Ir ao conteúdo
  • Cadastre-se

Diego.AS.

Membros Plenos
  • Total de itens

    1.161
  • Registro em

  • Última visita

  • Qualificações

    0%

Reputação

14

Sobre Diego.AS.

  • Data de Nascimento 15-06-1994 (24 anos)

Informações gerais

  • Cidade e Estado
    São Paulo/SP
  • Sexo
    Masculino

Outros

  • Biografia
    Atualmente cursando Analise e desenvolvimento de sistemas. Viso atuar na area de segurança da informação...
  1. Bom dia, Estou pretendendo comprar um arduino, vi que algumas lojas vendem um "Kit Iniciante" entretanto, gostaria de recomendações de kits com um bom custo x beneficio Att.
  2. Diego.AS.

    Plugin de Java

    Bom dia @Lucas Stapf, Sim é possivel mesclar HTML com Java para isso basta fazer uso de alguns recursos do Java EE (Servlet e JSP). Quanto a enviar e-mails automaticamente acho que os frameworks JavaMail ou Commons Mail satisfazem seu objetivo. Abraços
  3. Boa tarde @Lívio Neiva Tente inverter a ultima chave public class PrimeiroPrograma{ public Static void main(String args[]){ System.out.println("Bem vindo ao MUNDO JAVA"); }} Abraços
  4. Bom dia @Ney Trevas, Veja se esse exemplo lhe ajuda: https://drive.google.com/folderview?id=0B5kEiFfuQktIS2xwSHZKWVh3b1U&usp=sharing Formulas utilizadas menor; corresp; se; Abraços
  5. Boa tarde @Gabriel F.M. de Carvalho, Uma possivel solução "rapida" seria instalar algum sistema linux(Ubunto por exemplo). Abraços
  6. Concordo com o @adcarvalho, garanta esse e depois parta para o proximo. Abraços
  7. Diego.AS.

    PC Lento

    Boa tarde @diego_moicano Segue os logs: JRT ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.4 (04.06.2014:1) OS: Windows 7 Home Basic x64 Ran by Asus on 09/09/2014 at 12:56:30,33 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\baidu" Successfully deleted: [Folder] "C:\Users\Asus\AppData\Roaming\baidu" Successfully deleted: [Empty Folder] C:\Users\Asus\appdata\local\{C73FEAC4-AA6A-466D-AC77-D0B5342E1B7C} ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 09/09/2014 at 13:11:14,79 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ AdwCleaner # AdwCleaner v3.309 - Relatório criado 09/09/2014 às 13:16:18 # Atualizado 02/09/2014 por Xplode # Sistema Operacional : Windows 7 Home Basic Service Pack 1 (64 bits) # Usuário : Asus - ASUS-PC # Executando de : C:\Users\Asus\Desktop\AdwCleaner.exe # Opção : Limpar ***** [ Serviços ] ***** ***** [ Arquivos / Pastas ] ***** Pasta Deletada : C:\ProgramData\smdmf Pasta Deletada : C:\Users\Public\Documents\baidu ***** [ Tarefas ] ***** ***** [ Atalhos ] ***** ***** [ Registro ] ***** Valor Deletedo : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64] Valor Deletedo : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86] Valor Deletedo : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x64] Valor Deletedo : HKLM\SYSTEM\ControlSet002\Control\Session Manager\AppCertDlls [x86] Chave Deletedo : HKLM\SOFTWARE\SmdmF ***** [ Navegadores ] ***** -\\ Internet Explorer v11.0.9600.17239 -\\ Google Chrome v36.0.1985.143 [ Arquivo : C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [80390 octets] - [08/09/2014 07:29:52] AdwCleaner[R1].txt - [80451 octets] - [08/09/2014 07:32:03] AdwCleaner[R2].txt - [68282 octets] - [08/09/2014 07:38:53] AdwCleaner[R3].txt - [1778 octets] - [09/09/2014 13:12:09] AdwCleaner[s0].txt - [10544 octets] - [08/09/2014 07:34:03] AdwCleaner[s1].txt - [61841 octets] - [08/09/2014 07:39:59] AdwCleaner[s2].txt - [1498 octets] - [09/09/2014 13:16:18] ########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1558 octets] ########## Zoek Zoek.exe v5.0.0.0 Updated 08-September-2014 Tool run by Asus on 09/09/2014 at 13:25:03,80. Microsoft Windows 7 Home Basic 6.1.7601 Service Pack 1 x64 Running in: Normal Mode No Internet Access Detected Launched: C:\Users\Asus\Desktop\zoek.exe Script used: C:\Users\Asus\Desktop\zoekscript.txt ==== System Restore Info ====================== 09/09/2014 13:25:52 Zoek.exe System Restore Point Created Succesfully. ==== Torpig Check ====================== HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll ==== Empty Folders Check ====================== C:\Program Files\Google deleted successfully C:\PROGRA~3\Baidu Security deleted successfully C:\Users\Asus\AppData\Roaming\ap_logs deleted successfully C:\Users\Asus\AppData\Roaming\HpUpdate deleted successfully C:\Users\Asus\AppData\Local\calibre-cache deleted successfully ==== Installed Programs ====================== ???? ??? Windows Live ???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? ???? Windows Live ??????? Windows Live Mesh ActiveX ??(????) ??????? Windows Live Mesh ActiveX ??? ????????? ActiveX ?? Windows Live Mesh ????????????????????????? (???) Adobe Flash Player 10 Plugin Adobe Flash Player 14 ActiveX Adobe Reader XI (11.0.08) - Portuguˆs Asmedia ASM104x USB 3.0 Host Controller Driver ASUS AI Recovery ASUS FancyStart ASUS LifeFrame3 ASUS Live Update ASUS Power4Gear Hybrid ASUS SmartLogon ASUS Splendid Video Enhancement Technology ASUS Virtual Camera ASUS WebStorage ASUS_Screensaver ASUSDVD AsusVibe2.0 Atheros Driver Installation Program ATK Package Bubbletown calibre CCleaner Cinemax Control ActiveX de Windows Live Mesh para conexiones remotas Controle ActiveX do Windows Live Mesh para Conexäes Remotas Contr“le ActiveX Windows Live Mesh pour connexions … distance CyberLink LabelPrint CyberLink Media Suite CyberLink Power2Go D3DX10 Deadtime Stories Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Dream Vacation Solitaire Dropbox Estudo de melhoria do produto HP Deskjet 1000 J110 series ETDWare PS/2-X64 8.0.5.1_WHQL Facebook Video Calling 3.1.0.521 Farm Frenzy 3 - Madagascar Fast Boot Galapago Galer¡a fotogr fica de Windows Live Galerie de photos Windows Live Game Park Console Go Go Gourmet Chef of the Year Google Chrome Google Update Helper HP Deskjet 1000 J110 series Ajuda HP Photo Creations HP Update InstantOn Intel® Control Center Intel® Management Engine Components Intel® Processor Graphics Junk Mail filter update Kobo Mahjong Memoirs Malwarebytes Anti-Malware versÆo 2.0.2.1012 McAfee Security Scan Plus Mesh Runtime Microsoft .NET Framework 4.5.1 Microsoft Application Error Reporting Microsoft Office 2010 Microsoft Office Access MUI (Portuguese (Brazil)) 2010 Microsoft Office Excel MUI (Portuguese (Brazil)) 2010 Microsoft Office Groove MUI (Portuguese (Brazil)) 2010 Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010 Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010 Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (Portuguese (Brazil)) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (Portuguese (Brazil)) 2010 Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010 Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2010 Microsoft Office Shared MUI (Portuguese (Brazil)) 2010 Microsoft Office Word MUI (Portuguese (Brazil)) 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 M¢dulo de Seguran‡a - Banco do Brasil MSVCRT MSVCRT_amd64 Nuance PDF Reader Plants vs Zombies Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek USB 2.0 Reader Driver Revo Uninstaller 1.95 Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2760781) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Software b sico do dispositivo HP Deskjet 1000 J110 series Sonic Focus SUPERAntiSpyware Trend Micro Titanium Internet Security Turbo Fiesta Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition Uzak BaglantÕlar I‡in Windows Live Mesh ActiveX Denetimi Windows Live ??? Windows Live ???? Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotograf Galerisi Windows Live Galeria de Fotos Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh Windows Live Mesh ActiveX Control for Remote Connections Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Par‡alar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinFlash Wireless Console 3 World of Goo ==== Running Processes ====================== C:\PROGRA~2\GbPlugin\GbpSv.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe C:\Program Files (x86)\Scpad\scpVista.exe C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe C:\PROGRA~2\GbPlugin\GbpSv.exe C:\Windows\AsScrPro.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Users\Asus\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== System Specs ====================== Operating System: Microsoft Windows 7 Home Basic 6.1.7601 Service Pack 1 64-bit Manufacturer: ASUSTeK Computer Inc. - Model: K84C Install Date: 03/01/2013 15:04:31 Last Boot: 09/09/2014 13:16:51 Processor: Intel® Pentium® CPU B950 @ 2.10GHz Number of Processors: 2 Work Station Bootmode: Normal boot Total RAM: 4000 MB (free 2549 MB - 63) Computername: ASUS-PC Domain: WORKGROUP User: Asus (Administrator account) Local Disk: C:\ - NTFS - 195 GB (free 134 GB) Local Disk: D:\ - NTFS - 245 GB (free 245 GB) CD \ DVD Drive: E:\ Bootdevice: \Device\HarddiskVolume2 Windows update: Country: Brasil Language: PTB ==== System Specs (Software) ====================== Anti-Virus: Trend Micro Titanium Internet Security On-access scanning disabled (Outdated) Anti-Spyware: Trend Micro Titanium Internet Security disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 36.0.1985.143 Internet Explorer Version: 11.0.9600.17239 Google Chrome version: 36.0.1985.143 Adobe Reader version: 11.0.8.4 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Asus\AppData\Local\Temp ==== 2014-09-09 16:18:41 D11FB7A5078631BE2E183DC56FCD5375 43008 ----a-w- C:\Users\Asus\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpozsvzh.dll 2014-09-09 15:56:20 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\erunt\ERUNT.EXE ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-08-29 01:14:01 980305AC3AF53C1964A11190451ABB32 311808 ----a-w- C:\Windows\SysWOW64\gdi32.dll 2014-08-27 17:32:37 867148EBF47E7E7E7B21C07B4A981929 581600 ----a-w- C:\Windows\SysWOW64\wuapi.dll 2014-08-27 17:32:37 372218B80DEF827063049EBEE76B7501 92672 ----a-w- C:\Windows\SysWOW64\wudriver.dll 2014-08-27 17:32:37 255F0417EC31C71585824269522EC8E9 36320 ----a-w- C:\Windows\SysWOW64\wups.dll 2014-08-27 17:32:21 F419D738BD2AE58D9DF2F9FEB5F43842 33792 ----a-w- C:\Windows\SysWOW64\wuapp.exe 2014-08-27 17:32:21 5AA2CAD923E9E647276A61387E83DDD0 179656 ----a-w- C:\Windows\SysWOW64\wuwebv.dll ====== C:\Windows\SysWOW64\drivers ===== 2014-09-08 13:53:28 446118FFFF5576434393AE4551A5CA74 33512 ----a-w- C:\Windows\SysWOW64\drivers\TrueSight.sys ====== C:\Windows\Sysnative ===== 2014-08-29 01:14:02 A347EF56B7CD8360B3EF7772FEA597B9 3163648 ----a-w- C:\Windows\Sysnative\win32k.sys 2014-08-29 01:14:01 860528C9E50AB84935843B23A80E665E 404480 ----a-w- C:\Windows\Sysnative\gdi32.dll 2014-08-27 17:32:55 E76F105AD039B9E4DA9ECE839298C4A2 44512 ----a-w- C:\Windows\Sysnative\wups2.dll 2014-08-27 17:32:54 EAD9E413A6CEB9FD8E2AD9DC0716C061 58336 ----a-w- C:\Windows\Sysnative\wuauclt.exe 2014-08-27 17:32:54 6335F8B4B89F002A3801473C1A799237 2620928 ----a-w- C:\Windows\Sysnative\wucltux.dll 2014-08-27 17:32:54 61FF576450CCC80564B850BC3FB6713A 2477536 ----a-w- C:\Windows\Sysnative\wuaueng.dll 2014-08-27 17:32:37 7EC6617005F76714C7E16605E7A8AB06 38880 ----a-w- C:\Windows\Sysnative\wups.dll 2014-08-27 17:32:37 1180B5ADFB507258DA10F51B46681A33 97792 ----a-w- C:\Windows\Sysnative\wudriver.dll 2014-08-27 17:32:37 0DB2758CF1BAFE22E0970FDA0785B74C 700384 ----a-w- C:\Windows\Sysnative\wuapi.dll 2014-08-27 17:32:21 45D4BDEA136E72E75CF008D3C38D949A 198600 ----a-w- C:\Windows\Sysnative\wuwebv.dll 2014-08-27 17:32:21 29FE783F75362AD6D2D9C0555BA83BD2 36864 ----a-w- C:\Windows\Sysnative\wuapp.exe ====== C:\Windows\Sysnative\drivers ===== 2014-09-08 12:23:42 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys 2014-09-08 12:23:19 99F29B330A5ED5BA791E29E527BEC306 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys 2014-09-08 12:23:19 7991C0E7A33CF921FDE54D7D2807E41B 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys 2014-09-08 12:23:19 065262282C5CB0E81CD6273122BEEFEC 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys 2014-08-18 21:07:52 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\Sysnative\drivers\Msft_Kernel_webinstr_01009.Wdf 2014-08-15 22:17:00 87CE5C8965E101CCCED1F4675557E868 985536 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys ====== C:\Windows\Tasks ====== 2014-09-08 16:36:23 07AD8B2B3CB38BE39B43C4B5237D141F 3258 ----a-w- C:\Windows\Sysnative\Tasks\{85465DFF-DBC1-4FDF-B583-ACDEE7A1D5A0} 2014-09-08 11:02:12 EC820F135D5D5D6435E6B7A7B0030394 508 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task f1aa8617-8ba2-4e5f-a453-92e7a9d8b32d.job 2014-09-08 11:02:12 D1E38F3A10BC4036AF8C974BCA2F4DAA 508 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 1eae7a0e-e1ea-49af-8360-a183a48dc7c4.job 2014-09-08 11:02:12 B7BAF22B56C80C263193B984C7ED1291 3582 ----a-w- C:\Windows\Sysnative\Tasks\SUPERAntiSpyware Scheduled Task 1eae7a0e-e1ea-49af-8360-a183a48dc7c4 2014-09-08 11:02:12 B0BB4F238B7CA3D43AE0944B0681BF10 3508 ----a-w- C:\Windows\Sysnative\Tasks\SUPERAntiSpyware Scheduled Task f1aa8617-8ba2-4e5f-a453-92e7a9d8b32d 2014-08-18 21:07:23 596CA1072058E3961E4E65DDC1A7DAC6 3140 ----a-w- C:\Windows\Sysnative\Tasks\{FBCFD97F-ED5B-4DD5-B54D-0A63DEAA72D1} 2014-08-18 20:54:43 9024A86CA301523E5D896D71A9C41E5B 3234 ----a-w- C:\Windows\Sysnative\Tasks\PC Health Kit Schedule ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-09-08 11:01:44 -------- d-----w- C:\Program Files\SUPERAntiSpyware ======= C:\PROGRA~2 ===== 2014-09-08 16:32:54 -------- d-----w- C:\PROGRA~2\VS Revo Group 2014-08-18 21:10:08 -------- d-----w- C:\PROGRA~2\RCP 2014-08-18 20:52:13 -------- d-----w- C:\PROGRA~2\Cinemax ======= C: ===== 2014-08-18 21:16:36 9835A503BDD33ED7EE969F5938765A8D 689130 ----a-w- C:\ad8f6fcf-c5ee-4e6e-93e3-582aec8d2e43.dmp 2014-08-18 21:09:31 68444E9D77D56E5524C62DB51953C7F3 45 ----a-w- C:\user.js ====== C:\Users\Asus\AppData\Roaming ====== 2014-09-08 16:32:54 -------- d-----w- C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2014-09-08 11:02:06 -------- d-----w- C:\Users\Asus\AppData\Roaming\SUPERAntiSpyware.com 2014-09-08 11:01:46 -------- d-----w- C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2014-09-08 10:06:49 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Asus\AppData\Locallow\localStorageIE_backup.txt 2014-08-20 16:50:07 A95AB9EFAA5C2022F94364BC287726E9 46 ----a-w- C:\Users\Asus\AppData\Roaming\WB.CFG 2014-08-18 22:48:04 -------- d-----w- C:\Users\Asus\AppData\Local\Packages 2014-08-18 22:48:01 -------- d-----w- C:\Users\Asus\AppData\Locallow\{80C57B80-23BC-7773-62C9-7FB73C9AD624} 2014-08-18 22:47:56 -------- d-----w- C:\Users\Convidado\AppData\Local\Comodo 2014-08-18 22:47:56 -------- d-----w- C:\Users\Asus\AppData\Local\Comodo 2014-08-18 22:47:55 -------- d-----w- C:\Users\Convidado\AppData\Local\Google 2014-08-18 22:47:55 -------- d-----w- C:\Users\Administrador\AppData\Local\Comodo 2014-08-18 22:47:53 -------- d-----w- C:\Users\Administrador\AppData\Local\Google 2014-08-18 21:10:45 -------- d-----w- C:\Users\Asus\AppData\Locallow\{FAECC00E-8025-47C7-94A5-DCC838C392A1} 2014-08-18 21:09:31 -------- d-----w- C:\Users\Asus\AppData\Locallow\Company 2014-08-18 20:56:59 -------- d--h--w- C:\Users\Asus\AppData\Roaming\GoldenGate 2014-08-18 20:56:45 -------- d-----w- C:\Users\Asus\AppData\Local\Gameo 2014-08-18 20:56:41 -------- d-----w- C:\Users\Asus\AppData\Roaming\Gameo 2014-08-18 20:54:03 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\ICSharpCode.net 2014-08-18 20:53:51 -------- d-----w- C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil 2014-08-18 20:49:42 -------- d-----w- C:\Users\Asus\AppData\Roaming\vlc ====== C:\Users\Asus ====== 2014-09-08 16:32:11 4AF4D1D156DF61FC7364D1193862A068 4862664 ------w- C:\Users\Asus\Desktop\avast_free_antivirus_setup_online.exe 2014-09-08 14:13:55 955B519235602DD43D20B0312E9A3AC2 4901352 ----a-w- C:\Users\Asus\Desktop\ccsetup417.exe 2014-09-08 13:53:27 -------- d-----w- C:\ProgramData\RogueKiller 2014-09-08 13:52:34 BECA3A349FBD97F0D2AED885E820D6E9 4857944 ----a-w- C:\Users\Asus\Desktop\RogueKiller.exe 2014-09-08 12:22:54 8C97F743F498CB595E0308DC2B90E5AB 17292208 ----a-w- C:\Users\Asus\Desktop\mbam-setup.exe 2014-09-08 12:21:29 D40E7B5FBB8E0EAA7C5C294389AF95AB 4181856 ----a-w- C:\Users\Asus\Desktop\tdsskiller.exe 2014-09-08 11:01:44 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2014-09-08 11:01:15 D02D15D8E77E4FFE07BD2F86D1F39EC6 19203296 ----a-w- C:\Users\Asus\Desktop\SUPERAntiSpyware.exe 2014-09-08 10:44:02 CA630DBADEB5B6101531F986ADFE46C9 1016261 ----a-w- C:\Users\Asus\Desktop\JRT.exe 2014-09-08 10:26:52 13EC9896CB74B8BD8F6C92135DFACD20 1370467 ----a-w- C:\Users\Asus\Desktop\AdwCleaner.exe 2014-08-29 04:47:40 9EC97E8200B2CB69DCA172ED9C8B3F1F 865688 ----a-w- C:\Users\Asus\Downloads\yet_another_cleaner_nvba.exe 2014-08-18 22:48:04 -------- d-----w- C:\ProgramData\67a86aa437594597 2014-08-18 22:47:55 -------- d-----w- C:\Users\Convidado\AppData 2014-08-18 22:47:53 -------- d-----w- C:\Users\Administrador\AppData 2014-08-18 21:07:51 C4B8367FBC1B7A85D0D575BFBACDFB38 286 --sha-r- C:\ProgramData\ntuser.pol ====== C: exe-files == 2014-09-09 15:56:20 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\erunt\ERUNT.EXE 2014-09-09 15:55:29 C0EEBD8C1A189EEFF602D9D2773F66ED 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-898792686-3953866977-1662306718-1000\$IS7UT00.exe 2014-09-09 15:55:29 808B3B1E4ADA1522096CD0350F9A226E 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-898792686-3953866977-1662306718-1000\$IECGFY0.exe 2014-09-08 17:01:08 9A8336796A7C71E9F33DE848B8320ED3 380416 ----a-w- C:\$Recycle.Bin\S-1-5-21-898792686-3953866977-1662306718-1000\$RECGFY0.exe 2014-09-08 17:01:02 9A8336796A7C71E9F33DE848B8320ED3 380416 ----a-w- C:\$Recycle.Bin\S-1-5-21-898792686-3953866977-1662306718-1000\$R494VMZ\gmer - Cópia.exe 2014-09-08 16:32:55 761102A9B90EC601E8B3071120063D74 87550 ----a-w- C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe 2014-09-08 16:32:26 4F99CAE27FFD46712E65C21444AACDFC 2623656 ----a-w- C:\$Recycle.Bin\S-1-5-21-898792686-3953866977-1662306718-1000\$RS7UT00.exe 2014-09-08 16:32:11 4AF4D1D156DF61FC7364D1193862A068 4862664 ------w- C:\Users\Asus\Desktop\avast_free_antivirus_setup_online.exe 2014-09-08 14:13:55 955B519235602DD43D20B0312E9A3AC2 4901352 ----a-w- C:\Users\Asus\Desktop\ccsetup417.exe 2014-09-08 13:52:34 BECA3A349FBD97F0D2AED885E820D6E9 4857944 ----a-w- C:\Users\Asus\Desktop\RogueKiller.exe 2014-09-08 12:22:54 8C97F743F498CB595E0308DC2B90E5AB 17292208 ----a-w- C:\Users\Asus\Desktop\mbam-setup.exe 2014-09-08 12:21:29 D40E7B5FBB8E0EAA7C5C294389AF95AB 4181856 ----a-w- C:\Users\Asus\Desktop\tdsskiller.exe 2014-09-08 11:01:15 D02D15D8E77E4FFE07BD2F86D1F39EC6 19203296 ----a-w- C:\Users\Asus\Desktop\SUPERAntiSpyware.exe 2014-09-08 10:44:02 CA630DBADEB5B6101531F986ADFE46C9 1016261 ----a-w- C:\Users\Asus\Desktop\JRT.exe 2014-09-08 10:26:52 13EC9896CB74B8BD8F6C92135DFACD20 1370467 ----a-w- C:\Users\Asus\Desktop\AdwCleaner.exe === C: other files == 2014-09-09 15:56:20 DD1E4D974B1672ABD09EFFB225791C4A 1230 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\TDL4.bat 2014-09-09 15:56:20 AD2F52DC72B10AF331692E4A4DD80DFC 18670 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\medfos.bat 2014-09-09 15:56:20 A87CD1BAC46CAC0EEEDB571F07077032 8104 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\modules.bat 2014-09-09 15:56:20 8E6020C14F982CF11B3FE7DBB0CB8EDE 24738 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\searchlnk.bat 2014-09-09 15:56:20 86707BCE5CBB65D9B1C41E249B4423BA 152733 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\firefox.bat 2014-09-09 15:56:20 83F691D8398F0E37E71E9355BF730DB9 719 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\ev_clear.bat 2014-09-09 15:56:20 7D8282EB94B5D639B7378811C1924A8F 9516 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\runvalues.bat 2014-09-09 15:56:20 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\delorphans.bat 2014-09-09 15:56:20 5B92615B0CEA08D6BA1217C08CBB1443 15919 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\get.bat 2014-09-09 15:56:20 5B71358F97544D9DE58A9A0893079506 39458 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\prelim.bat 2014-09-09 15:56:20 53B191266B30D57F2F835ABBF54C68C5 13963 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\chrome.bat 2014-09-09 15:56:20 3BC04DEBBE9027060D51901133F60101 154678 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\misc.bat 2014-09-09 15:56:20 38A0BDF322ACCC968B0A824C38D50157 29635 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\ask.bat 2014-09-09 15:56:20 335DFF8F23E5EC02B5426362F0F8509B 31401 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\iexplore.bat 2014-09-09 15:56:20 2F80D807DB405C8F6E0F3706B9FED710 10161 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\JRT.bat 2014-09-09 15:56:20 0D08FBD2E6F6C6AC6A504712C4CE6CE3 1226 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\FWPolicy.bat 2014-09-09 15:56:20 0C4649A62845AB5D5DBCC4998477FF6D 1813 ----a-w- C:\Users\Asus\AppData\Local\Temp\jrt\delfolders.bat 2014-09-08 16:32:20 FB50E172074A6400F8CD2C0D31C5C6DB 370943 ------w- C:\Users\Asus\Desktop\gmer.zip 2014-09-08 13:53:28 446118FFFF5576434393AE4551A5CA74 33512 ----a-w- C:\Windows\SysWOW64\drivers\TrueSight.sys 2014-09-08 12:23:42 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-09-08 12:23:19 99F29B330A5ED5BA791E29E527BEC306 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-09-08 12:23:19 7991C0E7A33CF921FDE54D7D2807E41B 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-09-08 12:23:19 065262282C5CB0E81CD6273122BEEFEC 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys ======== System Restore Points ======== RP71: 11/06/2014 20:19:14 - Windows Update RP72: 14/06/2014 19:43:17 - Windows Update RP73: 14/06/2014 21:15:57 - Windows Update RP74: 13/07/2014 01:22:54 - Windows Update RP75: 25/07/2014 18:59:37 - Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 RP76: 25/07/2014 21:13:10 - Windows Update RP77: 26/07/2014 12:15:45 - Installed calibre RP78: 15/08/2014 20:02:52 - Windows Update RP79: 20/08/2014 15:29:56 - Windows Update RP80: 20/08/2014 18:50:31 - RCP qua, ago 20, 14 18:50 RP81: 20/08/2014 18:52:46 - Windows Update RP82: 27/08/2014 14:31:44 - Windows Update RP83: 29/08/2014 02:47:05 - Windows Update RP84: 08/09/2014 13:34:51 - Revo Uninstaller's restore point - Baidu Antivirus RP85: 08/09/2014 13:36:03 - Revo Uninstaller's restore point - Baidu Antivirus RP86: 08/09/2014 13:37:01 - Revo Uninstaller's restore point - Baidu Antivirus RP87: 08/09/2014 13:38:34 - Revo Uninstaller's restore point - Bing Bar RP88: 08/09/2014 13:41:48 - Revo Uninstaller's restore point - Google Toolbar for Internet Explorer RP89: 09/09/2014 13:25:34 - zoek.exe restore point ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-898792686-3953866977-1662306718-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Nuance PDF Reader-reminder"="C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe -r C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini" "ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE" "ASUSWebStorage"="C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S" "SonicMasterTray"="C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe" "ATKOSD2"="C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" "ATKMEDIA"="C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" "HControlUser"="C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" "Wireless Console 3"="C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "VizorHtmlDialog.exe"="C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe DEF EULA C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html DEF DEF DEF" "Trend Micro Client Framework"="C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" "Trend Micro Titanium"="C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush none none" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3 " "ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe " ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ASUS Screen Saver Protector] "command"="C:\\Windows\\AsScrPro.exe" "hkey"="HKLM" "item"="ASUS Screen Saver Protector" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer] "command"="\"C:\\Program Files (x86)\\CyberLink\\Power2Go\\CLMLSvc.exe\"" "hkey"="HKLM" "item"="CLMLServer" "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] "command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s" "hkey"="HKLM" "item"="RtHDVCpl" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" ==== Startup Folders ====================== 2013-12-14 23:13:07 1012 ----a-w- C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2014-03-25 00:30:18 1256 ----a-w- C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk 2013-01-03 22:43:27 2617 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk 2013-10-03 22:19:57 1933 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12/07/2014 23:11] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-898792686-3953866977-1662306718-1000Core.job --a------ C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe [08/02/2013 17:26] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-898792686-3953866977-1662306718-1000UA.job --a------ C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe [08/02/2013 17:26] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 1eae7a0e-e1ea-49af-8360-a183a48dc7c4.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 17:08] C:\Windows\tasks\SUPERAntiSpyware Scheduled Task f1aa8617-8ba2-4e5f-a453-92e7a9d8b32d.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 17:08] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\ACMON" [C:\Program Files (x86)\ASUS\Splendid\ACMON.exe] "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\AIRecoveryRemind" [C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe] "C:\Windows\SysNative\tasks\ASUS P4G" [C:\Program Files\P4G\BatteryLife.exe] "C:\Windows\SysNative\tasks\ASUS SmartLogon Console Sensor" [C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe] "C:\Windows\SysNative\tasks\AsusVibeSchedule" ["C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe"] "C:\Windows\SysNative\tasks\ATKOSD2" [C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe] "C:\Windows\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-898792686-3953866977-1662306718-1000Core" [C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-898792686-3953866977-1662306718-1000UA" [C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\HPCustParticipation HP Deskjet 1000 J110 series" ["C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\HPCustPartic.exe"] "C:\Windows\SysNative\tasks\HpWebReg.exe" [C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\HpWebReg.exe] "C:\Windows\SysNative\tasks\PC Health Kit Schedule" ["C:\Program Files (x86)\PC Health Kit\PCHKLauncher.exe"] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\SUPERAntiSpyware Scheduled Task 1eae7a0e-e1ea-49af-8360-a183a48dc7c4" [C:\Program Files\SUPERAntiSpyware\SASTask.exe] "C:\Windows\SysNative\tasks\SUPERAntiSpyware Scheduled Task f1aa8617-8ba2-4e5f-a453-92e7a9d8b32d" [C:\Program Files\SUPERAntiSpyware\SASTask.exe] "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Folders in C:\PROGRA~3 0-6 Months Old ====================== 2014-07-25 22:00:09 -------- d-----w- C:\PROGRA~3\Package Cache 2014-08-18 22:48:04 -------- d-----w- C:\PROGRA~3\67a86aa437594597 2014-09-08 11:01:44 -------- d-----w- C:\PROGRA~3\SUPERAntiSpyware.com 2014-09-08 12:23:19 -------- d-----w- C:\PROGRA~3\Malwarebytes 2014-09-08 13:53:27 -------- d-----w- C:\PROGRA~3\RogueKiller ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{22C7F6C6-8D67-4534-92B5-529A0EC09405}"="C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension" [18/10/2011 17:12] ==== Chrome Look ====================== HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions pgacfjdigcddmmncljpflgcfpfahebkh - C:\Users\Asus\AppData\Local\GAS Tecnologia\GBBD\bb\sf.crx[21/11/2012 15:32] cosstminn - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\makfpmmeabmhdfagkemilkhlnedjgghm cosstminn - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\makfpmmeabmhdfagkemilkhlnedjgghm cosstminn - Asus\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\makfpmmeabmhdfagkemilkhlnedjgghm Docs - Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake GBBD Banco do Brasil - Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgacfjdigcddmmncljpflgcfpfahebkh cosstminn - Asus\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\makfpmmeabmhdfagkemilkhlnedjgghm cosstminn - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\makfpmmeabmhdfagkemilkhlnedjgghm cosstminn - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\makfpmmeabmhdfagkemilkhlnedjgghm ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" "Default_Page_URL"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main] "Default_Search_URL"="http://www.google.com" "Default_Page_URL"="http://www.google.com" "Start Page"="http://www.google.com" "Search Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {CC865B26-C31D-4D23-B17B-96548EEF03F6} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MXGB_pt-BRBR548" ==== shortcuts on Users Desktops ====================== C:\Users\Asus\Desktop\Dropbox.lnk - C:\Users\Asus\AppData\Roaming\Dropbox\bin\Dropbox.exe /home C:\Users\Asus\Desktop\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Asus\Desktop\LifeFrame.lnk - C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe C:\Users\Asus\Desktop\Limpeza Grátis de Registros.lnk - C:\Users\Asus\Desktop\Notepad.lnk - C:\Windows\system32\notepad.exe C:\Users\Asus\Desktop\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe C:\Users\Asus\Desktop\Search.lnk - C:\ProgramData\DSearchLink\DSearchLink.exe C:\Users\Asus\Desktop\SUPERAntiSpyware Free Edition.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Adobe Reader XI.lnk - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe C:\Users\Public\Desktop\ASUS Vibe Fun Center.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe C:\Users\Public\Desktop\ASUS Sonic Focus.lnk - C:\Windows\Installer\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}\SonicFocus.exe1_B0A8CDAEB7C14C9B9559672250622EF7.exe C:\Users\Public\Desktop\ASUS WebStorage.lnk - C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe C:\Users\Public\Desktop\calibre - E-book management.lnk - C:\Program Files (x86)\Calibre2\calibre.exe C:\Users\Public\Desktop\Compre suprimentos - HP Deskjet 1000 J110 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 1000 J110 series\Bin\hpqDTSS.exe C:\Users\Public\Desktop\eManual.Lnk - C:\eSupport\Manual\eManual.exe C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Public\Desktop\HiDef Media Player.lnk - C:\Program Files (x86)\HiDefMedia\HiDefMedia\hidefmedia.exe C:\Users\Public\Desktop\HP Deskjet 1000 J110 series.lnk - C:\Program Files (x86)\HP\HP Deskjet 1000 J110 series\Bin\HP Deskjet 1000 J110 series.exe C:\Users\Public\Desktop\HP Photo Creations.lnk - C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe C:\Users\Public\Desktop\Kobo.lnk - C:\Program Files (x86)\Kobo\Kobo.exe C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\McUICnt.exe SecurityScanner.dll C:\Users\Public\Desktop\ASUS\Backup & Restore\AI Recovery Burner.lnk - C:\ProgramData\ChangeFolderView\aiRecovery.ico C:\Users\Public\Desktop\ASUS\Entertainment\Game Park Console.lnk - C:\ProgramData\Asus\Game Park Console\GameConsole.exe C:\Users\Public\Desktop\ASUS\Entertainment\LifeFrame.lnk - C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe C:\Users\Public\Desktop\ASUS\Multimedia\ASUSDVD.lnk - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVDLaunchPolicy.exe C:\Users\Public\Desktop\ASUS\Multimedia\CyberLink Media Suite.lnk - C:\Program Files (x86)\CyberLink\Media Suite\PS.exe C:\Users\Public\Desktop\ASUS\Safety & Protection\SmartLogon Manager.lnk - C:\Program Files (x86)\ASUS\SmartLogon\logonmgr.exe C:\Users\Public\Desktop\ASUS\System tool\e-Driver.lnk - C:\eSupport\eDriver\InstAll.exe C:\Users\Public\Desktop\ASUS\System tool\Splendid Utility.Lnk - C:\Program Files (x86)\ASUS\Splendid\Backbone.exe C:\Users\Public\Desktop\ASUS\Word processor\Nuance PDF Reader.lnk - C:\Program Files (x86)\Nuance\PDF Reader\bin\PDFReader.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Users\Asus\AppData\Roaming\Dropbox\bin\Dropbox.exe /home C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk - C:\Users\Asus\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Revo Uninstaller.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Run Hunter Mode.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe -hunter C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Uninstall.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\uninst.exe C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller\Website.lnk - C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revo Uninstaller.url C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk - C:\Users\Asus\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Alternate Start.lnk - C:\Program Files\SUPERAntiSpyware\RUNSAS.EXE C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Free Edition.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Help.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.chm C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware\SUPERAntiSpyware Registration-Activation.lnk - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe /register ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Desinstalar Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ==== shortcuts in Quick Launch ====================== C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Browse and Search the Internet.lnk - C:\Program Files (x86)\Settings Manager\smdmf\tbicon.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Search.lnk - C:\ProgramData\DSearchLink\DSearchLink.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Live Photo Gallery.lnk - C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk - C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\Trend Micro\Trend Micro Titanium.lnk - C:\Program Files (x86)\Trend Micro\Titanium\UIFramework\uiWinMgr.exe C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll O2 - BHO: CompSegIB - {2E3C3651-B19C-4DD9-A979-901EC3E930AF} - C:\Program Files (x86)\Scpad\scpsssh2.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Program Files (x86)\GbPlugin\gbieh.dll O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini" O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE" O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S O4 - HKLM\..\Run: [sonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE') O4 - Startup: Dropbox.lnk = C:\Users\Asus\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: OneNote 2010 Screen Clipper and Launcher.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O4 - Global Startup: FancyStart daemon.lnk = ? O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe O8 - Extra context menu item: &Enviar para o OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: www.bancobrasil.com.br O15 - Trusted Zone: www14.bancobrasil.com.br O15 - Trusted Zone: www2.bancobrasil.com.br O15 - Trusted Zone: www.bb.com.br O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - Winlogon Notify: GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll O21 - SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Program Files (x86)\Scpad\scpLIB.dll O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing) O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Gbp Service (GbpSv) - GAS Tecnologia - C:\PROGRA~2\GbPlugin\GbpSv.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: scpVista - Banco Bradesco S.A. - C:\Program Files (x86)\Scpad\scpVista.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: TiMiniService - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Silent Runners ====================== ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=0 folders=0 0 bytes) ==== Empty Temp Folders ====================== C:\Users\Asus\AppData\Local\Temp will be emptied at reboot C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Asus\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on 09/09/2014 at 13:34:17,73 ======================
  8. Diego.AS.

    PC Lento

    Boa tarde, ultimamente meu pc tem estado lento notei que o Baidu foi instalado sem meu consentimento (removi o mesmo hoje). Logs: DDS DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.9600.17239 Run by Asus at 13:53:17 on 2014-09-08 Microsoft Windows 7 Home Basic 6.1.7601.1.1252.55.1046.18.4000.2075 [GMT -3:00] . AV: Trend Micro Titanium Internet Security *Disabled/Updated* {68F968AC-2AA0-091D-848C-803E83E35902} SP: Trend Micro Titanium Internet Security *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\PROGRA~2\GbPlugin\GbpSv.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\FBAgent.exe C:\Windows\system32\WLANExt.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe C:\Program Files (x86)\Scpad\scpVista.exe C:\Program Files\Trend Micro\Titanium\TiMiniService.exe C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\P4G\BatteryLife.exe C:\PROGRA~2\GbPlugin\GbpSv.exe C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\taskeng.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files\Elantech\ETDCtrl.exe C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe C:\Program Files (x86)\ASUS\Splendid\ACMON.exe C:\Windows\AsScrPro.exe C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe C:\Program Files\Elantech\ETDCtrlHelper.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Windows\SysWOW64\ACEngSvr.exe C:\Windows\system32\wuauclt.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com uDefault_Page_URL = hxxp://www.google.com mStart Page = hxxp://www.google.com mSearch Page = hxxp://www.google.com mDefault_Page_URL = hxxp://www.google.com mDefault_Search_URL = hxxp://www.google.com mWinlogon: Userinit = userinit.exe BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll BHO: ssh2 Class: {2E3C3651-B19C-4DD9-A979-901EC3E930AF} - C:\Program Files (x86)\Scpad\scpsssh2.dll BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe32.dll BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Program Files (x86)\GbPlugin\gbieh.dll uRun: [Facebook Update] "C:\Users\Asus\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background uRun: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe mRun: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini" mRun: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE" mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S mRun: [sonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe StartupFolder: C:\Users\Asus\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Asus\AppData\Roaming\Dropbox\bin\Dropbox.exe StartupFolder: C:\Users\Asus\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\FANCYS~1.LNK - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: &Enviar para o OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: E&xportar para o Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll TCP: Interfaces\{B4F73E6A-EF0C-478D-B7AA-2FB7FB20C929} : DHCPNameServer = 201.76.224.13 201.76.224.14 TCP: Interfaces\{B4F73E6A-EF0C-478D-B7AA-2FB7FB20C929}\4505D2C494E4B4F5236364533363 : DHCPNameServer = 192.168.0.1 Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe32.dll Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Notify: GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll SSODL: WebCheck - <orphaned> SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Program Files (x86)\Scpad\scpLIB.dll SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.143\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome x64-mStart Page = hxxp://www.google.com x64-mSearch Page = hxxp://www.google.com x64-mDefault_Page_URL = hxxp://www.google.com x64-mDefault_Search_URL = hxxp://www.google.com x64-BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg.dll x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL x64-BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe64.dll x64-Run: [VizorHtmlDialog.exe] "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF" x64-Run: [Trend Micro Client Framework] "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" x64-Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none" x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SF3 x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL x64-Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe64.dll x64-Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg.dll x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-Notify: igfxcui - igfxdev.dll x64-SSODL: WebCheck - <orphaned> x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL . ============= SERVICES / DRIVERS =============== . R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-7-26 17024] R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928] R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368] R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2014-7-22 172344] R2 AFBAgent;AFBAgent;C:\Windows\System32\FBAgent.exe [2013-1-3 379520] R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416] R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe [2011-6-2 64128] R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2014-8-15 546104] R2 scpVista;scpVista;C:\Program Files (x86)\Scpad\scpVista.exe [2013-1-16 360624] R2 TiMiniService;TiMiniService;C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [2011-4-28 241488] R2 tmevtmgr;tmevtmgr;C:\Windows\System32\drivers\tmevtmgr.sys [2011-10-18 67664] R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-1-3 2656280] R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2011-6-2 128488] R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2011-6-2 401896] R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2011-8-3 138024] R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-8-3 317440] R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\rtsuvstor.sys [2013-1-3 311400] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-1-3 471144] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088] S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-9-8 1809720] S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-9-8 860472] S3 Amsp;Trend Micro Solution Platform;C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2011-10-18 267480] S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2011-10-18 48488] S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840] S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-8-15 111616] S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\System32\drivers\L1C62x64.sys [2009-6-10 57344] S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-9-8 25816] S3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-9-8 63704] S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-4-9 289256] S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\System32\drivers\SiSG664.sys [2009-6-10 56832] S3 Spring;Spring;C:\Program Files (x86)\Baidu Security\Baidu Antivirus\Spring64.sys [2014-6-14 110336] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-2-18 59392] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2011-2-18 31232] S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184] . =============== Created Last 30 ================ . 2014-09-08 16:37:41 -------- d-----w- C:\Users\Asus\AppData\Roaming\Baidu 2014-09-08 16:32:54 -------- d-----w- C:\Program Files (x86)\VS Revo Group 2014-09-08 14:14:26 -------- d-----w- C:\Program Files\CCleaner 2014-09-08 13:53:28 33512 ----a-w- C:\Windows\SysWow64\drivers\TrueSight.sys 2014-09-08 13:53:27 -------- d-----w- C:\ProgramData\RogueKiller 2014-09-08 12:23:42 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys 2014-09-08 12:23:19 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys 2014-09-08 12:23:19 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys 2014-09-08 12:23:19 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys 2014-09-08 12:23:19 -------- d-----w- C:\ProgramData\Malwarebytes 2014-09-08 12:23:19 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-09-08 12:20:31 -------- d-----w- C:\Users\Asus\AppData\Local\{C73FEAC4-AA6A-466D-AC77-D0B5342E1B7C} 2014-09-08 11:58:04 -------- d-----w- C:\ProgramData\Baidu 2014-09-08 11:02:06 -------- d-----w- C:\Users\Asus\AppData\Roaming\SUPERAntiSpyware.com 2014-09-08 11:01:44 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2014-09-08 11:01:44 -------- d-----w- C:\Program Files\SUPERAntiSpyware 2014-09-08 10:46:45 -------- d-----w- C:\Windows\ERUNT 2014-09-08 10:29:48 -------- d-----w- C:\AdwCleaner 2014-08-29 01:14:02 3163648 ----a-w- C:\Windows\System32\win32k.sys 2014-08-29 01:14:01 404480 ----a-w- C:\Windows\System32\gdi32.dll 2014-08-29 01:14:01 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll 2014-08-18 22:48:04 -------- d-----w- C:\Users\Asus\AppData\Local\Packages 2014-08-18 22:48:04 -------- d-----w- C:\ProgramData\67a86aa437594597 2014-08-18 22:47:56 -------- d-----w- C:\Users\Asus\AppData\Local\Comodo 2014-08-18 22:47:48 -------- d-----w- C:\Users\Asus\AppData\Roaming\ap_logs 2014-08-18 22:45:07 -------- d-----w- C:\ProgramData\smdmf 2014-08-18 21:10:08 -------- d-----w- C:\Program Files (x86)\RCP 2014-08-18 20:56:59 -------- d--h--w- C:\Users\Asus\AppData\Roaming\GoldenGate 2014-08-18 20:56:45 -------- d-----w- C:\Users\Asus\AppData\Local\Gameo 2014-08-18 20:56:41 -------- d-----w- C:\Users\Asus\AppData\Roaming\Gameo 2014-08-18 20:52:13 -------- d-----w- C:\Program Files (x86)\Cinemax 2014-08-15 23:03:56 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll 2014-08-15 23:03:55 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe 2014-08-15 23:03:55 171160 ----a-w- C:\Windows\System32\infocardapi.dll 2014-08-15 23:03:55 1389208 ----a-w- C:\Windows\System32\icardagt.exe 2014-08-15 23:03:54 8856 ----a-w- C:\Windows\SysWow64\icardres.dll 2014-08-15 23:03:54 8856 ----a-w- C:\Windows\System32\icardres.dll 2014-08-15 23:03:40 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe 2014-08-15 23:03:40 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe 2014-08-15 22:18:08 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2014-08-15 22:18:08 2048 ----a-w- C:\Windows\System32\tzres.dll 2014-08-15 22:17:33 3241984 ----a-w- C:\Windows\System32\msi.dll 2014-08-15 22:17:33 2363392 ----a-w- C:\Windows\SysWow64\msi.dll 2014-08-15 22:17:33 1941504 ----a-w- C:\Windows\System32\authui.dll 2014-08-15 22:17:33 1805824 ----a-w- C:\Windows\SysWow64\authui.dll 2014-08-15 22:17:33 112064 ----a-w- C:\Windows\System32\consent.exe 2014-08-15 22:17:32 504320 ----a-w- C:\Windows\System32\msihnd.dll 2014-08-15 22:17:32 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll 2014-08-15 22:17:00 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys 2014-08-15 22:13:16 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll 2014-08-15 22:13:16 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll 2014-08-15 22:13:15 529920 ----a-w- C:\Windows\System32\aepdu.dll 2014-08-15 22:13:14 424448 ----a-w- C:\Windows\System32\aeinv.dll . ==================== Find3M ==================== . 2014-09-08 10:42:01 45056 ----a-w- C:\Windows\System32\acovcnt.exe 2014-07-25 14:02:12 2724864 ----a-w- C:\Windows\System32\mshtml.tlb 2014-07-25 14:01:41 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll 2014-07-25 13:30:30 66048 ----a-w- C:\Windows\System32\iesetup.dll 2014-07-25 13:28:35 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll 2014-07-25 13:28:27 548352 ----a-w- C:\Windows\System32\vbscript.dll 2014-07-25 13:25:45 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll 2014-07-25 13:04:40 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2014-07-25 13:00:51 139264 ----a-w- C:\Windows\System32\ieUnatt.exe 2014-07-25 13:00:25 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe 2014-07-25 12:59:28 758272 ----a-w- C:\Windows\System32\jscript9diag.dll 2014-07-25 12:47:25 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe 2014-07-25 12:34:49 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll 2014-07-25 12:34:03 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll 2014-07-25 12:33:08 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll 2014-07-25 12:30:32 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll 2014-07-25 12:28:15 5824512 ----a-w- C:\Windows\System32\jscript9.dll 2014-07-25 12:28:05 72704 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-07-25 12:10:15 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2014-07-25 12:08:47 597504 ----a-w- C:\Windows\SysWow64\jscript9diag.dll 2014-07-25 12:06:47 4204032 ----a-w- C:\Windows\SysWow64\jscript9.dll 2014-07-25 11:43:16 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll 2014-07-25 11:39:29 2087936 ----a-w- C:\Windows\System32\inetcpl.cpl 2014-07-25 11:39:25 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll 2014-07-25 11:07:49 2001920 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2014-07-25 11:07:10 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll 2014-07-25 10:52:06 2266624 ----a-w- C:\Windows\System32\wininet.dll 2014-07-25 10:05:23 1792512 ----a-w- C:\Windows\SysWow64\wininet.dll 2014-07-13 02:11:16 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2014-07-13 02:11:16 699056 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2014-06-18 02:18:30 692736 ----a-w- C:\Windows\System32\osk.exe 2014-06-18 01:51:32 646144 ----a-w- C:\Windows\SysWow64\osk.exe 2014-06-13 02:11:05 70912 ----a-w- C:\Windows\System32\drivers\Bndef.sys . ============= FINISH: 13:53:35,35 =============== attach . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Basic Boot Device: \Device\HarddiskVolume2 Install Date: 03/01/2013 15:04:31 System Uptime: 08/09/2014 09:40:49 (4 hours ago) . Motherboard: ASUSTeK Computer Inc. | | K84C Processor: Intel® Pentium® CPU B950 @ 2.10GHz | CPU 1 | 1890/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 195 GiB total, 134,143 GiB free. D: is FIXED (NTFS) - 245 GiB total, 245,311 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: Adaptador de Túnel Teredo da Microsoft Device ID: ROOT\*TEREDO\0001 Manufacturer: Microsoft Name: Teredo Tunneling Pseudo-Interface PNP Device ID: ROOT\*TEREDO\0001 Service: tunnel . Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Description: Lexmark X422 Device ID: ROOT\IMAGE\0000 Manufacturer: Lexmark Name: Lexmark X422 PNP Device ID: ROOT\IMAGE\0000 Service: usbscan . Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Description: Lexmark X422 Device ID: ROOT\IMAGE\0001 Manufacturer: Lexmark Name: Lexmark X422 PNP Device ID: ROOT\IMAGE\0001 Service: usbscan . ==== System Restore Points =================== . RP71: 11/06/2014 20:19:14 - Windows Update RP72: 14/06/2014 19:43:17 - Windows Update RP73: 14/06/2014 21:15:57 - Windows Update RP74: 13/07/2014 01:22:54 - Windows Update RP75: 25/07/2014 18:59:37 - Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 RP76: 25/07/2014 21:13:10 - Windows Update RP77: 26/07/2014 12:15:45 - Installed calibre RP78: 15/08/2014 20:02:52 - Windows Update RP79: 20/08/2014 15:29:56 - Windows Update RP80: 20/08/2014 18:50:31 - RCP qua, ago 20, 14 18:50 RP81: 20/08/2014 18:52:46 - Windows Update RP82: 27/08/2014 14:31:44 - Windows Update RP83: 29/08/2014 02:47:05 - Windows Update RP84: 08/09/2014 13:34:51 - Revo Uninstaller's restore point - Baidu Antivirus RP85: 08/09/2014 13:36:03 - Revo Uninstaller's restore point - Baidu Antivirus RP86: 08/09/2014 13:37:01 - Revo Uninstaller's restore point - Baidu Antivirus RP87: 08/09/2014 13:38:34 - Revo Uninstaller's restore point - Bing Bar RP88: 08/09/2014 13:41:48 - Revo Uninstaller's restore point - Google Toolbar for Internet Explorer . ==== Installed Programs ====================== . ???? ??? Windows Live ???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? ???? Windows Live ??????? Windows Live Mesh ActiveX ??(????) ??????? Windows Live Mesh ActiveX ??? ????????? ActiveX ?? Windows Live Mesh ????????????????????????? (???) Adobe Flash Player 10 Plugin Adobe Flash Player 14 ActiveX Adobe Reader XI (11.0.08) - Português Asmedia ASM104x USB 3.0 Host Controller Driver ASUS AI Recovery ASUS FancyStart ASUS LifeFrame3 ASUS Live Update ASUS Power4Gear Hybrid ASUS SmartLogon ASUS Splendid Video Enhancement Technology ASUS Virtual Camera ASUS WebStorage ASUS_Screensaver ASUSDVD AsusVibe2.0 Atheros Driver Installation Program ATK Package Bubbletown calibre CCleaner Cinemax Contrôle ActiveX Windows Live Mesh pour connexions à distance Control ActiveX de Windows Live Mesh para conexiones remotas Controle ActiveX do Windows Live Mesh para Conexões Remotas CyberLink LabelPrint CyberLink Media Suite CyberLink Power2Go D3DX10 Deadtime Stories Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Dream Vacation Solitaire Dropbox Estudo de melhoria do produto HP Deskjet 1000 J110 series ETDWare PS/2-X64 8.0.5.1_WHQL Facebook Video Calling 3.1.0.521 Farm Frenzy 3 - Madagascar Fast Boot Galapago Galerie de photos Windows Live Galería fotográfica de Windows Live Game Park Console Go Go Gourmet Chef of the Year Google Chrome Google Update Helper HP Deskjet 1000 J110 series Ajuda HP Photo Creations HP Update InstantOn Intel® Control Center Intel® Management Engine Components Intel® Processor Graphics Junk Mail filter update Kobo Módulo de Segurança - Banco do Brasil Mahjong Memoirs Malwarebytes Anti-Malware versão 2.0.2.1012 McAfee Security Scan Plus Mesh Runtime Microsoft .NET Framework 4.5.1 Microsoft Application Error Reporting Microsoft Office 2010 Microsoft Office Access MUI (Portuguese (Brazil)) 2010 Microsoft Office Excel MUI (Portuguese (Brazil)) 2010 Microsoft Office Groove MUI (Portuguese (Brazil)) 2010 Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010 Microsoft Office Office 64-bit Components 2010 Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010 Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010 Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (Portuguese (Brazil)) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (Portuguese (Brazil)) 2010 Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010 Microsoft Office Shared 64-bit MUI (Portuguese (Brazil)) 2010 Microsoft Office Shared MUI (Portuguese (Brazil)) 2010 Microsoft Office Word MUI (Portuguese (Brazil)) 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 MSVCRT MSVCRT_amd64 Nuance PDF Reader Plants vs Zombies Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek USB 2.0 Reader Driver Revo Uninstaller 1.95 Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) Security Update for Microsoft Office 2010 (KB2553284) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2760781) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition Software básico do dispositivo HP Deskjet 1000 J110 series Sonic Focus SUPERAntiSpyware Trend Micro Titanium Internet Security Turbo Fiesta Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition Uzak Baglantilar Için Windows Live Mesh ActiveX Denetimi Windows Live Windows Live ??? Windows Live ???? Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotograf Galerisi Windows Live Galeria de Fotos Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh Windows Live Mesh ActiveX Control for Remote Connections Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Parçalar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinFlash Wireless Console 3 World of Goo . ==== End Of File =========================== GMER GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-09-08 14:43:55 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 rev. 0,00MB Running: gmer.exe; Driver: C:\Users\Asus\AppData\Local\Temp\pxldrpoc.sys ---- Kernel code sections - GMER 2.1 ---- INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 666 fffff800033aa08a 7 bytes [00, 00, 00, 00, 00, 00, 03] INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 674 fffff800033aa092 6 bytes [00, 00, A0, F8, FF, FF] ---- User code sections - GMER 2.1 ---- .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 0000000077e2c4dd 6 bytes JMP 71af000a .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077e31287 6 bytes JMP 71a5000a .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\syswow64\kernel32.dll!FreeLibrary 0000000076253488 6 bytes JMP 71a8000a .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\syswow64\kernel32.dll!FreeLibraryAndExitThread 000000007626d552 5 bytes JMP 0000000175328fc8 .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW + 493 0000000076c72c9e 4 bytes CALL 71ac0000 .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000076af1465 2 bytes [AF, 76] .text C:\PROGRA~2\GbPlugin\GbpSv.exe[892] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 0000000076af14bb 2 bytes [AF, 76] .text ... * 2 .text C:\Program Files (x86)\Scpad\scpVista.exe[2120] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000076af1465 2 bytes [AF, 76] .text C:\Program Files (x86)\Scpad\scpVista.exe[2120] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 0000000076af14bb 2 bytes [AF, 76] .text ... * 2 ? C:\Windows\system32\mssprxy.dll [2120] entry point in ".rdata" section 00000000712c71e6 .text C:\Windows\Explorer.EXE[3656] C:\Windows\system32\kernel32.dll!CreateProcessW 0000000077b10650 6 bytes JMP 0 .text C:\Windows\Explorer.EXE[3656] C:\Windows\system32\KERNELBASE.dll!LoadLibraryExW + 357 000007fefdd29055 3 bytes CALL 61006300 .text C:\PROGRA~2\GbPlugin\GbpSv.exe[3432] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW + 493 0000000076c72c9e 4 bytes CALL 71af0000 .text C:\PROGRA~2\GbPlugin\GbpSv.exe[3432] C:\Windows\syswow64\RPCRT4.dll!IUnknown_QueryInterface_Proxy 0000000075a9429b 6 bytes JMP 71a8000a .text C:\PROGRA~2\GbPlugin\GbpSv.exe[3432] C:\Windows\syswow64\ole32.dll!CoUnmarshalInterface 00000000760bf150 6 bytes JMP 71ab000a .text C:\PROGRA~2\GbPlugin\GbpSv.exe[3432] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000076af1465 2 bytes [AF, 76] .text C:\PROGRA~2\GbPlugin\GbpSv.exe[3432] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 0000000076af14bb 2 bytes [AF, 76] .text ... * 2 .text C:\Windows\AsScrPro.exe[4044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076af1465 2 bytes [AF, 76] .text C:\Windows\AsScrPro.exe[4044] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076af14bb 2 bytes [AF, 76] .text ... * 2 ---- Processes - GMER 2.1 ---- Library C:\Program Files (x86)\Baidu Security\Baidu Antivirus\Bavnt64.dll (*** suspicious ***) @ C:\Windows\Explorer.EXE [3656] 0000000180000000 Library C:\Program Files (x86)\Baidu Security\Baidu Antivirus\bavum64.dll (*** suspicious ***) @ C:\Windows\Explorer.EXE [3656] 0000000001bf0000 Library C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll (*** suspicious ***) @ C:\Windows\Explorer.EXE [3656] 0000000002940000 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0025d3b2962e Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\74f06dcd22af Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0025d3b2962e (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\74f06dcd22af (not active ControlSet) ---- Disk sectors - GMER 2.1 ---- Disk \Device\Harddisk0\DR0 sector 0: rootkit-like behavior ---- EOF - GMER 2.1 ----
  9. Boa tarde @CR_GuaraniKaiowa, Tenta armazenar numa String. Exemplo //Supondo que o JTextField ja existe e chama 'jtf'String aux = jtf.getText(); Abraços
  10. Bom dia @Darlei Zillmer, Confesso que não possuo muito conhecimento com arduino, mas tenho extremo interesse... Quanto ao arduino acho que o Uno R3 é ótima escolha ou até mesmo o Leonardo. Tem essa loja tambem (https://www.robocore.net/modules.php?name=GR_LojaVirtual∏=105), acho que o kit vale apenas, mas depende do seu nivel de conhecimento... Obs.: Atualmente esta em falta, mas, segundo informações da loja, a reposição será feita esse mês Ouça tambem esse cast, talvez lhe ajude: http://www.grokpodcast.com/2010/11/10/episodio-9-introducao-ao-arduino-com-alvaro-justen-parte-1/ Obs.: é bem rápido o episódio. Abraços
  11. Bom dia @Gilmar Portella, Submeta o arquivo mencionado a uma verificação no Virus Total (https://www.virustotal.com/) Faça um scan em sua maquina com o mbam (www.bleepingcomputer.com/download/malwarebytes-anti-malware/) Abra um tópico na seção "Remoção de Malwares" Abraços
  12. Bom dia, Estive tentando fazer o seguinte exercicio, entretanto não consegui achar a lógica utilizada para chegar a resposta correta. Se alguem puder me ajudar fico grato. Exercicio: Sabendo que uma variável do tipo double (real de dupla precisão) ocupa 8 bytes de memória e que foi-se alocado de maneira seqüencial espaço para 12 números do tipo double, diga qual o endereço da última posição de memória sabendo que o endereço da primeira é 0012 Minha resposta: 0108 (considerei a posição 0012 como ocupada e acrescentei mais 12, 12*8=96) Resposta correta: 0100
  13. Bom dia @Pedro Mutzenberg Filho, Poderia postar o pseudocódigo que você fez até o momento?
  14. Bom dia @Mafonso71, Por gentileza, abra um post na seção de "Remoção de Malwares". Att.
  15. Bom dia @luvier, É altamente recomendavel você possuir uma VM (Maquina Virtual) nessa maquina, no minimo, pois qualquer malware que tente lhe infectar apenas afetara a VM e não sua maquina. Sendo assim qualquer aparelho que você queira conectar ao pc deverá ser rodado na VM. Tente utilizar o mbam (http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/) para um rápido scan em sua maquina, alem de abrir um post na seção "Remoção de Malwares" Att.

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×