Ir ao conteúdo
  • Cadastre-se

rinshun

Membros Plenos
  • Total de itens

    233
  • Registro em

  • Última visita

  • Qualificações

    0%

Reputação

34

Sobre rinshun

  • Data de Nascimento 25-10-1990 (28 anos)

Informações gerais

  • Cidade e Estado
    Niteroi, RJ
  1. Acho muito boa essa análise mais profunda. Só que ainda melhor que apenas os 0.1 e 1% lows, eu acho que a tech report tem um sistema muito mais bacana que apresenta o tempo total gasto acima de 16/20/33ms em um determinado benchmark; ainda não considero um indicador perfeito, mas acho que é bem mais representativo que trabalhar apenas com médias aritiméticas.
  2. A questão é saber se pode danificar algo, se os sistemas de segurança ainda são eficazes. A questão da eficiência, não fiz as contas, mas acho que deve demorar um bocado pra pagar a diferença na conta de luz. Não uso estabilizador. Já usei no-break durante algum tempo; não sei se dá na mesma... era o de onda quadrada que fazia aquele barulhinho quando faltava luz. Mas assim que faltava luz eu salvava tudo e desligava. Tem um PCI-e 6+2; a nova config vai ser uma CPU e GPU de um TDP de 65W e 120W, respectivamente.
  3. Oi, Tenho uma Seasonic SII12Bronze 430W. Ela já tem uns 7 aninhos. Vou montar um PC novo, aí queria saber se vale a pena canibalizar essa fonte do PC velho ou é melhor trocar? A potência dela vai ser suficiente pra nova config e ela não apresenta nenhum problema. valeu!
  4. Oi, Fiz o jumper no ME_UNLOCK; aí quando entro na BIOS a versão do ME aparece como N/A (antes tava 7.0.4), entao acho que foi feito com sucesso. Só que quando uso o CPU EVO ele diz que o ME UNLOCK não está em curto. No manual diz que a placa pode ter "firmware write protection" e recomenda desabilitar. Não encontrei nenhuma função similar a isso na BIOS, e agora? ^^ PS: O problema aqui é a placa de vídeo (R7 265), aí to tendo que rodar com a onboard que é bem lixosa EDIT: Funcionou!!!! AEEEEEEEEEEE!! hahahahhaha (era só executar como administrador) Só precisei usar o CPU EVO mesmo. Como tá tudo funcionando deixa quieto xD Consertou não apenas a placa de vídeo, mas o problema no boot que eu até tinha desistido... (dava msg de erro que nao encontrou drive de boot; só funcionava se eu desse boot override pela BIOS)
  5. rinshun

    Bitcoins

    Oi, Procurei na internet sobre essas tais bitcoins e vi que há um vasto conhecimento sobre essa moeda. Mas nao achei nada que explicasse exatamente o que alguem ganha com o trabalho do seu PC. Alguem saberia dizer para que servem esses calculos complexos que seu computador faz? E quem paga por isso? Valeu!
  6. O que me deixa triste é o mercado brasileiro... uma placa de 150 dólares vem pra cá custando mais de 500 reais. Mais triste ainda é que 150 dolares foi o preço de lançamento. Agora já tão vendendo por 115 dolares na newegg.
  7. rinshun

    Spam de trojan

    Todo dia o AVG Free Edition acusa que encontrou um trojan sem nem mesmo ter rodado um scan (detectado ao abrir). Pelo menos uma ou duas vezes por dia, não necessariamente comigo usando o PC. EDIT: Um novo problema que surgiu é que o taskmanager fecha 1 segundo logo apos ser aberto. E os trojans pararam de aparecer nos ultimos dias. (Eu sei que a orientação é não modificar o tópico, mas também é pedido para mante-lo zerado e ao mesmo tempo dar informações atualizadas dos "sintomas" apresentados...) dds.txt DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.21.2 Run by Hugo at 12:36:02 on 2013-08-18 Microsoft Windows 7 Home Basic 6.1.7601.1.932.81.1046.18.4079.2528 [GMT -3:00] . AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe C:\Windows\system32\svchost.exe -k apphost C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe C:\Windows\system32\svchost.exe -k iissvcs C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\GIGABYTE\SMART6\Recovery\RPMDaemon.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\Zune\ZuneLauncher.exe C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EasySetPackage.exe C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\TestDDCCI.exe C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\ESP64Proxy.exe C:\Program Files (x86)\AVG\AVG2012\avgtray.exe C:\Program Files (x86)\AVG Secure Search\vprot.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Program Files (x86)\AVG\AVG2012\avgcfgex.exe C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . mWinlogon: Userinit = userinit.exe, BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file> TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.5.0.2\AVG Secure Search_toolbar.dll uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED uRun: [sysXboot] "C:\Program Files (x86)\Java\jre7\bin\javaw.exe" -jar "C:\Users\Hugo\AppData\Local\Temp\sysXboot7907515821421913452.jar" mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\EASYSE~1.LNK - C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EasySetPackage.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-Explorer: NoActiveDesktopChanges = dword:1 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab TCP: Interfaces\{1DAD9D78-4418-40AB-9AA3-8BE118F67B3C} : NameServer = 8.8.8.8,200.149.55.140 TCP: Interfaces\{22F83C82-385D-4A9E-AED2-7CD2836A18AD} : NameServer = 200.222.122.134 200.222.145.86 TCP: Interfaces\{55865953-A240-4D7E-9B79-57FF455698E3} : NameServer = 177.131.215.10,8.8.8.8 Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.5.0\ViProtocol.dll SSODL: WebCheck - <orphaned> x64-BHO: AVG Do Not Track: {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll x64-BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll x64-BHO: GBHO.BHO: {45d30484-7ded-43d9-957a-d2fd1f046511} - x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-TB: Smart Recovery 2: {1d09c093-f71e-43c3-b948-19316cbd695e} - x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s x64-Run: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe" x64-RunOnce: [RPMKickstart] C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe x64-IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned> x64-Notify: igfxcui - igfxdev.dll x64-SSODL: WebCheck - <orphaned> . ============= SERVICES / DRIVERS =============== . R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2012-4-19 28480] R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2012-1-31 36944] R1 AppleCharger;AppleCharger;C:\Windows\System32\drivers\AppleCharger.sys [2012-3-27 21104] R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2012-11-8 307040] R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2011-12-23 47696] R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-4-11 384800] R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2012-8-30 45856] R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\drivers\hssdrv6.sys [2012-6-1 41224] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-3-28 241152] R2 avgwd;Watchdog do AVG;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 193288] R2 Smart TimeLock;Smart TimeLock Service;C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe [2012-3-27 114688] R2 StarWindServiceAE;StarWind AE Service;C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-5-28 275968] R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-3-27 2655768] R2 vToolbarUpdater15.5.0;vToolbarUpdater15.5.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [2013-8-15 1643184] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-2-14 96768] R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2012-12-10 127328] R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\System32\drivers\avgidsfiltera.sys [2011-12-23 29776] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-3-27 77936] S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe [2012-11-2 5174392] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-8-16 418376] S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-16 701512] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-1-8 161536] S3 AppleChargerSrv;AppleChargerSrv;system32\AppleChargerSrv.exe --> system32\AppleChargerSrv.exe [?] S3 CGVPNCliSrvc;CyberGhost VPN Client;C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2012-12-11 2438696] S3 etdrv;etdrv;C:\Windows\etdrv.sys [2012-9-17 25640] S3 GVTDrv64;GVTDrv64;C:\Windows\GVTDrv64.sys [2012-3-27 30528] S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-8-16 25928] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 WatAdminSvc;Servico de Tecnologias de Ativacao do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-10-25 1255736] . =============== Created Last 30 ================ . 2013-08-17 15:48:28 -------- d-----w- C:\TDSSKiller_Quarantine 2013-08-17 02:57:19 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-08-16 23:35:54 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7FBF6F62-908D-4460-9DAD-8340E8689C3B}\offreg.dll 2013-08-16 23:32:14 9460976 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7FBF6F62-908D-4460-9DAD-8340E8689C3B}\mpengine.dll 2013-08-16 17:37:56 -------- d-----w- C:\Users\Hugo\AppData\Roaming\Malwarebytes 2013-08-16 17:37:40 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys 2013-08-16 17:37:40 -------- d-----w- C:\ProgramData\Malwarebytes 2013-08-16 17:37:40 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-08-16 16:44:56 -------- d-----w- C:\Users\Hugo\AppData\Roaming\AVG 2013-08-16 16:44:12 -------- d-----w- C:\ProgramData\AVG 2013-08-16 16:43:59 -------- d-sh--w- C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} 2013-08-16 16:29:57 -------- d-----w- C:\Users\Hugo\AppData\Roaming\TuneUp Software 2013-08-15 17:49:17 -------- d-----w- C:\Users\Hugo\AppData\Local\ESN 2013-08-15 17:49:15 -------- d-----w- C:\Program Files (x86)\Battlelog Web Plugins 2013-08-15 17:46:50 -------- d-----w- C:\ProgramData\EA Logs 2013-08-15 16:58:57 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller 2013-08-14 20:22:02 -------- d-----w- C:\Users\Hugo\AppData\Roaming\3909 2013-08-14 11:32:59 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2013-08-14 11:31:45 224256 ----a-w- C:\Windows\System32\wintrust.dll 2013-08-14 11:31:45 184320 ----a-w- C:\Windows\System32\cryptsvc.dll 2013-08-14 11:31:45 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll 2013-08-14 11:31:45 1472512 ----a-w- C:\Windows\System32\crypt32.dll 2013-08-14 11:31:45 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll 2013-08-14 11:31:45 139776 ----a-w- C:\Windows\System32\cryptnet.dll 2013-08-14 11:31:45 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll 2013-08-14 11:31:45 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll 2013-08-14 11:27:25 39936 ----a-w- C:\Windows\System32\drivers\tssecsrv.sys 2013-08-14 11:26:13 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL 2013-08-14 11:26:13 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL 2013-08-14 10:45:53 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2013-08-14 10:45:53 2048 ----a-w- C:\Windows\System32\tzres.dll 2013-08-05 14:54:19 -------- d-----w- C:\Program Files (x86)\UDPixel 2013-07-28 06:00:58 -------- d-----w- C:\Windows\System32\MRT 2013-07-28 05:04:30 49152 ----a-r- C:\Users\Hugo\AppData\Roaming\Microsoft\Installer\{192D1C64-6349-4723-8045-88A471E8F897}\NewShortcut1_DD99C0F7DABF4947A0F7D817374E0518.exe 2013-07-28 05:04:30 49152 ----a-r- C:\Users\Hugo\AppData\Roaming\Microsoft\Installer\{192D1C64-6349-4723-8045-88A471E8F897}\ARPPRODUCTICON.exe 2013-07-20 22:11:21 -------- d-----w- C:\Extracted . ==================== Find3M ==================== . 2013-08-17 19:23:59 25640 ----a-w- C:\Windows\gdrv.sys 2013-08-15 21:42:15 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr 2013-08-15 21:42:15 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe 2013-08-15 17:49:43 280904 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0 2013-08-15 16:58:37 75136 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe 2013-08-15 08:34:22 45856 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys 2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll 2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll 2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll 2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll 2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb 2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll 2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll 2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll 2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll 2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2013-07-26 02:39:38 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe 2013-07-26 01:59:38 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe 2013-07-09 06:03:30 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe 2013-07-09 05:54:22 1732032 ----a-w- C:\Windows\System32\ntdll.dll 2013-07-09 05:53:12 243712 ----a-w- C:\Windows\System32\wow64.dll 2013-07-09 05:51:16 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll 2013-07-09 05:03:34 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2013-07-09 05:03:34 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2013-07-09 04:53:47 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll 2013-07-09 04:52:33 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll 2013-07-09 04:52:33 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2013-07-09 04:45:07 44032 ----a-w- C:\Windows\apppatch\acwow64.dll 2013-07-09 02:49:42 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2013-07-09 02:49:41 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2013-07-09 02:49:39 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2013-07-09 02:49:38 2048 ----a-w- C:\Windows\SysWow64\user.exe 2013-06-12 07:05:19 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2013-06-12 07:05:19 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2013-06-05 03:34:27 3153920 ----a-w- C:\Windows\System32\win32k.sys 2013-06-04 06:00:13 624128 ----a-w- C:\Windows\System32\qedit.dll 2013-06-04 04:53:07 509440 ----a-w- C:\Windows\SysWow64\qedit.dll 2010-01-26 14:11:08 444283 ----a-w- C:\Program Files\Common Files\WinPcapNmap.exe . ============= FINISH: 12:36:19,17 =============== Attach.txt . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Basic Boot Device: \Device\HarddiskVolume1 Install Date: 27/03/2012 14:36:15 System Uptime: 17/08/2013 16:23:15 (20 hours ago) . Motherboard: Gigabyte Technology Co., Ltd. | | H61M-DS2 Processor: Intel® Core i5-2500 CPU @ 3.30GHz | Socket 1155 | 3601/100mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 58 GiB total, 20,877 GiB free. D: is CDROM (UDF) E: is CDROM () F: is FIXED (NTFS) - 873 GiB total, 216,408 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: VirtualBox Host-Only Ethernet Adapter Device ID: ROOT\NET\0000 Manufacturer: Oracle Corporation Name: VirtualBox Host-Only Ethernet Adapter PNP Device ID: ROOT\NET\0000 Service: VBoxNetAdp . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . @BIOS 7-Zip 9.20 7-Zip 9.20 (x64 edition) 7witches Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin AIDA64 Extreme Edition v2.20 AMD Accelerated Video Transcoding AMD Catalyst Install Manager AMD Drag and Drop Transcoding AMD Media Foundation Decoders Angry Birds Space APC PowerChute Personal Edition Apple Application Support Apple Software Update Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver aTube Catcher AutoGreen B10.1021.1 AVG 2012 AVG Security Toolbar Battlefield 3? Battlelog Web Plugins Black Mesa Source BOSS Calibrize 2.0 Catalyst Control Center Catalyst Control Center - Branding Catalyst Control Center Graphics Previews Common Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Combined Community Codec Pack 2011-11-11 CyberGhost VPN Patch 4.7.19 Driver Sweeper versao 3.2.0 Easy Tune 6 B11.0630.1 EasySetPackage Encore ESN Sonar Fable III Foxit Reader 5.1 FTL version 1.01 Game Dev Tycoon v1.3.2 © Greenheart Games version 1 Google Chrome Gtk# for .Net 2.12.9 HF pAppLoc version 1.0 ILLUSION プレミアムプレイ ILLUSION むすメイク Impulse Intel® Control Center Intel® Management Engine Components Intel® Processor Graphics Internet Explorer Toolbar 4.6 by SweetPacks Java 7 Update 21 Java Auto Updater Java 6 Update 31 JavaFX 2.1.1 Justy×Nasty 魔王はじめました L.A.Noire LOLReplay Malwarebytes Anti-Malware version 1.75.0.1300 Mass Effect 3 Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile PTB Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended PTB Language Pack Microsoft Application Error Reporting Microsoft Flight Simulator 2004 A Century of Flight Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 Microsoft Windows Application Compatibility Database Microsoft WSE 3.0 Runtime Microsoft XNA Framework Redistributable 3.1 Microsoft XNA Framework Redistributable 4.0 Refresh Minecraft 1.4.5 mIRC MSI Afterburner 2.3.1 NVIDIA PhysX Oblivion Oblivion mod manager 1.1.12 ON_OFF Charge B11.0110.1 OpenAL Oracle VM VirtualBox 4.1.14 Orcs Must Die 2 Orcs Must Die! Origin Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Portugues (Brasil) Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Portugues (Brasil) Papers, Please 1.00 Philips Songbird piaip AppLocale PowerISO PunkBuster Services QuickTime RaidCall Real Alternative 1.8.0 Realtek High Definition Audio Driver Reus Rockstar Games Social Club s3pe - Sims3 Package Editor Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628) Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Portugues (Brasil) (KB2518870) Sins of a Solar Empire Rebellion © Stardock version 1 Skype? 6.1 Smart 6 B11.0512.1 SpeedFan (remove only) Star Trek Online Steam Subsync Subtitle Workshop 2.51 SweetIM for Messenger 3.7 System Requirements Lab for Intel TeamSpeak 3 Client TERA The Sims? 3 The Sims? 3 Acelerando Colecao de Objetos The Sims? 3 Ambicoes The Sims? 3 Caindo na Noite The Sims? 3 Geracoes The Sims? 3 Vida ao Ar Livre Colecao de Objetos The Sims? 3 Vida em Alto Estilo Colecao de Objetos The Sims? 3 Vida Urbana Colecao de Objetos The Sims? 3 Volta ao Mundo The Walking Dead © 3 version 1 Tiny Troopers UDPixel.exe UNDEROID Unity Web Player Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2836939) Update Manager for SweetPacks 1.1 VDownloader 3.9.1280 Visual Studio 2008 x64 Redistributables VobSub v2.23 (Remove Only) Windows Live ID Sign-in Assistant Windows Mobile Device Updater Component WinPcap 4.1.1 WinRAR archiver World of Tanks Wrye Bash Zune Zune Language Pack (CHS) Zune Language Pack (CHT) Zune Language Pack (CSY) Zune Language Pack (DAN) Zune Language Pack (DEU) Zune Language Pack (ELL) Zune Language Pack (ESP) Zune Language Pack (FIN) Zune Language Pack (FRA) Zune Language Pack (HUN) Zune Language Pack (IND) Zune Language Pack (ITA) Zune Language Pack (JPN) Zune Language Pack (KOR) Zune Language Pack (MSL) Zune Language Pack (NLD) Zune Language Pack (NOR) Zune Language Pack (PLK) Zune Language Pack (PTB) Zune Language Pack (PTG) Zune Language Pack (RUS) Zune Language Pack (SVE) μTorrent かすたむアイドロイド ぜったい絶頂☆性器の大発明!! ─処女を狙う学園道具多発エロ─ ぜったい遵守☆子作り許可証ぱらだいす!! 嗚呼、素晴らしき孕ま・ パステルチャイム もしもこんなショッピングモールがあったらいきます☆ 人間デブリコンナジブンニダレガシタ 俺赤 冬馬小次郎の探偵FILE オペラ座の怪人殺人事件 1.00 夏空のペルセウス 夢喰い Redream 大帝国 媚肉の香りネトリネトラレヤリヤラレ 孕狂 胎魔巫女 炎の孕ませ同級生 生徒会長で甘えん坊なお姉ちゃんは好きですか 百機夜行 英雄戦姫 銀の刻のコロナFD Fortune Dragon's . ==== End Of File =========================== Gmer.txt GMER 2.1.19163 - http://www.gmer.netRootkit scan 2013-08-18 12:57:38 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1 ST31000524AS rev.JC4B 931,51GB Running: 2kwq65u9.exe; Driver: C:\Users\Hugo\AppData\Local\Temp\kxldipog.sys ---- Kernel code sections - GMER 2.1 ---- INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 544 fffff80002fb6000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...] INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 591 fffff80002fb602f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...] .text C:\Windows\system32\drivers\USBPORT.SYS!DllUnload fffff88004228d64 12 bytes {MOV RAX, 0xfffffa8004b962a0; JMP RAX} ---- User code sections - GMER 2.1 ---- .text C:\Windows\SysWOW64\PnkBstrA.exe[2112] C:\Windows\SysWOW64\WSOCK32.dll!recv + 83 0000000072d117fb 1 byte [72] .text C:\Windows\SysWOW64\PnkBstrA.exe[2112] C:\Windows\SysWOW64\WSOCK32.dll!recvfrom + 89 0000000072d11861 1 byte [72] .text C:\Windows\SysWOW64\PnkBstrA.exe[2112] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 99 0000000072d11943 1 byte [72] .text C:\Windows\SysWOW64\PnkBstrA.exe[2112] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 110 0000000072d1194e 1 byte [72] .text C:\Program Files (x86)\AVG Secure Search\vprot.exe[3392] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Program Files (x86)\AVG Secure Search\vprot.exe[3392] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3516] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3516] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 00000000774af9b1 7 bytes {MOV EDX, 0xc00228; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 00000000774afbf5 7 bytes {MOV EDX, 0xc00268; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 00000000774afc25 7 bytes {MOV EDX, 0xc001a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 00000000774afc3d 7 bytes {MOV EDX, 0xc00128; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 00000000774afc55 7 bytes {MOV EDX, 0xc00328; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 00000000774afc85 7 bytes {MOV EDX, 0xc00368; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 00000000774afd05 7 bytes {MOV EDX, 0xc002e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 00000000774afd1d 7 bytes {MOV EDX, 0xc002a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 00000000774afd69 7 bytes {MOV EDX, 0xc00068; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 00000000774afe61 7 bytes {MOV EDX, 0xc000a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 00000000774b00b9 7 bytes {MOV EDX, 0xc00028; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 00000000774b10c5 7 bytes {MOV EDX, 0xc001e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 00000000774b113d 7 bytes {MOV EDX, 0xc00168; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 00000000774b1341 7 bytes {MOV EDX, 0xc000e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1424] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 00000000774af9b1 7 bytes {MOV EDX, 0x60a228; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 00000000774afbf5 7 bytes {MOV EDX, 0x60a268; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 00000000774afc25 7 bytes {MOV EDX, 0x60a1a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 00000000774afc3d 7 bytes {MOV EDX, 0x60a128; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 00000000774afc55 7 bytes {MOV EDX, 0x60a328; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 00000000774afc85 7 bytes {MOV EDX, 0x60a368; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 00000000774afd05 7 bytes {MOV EDX, 0x60a2e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 00000000774afd1d 7 bytes {MOV EDX, 0x60a2a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 00000000774afd69 7 bytes {MOV EDX, 0x60a068; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 00000000774afe61 7 bytes {MOV EDX, 0x60a0a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 00000000774b00b9 7 bytes {MOV EDX, 0x60a028; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 00000000774b10c5 7 bytes {MOV EDX, 0x60a1e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 00000000774b113d 7 bytes {MOV EDX, 0x60a168; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 00000000774b1341 7 bytes {MOV EDX, 0x60a0e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 00000000774af9b1 7 bytes {MOV EDX, 0xe45e28; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 00000000774afbf5 7 bytes {MOV EDX, 0xe45e68; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 00000000774afc25 7 bytes {MOV EDX, 0xe45da8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 00000000774afc3d 7 bytes {MOV EDX, 0xe45d28; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 00000000774afc55 7 bytes {MOV EDX, 0xe45f28; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 00000000774afc85 7 bytes {MOV EDX, 0xe45f68; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 00000000774afd05 7 bytes {MOV EDX, 0xe45ee8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 00000000774afd1d 7 bytes {MOV EDX, 0xe45ea8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 00000000774afd69 7 bytes {MOV EDX, 0xe45c68; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 00000000774afe61 7 bytes {MOV EDX, 0xe45ca8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 00000000774b00b9 7 bytes {MOV EDX, 0xe45c28; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 00000000774b10c5 7 bytes {MOV EDX, 0xe45de8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 00000000774b113d 7 bytes {MOV EDX, 0xe45d68; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 00000000774b1341 7 bytes {MOV EDX, 0xe45ce8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[5828] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 00000000774af9b1 7 bytes {MOV EDX, 0xf13a28; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 00000000774afbf5 7 bytes {MOV EDX, 0xf13a68; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 00000000774afc25 7 bytes {MOV EDX, 0xf139a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 00000000774afc3d 7 bytes {MOV EDX, 0xf13928; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 00000000774afc55 7 bytes {MOV EDX, 0xf13b28; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 00000000774afc85 7 bytes {MOV EDX, 0xf13b68; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 00000000774afd05 7 bytes {MOV EDX, 0xf13ae8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 00000000774afd1d 7 bytes {MOV EDX, 0xf13aa8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 00000000774afd69 7 bytes {MOV EDX, 0xf13868; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 00000000774afe61 7 bytes {MOV EDX, 0xf138a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 00000000774b00b9 7 bytes {MOV EDX, 0xf13828; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 00000000774b10c5 7 bytes {MOV EDX, 0xf139e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 00000000774b113d 7 bytes {MOV EDX, 0xf13968; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 00000000774b1341 7 bytes {MOV EDX, 0xf138e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[1052] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5 00000000774af9b1 7 bytes {MOV EDX, 0x36d228; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5 00000000774afbf5 7 bytes {MOV EDX, 0x36d268; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5 00000000774afc25 7 bytes {MOV EDX, 0x36d1a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5 00000000774afc3d 7 bytes {MOV EDX, 0x36d128; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5 00000000774afc55 7 bytes {MOV EDX, 0x36d328; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5 00000000774afc85 7 bytes {MOV EDX, 0x36d368; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5 00000000774afd05 7 bytes {MOV EDX, 0x36d2e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5 00000000774afd1d 7 bytes {MOV EDX, 0x36d2a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5 00000000774afd69 7 bytes {MOV EDX, 0x36d068; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5 00000000774afe61 7 bytes {MOV EDX, 0x36d0a8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5 00000000774b00b9 7 bytes {MOV EDX, 0x36d028; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5 00000000774b10c5 7 bytes {MOV EDX, 0x36d1e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5 00000000774b113d 7 bytes {MOV EDX, 0x36d168; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5 00000000774b1341 7 bytes {MOV EDX, 0x36d0e8; JMP RDX} .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe[3856] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 .text C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe[5344] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075c01465 2 bytes [C0, 75] .text C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe[5344] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075c014bb 2 bytes [C0, 75] .text ... * 2 ---- Kernel IAT/EAT - GMER 2.1 ---- IAT C:\Windows\system32\drivers\pci.sys[ntoskrnl.exe!IoAttachDeviceToDeviceStack] [fffff880010f5770] \SystemRoot\System32\Drivers\spll.sys [unknown section] IAT C:\Windows\system32\drivers\pci.sys[ntoskrnl.exe!IoDetachDevice] [fffff880010f56fc] \SystemRoot\System32\Drivers\spll.sys [unknown section] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [fffff880010ba35c] \SystemRoot\System32\Drivers\spll.sys [unknown section] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [fffff880010ba224] \SystemRoot\System32\Drivers\spll.sys [unknown section] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [fffff880010baa24] \SystemRoot\System32\Drivers\spll.sys [unknown section] IAT C:\Windows\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [fffff880010baba0] \SystemRoot\System32\Drivers\spll.sys [unknown section] ---- Devices - GMER 2.1 ---- Device \Driver\atapi \Device\Ide\IdePort0 fffffa80036a52c0 Device \Driver\atapi \Device\Ide\IdePort1 fffffa80036a52c0 Device \Driver\atapi \Device\Ide\IdeDeviceP3T0L0-3 fffffa80036a52c0 Device \Driver\atapi \Device\Ide\IdePort2 fffffa80036a52c0 Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-1 fffffa80036a52c0 Device \Driver\atapi \Device\Ide\IdePort3 fffffa80036a52c0 Device \Driver\aympyck8 \Device\Scsi\aympyck81Port4Path0Target0Lun0 fffffa8004b0e2c0 Device \Driver\aympyck8 \Device\Scsi\aympyck81 fffffa8004b0e2c0 Device \FileSystem\Ntfs \Ntfs fffffa80036a92c0 Device \Driver\usbehci \Device\USBPDO-1 fffffa8004b942c0 Device \Driver\NetBT \Device\NetBT_Tcpip_{1DAD9D78-4418-40AB-9AA3-8BE118F67B3C} fffffa800495d2c0 Device \Driver\cdrom \Device\CdRom0 fffffa80048422c0 Device \Driver\cdrom \Device\CdRom1 fffffa80048422c0 Device \Driver\usbehci \Device\USBFDO-0 fffffa8004b942c0 Device \Driver\NetBT \Device\NetBT_Tcpip_{55865953-A240-4D7E-9B79-57FF455698E3} fffffa800495d2c0 Device \Driver\usbehci \Device\USBFDO-1 fffffa8004b942c0 Device \Driver\volmgr \Device\HarddiskVolume1 fffffa80036a12c0 Device \Driver\volmgr \Device\FtControl fffffa80036a12c0 Device \Driver\volmgr \Device\VolMgrControl fffffa80036a12c0 Device \Driver\volmgr \Device\HarddiskVolume2 fffffa80036a12c0 Device \Driver\volmgr \Device\HarddiskVolume3 fffffa80036a12c0 Device \Driver\NetBT \Device\NetBt_Wins_Export fffffa800495d2c0 Device \Driver\atapi \Device\ScsiPort0 fffffa80036a52c0 Device \Driver\usbehci \Device\USBPDO-0 fffffa8004b942c0 Device \Driver\atapi \Device\ScsiPort1 fffffa80036a52c0 Device \Driver\atapi \Device\ScsiPort2 fffffa80036a52c0 Device \Driver\atapi \Device\ScsiPort3 fffffa80036a52c0 Device \Driver\aympyck8 \Device\ScsiPort4 fffffa8004b0e2c0 ---- Trace I/O - GMER 2.1 ---- Trace ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80036a52c0]<< spll.sys ataport.SYS pciide.sys fffffa80036a52c0 Trace 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80047e2060] fffffa80047e2060 Trace 3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> [0xfffffa8004564e40] fffffa8004564e40 Trace 5 ACPI.sys[fffff8800100b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-1[0xfffffa800456f060] fffffa800456f060 Trace \Driver\atapi[0xfffffa80045553f0] -> IRP_MJ_CREATE -> 0xfffffa80036a52c0 fffffa80036a52c0 ---- Modules - GMER 2.1 ---- Module \SystemRoot\System32\Drivers\aympyck8.SYS fffff88004800000-fffff88004843000 (274432 bytes) ---- Threads - GMER 2.1 ---- Thread C:\Windows\System32\spoolsv.exe [1648:2856] 000007fef12c10c8 Thread C:\Windows\System32\spoolsv.exe [1648:1848] 000007fef0d46144 Thread C:\Windows\System32\spoolsv.exe [1648:1880] 000007fef0b35fd0 Thread C:\Windows\System32\spoolsv.exe [1648:1708] 000007fef0b23438 Thread C:\Windows\System32\spoolsv.exe [1648:2352] 000007fef0b363ec Thread C:\Windows\System32\spoolsv.exe [1648:2496] 000007fef9805e5c Thread C:\Windows\System32\spoolsv.exe [1648:2980] 000007fef1755074 Thread C:\Windows\system32\Dwm.exe [1836:1944] 000007fef958f0d8 Thread C:\Windows\system32\Dwm.exe [1836:1948] 000007fef900abf0 Thread C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [1584:2928] 000007fef0fd2e60 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\Descriptions@Adaptador de T 1? Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s1 771343423 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@s2 285507792 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\ Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x21 0x6A 0x0D 0xE4 ... Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xB3 0x8C 0x0C 0x0D ... Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x8E 0x12 0x2A 0xE4 ... Reg HKLM\SYSTEM\ControlSet002\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\Descriptions@Adaptador de T 1? Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\ Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x21 0x6A 0x0D 0xE4 ... Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xB3 0x8C 0x0C 0x0D ... Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x8E 0x12 0x2A 0xE4 ... Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Gamesz\Hnt\Bukake Bujou\[120224] [softhouse-seal] \x30bb\x30fc\x30a8\x30ad\xff01\x3076\x3063\x304b\x3051 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Gamesz\Mamonokko Fantasy\[120727] [softhouse-seal] 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Games\\x3042\x3084\x307e\x3061\x306e 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Gamesz\Seal2\DL x3\ 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Gamesz\Seal2\DL x3\ 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Games\ 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Games\G\xff0eJ\xff1f\FUTABO\Uninstall.exe 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Games\CustomMaid\\x30ab\x30b9\x30bf\x30e0\x30e1\x30a4\x30c93D\Installer.exe 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Gamesz\Eroges\GJ\[031024-121221][G.J\xff1f][x13][ 1 Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@F:\Games\G\xff0eJ\xff1f\TsumaBoin\Uninstall.exe 1 ---- EOF - GMER 2.1 ----
  8. 660 é melhor, mas é mais cara.
  9. Galerinha, saca só o review http://techreport.com/review/24703/amd-radeon-hd-7990-graphics-card-reviewed Eles destacam que essa placa tem um FPS alto mas sofre com microstutter. Vamos esperar e ver quando a AMD lança um driver que ameniza isso.
  10. 7770 com certeza... Se quiser gastar mais vai com a 7850, eu ja a encontrei por menos de 600 reais.
  11. Acho difícil culpar os empresários por quererem margens de lucro maiores. Afinal, se fosse para ter um lucro menor eles nao investiriam no Brasil já que é um mercado de risco. A culpa é desse governinho de merd4 do PT que só pensa em ganhar voto ao invés de construir uma economia sólida.
  12. Interessante que essa placa é melhor que a 7850 em diversos jogos e aspectos, de acordo com o artigo: http://techreport.com/review/24539/amd-radeon-hd-7790-graphics-card-reviewed Estimam preço de 150 dólares, nos EUA. Aproximadamente 25 dólares mais barata que a 7850. Será mesmo que a Nvidia vai lançar uma placa pra competir com essa aí?
  13. Não vejo motivos pra colocar um cooler diferente do box. Afinal, ele foi feito pra aguentar tranquilo. Coolers personalizados são mais peças decorativas, salvo no caso de overclock, que aí sim PRECISA de uma aparelhagem de resfriamento legal. Quanto a config, eu achei esse processador meio caro e as memorias também. Minha sugestão é trocá-los por: i5 3330> R$473 http://www.kabum.com.br/produto/32838/processador-intel-ivy-bridge-core-i5-3330-3-00ghz-6mb-lga1155-bx80637i53330-/?tag=i5 DDR3 1600Mhz 4Gb Markivision R$67cada (ja encontrei 1333Mhz da kingston por R$50) A fonte que você escolheu é boa. Porém muito acima da real potência exigida pelo seu PC. Uma corsair 430W CX V2 (ou sua sucessora que agora esqueci o nome) já dão conta do seu PC tranquilamente. Além de custar 100 reais a menos.
  14. Essa placa mãe chipset H61 por 280 tá um roubo. No máximo 200 reais em uma dessas (comprei uma por 130). A alternativa seria uma com um chipset mais novo, como o H75, que tá nessa faixa de 250 reais. Ele tem algumas coisas extras, mas nada que eu acha que valha 100 reais de diferença em relação ao H61 (tirando complicações de update de BIOS para suporte ao Ivy Bridge) i5 3330 já é mais que o suficiente para jogos. HD, Memorias, Gabinete e placa de vídeo: boa escolha. Com 15% de desconto o preço está muito bom. Sem esse desconto sugiro procurar um pouco mais pra economizar mais de 100 reais.

Sobre o Clube do Hardware

No ar desde 1996, o Clube do Hardware é uma das maiores, mais antigas e mais respeitadas publicações sobre tecnologia do Brasil. Leia mais

Direitos autorais

Não permitimos a cópia ou reprodução do conteúdo do nosso site, fórum, newsletters e redes sociais, mesmo citando-se a fonte. Leia mais

×
×
  • Criar novo...

GRÁTIS: minicurso “Como ganhar dinheiro montando computadores”

Gabriel TorresGabriel Torres, fundador e editor executivo do Clube do Hardware, acaba de lançar um minicurso totalmente gratuito: "Como ganhar dinheiro montando computadores".

Você aprenderá sobre o quanto pode ganhar, como cobrar, como lidar com a concorrência, como se tornar um profissional altamente qualificado e muito mais!

Inscreva-se agora!