prezados membros do Clube do Hardware, Está aberto o processo de seleção de novos moderadores para diversos setores ou áreas do Clube do Hardware. Os requisitos são:   Pelo menos 500 posts e um ano de cadastro; Boa frequência de participação; Ser respeitoso, cordial e educado com os demais membros; Ter bom nível de português; Ter razoável conhecimento da área em que pretende atuar; Saber trabalhar em equipe (com os moderadores, coordenadores e administradores).   Os interessados deverão enviar uma mensagem privada para o usuário @Equipe Clube do Hardware com o título "Candidato a moderador". A mensagem deverá conter respostas às perguntas abaixo:   Qual o seu nome completo? Qual sua data de nascimento? Qual sua formação/profissão? Já atuou como moderador em algo outro fórum, se sim, qual? De forma sucinta, explique o porquê de querer ser moderador do fórum e conte-nos um pouco sobre você.   OBS: Não se trata de função remunerada. Todos que fazem parte do staff são voluntários.
Entre para seguir isso  
thiagos10

Trojan.Win32.Generic.pak!cobra

Recommended Posts

Ontem estava usando a máquina normalmente, o único processo diferente que realizei foi a atualização do Firefox para versão 5.

Hoje fui executar o Tibia.exe, o Ad-Watch Live! Atert bloqueou o processo e apareceu a seguinte mensagem:

Ad-Watch Live! Atert bloqueou o ínicio do processo tibia.exe(3376) no seu sistema. O processo foi identificado como Trojan.Win32.Generic.pak!cobra.

log DDS

.

DDS (Ver_2011-06-23.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_25

Run by Windows7 at 11:27:39 on 2011-06-25

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3839.2752 [GMT -3:00]

.

AV: Lavasoft Ad-Watch Live! Anti-vírus *Disabled/Updated* {9FF26384-70D4-CE6B-3ECB-E759A6A40116}

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\IObit\Advanced SystemCare 4\Register.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\notepad.exe

C:\Windows\SysWOW64\ctfmon.exe

C:\Windows\system32\DllHost.exe

C:\Windows\system32\DllHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com.br/

uSearch Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076

mWinlogon: Userinit=userinit.exe,

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

BHO: {dbc80044-a445-435b-bc74-9c25c1c588a9} - Java Plug-In 2 SSV Helper

TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

TB: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

uRun: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

uRun: [Advanced SystemCare 4] "C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe"

mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

mRun: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 200.204.0.10 200.204.0.138

TCP: Interfaces\{DF23754E-6603-4319-9EBB-3E284BF2ECB8} : DhcpNameServer = 200.204.0.10 200.204.0.138

{3049C3E9-B461-4BC5-8870-4C09146192CA}

{53707962-6F74-2D53-2644-206D7942484F}

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

{9030D464-4C02-4ABF-8ECC-5164760863C6}

{D4027C7F-154A-4066-A1AD-4243D8127440}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

{D4027C7F-154A-4066-A1AD-4243D8127440}

TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

mRun-x64: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

mRun-x64: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

Hosts: 127.0.0.1 www.spywareinfo.com

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Windows7\AppData\Roaming\Mozilla\Firefox\Profiles\c8jxh470.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=66726

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60076&qkw=

FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

.

---- FIREFOX POLICIES ----

FF - user.js: browser.cache.memory.capacity - 65536

FF - user.js: browser.chrome.favicons - fales

FF - user.js: browser.display.show_image_placeholders - true

FF - user.js: browser.turbo.enabled - true

FF - user.js: browser.urlbar.autocomplete.enabled - true

FF - user.js: browser.urlbar.autofill - true

FF - user.js: content.interrupt.parsing - true

FF - user.js: content.max.tokenizing.time - 2250000

FF - user.js: content.notify.backoffcount - 5

FF - user.js: content.notify.interval - 750000

FF - user.js: content.notify.ontimer - true

FF - user.js: content.switch.threshold - 750000

FF - user.js: network.http.max-connections - 48

FF - user.js: network.http.max-connections-per-server - 16

FF - user.js: network.http.max-persistent-connections-per-proxy - 16

FF - user.js: network.http.max-persistent-connections-per-server - 8

FF - user.js: network.http.pipelining - true

FF - user.js: network.http.pipelining.firstrequest - true

FF - user.js: network.http.pipelining.maxrequests - 8

FF - user.js: network.http.proxy.pipelining - true

FF - user.js: network.http.request.max-start-delay - 0

FF - user.js: nglayout.initialpaint.delay - 0

FF - user.js: plugin.expose_full_path - true

FF - user.js: ui.submenuDelay - 0

.

============= SERVICES / DRIVERS ===============

.

R0 Lbd;Lbd;C:\Windows\system32\DRIVERS\Lbd.sys --> C:\Windows\system32\DRIVERS\Lbd.sys [?]

R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]

R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-6-25 353168]

R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-6-20 42184]

R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-6-25 821080]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-6-9 366640]

R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-3-1 1153368]

R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-5-20 539184]

R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;\??\C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys --> C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys [?]

R3 pctNDIS;PC Tools Driver;C:\Windows\system32\DRIVERS\pctNdis64.sys --> C:\Windows\system32\DRIVERS\pctNdis64.sys [?]

R3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2011-6-25 33184]

R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-3-2 2151128]

S2 PCToolsFirewallPlus;PC Tools Firewall Plus;C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [2011-3-1 818432]

S3 pctplfw;pctplfw;\??\C:\Windows\System32\drivers\pctplfw64.sys --> C:\Windows\System32\drivers\pctplfw64.sys [?]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2011-6-25 21328]

S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-6-25 20336]

.

=============== Created Last 30 ================

.

2011-06-25 02:03:18 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll

2011-06-25 02:03:17 1998168 ----a-w- C:\Program Files (x86)\Mozilla Firefox\d3dx9_43.dll

2011-06-24 16:10:17 8873296 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A03CEE42-BB46-4BE1-A097-0795602E9EF7}\mpengine.dll

2011-06-16 22:49:03 -------- d-----w- C:\ProgramData\Sports Interactive

2011-06-16 22:48:05 -------- d-----w- C:\Users\Windows7\AppData\Local\Sports Interactive

2011-06-16 22:39:05 -------- d--h--w- C:\Program Files (x86)\Zero G Registry

2011-06-16 22:39:05 -------- d-----w- C:\Program Files (x86)\Sports Interactive

2011-06-16 22:38:45 -------- d--h--w- C:\Users\Windows7\InstallAnywhere

2011-06-16 22:37:57 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Sports Interactive

2011-06-16 22:28:10 499200 ----a-w- C:\Windows\System32\drivers\afd.sys

2011-06-16 22:28:10 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2011-06-16 22:28:06 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

2011-06-16 22:28:05 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

2011-06-16 22:28:05 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

2011-06-16 22:26:55 3135488 ----a-w- C:\Windows\System32\win32k.sys

2011-06-16 22:26:54 467456 ----a-w- C:\Windows\System32\drivers\srv.sys

2011-06-16 22:26:54 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys

2011-06-16 22:26:54 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys

2011-06-16 22:26:42 861696 ----a-w- C:\Windows\System32\oleaut32.dll

2011-06-16 22:26:42 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

2011-06-16 22:26:40 976896 ----a-w- C:\Windows\System32\inetcomm.dll

2011-06-16 22:26:40 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll

2011-06-09 23:58:36 -------- d-----w- C:\Program Files (x86)\Marcos Velasco Security

2011-06-05 00:15:44 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Canneverbe Limited

2011-06-05 00:15:44 -------- d-----w- C:\ProgramData\Canneverbe Limited

2011-06-03 01:11:39 -------- d-----w- C:\Users\Windows7\.VirtualBox

2011-06-03 01:07:42 231600 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys

2011-06-03 01:07:26 56752 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys

2011-06-03 01:07:20 -------- d-----w- C:\Program Files\Oracle

2011-05-31 02:06:16 -------- d-----w- C:\Users\Windows7\AppData\Local\VMware

2011-05-31 01:25:48 80944 ----a-w- C:\Windows\System32\drivers\vmci.sys

2011-05-31 01:25:43 18480 ----a-w- C:\Windows\System32\drivers\VMparport.sys

2011-05-31 01:25:42 68656 ----a-w- C:\Windows\System32\drivers\vmx86.sys

2011-05-31 01:24:21 334384 ----a-w- C:\Windows\SysWow64\vmnetdhcp.exe

2011-05-31 01:24:17 399920 ----a-w- C:\Windows\SysWow64\vmnat.exe

2011-05-31 01:24:16 30256 ----a-w- C:\Windows\System32\drivers\vmnetuserif.sys

2011-05-31 01:24:11 968752 ----a-w- C:\Windows\System32\vnetlib64.dll

2011-05-31 01:23:17 31792 ----a-w- C:\Windows\System32\drivers\VMkbd.sys

2011-05-31 01:23:15 38448 ----a-w- C:\Windows\System32\drivers\hcmon.sys

2011-05-31 01:22:46 -------- d-----w- C:\Program Files (x86)\Common Files\VMware

2011-05-31 01:22:10 -------- d-----w- C:\Program Files (x86)\VMware

2011-05-27 02:51:20 -------- d-----w- C:\Users\Windows7\.android

.

==================== Find3M ====================

.

2011-05-29 12:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys

2011-05-29 12:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys

2011-05-24 22:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe

2011-05-23 02:45:46 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2011-05-19 03:08:39 521448 ----a-w- C:\Windows\System32\deployJava1.dll

2011-05-16 21:35:14 176560 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys

2011-05-16 21:35:14 156912 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys

2011-05-16 21:35:10 320816 ----a-w- C:\Windows\System32\VBoxNetFltNotify.dll

2011-05-12 21:44:39 2437120 ----a-w- C:\ProgramData\Tibia.bak

2011-05-10 12:10:59 40112 ----a-w- C:\Windows\avastSS.scr

2011-05-10 12:04:08 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

2011-05-10 11:59:48 64344 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

2011-04-23 01:29:25 2303488 ----a-w- C:\Windows\System32\jscript9.dll

2011-04-23 01:19:19 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2011-04-22 23:35:56 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

2011-04-22 23:25:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

2011-04-22 05:06:48 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

2011-04-18 10:23:39 16432 ----a-w- C:\Windows\System32\lsdelete.exe

2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe

2011-04-09 06:58:56 142336 ----a-w- C:\Windows\System32\poqexec.exe

2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

2011-04-09 05:56:38 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe

.

============= FINISH: 11:28:33,81 ===============

Log Attach

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-06-23.01)

.

Microsoft Windows 7 Ultimate

Boot Device: \Device\HarddiskVolume2

Install Date: 01/03/2011 20:26:43

System Uptime: 25/06/2011 10:43:20 (1 hours ago)

.

Motherboard: | | Phitronics N68C-M

Processor: AMD Phenom 9150e Quad-Core Processor | CPUSocket | 1808/200mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 79 GiB total, 36,575 GiB free.

D: is FIXED (NTFS) - 850 GiB total, 523,95 GiB free.

E: is CDROM ()

F: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP84: 09/06/2011 23:42:43 - Installed Tibiacast

RP85: 16/06/2011 19:06:18 - Windows Update

RP86: 16/06/2011 19:42:15 - DirectX instalado

RP87: 17/06/2011 00:35:15 - Windows Update

RP88: 21/06/2011 19:02:18 - Windows Update

RP89: 24/06/2011 00:25:17 - Windows Update

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

Ad-Aware

Adobe AIR

Adobe Community Help

Adobe Dreamweaver CS5

Adobe Fireworks CS5

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Media Player

Advanced SystemCare 4

Apple Application Support

Apple Software Update

Argente - Registry Cleaner 2.0.0.5

Arquivo do WinRAR

Ask Toolbar

Assistente de Conexão do Windows Live

Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)

Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

Atualização do produto Microsoft Office Word 2007 Help (KB963665)

avast! Free Antivirus

Camtasia Studio 7

DAEMON Tools Lite

Digsby

Ferramenta de Carregamento do Windows Live

Football Manager 2011

Foxit PDF Editor

Foxit Reader

InstantBoot

IObit Malware Fighter

Java Auto Updater

Java 6 Update 25

Java SE Development Kit 6 Update 25

K-Lite Codec Pack 6.6.6 (Full)

Magebot

Malwarebytes' Anti-Malware versão 1.51.0.1200

Microsoft .NET Framework 1.1

Microsoft Choice Guard

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Portuguese (Brazil)) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (Portuguese (Brazil)) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

Microsoft Office Standard 2007

Microsoft Office Word MUI (Portuguese (Brazil)) 2007

Microsoft Silverlight

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Mozilla Firefox 5.0 (x86 pt-BR)

MSVCRT

MV RegClean 6.0

Nimbuzz 1.5.0

PC Tools Firewall Plus 6.0

Platform

Power NT

Protected Folder

QuickTime

Real Alternative 2.0.2

RealPlayer

RealUpgrade 1.0

Rosetta Stone Version 3

Security Update for 2007 Microsoft Office System (KB2288621)

Security Update for 2007 Microsoft Office System (KB2288931)

Security Update for 2007 Microsoft Office System (KB2345043)

Security Update for 2007 Microsoft Office System (KB2509488)

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB976321)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

Security Update for Microsoft Office 2007 System (KB2541012)

Security Update for Microsoft Office Excel 2007 (KB2541007)

Security Update for Microsoft Office InfoPath 2007 (KB979441)

Security Update for Microsoft Office PowerPoint 2007 (KB2535818)

Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Security Update for Microsoft Office Word 2007 (KB2344993)

Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

Spybot - Search & Destroy

Spyware Terminator

Sun Java Wireless Toolkit 2.5.2_01 for CLDC

TeamSpeak 2 RC2

TeamSpeak 3 Client

The Rosetta Stone

Tibia

Tibiacast

tools-freebsd

tools-linux

tools-netware

tools-solaris

tools-windows

tools-winPre2k

UltraISO Premium V9.35

Update for 2007 Microsoft Office System (KB2284654)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Update for Microsoft Office 2007 System (KB2539530)

Update for Microsoft Office Outlook 2007 (KB2509470)

Update for Outlook 2007 Junk Email Filter (KB2536413)

VIA Gerenciador de dispositivo de plataforma

Visual C++ 2008 x86 Runtime - (v9.0.30729)

Visual C++ 2008 x86 Runtime - v9.0.30729.01

VMware Workstation

WampServer 2.1

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

Windows Media Player Firefox Plugin

.

==== End Of File ===========================

Agradeço o espaço,

Obrigado.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá

Desculpe a demora :)

Se ainda precisa de ajuda refaça os logs, pois preciso dos mesmos com datas atualizadas: Leia Antes de Postar - Criando um novo Tópico

ATENÇÃO 1: Não precisa abrir um novo tópico, coloque os novos logs neste mesmo tópico, obrigado!

ATENÇÃO 2: Não edite seu tópico, use o botão responder, obrigado!

ATENÇÃO 3: Não coloque os logs entre TAGS, obrigado!

Abraços :D

Compartilhar este post


Link para o post
Compartilhar em outros sites
  • Autor do tópico
  • Muito obrigado pela ajuda

    Realizei novos logs

    LOG DDS

    .

    DDS (Ver_2011-06-23.01) - NTFSAMD64

    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_25

    Run by Windows7 at 23:21:44 on 2011-06-28

    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3839.2699 [GMT -3:00]

    .

    AV: Lavasoft Ad-Watch Live! Anti-vírus *Disabled/Updated* {9FF26384-70D4-CE6B-3ECB-E759A6A40116}

    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

    .

    ============== Running Processes ===============

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\taskhost.exe

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\Explorer.EXE

    C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe

    C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe

    C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

    C:\Program Files\Alwil Software\Avast5\AvastUI.exe

    C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

    C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

    C:\Windows\system32\SearchIndexer.exe

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Windows\system32\AUDIODG.EXE

    C:\Windows\SysWOW64\ctfmon.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\SysWOW64\cmd.exe

    C:\Windows\system32\conhost.exe

    C:\Windows\SysWOW64\cscript.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com.br/

    uSearch Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076

    mWinlogon: Userinit=userinit.exe,

    BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

    BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    BHO: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    BHO: {dbc80044-a445-435b-bc74-9c25c1c588a9} - Java Plug-In 2 SSV Helper

    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    TB: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    uRun: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

    mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    mPolicies-explorer: NoActiveDesktop = 1 (0x1)

    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

    IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    TCP: DhcpNameServer = 200.204.0.10 200.204.0.138

    TCP: Interfaces\{DF23754E-6603-4319-9EBB-3E284BF2ECB8} : DhcpNameServer = 200.204.0.10 200.204.0.138

    {3049C3E9-B461-4BC5-8870-4C09146192CA}

    {53707962-6F74-2D53-2644-206D7942484F}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {9030D464-4C02-4ABF-8ECC-5164760863C6}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    {DBC80044-A445-435b-BC74-9C25C1C588A9}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun-x64: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun-x64: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mRun-x64: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    Hosts: 127.0.0.1 www.spywareinfo.com

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - C:\Users\Windows7\AppData\Roaming\Mozilla\Firefox\Profiles\c8jxh470.default\

    FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=66726

    FF - prefs.js: browser.search.selectedEngine - Google

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60076&qkw=

    FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

    .

    ---- FIREFOX POLICIES ----

    FF - user.js: browser.cache.memory.capacity - 65536

    FF - user.js: browser.chrome.favicons - fales

    FF - user.js: browser.display.show_image_placeholders - true

    FF - user.js: browser.turbo.enabled - true

    FF - user.js: browser.urlbar.autocomplete.enabled - true

    FF - user.js: browser.urlbar.autofill - true

    FF - user.js: content.interrupt.parsing - true

    FF - user.js: content.max.tokenizing.time - 2250000

    FF - user.js: content.notify.backoffcount - 5

    FF - user.js: content.notify.interval - 750000

    FF - user.js: content.notify.ontimer - true

    FF - user.js: content.switch.threshold - 750000

    FF - user.js: network.http.max-connections - 48

    FF - user.js: network.http.max-connections-per-server - 16

    FF - user.js: network.http.max-persistent-connections-per-proxy - 16

    FF - user.js: network.http.max-persistent-connections-per-server - 8

    FF - user.js: network.http.pipelining - true

    FF - user.js: network.http.pipelining.firstrequest - true

    FF - user.js: network.http.pipelining.maxrequests - 8

    FF - user.js: network.http.proxy.pipelining - true

    FF - user.js: network.http.request.max-start-delay - 0

    FF - user.js: nglayout.initialpaint.delay - 0

    FF - user.js: plugin.expose_full_path - true

    FF - user.js: ui.submenuDelay - 0

    .

    ============= SERVICES / DRIVERS ===============

    .

    R0 Lbd;Lbd;C:\Windows\system32\DRIVERS\Lbd.sys --> C:\Windows\system32\DRIVERS\Lbd.sys [?]

    R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]

    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

    R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]

    R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-6-25 353168]

    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-6-20 42184]

    R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-6-25 821080]

    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-6-9 366640]

    R2 PCToolsFirewallPlus;PC Tools Firewall Plus;C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [2011-3-1 818432]

    R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-3-1 1153368]

    R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-5-20 539184]

    R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

    R3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;\??\C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys --> C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys [?]

    R3 pctNDIS;PC Tools Driver;C:\Windows\system32\DRIVERS\pctNdis64.sys --> C:\Windows\system32\DRIVERS\pctNdis64.sys [?]

    R3 pctplfw;pctplfw;\??\C:\Windows\System32\drivers\pctplfw64.sys --> C:\Windows\System32\drivers\pctplfw64.sys [?]

    R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

    S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-3-2 2151640]

    S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-6-25 20336]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

    S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2011-6-25 33184]

    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

    S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2011-6-25 21328]

    S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

    .

    =============== Created Last 30 ================

    .

    2011-06-28 16:36:36 8873296 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8F5FF859-A968-4A01-A5C3-E6C3CD961DFB}\mpengine.dll

    2011-06-25 23:21:51 32136 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe

    2011-06-25 23:21:51 18232 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys

    2011-06-25 02:03:18 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll

    2011-06-25 02:03:17 1998168 ----a-w- C:\Program Files (x86)\Mozilla Firefox\d3dx9_43.dll

    2011-06-16 22:49:03 -------- d-----w- C:\ProgramData\Sports Interactive

    2011-06-16 22:48:05 -------- d-----w- C:\Users\Windows7\AppData\Local\Sports Interactive

    2011-06-16 22:39:05 -------- d--h--w- C:\Program Files (x86)\Zero G Registry

    2011-06-16 22:39:05 -------- d-----w- C:\Program Files (x86)\Sports Interactive

    2011-06-16 22:38:45 -------- d--h--w- C:\Users\Windows7\InstallAnywhere

    2011-06-16 22:37:57 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Sports Interactive

    2011-06-16 22:28:10 499200 ----a-w- C:\Windows\System32\drivers\afd.sys

    2011-06-16 22:28:10 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys

    2011-06-16 22:28:06 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

    2011-06-16 22:28:05 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

    2011-06-16 22:28:05 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

    2011-06-16 22:26:55 3135488 ----a-w- C:\Windows\System32\win32k.sys

    2011-06-16 22:26:54 467456 ----a-w- C:\Windows\System32\drivers\srv.sys

    2011-06-16 22:26:54 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys

    2011-06-16 22:26:54 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys

    2011-06-16 22:26:42 861696 ----a-w- C:\Windows\System32\oleaut32.dll

    2011-06-16 22:26:42 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

    2011-06-16 22:26:40 976896 ----a-w- C:\Windows\System32\inetcomm.dll

    2011-06-16 22:26:40 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll

    2011-06-09 23:58:36 -------- d-----w- C:\Program Files (x86)\Marcos Velasco Security

    2011-06-05 00:15:44 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Canneverbe Limited

    2011-06-05 00:15:44 -------- d-----w- C:\ProgramData\Canneverbe Limited

    2011-06-03 01:11:39 -------- d-----w- C:\Users\Windows7\.VirtualBox

    2011-06-03 01:07:42 231600 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys

    2011-06-03 01:07:26 56752 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys

    2011-06-03 01:07:20 -------- d-----w- C:\Program Files\Oracle

    2011-05-31 02:06:16 -------- d-----w- C:\Users\Windows7\AppData\Local\VMware

    2011-05-31 01:25:48 80944 ----a-w- C:\Windows\System32\drivers\vmci.sys

    2011-05-31 01:25:43 18480 ----a-w- C:\Windows\System32\drivers\VMparport.sys

    2011-05-31 01:25:42 68656 ----a-w- C:\Windows\System32\drivers\vmx86.sys

    2011-05-31 01:24:21 334384 ----a-w- C:\Windows\SysWow64\vmnetdhcp.exe

    2011-05-31 01:24:17 399920 ----a-w- C:\Windows\SysWow64\vmnat.exe

    2011-05-31 01:24:16 30256 ----a-w- C:\Windows\System32\drivers\vmnetuserif.sys

    2011-05-31 01:24:11 968752 ----a-w- C:\Windows\System32\vnetlib64.dll

    2011-05-31 01:23:17 31792 ----a-w- C:\Windows\System32\drivers\VMkbd.sys

    2011-05-31 01:23:15 38448 ----a-w- C:\Windows\System32\drivers\hcmon.sys

    2011-05-31 01:22:46 -------- d-----w- C:\Program Files (x86)\Common Files\VMware

    2011-05-31 01:22:10 -------- d-----w- C:\Program Files (x86)\VMware

    .

    ==================== Find3M ====================

    .

    2011-06-28 16:34:17 55384 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys

    2011-05-29 12:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys

    2011-05-29 12:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys

    2011-05-24 22:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe

    2011-05-23 02:45:46 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

    2011-05-19 03:08:39 521448 ----a-w- C:\Windows\System32\deployJava1.dll

    2011-05-16 21:35:14 176560 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys

    2011-05-16 21:35:14 156912 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys

    2011-05-16 21:35:10 320816 ----a-w- C:\Windows\System32\VBoxNetFltNotify.dll

    2011-05-12 21:44:39 2437120 ----a-w- C:\ProgramData\Tibia.bak

    2011-05-10 12:10:59 40112 ----a-w- C:\Windows\avastSS.scr

    2011-05-10 12:04:08 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

    2011-05-10 11:59:48 64344 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

    2011-04-23 01:29:25 2303488 ----a-w- C:\Windows\System32\jscript9.dll

    2011-04-23 01:19:19 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

    2011-04-22 23:35:56 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

    2011-04-22 23:25:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

    2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

    2011-04-22 05:06:48 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

    2011-04-18 10:23:39 16432 ----a-w- C:\Windows\System32\lsdelete.exe

    2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe

    2011-04-09 06:58:56 142336 ----a-w- C:\Windows\System32\poqexec.exe

    2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

    2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

    2011-04-09 05:56:38 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe

    .

    ============= FINISH: 23:22:37,97 ===============

    LOG ATTACH

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2011-06-23.01)

    .

    Microsoft Windows 7 Ultimate

    Boot Device: \Device\HarddiskVolume2

    Install Date: 01/03/2011 20:26:43

    System Uptime: 28/06/2011 22:59:13 (1 hours ago)

    .

    Motherboard: | | Phitronics N68C-M

    Processor: AMD Phenom 9150e Quad-Core Processor | CPUSocket | 1808/200mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 79 GiB total, 42,853 GiB free.

    D: is FIXED (NTFS) - 850 GiB total, 523,522 GiB free.

    E: is CDROM ()

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP90: 28/06/2011 13:35:46 - Windows Update

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    Ad-Aware

    Adobe AIR

    Adobe Community Help

    Adobe Dreamweaver CS5

    Adobe Fireworks CS5

    Adobe Flash Player 10 ActiveX

    Adobe Flash Player 10 Plugin

    Adobe Media Player

    Advanced SystemCare 4

    Apple Application Support

    Apple Software Update

    Argente - Registry Cleaner 2.0.0.5

    Arquivo do WinRAR

    Ask Toolbar

    Assistente de Conexão do Windows Live

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    avast! Free Antivirus

    Camtasia Studio 7

    DAEMON Tools Lite

    Digsby

    Ferramenta de Carregamento do Windows Live

    Football Manager 2011

    Foxit PDF Editor

    Foxit Reader

    Game Booster

    InstantBoot

    IObit Malware Fighter

    Java Auto Updater

    Java 6 Update 25

    Java SE Development Kit 6 Update 25

    K-Lite Codec Pack 6.6.6 (Full)

    Magebot

    Malwarebytes' Anti-Malware versão 1.51.0.1200

    Microsoft .NET Framework 1.1

    Microsoft Choice Guard

    Microsoft Office 2007 Service Pack 2 (SP2)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Standard 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Silverlight

    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

    Microsoft_VC80_ATL_x86

    Microsoft_VC80_CRT_x86

    Microsoft_VC80_MFC_x86

    Microsoft_VC80_MFCLOC_x86

    Microsoft_VC90_ATL_x86

    Microsoft_VC90_CRT_x86

    Microsoft_VC90_MFC_x86

    Mozilla Firefox 5.0 (x86 pt-BR)

    MSVCRT

    MV RegClean 6.0

    Nimbuzz 1.5.0

    PC Tools Firewall Plus 6.0

    Platform

    Power NT

    Protected Folder

    QuickTime

    Real Alternative 2.0.2

    RealPlayer

    RealUpgrade 1.0

    Rosetta Stone Version 3

    Security Update for 2007 Microsoft Office System (KB2288621)

    Security Update for 2007 Microsoft Office System (KB2288931)

    Security Update for 2007 Microsoft Office System (KB2345043)

    Security Update for 2007 Microsoft Office System (KB2509488)

    Security Update for 2007 Microsoft Office System (KB969559)

    Security Update for 2007 Microsoft Office System (KB976321)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

    Security Update for Microsoft Office 2007 System (KB2541012)

    Security Update for Microsoft Office Excel 2007 (KB2541007)

    Security Update for Microsoft Office InfoPath 2007 (KB979441)

    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)

    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)

    Security Update for Microsoft Office system 2007 (972581)

    Security Update for Microsoft Office system 2007 (KB974234)

    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

    Security Update for Microsoft Office Word 2007 (KB2344993)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Smart Defrag 2

    Spybot - Search & Destroy

    Spyware Terminator

    Sun Java Wireless Toolkit 2.5.2_01 for CLDC

    TeamSpeak 2 RC2

    TeamSpeak 3 Client

    The Rosetta Stone

    Tibia

    Tibiacast

    tools-freebsd

    tools-linux

    tools-netware

    tools-solaris

    tools-windows

    tools-winPre2k

    UltraISO Premium V9.35

    Update for 2007 Microsoft Office System (KB2284654)

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

    Update for Microsoft Office 2007 System (KB2539530)

    Update for Microsoft Office Outlook 2007 (KB2509470)

    Update for Outlook 2007 Junk Email Filter (KB2536413)

    VIA Gerenciador de dispositivo de plataforma

    Visual C++ 2008 x86 Runtime - (v9.0.30729)

    Visual C++ 2008 x86 Runtime - v9.0.30729.01

    VMware Workstation

    WampServer 2.1

    Windows Live Call

    Windows Live Communications Platform

    Windows Live Essentials

    Windows Live Messenger

    Windows Media Player Firefox Plugin

    .

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro thiagos10

    Recomendo que salve este tópico em seus Favoritos para facilitar na hora de encontrá-lo.

    Por favor, atente para o seguinte:

    • Caso fique sem resposta durante 3 dias, me envie uma Mensagem Privada (MP);
    • O que será passado aqui, somente será com relação ao problema do seu computador portanto, não faça mais em nenhum outro;
    • Siga, por favor, atentamente as instruções passadas e em caso de dúvidas não hesite em perguntá-las;
    • Sempre coloque suas respostas neste tópico... Não abra outro!
    • Procure sempre me manter informado, durante a remoção, sobre o que acontece com seu computador.
    • Observação: Não tome outra medida além das passadas aqui; atente para que, caso peça ajuda em outro fórum, não deixe de nos informar, sob risco de desconfigurar seu computador!

    # Etapa nº 1 #

    Vejo que em seu PC você tem dois antivírus instalados, não é recomendável ter dois AVs, então escolha um deles e desinstale o outro.

    AV: Lavasoft Ad-Watch Live! Anti-vÃ*rus

    AV: avast! Antivirus

    Depois disso, faça um novo log do DDS e poste aqui.

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Removi o AV: Lavasoft Ad-Watch Live! Anti-virus

    e realizei novos logs.

    DDS.txt

    .

    DDS (Ver_2011-06-23.01) - NTFSAMD64

    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_25

    Run by Windows7 at 19:09:10 on 2011-07-01

    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3839.2738 [GMT -3:00]

    .

    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

    .

    ============== Running Processes ===============

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\AUDIODG.EXE

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\system32\taskhost.exe

    C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\Explorer.EXE

    C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe

    C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\system32\SearchIndexer.exe

    C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

    C:\Program Files\Alwil Software\Avast5\AvastUI.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\system32\SearchProtocolHost.exe

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    C:\Windows\system32\SearchFilterHost.exe

    C:\Windows\SysWOW64\ctfmon.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\SysWOW64\cmd.exe

    C:\Windows\system32\conhost.exe

    C:\Windows\SysWOW64\cscript.exe

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com.br/

    uSearch Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076

    mWinlogon: Userinit=userinit.exe,

    BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

    BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    BHO: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    BHO: {dbc80044-a445-435b-bc74-9c25c1c588a9} - Java Plug-In 2 SSV Helper

    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    TB: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    uRun: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

    mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    mPolicies-explorer: NoActiveDesktop = 1 (0x1)

    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

    IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab

    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    TCP: DhcpNameServer = 200.204.0.10 200.204.0.138

    TCP: Interfaces\{DF23754E-6603-4319-9EBB-3E284BF2ECB8} : DhcpNameServer = 200.204.0.10 200.204.0.138

    {3049C3E9-B461-4BC5-8870-4C09146192CA}

    {53707962-6F74-2D53-2644-206D7942484F}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {9030D464-4C02-4ABF-8ECC-5164760863C6}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    {DBC80044-A445-435b-BC74-9C25C1C588A9}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun-x64: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun-x64: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mRun-x64: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    Hosts: 127.0.0.1 www.spywareinfo.com

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - C:\Users\Windows7\AppData\Roaming\Mozilla\Firefox\Profiles\c8jxh470.default\

    FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=66726

    FF - prefs.js: browser.search.selectedEngine - Google

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60076&qkw=

    FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

    .

    ---- FIREFOX POLICIES ----

    FF - user.js: browser.cache.memory.capacity - 65536

    FF - user.js: browser.chrome.favicons - fales

    FF - user.js: browser.display.show_image_placeholders - true

    FF - user.js: browser.turbo.enabled - true

    FF - user.js: browser.urlbar.autocomplete.enabled - true

    FF - user.js: browser.urlbar.autofill - true

    FF - user.js: content.interrupt.parsing - true

    FF - user.js: content.max.tokenizing.time - 2250000

    FF - user.js: content.notify.backoffcount - 5

    FF - user.js: content.notify.interval - 750000

    FF - user.js: content.notify.ontimer - true

    FF - user.js: content.switch.threshold - 750000

    FF - user.js: network.http.max-connections - 48

    FF - user.js: network.http.max-connections-per-server - 16

    FF - user.js: network.http.max-persistent-connections-per-proxy - 16

    FF - user.js: network.http.max-persistent-connections-per-server - 8

    FF - user.js: network.http.pipelining - true

    FF - user.js: network.http.pipelining.firstrequest - true

    FF - user.js: network.http.pipelining.maxrequests - 8

    FF - user.js: network.http.proxy.pipelining - true

    FF - user.js: network.http.request.max-start-delay - 0

    FF - user.js: nglayout.initialpaint.delay - 0

    FF - user.js: plugin.expose_full_path - true

    FF - user.js: ui.submenuDelay - 0

    .

    ============= SERVICES / DRIVERS ===============

    .

    R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]

    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

    R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]

    R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-6-25 353168]

    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-6-20 42184]

    R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-6-25 821080]

    R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-3-1 1153368]

    R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-5-20 539184]

    R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

    R3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;\??\C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys --> C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys [?]

    R3 pctNDIS;PC Tools Driver;C:\Windows\system32\DRIVERS\pctNdis64.sys --> C:\Windows\system32\DRIVERS\pctNdis64.sys [?]

    R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

    S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-6-9 366640]

    S2 PCToolsFirewallPlus;PC Tools Firewall Plus;C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [2011-3-1 818432]

    S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-6-25 20336]

    S3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

    S3 pctplfw;pctplfw;\??\C:\Windows\System32\drivers\pctplfw64.sys --> C:\Windows\System32\drivers\pctplfw64.sys [?]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

    S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2011-6-25 33184]

    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

    S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2011-6-25 21328]

    S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

    .

    =============== Created Last 30 ================

    .

    2011-07-01 15:56:01 8873296 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F490CF29-6EF3-4AEE-96D9-F88816A1B400}\mpengine.dll

    2011-06-25 23:21:51 32136 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe

    2011-06-25 23:21:51 18232 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys

    2011-06-25 02:03:18 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll

    2011-06-25 02:03:17 1998168 ----a-w- C:\Program Files (x86)\Mozilla Firefox\d3dx9_43.dll

    2011-06-16 22:49:03 -------- d-----w- C:\ProgramData\Sports Interactive

    2011-06-16 22:48:05 -------- d-----w- C:\Users\Windows7\AppData\Local\Sports Interactive

    2011-06-16 22:39:05 -------- d--h--w- C:\Program Files (x86)\Zero G Registry

    2011-06-16 22:39:05 -------- d-----w- C:\Program Files (x86)\Sports Interactive

    2011-06-16 22:38:45 -------- d--h--w- C:\Users\Windows7\InstallAnywhere

    2011-06-16 22:37:57 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Sports Interactive

    2011-06-16 22:28:10 499200 ----a-w- C:\Windows\System32\drivers\afd.sys

    2011-06-16 22:28:10 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys

    2011-06-16 22:28:06 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

    2011-06-16 22:28:05 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

    2011-06-16 22:28:05 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

    2011-06-16 22:26:55 3135488 ----a-w- C:\Windows\System32\win32k.sys

    2011-06-16 22:26:54 467456 ----a-w- C:\Windows\System32\drivers\srv.sys

    2011-06-16 22:26:54 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys

    2011-06-16 22:26:54 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys

    2011-06-16 22:26:42 861696 ----a-w- C:\Windows\System32\oleaut32.dll

    2011-06-16 22:26:42 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

    2011-06-16 22:26:40 976896 ----a-w- C:\Windows\System32\inetcomm.dll

    2011-06-16 22:26:40 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll

    2011-06-09 23:58:36 -------- d-----w- C:\Program Files (x86)\Marcos Velasco Security

    2011-06-05 00:15:44 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Canneverbe Limited

    2011-06-05 00:15:44 -------- d-----w- C:\ProgramData\Canneverbe Limited

    2011-06-03 01:11:39 -------- d-----w- C:\Users\Windows7\.VirtualBox

    2011-06-03 01:07:42 231600 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys

    2011-06-03 01:07:26 56752 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys

    2011-06-03 01:07:20 -------- d-----w- C:\Program Files\Oracle

    .

    ==================== Find3M ====================

    .

    2011-06-28 16:34:17 55384 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys

    2011-05-29 12:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys

    2011-05-29 12:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys

    2011-05-24 22:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe

    2011-05-24 11:42:55 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll

    2011-05-24 10:40:05 64512 ----a-w- C:\Windows\SysWow64\devobj.dll

    2011-05-24 10:40:05 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll

    2011-05-24 10:39:38 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll

    2011-05-24 10:37:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe

    2011-05-23 02:45:46 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

    2011-05-19 03:08:39 521448 ----a-w- C:\Windows\System32\deployJava1.dll

    2011-05-16 21:35:14 176560 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys

    2011-05-16 21:35:14 156912 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys

    2011-05-16 21:35:10 320816 ----a-w- C:\Windows\System32\VBoxNetFltNotify.dll

    2011-05-12 21:44:39 2437120 ----a-w- C:\ProgramData\Tibia.bak

    2011-05-10 12:10:59 40112 ----a-w- C:\Windows\avastSS.scr

    2011-05-10 12:04:08 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

    2011-05-10 11:59:48 64344 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

    2011-05-04 05:25:03 2315776 ----a-w- C:\Windows\System32\tquery.dll

    2011-05-04 05:22:25 778752 ----a-w- C:\Windows\System32\mssvp.dll

    2011-05-04 05:22:25 2223616 ----a-w- C:\Windows\System32\mssrch.dll

    2011-05-04 05:22:24 75264 ----a-w- C:\Windows\System32\msscntrs.dll

    2011-05-04 05:22:24 491520 ----a-w- C:\Windows\System32\mssph.dll

    2011-05-04 05:22:24 288256 ----a-w- C:\Windows\System32\mssphtb.dll

    2011-05-04 05:19:28 591872 ----a-w- C:\Windows\System32\SearchIndexer.exe

    2011-05-04 05:19:28 249856 ----a-w- C:\Windows\System32\SearchProtocolHost.exe

    2011-05-04 05:19:28 113664 ----a-w- C:\Windows\System32\SearchFilterHost.exe

    2011-05-04 04:34:43 1549312 ----a-w- C:\Windows\SysWow64\tquery.dll

    2011-05-04 04:32:02 666624 ----a-w- C:\Windows\SysWow64\mssvp.dll

    2011-05-04 04:32:01 337408 ----a-w- C:\Windows\SysWow64\mssph.dll

    2011-05-04 04:32:01 197120 ----a-w- C:\Windows\SysWow64\mssphtb.dll

    2011-05-04 04:32:01 1401344 ----a-w- C:\Windows\SysWow64\mssrch.dll

    2011-05-04 04:32:00 59392 ----a-w- C:\Windows\SysWow64\msscntrs.dll

    2011-05-04 04:28:31 86528 ----a-w- C:\Windows\SysWow64\SearchFilterHost.exe

    2011-05-04 04:28:31 427520 ----a-w- C:\Windows\SysWow64\SearchIndexer.exe

    2011-05-04 04:28:31 164352 ----a-w- C:\Windows\SysWow64\SearchProtocolHost.exe

    2011-04-23 01:29:25 2303488 ----a-w- C:\Windows\System32\jscript9.dll

    2011-04-23 01:19:19 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

    2011-04-22 23:35:56 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

    2011-04-22 23:25:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

    2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

    2011-04-22 05:06:48 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

    2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe

    2011-04-09 06:58:56 142336 ----a-w- C:\Windows\System32\poqexec.exe

    2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

    2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

    2011-04-09 05:56:38 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe

    .

    ============= FINISH: 19:10:14,62 ===============

    ATTACH.txt

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2011-06-23.01)

    .

    Microsoft Windows 7 Ultimate

    Boot Device: \Device\HarddiskVolume2

    Install Date: 01/03/2011 20:26:43

    System Uptime: 01/07/2011 19:06:52 (0 hours ago)

    .

    Motherboard: | | Phitronics N68C-M

    Processor: AMD Phenom 9150e Quad-Core Processor | CPUSocket | 1808/200mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 79 GiB total, 44,084 GiB free.

    D: is FIXED (NTFS) - 850 GiB total, 525,035 GiB free.

    E: is CDROM ()

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP90: 28/06/2011 13:35:46 - Windows Update

    RP91: 29/06/2011 10:59:08 - Windows Update

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    Adobe AIR

    Adobe Community Help

    Adobe Dreamweaver CS5

    Adobe Fireworks CS5

    Adobe Flash Player 10 ActiveX

    Adobe Flash Player 10 Plugin

    Adobe Media Player

    Advanced SystemCare 4

    Apple Application Support

    Apple Software Update

    Argente - Registry Cleaner 2.0.0.5

    Arquivo do WinRAR

    Ask Toolbar

    Assistente de Conexão do Windows Live

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    avast! Free Antivirus

    Camtasia Studio 7

    DAEMON Tools Lite

    Digsby

    Ferramenta de Carregamento do Windows Live

    Football Manager 2011

    Foxit PDF Editor

    Foxit Reader

    InstantBoot

    IObit Malware Fighter

    Java Auto Updater

    Java 6 Update 25

    Java SE Development Kit 6 Update 25

    K-Lite Codec Pack 6.6.6 (Full)

    Magebot

    Malwarebytes' Anti-Malware versão 1.51.0.1200

    Microsoft .NET Framework 1.1

    Microsoft Choice Guard

    Microsoft Office 2007 Service Pack 2 (SP2)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Standard 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Silverlight

    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

    Microsoft_VC80_ATL_x86

    Microsoft_VC80_CRT_x86

    Microsoft_VC80_MFC_x86

    Microsoft_VC80_MFCLOC_x86

    Microsoft_VC90_ATL_x86

    Microsoft_VC90_CRT_x86

    Microsoft_VC90_MFC_x86

    Mozilla Firefox 5.0 (x86 pt-BR)

    MSVCRT

    MV RegClean 6.0

    Nimbuzz 1.5.0

    PC Tools Firewall Plus 6.0

    Platform

    Power NT

    Protected Folder

    QuickTime

    Real Alternative 2.0.2

    RealPlayer

    RealUpgrade 1.0

    Rosetta Stone Version 3

    Security Update for 2007 Microsoft Office System (KB2288621)

    Security Update for 2007 Microsoft Office System (KB2288931)

    Security Update for 2007 Microsoft Office System (KB2345043)

    Security Update for 2007 Microsoft Office System (KB2509488)

    Security Update for 2007 Microsoft Office System (KB969559)

    Security Update for 2007 Microsoft Office System (KB976321)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

    Security Update for Microsoft Office 2007 System (KB2541012)

    Security Update for Microsoft Office Excel 2007 (KB2541007)

    Security Update for Microsoft Office InfoPath 2007 (KB979441)

    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)

    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)

    Security Update for Microsoft Office system 2007 (972581)

    Security Update for Microsoft Office system 2007 (KB974234)

    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

    Security Update for Microsoft Office Word 2007 (KB2344993)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Smart Defrag 2

    Spybot - Search & Destroy

    Spyware Terminator

    Sun Java Wireless Toolkit 2.5.2_01 for CLDC

    TeamSpeak 2 RC2

    TeamSpeak 3 Client

    The Rosetta Stone

    Tibia

    Tibiacast

    tools-freebsd

    tools-linux

    tools-netware

    tools-solaris

    tools-windows

    tools-winPre2k

    UltraISO Premium V9.35

    Update for 2007 Microsoft Office System (KB2284654)

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

    Update for Microsoft Office 2007 System (KB2539530)

    Update for Microsoft Office Outlook 2007 (KB2509470)

    Update for Outlook 2007 Junk Email Filter (KB2536413)

    VIA Gerenciador de dispositivo de plataforma

    Visual C++ 2008 x86 Runtime - (v9.0.30729)

    Visual C++ 2008 x86 Runtime - v9.0.30729.01

    VMware Workstation

    WampServer 2.1

    Windows Live Call

    Windows Live Communications Platform

    Windows Live Essentials

    Windows Live Messenger

    Windows Media Player Firefox Plugin

    .

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Realizei a atualização do MalwareBytes (base 7024) executei ele e não encontrou nada.

    Realizei novos logs.

    Obrigado.

    DDS.txt

    .

    DDS (Ver_2011-06-23.01) - NTFSAMD64

    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26

    Run by Windows7 at 0:44:49 on 2011-07-05

    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3839.2935 [GMT -3:00]

    .

    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

    .

    ============== Running Processes ===============

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Windows\system32\taskhost.exe

    C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\Explorer.EXE

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe

    C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\system32\SearchIndexer.exe

    C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

    C:\Program Files\Alwil Software\Avast5\AvastUI.exe

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Program Files (x86)\Internet Explorer\IELowutil.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe

    C:\Windows\system32\SearchProtocolHost.exe

    C:\Windows\system32\AUDIODG.EXE

    C:\Windows\system32\SearchFilterHost.exe

    C:\Windows\SysWOW64\ctfmon.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\SysWOW64\cmd.exe

    C:\Windows\system32\conhost.exe

    C:\Windows\SysWOW64\cscript.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com.br/

    uSearch Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076

    mWinlogon: Userinit=userinit.exe,

    BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

    BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    BHO: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    TB: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    uRun: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

    mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mPolicies-explorer: NoActiveDesktop = 1 (0x1)

    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

    IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    TCP: DhcpNameServer = 200.204.0.10 200.204.0.138

    TCP: Interfaces\{DF23754E-6603-4319-9EBB-3E284BF2ECB8} : DhcpNameServer = 200.204.0.10 200.204.0.138

    {3049C3E9-B461-4BC5-8870-4C09146192CA}

    {53707962-6F74-2D53-2644-206D7942484F}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {9030D464-4C02-4ABF-8ECC-5164760863C6}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    {DBC80044-A445-435b-BC74-9C25C1C588A9}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun-x64: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun-x64: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun-x64: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    Hosts: 127.0.0.1 www.spywareinfo.com

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - C:\Users\Windows7\AppData\Roaming\Mozilla\Firefox\Profiles\c8jxh470.default\

    FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=66726

    FF - prefs.js: browser.search.selectedEngine - Google

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60076&qkw=

    FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

    .

    ---- FIREFOX POLICIES ----

    FF - user.js: browser.cache.memory.capacity - 65536

    FF - user.js: browser.chrome.favicons - fales

    FF - user.js: browser.display.show_image_placeholders - true

    FF - user.js: browser.turbo.enabled - true

    FF - user.js: browser.urlbar.autocomplete.enabled - true

    FF - user.js: browser.urlbar.autofill - true

    FF - user.js: content.interrupt.parsing - true

    FF - user.js: content.max.tokenizing.time - 2250000

    FF - user.js: content.notify.backoffcount - 5

    FF - user.js: content.notify.interval - 750000

    FF - user.js: content.notify.ontimer - true

    FF - user.js: content.switch.threshold - 750000

    FF - user.js: network.http.max-connections - 48

    FF - user.js: network.http.max-connections-per-server - 16

    FF - user.js: network.http.max-persistent-connections-per-proxy - 16

    FF - user.js: network.http.max-persistent-connections-per-server - 8

    FF - user.js: network.http.pipelining - true

    FF - user.js: network.http.pipelining.firstrequest - true

    FF - user.js: network.http.pipelining.maxrequests - 8

    FF - user.js: network.http.proxy.pipelining - true

    FF - user.js: network.http.request.max-start-delay - 0

    FF - user.js: nglayout.initialpaint.delay - 0

    FF - user.js: plugin.expose_full_path - true

    FF - user.js: ui.submenuDelay - 0

    .

    ============= SERVICES / DRIVERS ===============

    .

    R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]

    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

    R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]

    R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-6-25 353168]

    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-6-20 42184]

    R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-6-25 821080]

    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-6-9 366640]

    R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-3-1 1153368]

    R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-5-20 539184]

    R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

    R3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;\??\C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys --> C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys [?]

    R3 pctNDIS;PC Tools Driver;C:\Windows\system32\DRIVERS\pctNdis64.sys --> C:\Windows\system32\DRIVERS\pctNdis64.sys [?]

    R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

    S2 PCToolsFirewallPlus;PC Tools Firewall Plus;C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [2011-3-1 818432]

    S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-6-25 20336]

    S3 pctplfw;pctplfw;\??\C:\Windows\System32\drivers\pctplfw64.sys --> C:\Windows\System32\drivers\pctplfw64.sys [?]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

    S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2011-6-25 33184]

    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

    S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2011-6-25 21328]

    S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

    .

    =============== Created Last 30 ================

    .

    2011-07-01 15:56:01 8873296 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F490CF29-6EF3-4AEE-96D9-F88816A1B400}\mpengine.dll

    2011-06-25 23:21:51 32136 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe

    2011-06-25 23:21:51 18232 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys

    2011-06-25 02:03:18 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll

    2011-06-25 02:03:17 1998168 ----a-w- C:\Program Files (x86)\Mozilla Firefox\d3dx9_43.dll

    2011-06-16 22:49:03 -------- d-----w- C:\ProgramData\Sports Interactive

    2011-06-16 22:48:05 -------- d-----w- C:\Users\Windows7\AppData\Local\Sports Interactive

    2011-06-16 22:39:05 -------- d--h--w- C:\Program Files (x86)\Zero G Registry

    2011-06-16 22:39:05 -------- d-----w- C:\Program Files (x86)\Sports Interactive

    2011-06-16 22:38:45 -------- d--h--w- C:\Users\Windows7\InstallAnywhere

    2011-06-16 22:37:57 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Sports Interactive

    2011-06-16 22:28:10 499200 ----a-w- C:\Windows\System32\drivers\afd.sys

    2011-06-16 22:28:10 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys

    2011-06-16 22:28:06 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

    2011-06-16 22:28:05 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

    2011-06-16 22:28:05 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

    2011-06-16 22:26:55 3135488 ----a-w- C:\Windows\System32\win32k.sys

    2011-06-16 22:26:54 467456 ----a-w- C:\Windows\System32\drivers\srv.sys

    2011-06-16 22:26:54 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys

    2011-06-16 22:26:54 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys

    2011-06-16 22:26:42 861696 ----a-w- C:\Windows\System32\oleaut32.dll

    2011-06-16 22:26:42 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

    2011-06-16 22:26:40 976896 ----a-w- C:\Windows\System32\inetcomm.dll

    2011-06-16 22:26:40 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll

    2011-06-09 23:58:36 -------- d-----w- C:\Program Files (x86)\Marcos Velasco Security

    .

    ==================== Find3M ====================

    .

    2011-06-28 16:34:17 55384 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys

    2011-05-29 12:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys

    2011-05-29 12:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys

    2011-05-24 22:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe

    2011-05-24 11:42:55 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll

    2011-05-24 10:40:05 64512 ----a-w- C:\Windows\SysWow64\devobj.dll

    2011-05-24 10:40:05 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll

    2011-05-24 10:39:38 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll

    2011-05-24 10:37:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe

    2011-05-19 03:08:39 521448 ----a-w- C:\Windows\System32\deployJava1.dll

    2011-05-16 21:35:14 56752 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys

    2011-05-16 21:35:14 176560 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys

    2011-05-16 21:35:14 156912 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys

    2011-05-16 21:35:12 231600 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys

    2011-05-16 21:35:10 320816 ----a-w- C:\Windows\System32\VBoxNetFltNotify.dll

    2011-05-12 21:44:39 2437120 ----a-w- C:\ProgramData\Tibia.bak

    2011-05-10 12:10:59 40112 ----a-w- C:\Windows\avastSS.scr

    2011-05-10 12:04:08 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

    2011-05-10 11:59:48 64344 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

    2011-05-04 07:52:22 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

    2011-05-04 05:25:03 2315776 ----a-w- C:\Windows\System32\tquery.dll

    2011-05-04 05:22:25 778752 ----a-w- C:\Windows\System32\mssvp.dll

    2011-05-04 05:22:25 2223616 ----a-w- C:\Windows\System32\mssrch.dll

    2011-05-04 05:22:24 75264 ----a-w- C:\Windows\System32\msscntrs.dll

    2011-05-04 05:22:24 491520 ----a-w- C:\Windows\System32\mssph.dll

    2011-05-04 05:22:24 288256 ----a-w- C:\Windows\System32\mssphtb.dll

    2011-05-04 05:19:28 591872 ----a-w- C:\Windows\System32\SearchIndexer.exe

    2011-05-04 05:19:28 249856 ----a-w- C:\Windows\System32\SearchProtocolHost.exe

    2011-05-04 05:19:28 113664 ----a-w- C:\Windows\System32\SearchFilterHost.exe

    2011-05-04 04:34:43 1549312 ----a-w- C:\Windows\SysWow64\tquery.dll

    2011-05-04 04:32:02 666624 ----a-w- C:\Windows\SysWow64\mssvp.dll

    2011-05-04 04:32:01 337408 ----a-w- C:\Windows\SysWow64\mssph.dll

    2011-05-04 04:32:01 197120 ----a-w- C:\Windows\SysWow64\mssphtb.dll

    2011-05-04 04:32:01 1401344 ----a-w- C:\Windows\SysWow64\mssrch.dll

    2011-05-04 04:32:00 59392 ----a-w- C:\Windows\SysWow64\msscntrs.dll

    2011-05-04 04:28:31 86528 ----a-w- C:\Windows\SysWow64\SearchFilterHost.exe

    2011-05-04 04:28:31 427520 ----a-w- C:\Windows\SysWow64\SearchIndexer.exe

    2011-05-04 04:28:31 164352 ----a-w- C:\Windows\SysWow64\SearchProtocolHost.exe

    2011-04-23 01:29:25 2303488 ----a-w- C:\Windows\System32\jscript9.dll

    2011-04-23 01:19:19 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

    2011-04-22 23:35:56 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

    2011-04-22 23:25:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

    2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

    2011-04-22 05:06:48 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

    2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe

    2011-04-09 06:58:56 142336 ----a-w- C:\Windows\System32\poqexec.exe

    2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe

    2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe

    2011-04-09 05:56:38 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe

    .

    ============= FINISH: 0:45:54,38 ===============

    ATTACH.txt

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2011-06-23.01)

    .

    Microsoft Windows 7 Ultimate

    Boot Device: \Device\HarddiskVolume2

    Install Date: 01/03/2011 20:26:43

    System Uptime: 04/07/2011 18:46:06 (6 hours ago)

    .

    Motherboard: | | Phitronics N68C-M

    Processor: AMD Phenom 9150e Quad-Core Processor | CPUSocket | 1808/200mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 79 GiB total, 41,389 GiB free.

    D: is FIXED (NTFS) - 850 GiB total, 523,864 GiB free.

    E: is CDROM ()

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP90: 28/06/2011 13:35:46 - Windows Update

    RP91: 29/06/2011 10:59:08 - Windows Update

    RP92: 01/07/2011 19:11:09 - Windows Update

    RP93: 02/07/2011 00:07:32 - Installed Java 6 Update 26

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    Adobe AIR

    Adobe Community Help

    Adobe Dreamweaver CS5

    Adobe Fireworks CS5

    Adobe Flash Player 10 ActiveX

    Adobe Flash Player 10 Plugin

    Adobe Media Player

    Advanced SystemCare 4

    Apple Application Support

    Apple Software Update

    Argente - Registry Cleaner 2.0.0.5

    Arquivo do WinRAR

    Ask Toolbar

    Assistente de Conexão do Windows Live

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    avast! Free Antivirus

    Camtasia Studio 7

    DAEMON Tools Lite

    Digsby

    Ferramenta de Carregamento do Windows Live

    Football Manager 2011

    Foxit PDF Editor

    Foxit Reader

    InstantBoot

    IObit Malware Fighter

    Java Auto Updater

    Java 6 Update 26

    Java SE Development Kit 6 Update 25

    K-Lite Codec Pack 6.6.6 (Full)

    Magebot

    Malwarebytes' Anti-Malware versão 1.51.0.1200

    Microsoft .NET Framework 1.1

    Microsoft Choice Guard

    Microsoft Office 2007 Service Pack 2 (SP2)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office File Validation Add-In

    Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Standard 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Silverlight

    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

    Microsoft_VC80_ATL_x86

    Microsoft_VC80_CRT_x86

    Microsoft_VC80_MFC_x86

    Microsoft_VC80_MFCLOC_x86

    Microsoft_VC90_ATL_x86

    Microsoft_VC90_CRT_x86

    Microsoft_VC90_MFC_x86

    Mozilla Firefox 5.0 (x86 pt-BR)

    MSVCRT

    MV RegClean 6.0

    Nimbuzz 1.5.0

    PC Tools Firewall Plus 6.0

    Platform

    Power NT

    Protected Folder

    QuickTime

    Real Alternative 2.0.2

    RealPlayer

    RealUpgrade 1.0

    Rosetta Stone Version 3

    Security Update for 2007 Microsoft Office System (KB2288621)

    Security Update for 2007 Microsoft Office System (KB2288931)

    Security Update for 2007 Microsoft Office System (KB2345043)

    Security Update for 2007 Microsoft Office System (KB2509488)

    Security Update for 2007 Microsoft Office System (KB969559)

    Security Update for 2007 Microsoft Office System (KB976321)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

    Security Update for Microsoft Office 2007 System (KB2541012)

    Security Update for Microsoft Office Excel 2007 (KB2541007)

    Security Update for Microsoft Office InfoPath 2007 (KB979441)

    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)

    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)

    Security Update for Microsoft Office system 2007 (972581)

    Security Update for Microsoft Office system 2007 (KB974234)

    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

    Security Update for Microsoft Office Word 2007 (KB2344993)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Smart Defrag 2

    Spybot - Search & Destroy

    Spyware Terminator

    Sun Java Wireless Toolkit 2.5.2_01 for CLDC

    TeamSpeak 2 RC2

    TeamSpeak 3 Client

    The Rosetta Stone

    Tibia

    Tibiacast

    tools-freebsd

    tools-linux

    tools-netware

    tools-solaris

    tools-windows

    tools-winPre2k

    UltraISO Premium V9.35

    Update for 2007 Microsoft Office System (KB2284654)

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

    Update for Microsoft Office 2007 System (KB2539530)

    Update for Microsoft Office Outlook 2007 (KB2509470)

    Update for Outlook 2007 Junk Email Filter (KB2536413)

    VIA Gerenciador de dispositivo de plataforma

    Visual C++ 2008 x86 Runtime - (v9.0.30729)

    Visual C++ 2008 x86 Runtime - v9.0.30729.01

    VMware Workstation

    WampServer 2.1

    Windows Live Call

    Windows Live Communications Platform

    Windows Live Essentials

    Windows Live Messenger

    Windows Media Player Firefox Plugin

    .

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro thiagos10

    Leia atentamente toda a instrução abaixo antes de executar o programa.

    Faça download do Kaspersky Removal Tool e salve em seu desktop.

    • Instale o programa normalmente, seguindo todas as instruções.
    • Uma pasta chamada Virus Removal Tool será criada no desktop.
    • Na tela do programa clique nas opções:
      • Meu computador
      • Hidden Startup objects
      • Disk boot sectors
      • System Memory

      [*]Clique no botão Start Scan.[*]Seja paciente, o scan é demorado![*]Conforme for scaneando provavelmente abrirá algumas janelas pequenas ao lado do relógio, não clique em nada.[*]Também há uma possibilidade de abrir uma janela maior contendo as seguintes opções:

      • Desinfection (quando possível)
      • Delete
      • Skip
    • Quando aparecer, marque primero a opção abaixo Apply to all objects e depois clique numa das opções acima.
    • Após completar tudo, clique no botão Reports, na janela que abrir nas opções acima deixe:
      • Autoscan
      • Group by result
      • All Events

      [*]Expanda Autoscan clicando no sinal ao lado de +[*]Expanda Result: Detected.[*]Clique com o botão direito do mouse e escolha Select all, e depois escolha Copy.[*]Atenção, ao fazer isso parece que o PC travou, mas não, aguarde uns minutos para liberar a memória.[*]Abra o Bloco de Notas e cole (ctrl + v) [*]Dê um nome para o arquivo e salve numa pasta de sua preferência.[*]Feche o resultado clicando no botão Exit.[*]Ao fazer isso será questionado se quer desinstalar a ferramenta, clique em Sim.[*]Reinicie o computador quando for pedido.[*]Poste o conteúdo desse arquivo em sua próxima resposta.

    OBSERVAÇÃO1:
    Atente para as janelas durante o scan elas possuem cores diferentes dependendo do risco. Portanto,
    • verde
      :
      baixo risco
    • amarelo
      :
      médio risco
    • vermelho
      :
      alto risco

    Antes de tomar qualquer medida verifique com cuidado o caminho/nome do arquivo para ver é de seu conhecimento, caso seja clique em
    Skip
    .

    OBSERVAÇÃO2:
    Se no resultado final do scan apenas tiver
    Result:
    OK
    , não precisa gerar um relatório, apenas informe deste.

    OBSERVAÇÃO3:
    Durante o scan pode ser que o Kaspersky acuse a seguinte pasta com vírus:
    c:\
    QooBox
    . Caso isto aconteça escolha a opção
    Skip
    , pois a mesma pertence ao
    ComboFix
    e será removida quando o mesmo for desinstalado.

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
  • Autor do tópico
  • Realizei o scan do Kaspersky Removal Tool, que por sinal foi demorado...

    Removi algumas msgs que apareceu e o scan foi finalizado com sucesso.

    segue o log do DDS.txt e Attach.

    Muito obrigado pela ajuda.

    Log DDS

    .

    DDS (Ver_2011-06-23.01) - NTFSAMD64

    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26

    Run by Windows7 at 14:10:20 on 2011-07-10

    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1046.18.3839.2413 [GMT -3:00]

    .

    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    FW: PC Tools Firewall Plus *Disabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9}

    .

    ============== Running Processes ===============

    .

    C:\Windows\system32\wininit.exe

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe

    C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe

    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

    C:\Windows\system32\taskhost.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\Explorer.EXE

    C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe

    C:\Windows\System32\svchost.exe -k WerSvcGroup

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe

    C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

    C:\Windows\system32\SearchIndexer.exe

    C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe

    C:\Program Files\Alwil Software\Avast5\AvastUI.exe

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe

    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

    C:\Windows\System32\svchost.exe -k secsvcs

    C:\Windows\system32\taskhost.exe

    C:\Windows\system32\AUDIODG.EXE

    C:\Windows\SysWOW64\ctfmon.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\system32\DllHost.exe

    C:\Windows\SysWOW64\cmd.exe

    C:\Windows\system32\conhost.exe

    C:\Windows\SysWOW64\cscript.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.google.com.br/

    uSearch Bar = hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60076

    mWinlogon: Userinit=userinit.exe,

    BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

    BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    BHO: Auxiliar de Conexão do Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    BHO: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

    TB: Foxit PDF Creator Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

    TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    uRun: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

    uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

    uRun: [smartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 4\Suo10_SmartRAM.exe" /m

    mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mRunOnce: [GrpConv] grpconv -o

    mPolicies-explorer: NoActiveDesktop = 1 (0x1)

    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

    IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000

    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

    LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    TCP: DhcpNameServer = 192.168.1.1

    TCP: Interfaces\{DF23754E-6603-4319-9EBB-3E284BF2ECB8} : DhcpNameServer = 192.168.1.1

    {3049C3E9-B461-4BC5-8870-4C09146192CA}

    {53707962-6F74-2D53-2644-206D7942484F}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {9030D464-4C02-4ABF-8ECC-5164760863C6}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    {DBC80044-A445-435b-BC74-9C25C1C588A9}

    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

    {D4027C7F-154A-4066-A1AD-4243D8127440}

    TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

    mRun-x64: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

    mRun-x64: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

    mRun-x64: [00PCTFW] "C:\Program Files (x86)\PC Tools Firewall Plus\FirewallGUI.exe" -s

    mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

    mRun-x64: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"

    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

    mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

    mRunOnce-x64: [GrpConv] grpconv -o

    Hosts: 127.0.0.1 www.spywareinfo.com

    .

    ================= FIREFOX ===================

    .

    FF - ProfilePath - C:\Users\Windows7\AppData\Roaming\Mozilla\Firefox\Profiles\c8jxh470.default\

    FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=66726

    FF - prefs.js: browser.search.selectedEngine - Google

    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/

    FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60076&qkw=

    FF - component: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll

    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

    .

    ---- FIREFOX POLICIES ----

    FF - user.js: browser.cache.memory.capacity - 65536

    FF - user.js: browser.chrome.favicons - fales

    FF - user.js: browser.display.show_image_placeholders - true

    FF - user.js: browser.turbo.enabled - true

    FF - user.js: browser.urlbar.autocomplete.enabled - true

    FF - user.js: browser.urlbar.autofill - true

    FF - user.js: content.interrupt.parsing - true

    FF - user.js: content.max.tokenizing.time - 2250000

    FF - user.js: content.notify.backoffcount - 5

    FF - user.js: content.notify.interval - 750000

    FF - user.js: content.notify.ontimer - true

    FF - user.js: content.switch.threshold - 750000

    FF - user.js: network.http.max-connections - 48

    FF - user.js: network.http.max-connections-per-server - 16

    FF - user.js: network.http.max-persistent-connections-per-proxy - 16

    FF - user.js: network.http.max-persistent-connections-per-server - 8

    FF - user.js: network.http.pipelining - true

    FF - user.js: network.http.pipelining.firstrequest - true

    FF - user.js: network.http.pipelining.maxrequests - 8

    FF - user.js: network.http.proxy.pipelining - true

    FF - user.js: network.http.request.max-start-delay - 0

    FF - user.js: nglayout.initialpaint.delay - 0

    FF - user.js: plugin.expose_full_path - true

    FF - user.js: ui.submenuDelay - 0

    .

    ============= SERVICES / DRIVERS ===============

    .

    R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]

    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]

    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]

    R1 pctgntdi;pctgntdi;\??\C:\Windows\system32\drivers\pctgntdi64.sys --> C:\Windows\system32\drivers\pctgntdi64.sys [?]

    R2 AdvancedSystemCareService;Advanced SystemCare Service;C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-6-25 353168]

    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]

    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]

    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-7-10 42184]

    R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-6-25 821080]

    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-6-9 366640]

    R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-3-1 1153368]

    R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-5-20 539184]

    R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]

    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

    R3 PCTFW-PacketFilter;PCTools Firewall - Packet filter driver;\??\C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys --> C:\Windows\system32\drivers\pctNdis-PacketFilter64.sys [?]

    R3 pctNDIS;PC Tools Driver;C:\Windows\system32\DRIVERS\pctNdis64.sys --> C:\Windows\system32\DRIVERS\pctNdis64.sys [?]

    R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

    RUnknown 73543471;73543471; [x]

    RUnknown 9854327drv;9854327drv; [x]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

    S2 PCToolsFirewallPlus;PC Tools Firewall Plus;C:\Program Files (x86)\PC Tools Firewall Plus\FWService.exe [2011-3-1 818432]

    S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-6-25 20336]

    S3 pctplfw;pctplfw;\??\C:\Windows\System32\drivers\pctplfw64.sys --> C:\Windows\System32\drivers\pctplfw64.sys [?]

    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]

    S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2011-6-25 33184]

    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

    S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2011-6-25 21328]

    S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

    .

    =============== Created Last 30 ================

    .

    2011-07-10 15:05:25 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

    2011-07-08 18:44:24 8873296 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A71E5E0B-2BDC-41DB-AA95-74E47BC561C4}\mpengine.dll

    2011-07-06 02:34:51 -------- d-----w- C:\ProgramData\Kaspersky Lab

    2011-06-25 23:21:51 32136 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe

    2011-06-25 23:21:51 18232 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys

    2011-06-25 02:03:18 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll

    2011-06-25 02:03:17 1998168 ----a-w- C:\Program Files (x86)\Mozilla Firefox\d3dx9_43.dll

    2011-06-16 22:49:03 -------- d-----w- C:\ProgramData\Sports Interactive

    2011-06-16 22:48:05 -------- d-----w- C:\Users\Windows7\AppData\Local\Sports Interactive

    2011-06-16 22:39:05 -------- d--h--w- C:\Program Files (x86)\Zero G Registry

    2011-06-16 22:39:05 -------- d-----w- C:\Program Files (x86)\Sports Interactive

    2011-06-16 22:38:45 -------- d--h--w- C:\Users\Windows7\InstallAnywhere

    2011-06-16 22:37:57 -------- d-----w- C:\Users\Windows7\AppData\Roaming\Sports Interactive

    2011-06-16 22:28:10 499200 ----a-w- C:\Windows\System32\drivers\afd.sys

    2011-06-16 22:28:10 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys

    2011-06-16 22:28:06 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

    2011-06-16 22:28:05 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys

    2011-06-16 22:28:05 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys

    2011-06-16 22:26:55 3135488 ----a-w- C:\Windows\System32\win32k.sys

    2011-06-16 22:26:54 467456 ----a-w- C:\Windows\System32\drivers\srv.sys

    2011-06-16 22:26:54 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys

    2011-06-16 22:26:54 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys

    2011-06-16 22:26:42 861696 ----a-w- C:\Windows\System32\oleaut32.dll

    2011-06-16 22:26:42 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

    2011-06-16 22:26:40 976896 ----a-w- C:\Windows\System32\inetcomm.dll

    2011-06-16 22:26:40 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll

    .

    ==================== Find3M ====================

    .

    2011-07-04 11:43:53 40112 ----a-w- C:\Windows\avastSS.scr

    2011-07-04 11:36:56 600920 ----a-w- C:\Windows\System32\drivers\aswSnx.sys

    2011-07-04 11:32:24 64856 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys

    2011-06-28 16:34:17 55384 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys

    2011-05-29 12:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys

    2011-05-29 12:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys

    2011-05-24 22:14:10 270720 ------w- C:\Windows\System32\MpSigStub.exe

    2011-05-24 11:42:55 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll

    2011-05-24 10:40:05 64512 ----a-w- C:\Windows\SysWow64\devobj.dll

    2011-05-24 10:40:05 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll

    2011-05-24 10:39:38 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll

    2011-05-24 10:37:54 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe

    2011-05-19 03:08:39 521448 ----a-w- C:\Windows\System32\deployJava1.dll

    2011-05-16 21:35:14 56752 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys

    2011-05-16 21:35:14 176560 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys

    2011-05-16 21:35:14 156912 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys

    2011-05-16 21:35:12 231600 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys

    2011-05-16 21:35:10 320816 ----a-w- C:\Windows\System32\VBoxNetFltNotify.dll

    2011-05-04 07:52:22 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

    2011-05-04 05:25:03 2315776 ----a-w- C:\Windows\System32\tquery.dll

    2011-05-04 05:22:25 778752 ----a-w- C:\Windows\System32\mssvp.dll

    2011-05-04 05:22:25 2223616 ----a-w- C:\Windows\System32\mssrch.dll

    2011-05-04 05:22:24 75264 ----a-w- C:\Windows\System32\msscntrs.dll

    2011-05-04 05:22:24 491520 ----a-w- C:\Windows\System32\mssph.dll

    2011-05-04 05:22:24 288256 ----a-w- C:\Windows\System32\mssphtb.dll

    2011-05-04 05:19:28 591872 ----a-w- C:\Windows\System32\SearchIndexer.exe

    2011-05-04 05:19:28 249856 ----a-w- C:\Windows\System32\SearchProtocolHost.exe

    2011-05-04 05:19:28 113664 ----a-w- C:\Windows\System32\SearchFilterHost.exe

    2011-05-04 04:34:43 1549312 ----a-w- C:\Windows\SysWow64\tquery.dll

    2011-05-04 04:32:02 666624 ----a-w- C:\Windows\SysWow64\mssvp.dll

    2011-05-04 04:32:01 337408 ----a-w- C:\Windows\SysWow64\mssph.dll

    2011-05-04 04:32:01 197120 ----a-w- C:\Windows\SysWow64\mssphtb.dll

    2011-05-04 04:32:01 1401344 ----a-w- C:\Windows\SysWow64\mssrch.dll

    2011-05-04 04:32:00 59392 ----a-w- C:\Windows\SysWow64\msscntrs.dll

    2011-05-04 04:28:31 86528 ----a-w- C:\Windows\SysWow64\SearchFilterHost.exe

    2011-05-04 04:28:31 427520 ----a-w- C:\Windows\SysWow64\SearchIndexer.exe

    2011-05-04 04:28:31 164352 ----a-w- C:\Windows\SysWow64\SearchProtocolHost.exe

    2011-04-23 01:29:25 2303488 ----a-w- C:\Windows\System32\jscript9.dll

    2011-04-23 01:19:19 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

    2011-04-22 23:35:56 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

    2011-04-22 23:25:54 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

    2011-04-22 22:15:29 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys

    2011-04-22 05:06:48 254528 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys

    .

    ============= FINISH: 14:11:11,21 ===============

    Log Attach

    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2011-06-23.01)

    .

    Microsoft Windows 7 Ultimate

    Boot Device: \Device\HarddiskVolume2

    Install Date: 01/03/2011 20:26:43

    System Uptime: 10/07/2011 12:30:28 (2 hours ago)

    .

    Motherboard: | | Phitronics N68C-M

    Processor: AMD Phenom 9150e Quad-Core Processor | CPUSocket | 1808/200mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 79 GiB total, 39,655 GiB free.

    D: is FIXED (NTFS) - 850 GiB total, 523,502 GiB free.

    E: is CDROM ()

    F: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    ==== System Restore Points ===================

    .

    RP92: 01/07/2011 19:11:09 - Windows Update

    RP93: 02/07/2011 00:07:32 - Installed Java 6 Update 26

    RP94: 05/07/2011 18:28:19 - Windows Update

    .

    ==== Installed Programs ======================

    .

    Update for Microsoft Office 2007 (KB2508958)

    Adobe AIR

    Adobe Community Help

    Adobe Dreamweaver CS5

    Adobe Fireworks CS5

    Adobe Flash Player 10 ActiveX

    Adobe Flash Player 10 Plugin

    Adobe Media Player

    Advanced SystemCare 4

    Apple Application Support

    Apple Software Update

    Argente - Registry Cleaner 2.0.0.5

    Arquivo do WinRAR

    Ask Toolbar

    Assistente de Conexão do Windows Live

    Atualização do produto Microsoft Office Excel 2007 Help (KB963678)

    Atualização do produto Microsoft Office Outlook 2007 Help (KB963677)

    Atualização do produto Microsoft Office Powerpoint 2007 Help (KB963669)

    Atualização do produto Microsoft Office Word 2007 Help (KB963665)

    avast! Free Antivirus

    Camtasia Studio 7

    DAEMON Tools Lite

    Digsby

    Ferramenta de Carregamento do Windows Live

    Football Manager 2011

    Foxit PDF Editor

    Foxit Reader

    InstantBoot

    IObit Malware Fighter

    Java Auto Updater

    Java 6 Update 26

    Java SE Development Kit 6 Update 25

    K-Lite Codec Pack 6.6.6 (Full)

    Magebot

    Malwarebytes' Anti-Malware versão 1.51.0.1200

    Microsoft .NET Framework 1.1

    Microsoft Choice Guard

    Microsoft Office 2007 Service Pack 2 (SP2)

    Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

    Microsoft Office File Validation Add-In

    Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

    Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (Portuguese (Brazil)) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (Portuguese (Brazil)) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

    Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

    Microsoft Office Standard 2007

    Microsoft Office Word MUI (Portuguese (Brazil)) 2007

    Microsoft Silverlight

    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

    Microsoft_VC80_ATL_x86

    Microsoft_VC80_CRT_x86

    Microsoft_VC80_MFC_x86

    Microsoft_VC80_MFCLOC_x86

    Microsoft_VC90_ATL_x86

    Microsoft_VC90_CRT_x86

    Microsoft_VC90_MFC_x86

    Mozilla Firefox 5.0 (x86 pt-BR)

    MSVCRT

    MV RegClean 6.0

    Nimbuzz 1.5.0

    PC Tools Firewall Plus 6.0

    Platform

    Power NT

    Protected Folder

    QuickTime

    Real Alternative 2.0.2

    RealPlayer

    RealUpgrade 1.0

    Rosetta Stone Version 3

    Security Update for 2007 Microsoft Office System (KB2288621)

    Security Update for 2007 Microsoft Office System (KB2288931)

    Security Update for 2007 Microsoft Office System (KB2345043)

    Security Update for 2007 Microsoft Office System (KB2509488)

    Security Update for 2007 Microsoft Office System (KB969559)

    Security Update for 2007 Microsoft Office System (KB976321)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

    Security Update for Microsoft .NET Framework 4 Extended (KB2416472)

    Security Update for Microsoft Office 2007 System (KB2541012)

    Security Update for Microsoft Office Excel 2007 (KB2541007)

    Security Update for Microsoft Office InfoPath 2007 (KB979441)

    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)

    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)

    Security Update for Microsoft Office system 2007 (972581)

    Security Update for Microsoft Office system 2007 (KB974234)

    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

    Security Update for Microsoft Office Word 2007 (KB2344993)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2478663)

    Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil) (KB2518870)

    Smart Defrag 2

    Spybot - Search & Destroy

    Spyware Terminator

    Sun Java Wireless Toolkit 2.5.2_01 for CLDC

    TeamSpeak 2 RC2

    TeamSpeak 3 Client

    The Rosetta Stone

    Tibia

    Tibiacast

    tools-freebsd

    tools-linux

    tools-netware

    tools-solaris

    tools-windows

    tools-winPre2k

    UltraISO Premium V9.35

    Update for 2007 Microsoft Office System (KB2284654)

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

    Update for Microsoft Office 2007 System (KB2539530)

    Update for Microsoft Office Outlook 2007 (KB2509470)

    Update for Outlook 2007 Junk Email Filter (KB2536413)

    VIA Gerenciador de dispositivo de plataforma

    Visual C++ 2008 x86 Runtime - (v9.0.30729)

    Visual C++ 2008 x86 Runtime - v9.0.30729.01

    VMware Workstation

    WampServer 2.1

    Windows Live Call

    Windows Live Communications Platform

    Windows Live Essentials

    Windows Live Messenger

    Windows Media Player Firefox Plugin

    .

    ==== End Of File ===========================

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites

    Caro thiagos10

    Log limpo :)

    >>>> Como está o computador?

    <<@>> Instale o CCleaner

    O CCleaner é um excelente utilitário de limpeza para o computador, que lhe ajudará no desempenho do computador. Faça o download dele aqui CCleaner


    • IMPORTANTE: Após a instalação vá até o local onde o programa foi instalado, C:\Arquivos de programas\CCleaner, clique duas vezes na pasta, numa área vazia desta janela, clique com o botão direito do mouse e escolha Novo > pasta e crie uma nova pasta; coloque o nome de backups!
    • Abra o programa e clique em Executar Limpeza;
    • clique no botão Registro > Procurar Erros > Corrigir erro(s) seleciona(s)...
      Obs: Não se esqueça de aceitar o backup das correções, e salvá-los nas pasta criada acima!

    <<@>> Mantenha sempre seu Windows atualizado; mantenha uma vigilância constante com o firewall e antivírus e por fim, lembre-se que, a melhor forma de prevenir começa pelas nossas atitudes!

    Abraços :D

    Compartilhar este post


    Link para o post
    Compartilhar em outros sites
    Entre para seguir isso  





    Sobre o Clube do Hardware

    No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

    Direitos autorais

    Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

    ×