Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Check log plx !


  • This topic is locked This topic is locked
6 replies to this topic

#1 overlock

overlock

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:14 AM

Posted 31 March 2013 - 08:50 AM

I can not use any antvirus anything from microsoft and any affiliate pis everything working against me, I find that using my pc for me or something I do not really understand testao, I expect help
ps: do not be virus be something that lives with me since 2008 on my computer
Omg 2008 2008 ==

 

 

 

log:

 

ComboFix 13-03-31.01 - ASUS 31/03/2013  10:24:55.5.8 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.55.1046.18.8157.6688 [GMT -3:00]
Executando de: c:\users\ASUS\Downloads\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Criado um novo ponto de restauração
.
.
(((((((((((((((((((((((((((((((((((((   Outras Exclusões   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\ASUS\AppData\Roaming\Microsoft\Windows\Templates\1028.msi
c:\users\ASUS\AppData\Roaming\Microsoft\Windows\Templates\1031.msi
c:\users\ASUS\AppData\Roaming\Microsoft\Windows\Templates\1033.msi
c:\users\ASUS\AppData\Roaming\Microsoft\Windows\Templates\1036.msi
c:\users\ASUS\AppData\Roaming\Microsoft\Windows\Templates\1041.msi
c:\users\ASUS\AppData\Roaming\Microsoft\Windows\Templates\2052.msi
.
.
((((((((((((((((   Arquivos/Ficheiros criados de 2013-02-28 to 2013-03-31  ))))))))))))))))))))))))))))
.
.
2013-03-31 13:27 . 2013-03-31 13:27    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-03-31 13:27 . 2013-03-31 13:27    --------    d-----w-    c:\users\ASUS\AppData\Local\temp
2013-03-31 12:40 . 2013-03-31 12:40    --------    d-----w-    c:\users\ASUS\AppData\Roaming\Tific
2013-03-31 12:36 . 2013-03-31 12:40    --------    d-----w-    c:\program files\Symantec
2013-03-31 12:36 . 2013-03-31 12:40    174200    ----a-w-    c:\windows\system32\drivers\SYMEVENT64x86.SYS
2013-03-31 12:36 . 2013-03-31 12:36    --------    d-----w-    c:\program files\Common Files\Symantec Shared
2013-03-31 12:35 . 2013-03-31 13:12    --------    d-----w-    c:\windows\system32\drivers\NISx64
2013-03-31 12:35 . 2013-03-31 12:35    --------    d-----w-    c:\program files (x86)\Norton Internet Security
2013-03-31 12:35 . 2013-03-31 12:35    --------    d-----w-    c:\program files (x86)\NortonInstaller
2013-03-31 12:17 . 2013-03-31 12:17    --------    d-----w-    c:\program files (x86)\Common Files\Adobe AIR
2013-03-31 11:55 . 2013-03-31 11:55    --------    d-----w-    c:\users\ASUS\AppData\Local\Adobe
2013-03-31 11:53 . 2013-03-31 11:53    --------    d-----w-    c:\program files (x86)\Common Files\Adobe
2013-03-31 11:51 . 2010-01-14 12:27    48416    ----a-r-    c:\windows\system32\drivers\RtTeam60.sys
2013-03-31 11:51 . 2010-01-14 12:27    29472    ----a-r-    c:\windows\system32\drivers\RtVlan60.sys
2013-03-31 11:51 . 2010-01-14 12:27    32544    ----a-r-    c:\windows\system32\drivers\RtNdPt60.sys
2013-03-31 11:30 . 2013-03-31 11:30    --------    d-----w-    c:\program files (x86)\Mozilla Maintenance Service
2013-03-31 04:21 . 2013-03-31 04:55    --------    d-----w-    c:\users\ASUS\AppData\Local\NPE
2013-03-31 04:03 . 2013-03-31 04:03    --------    d-----w-    c:\users\ASUS\AppData\Roaming\DeviceVm
2013-03-31 04:03 . 2013-03-31 04:03    --------    d-----w-    c:\programdata\DeviceVm
2013-03-31 04:03 . 2013-03-31 04:03    --------    d--h--w-    c:\program files (x86)\DeviceVM
2013-03-31 00:40 . 2013-03-31 00:40    1140850688    --sha-w-    C:\NRTPage.sys
2013-03-30 22:07 . 2013-03-30 22:07    --------    d-----w-    c:\users\ASUS\AppData\Local\ElevatedDiagnostics
2013-03-30 20:26 . 2013-03-31 11:49    --------    d-----w-    c:\program files (x86)\Common Files\Symantec Shared
2013-03-30 18:30 . 2013-03-30 18:30    --------    d-----w-    c:\programdata\PCSettings
2013-03-30 17:41 . 2013-03-30 18:31    --------    d-----w-    c:\programdata\Symantec
2013-03-30 17:15 . 2013-03-30 17:15    --------    d-----w-    c:\users\ASUS\AppData\Roaming\IsolatedStorage
2013-03-30 17:15 . 2013-03-30 17:15    --------    d-----w-    c:\programdata\IsolatedStorage
2013-03-30 17:14 . 2013-03-30 17:14    --------    d-----w-    c:\users\ASUS\AppData\Local\_
2013-03-30 15:19 . 2013-03-30 18:57    --------    d-----w-    c:\programdata\Immunet
2013-03-30 15:19 . 2013-03-30 15:19    --------    d-----w-    c:\users\ASUS\AppData\Local\Immunet
2013-03-30 15:18 . 2013-03-30 18:57    --------    d-----w-    c:\program files\Immunet
2013-03-30 02:01 . 2012-06-05 07:37    256904    ----a-w-    c:\windows\SysWow64\drivers\tmcomm.sys
2013-03-29 21:43 . 2013-03-19 08:50    9311288    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{CB50F9A6-205B-4F44-9210-E8B9C41AA088}\mpengine.dll
2013-03-29 21:40 . 2013-03-29 21:40    --------    d-----w-    c:\users\ASUS\AppData\Local\WindowsUpdate
2013-03-29 17:33 . 2011-05-24 11:42    404480    ----a-w-    c:\windows\system32\umpnpmgr.dll
2013-03-29 17:33 . 2011-05-24 10:40    64512    ----a-w-    c:\windows\SysWow64\devobj.dll
2013-03-29 17:33 . 2011-05-24 10:40    44544    ----a-w-    c:\windows\SysWow64\devrtl.dll
2013-03-29 17:33 . 2011-05-24 10:39    145920    ----a-w-    c:\windows\SysWow64\cfgmgr32.dll
2013-03-29 17:33 . 2011-05-24 10:37    252928    ----a-w-    c:\windows\SysWow64\drvinst.exe
2013-03-29 14:51 . 2013-03-29 14:51    --------    d-----w-    c:\windows\FltMgr
2013-03-29 14:01 . 2013-03-30 23:21    --------    d-----w-    c:\program files (x86)\Panda Security
2013-03-27 15:47 . 2013-03-27 15:47    --------    d-----w-    c:\programdata\Ad-Aware Antivirus
2013-03-27 08:51 . 2013-03-27 08:51    --------    d-----w-    c:\windows\CheckSur
2013-03-27 06:48 . 2013-03-27 06:48    48648    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2013-03-27 04:46 . 2013-03-27 04:46    --------    d-----w-    c:\windows\system32\appmgmt
2013-03-26 22:31 . 2013-03-26 22:31    --------    d-----w-    c:\users\DefaultAppPool
2013-03-26 21:30 . 2013-03-26 21:30    --------    d-----w-    c:\users\ASUS\AppData\Local\APN
2013-03-25 05:38 . 2013-03-25 05:38    --------    d-----w-    c:\users\ASUS\AppData\Roaming\Malwarebytes
2013-03-25 04:54 . 2013-03-25 04:54    --------    d-----w-    c:\users\ASUS\AppData\Local\Wokhan
2013-03-25 04:21 . 2013-03-25 04:21    --------    d-----w-    c:\windows\system32\drivers\etc\LocaleMetaData
2013-03-22 19:20 . 2013-03-22 19:21    1031056    ----a-w-    c:\windows\PE_File.dll
2013-03-22 18:32 . 2013-03-22 18:32    --------    d-----w-    c:\programdata\ASUS OC Profiles
2013-03-22 18:20 . 2008-12-02 23:05    184320    ----a-w-    c:\windows\SysWow64\drivers\UpdateHelper.dll
2013-03-22 17:55 . 2013-03-31 11:54    --------    d-----w-    c:\program files (x86)\ASUS
2013-03-22 16:54 . 2013-03-22 16:54    --------    d-----w-    C:\$WINDOWS.~LS
2013-03-21 21:10 . 2013-03-21 21:10    --------    d-----w-    C:\MATS
2013-03-21 20:32 . 2013-03-21 20:32    --------    d-----w-    c:\users\ASUS\AppData\Local\Microsoft Corporation
2013-03-21 08:12 . 2013-03-21 08:12    --------    d-----w-    c:\program files\Microsoft Games
2013-03-21 08:11 . 2013-03-22 21:30    --------    d-----w-    c:\windows\system32\BestPractices
2013-03-21 08:11 . 2013-03-26 22:31    --------    d-----w-    C:\inetpub
2013-03-20 15:11 . 2013-03-20 16:25    --------    d-----w-    c:\programdata\InstallShield
2013-03-19 02:22 . 2013-03-19 02:22    48648    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2013-03-19 02:22 . 2013-03-19 02:22    578896    ----a-w-    c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-03-18 10:36 . 2013-03-30 18:57    --------    dc----w-    c:\windows\system32\DRVSTORE
2013-03-17 16:25 . 2013-03-17 16:25    861088    ----a-w-    c:\windows\SysWow64\npDeployJava1.dll
2013-03-17 16:25 . 2013-03-17 16:25    782240    ----a-w-    c:\windows\SysWow64\deployJava1.dll
2013-03-17 16:05 . 2013-03-22 21:29    --------    d-----w-    c:\program files (x86)\Google
2013-03-17 16:04 . 2013-03-17 16:05    --------    d-----w-    c:\users\ASUS\AppData\Local\Deployment
2013-03-17 16:04 . 2013-03-17 16:04    --------    d-----w-    c:\users\ASUS\AppData\Local\Apps
2013-03-16 03:50 . 2013-03-27 15:04    --------    d-----w-    c:\users\UpdatusUser
2013-03-16 03:50 . 2013-03-30 20:03    --------    d-----w-    c:\programdata\NVIDIA
2013-03-16 03:49 . 2013-02-10 01:04    6393120    ----a-w-    c:\windows\system32\nvcpl.dll
2013-03-16 03:49 . 2013-02-10 01:04    3472672    ----a-w-    c:\windows\system32\nvsvc64.dll
2013-03-16 03:49 . 2013-02-10 01:04    877856    ----a-w-    c:\windows\system32\nvvsvc.exe
2013-03-16 03:49 . 2013-02-10 01:04    63776    ----a-w-    c:\windows\system32\nvshext.dll
2013-03-16 03:49 . 2013-02-10 01:04    2555680    ----a-w-    c:\windows\system32\nvsvcr.dll
2013-03-16 03:49 . 2013-02-10 01:04    237856    ----a-w-    c:\windows\system32\nvmctray.dll
2013-03-16 03:49 . 2013-03-16 03:49    --------    d-----w-    c:\programdata\NVIDIA Corporation
2013-03-15 03:48 . 2013-03-27 15:47    --------    d-----w-    c:\users\ASUS\AppData\Roaming\LavasoftStatistics
2013-03-15 03:47 . 2013-03-15 03:47    --------    d-----w-    c:\programdata\Lavasoft
2013-03-15 03:47 . 2013-03-27 15:48    --------    d-----w-    c:\program files (x86)\Ad-Aware Antivirus
2013-03-15 03:46 . 2013-03-15 03:46    --------    d-----w-    c:\programdata\Downloaded Installations
2013-03-15 03:46 . 2013-03-22 21:30    --------    d-----w-    c:\program files (x86)\Toolbar Cleaner
2013-03-15 03:44 . 2013-03-15 03:44    14456    ----a-w-    c:\windows\system32\drivers\gfibto.sys
2013-03-15 03:44 . 2013-03-15 06:12    --------    d-----w-    c:\users\ASUS\AppData\Roaming\Ad-Aware Antivirus
2013-03-14 22:52 . 2013-02-12 04:12    19968    ----a-w-    c:\windows\system32\drivers\usb8023.sys
2013-03-13 21:02 . 2013-03-29 20:31    --------    d-----w-    c:\users\ASUS\AppData\Local\PMB Files
2013-03-13 21:02 . 2013-03-21 07:36    --------    d-----w-    c:\programdata\PMB Files
2013-03-13 20:42 . 2013-01-08 22:01    768000    ----a-w-    c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-13 20:42 . 2013-01-09 01:10    996352    ----a-w-    c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-13 20:38 . 2012-10-03 17:44    303104    ----a-w-    c:\windows\system32\nlasvc.dll
2013-03-13 20:37 . 2012-11-30 05:41    424448    ----a-w-    c:\windows\system32\KernelBase.dll
2013-03-13 20:36 . 2013-01-03 06:00    1913192    ----a-w-    c:\windows\system32\drivers\tcpip.sys
2013-03-13 20:36 . 2013-01-04 03:26    3153408    ----a-w-    c:\windows\system32\win32k.sys
2013-03-13 20:36 . 2013-01-04 05:46    215040    ----a-w-    c:\windows\system32\winsrv.dll
2013-03-13 20:36 . 2013-01-04 04:51    5120    ----a-w-    c:\windows\SysWow64\wow32.dll
2013-03-13 20:36 . 2013-01-04 02:47    25600    ----a-w-    c:\windows\SysWow64\setup16.exe
2013-03-13 20:36 . 2013-01-04 02:47    7680    ----a-w-    c:\windows\SysWow64\instnm.exe
2013-03-13 20:36 . 2013-01-04 02:47    14336    ----a-w-    c:\windows\SysWow64\ntvdm64.dll
2013-03-13 20:36 . 2013-01-04 02:47    2048    ----a-w-    c:\windows\SysWow64\user.exe
2013-03-13 20:36 . 2013-01-05 05:53    5553512    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-03-13 20:36 . 2013-01-05 05:00    3967848    ----a-w-    c:\windows\SysWow64\ntkrnlpa.exe
2013-03-13 20:36 . 2013-01-05 05:00    3913064    ----a-w-    c:\windows\SysWow64\ntoskrnl.exe
2013-03-13 12:34 . 2013-03-20 16:24    --------    d-----w-    c:\program files (x86)\seila
2013-03-09 23:41 . 2013-01-03 06:00    288088    ----a-w-    c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
.
(((((((((((((((((((((((((((((((((((((   Relatório Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-13 20:49 . 2012-10-30 17:31    72013344    ----a-w-    c:\windows\system32\MRT.exe
2013-03-13 20:33 . 2012-10-30 20:59    73432    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-13 20:33 . 2012-10-30 20:59    693976    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-12 05:45 . 2013-03-13 20:36    135168    ----a-w-    c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 20:36    350208    ----a-w-    c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 20:36    308736    ----a-w-    c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 20:36    111104    ----a-w-    c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 20:36    474112    ----a-w-    c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 20:36    2176512    ----a-w-    c:\windows\apppatch\AcGenral.dll
2013-01-17 04:28 . 2010-11-21 03:27    273840    ------w-    c:\windows\system32\MpSigStub.exe
2013-01-04 04:43 . 2013-03-13 20:36    44032    ----a-w-    c:\windows\apppatch\acwow64.dll
.
.
((((((((((((((((((((((((((   Pontos de Carregamento do Registro   )))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legítimas por padrão não são apresentadas.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2010-03-05 411864]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ GbPluginBb]
2013-01-22 13:31    1684520    ----a-w-    c:\program files (x86)\GbPlugin\gbieh.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [x]
R0 SMR322;Symantec SMR Utility Service 3.2.2;c:\windows\System32\drivers\SMR322.SYS [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 Prot6Flt;Prot6Flt;c:\windows\system32\DRIVERS\Prot6Flt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-01-14 48416]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys [2010-01-14 29472]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys [2010-01-14 48416]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN60.sys [2010-01-14 29472]
R3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-11-01 1255736]
S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys [2013-03-15 14456]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS [2011-01-27 450680]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS [2011-03-15 912504]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20100810.004\BHDrvx64.sys [2010-08-09 945200]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20100706.002\IDSVia64.sys [2010-06-27 463408]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS [2011-01-27 171128]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS [2011-03-22 382584]
S1 VDiskBus;ASUS Disk Unlocker;c:\windows\system32\DRIVERS\VDiskBus64.sys [2010-09-21 43136]
S2 ASDiskUnlocker;ASDiskUnlocker;c:\program files (x86)\ASUS\Disk Unlocker\ASPFSVS64.exe [2010-12-02 258688]
S2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2010-03-05 235752]
S2 GbpSv;Gbp Service;c:\progra~2\GbPlugin\GbpSv.exe [2013-01-22 526888]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe [2011-04-17 130008]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [2010-01-14 32544]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
S3 ASFLTDrv.sys;ASFLTDrv.sys;c:\program files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys [2010-09-16 16512]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136]
.
.
--- =Outros Serviços/Drivers Na Memória ---
.
*NewlyCreated* - ASFLTDRV.SYS
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs    REG_MULTI_SZ       w3svc was
apphost    REG_MULTI_SZ       apphostsvc
.
Conteúdo da pasta 'Tarefas Agendadas'
.
2013-03-31 c:\windows\Tasks\RtlNICDiagVistaStart.job
- c:\program files (x86)\Realtek\Realtek Ethernet Diagnostic Utility\8169Diag.exe [2013-03-31 09:21]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-11-19 11613288]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
------- Scan Suplementar -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fbr.search.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 177.100.32.4 8.8.8.8 8.8.4.4 209.55.27.13
FF - ProfilePath - c:\users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\tc3yvz2m.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com.br/search?q=shild&ie=utf-8&oe=utf-8&aq=t&rls=org.mozilla:pt-BR:official&client=firefox-a
FF - ExtSQL: 2013-03-31 09:36; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn
FF - ExtSQL: 2013-03-31 09:36; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPlgn
.
- - - - ORFÃOS REMOVIDOS - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\18.6.0.29\diMaster.dll\" /prefetch:1"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Tempo para conclusão: 2013-03-31  10:28:52
ComboFix-quarantined-files.txt  2013-03-31 13:28
ComboFix2.txt  2013-03-27 14:22
.
Pré-execução: 256.889.110.528 bytes disponíveis
Pós execução: 259.577.626.624 bytes disponíveis
.
- - End Of File - - B4716E526B84FB6B6AA030D4C9E0D298
 


Edited by hamluis, 31 March 2013 - 10:24 AM.
Moved from Am I Infected to Malware Removal Logs - Hamluis.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:14 AM

Posted 01 April 2013 - 08:52 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===
Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

Download DDS by sUBs from one of the following links, if you no longer have it available. Save it to your desktop.

1: DDS.scr (Not recommended if you use Chrome to download this .scr file. Use the other options.)
2: DDS.pif
3: DDS.COM

Double click on the DDS icon, allow it to run.
A small box will open, with an explanation about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

dds_scr.gif

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete tab follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).
Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

#3 overlock

overlock
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:14 AM

Posted 01 April 2013 - 11:02 AM

Thancks for atencion  i make instruncions log here:

obs i no have google crome instalad in my pc i no use it !

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16470  BrowserJavaVersion: 10.17.2
Run by ASUS at 11:40:05 on 2013-04-01
#Option Extended Search is enabled.
#Option Whitelisting is disabled.
Microsoft Windows 7 Professional   6.1.7601.1.1252.55.1046.18.8157.6728 [GMT -3:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Windows\system32\svchost.exe -k apphost
C:\Windows\system32\CISVC.EXE
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\Nova pasta\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uLocal Page = C:\Windows\System32\blank.htm
uSearch Bar = Preserve
uSearch Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
mStart Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
mLocal Page = C:\Windows\SysWOW64\blank.htm
mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
uURLSearchHooks: Microsoft Url Search Hook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
mWinlogon: Shell = explorer.exe
mWinlogon: Userinit = C:\Windows\System32\userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - <orphaned>
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Program Files (x86)\GbPlugin\gbieh.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [TrueImageMonitor.exe] "C:\Program Files (x86)\ASUS\Nova pasta\TrueImageHome\TrueImageMonitor.exe"
mRun: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
mRun: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
uPolicies-Explorer: ClearRecentDocsOnExit = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableInstallerDetection = dword:1
mPolicies-System: EnableLUA = dword:1
mPolicies-System: EnableSecureUIAPaths = dword:1
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: EnableVirtualization = dword:1
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: ValidateAdminCodeSignatures = dword:0
mPolicies-System: dontdisplaylastusername = dword:0
mPolicies-System: scforceoption = dword:0
mPolicies-System: shutdownwithoutlogon = dword:1
mPolicies-System: undockwithoutlogon = dword:1
mPolicies-System: FilterAdministratorToken = dword:0
mPolicies-System: EnableLinkedConnections = dword:1
LSP: %SystemRoot%\system32\mswsock.dll
DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://oas.support.microsoft.com/ActiveX/MSDcode.cab
TCP: NameServer = 177.100.32.4 8.8.8.8 8.8.4.4 209.55.27.13
TCP: Interfaces\{F01431D8-8B2E-4AF0-8D8D-BDA85D5FAE06} : DHCPNameServer = 177.100.32.4 8.8.8.8 8.8.4.4 209.55.27.13
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Notify:  GbPluginBb - C:\Program Files (x86)\GbPlugin\gbieh.dll
SSODL: WebCheck - <orphaned>
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll
SecurityProviders: SecurityProviders = credssp.dll
LSA: Authentication Packages =  msv1_0
LSA: Notification Packages =  scecli
LSA: Security Packages =  kerberos msv1_0 schannel wdigest tspkg pku2u
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 winsrv:ConServerDllInitialization,2 sxssrv,4
mASetup: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
mASetup: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\System32\themeui.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\shell32.dll
x64-mStart Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
x64-mLocal Page = C:\Windows\System32\blank.htm
x64-mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
x64-mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mSearchAssistant = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
x64-mCustomizeSearch = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
x64-mWinlogon: Shell = Explorer.exe
x64-mWinlogon: Userinit = C:\Windows\System32\userinit.exe,
x64-mWinlogon: SFCDisable = dword:0
x64-BHO: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - <orphaned>
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [Acronis Scheduler2 Service] "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
x64-Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll
x64-Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll
x64-Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll
x64-Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll
x64-Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
x64-mASetup: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\System32\themeui.dll
x64-mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
x64-mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\shell32.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\tc3yvz2m.default\
FF - prefs.js: browser.startup.homepage - WWW.GOOGLE.COM.BR
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\browser\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: 2013-03-31 08:30; {972ce4c6-7e08-4474-a285-3208198ce6fd}; C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
============= SERVICES / DRIVERS ===============
.
R0 ACPI;Microsoft ACPI Driver;C:\Windows\System32\drivers\acpi.sys [2010-11-21 334208]
R0 amdxata;amdxata;C:\Windows\System32\drivers\amdxata.sys [2012-10-30 27008]
R0 atapi;Canal de IDE;C:\Windows\System32\drivers\atapi.sys [2009-7-13 24128]
R0 CLFS;Log Comum (CLFS);C:\Windows\System32\clfs.sys [2009-7-13 367696]
R0 CNG;CNG;C:\Windows\System32\drivers\cng.sys [2012-11-12 458712]
R0 Disk;Driver de disco;C:\Windows\System32\drivers\disk.sys [2009-7-13 73280]
R0 FileInfo;File Information FS MiniFilter;C:\Windows\System32\drivers\fileinfo.sys [2009-7-13 70224]
R0 FltMgr;FltMgr;C:\Windows\System32\drivers\fltMgr.sys [2010-11-21 289664]
R0 fltsrv;Acronis Storage Filter Management;C:\Windows\System32\drivers\fltsrv.sys [2013-4-1 155272]
R0 fvevol;Driver de Filtro de Criptografia de Unidade de Disco BitLocker;C:\Windows\System32\drivers\fvevol.sys [2010-11-21 223248]
R0 gfibto;gfibto;C:\Windows\System32\drivers\gfibto.sys [2013-3-15 14456]
R0 hwpolicy;Hardware Policy Driver;C:\Windows\System32\drivers\hwpolicy.sys [2010-11-21 14720]
R0 KSecDD;KSecDD;C:\Windows\System32\drivers\ksecdd.sys [2012-10-30 95600]
R0 KSecPkg;KSecPkg;C:\Windows\System32\drivers\ksecpkg.sys [2012-11-12 154480]
R0 mountmgr;Gerenciador de Pontos de Montagem;C:\Windows\System32\drivers\mountmgr.sys [2010-11-21 94592]
R0 msisadrv;msisadrv;C:\Windows\System32\drivers\msisadrv.sys [2009-7-13 15424]
R0 Mup;Mup;C:\Windows\System32\drivers\mup.sys [2009-7-13 60496]
R0 NDIS;Driver do Sistema NDIS;C:\Windows\System32\drivers\ndis.sys [2012-10-30 950128]
R0 partmgr;Gerenciador de Partições;C:\Windows\System32\drivers\partmgr.sys [2012-10-30 75120]
R0 pci;PCI Bus Driver;C:\Windows\System32\drivers\pci.sys [2010-11-21 184704]
R0 pciide;pciide;C:\Windows\System32\drivers\pciide.sys [2009-7-13 12352]
R0 pcw;Performance Counters for Windows Driver;C:\Windows\System32\drivers\pcw.sys [2009-7-13 50768]
R0 rdyboost;ReadyBoost;C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 snapman;Acronis Snapshots Manager;C:\Windows\System32\drivers\snapman.sys [2013-4-1 340104]
R0 spldr;Security Processor Loader Driver;C:\Windows\System32\drivers\spldr.sys [2009-7-13 19008]
R0 storflt;Driver de Filtro de Aceleração do Barramento da Máquina Virtual do Disco;C:\Windows\System32\drivers\vmstorfl.sys [2011-4-12 46464]
R0 Tcpip;Driver de Protocolo TCP/IP;C:\Windows\System32\drivers\tcpip.sys [2013-3-13 1913192]
R0 tdrpman;Acronis Try&Decide and Restore Points filter;C:\Windows\System32\drivers\tdrpman.sys [2013-4-1 1340040]
R0 tib_mounter;Acronis TIB Mounter;C:\Windows\System32\drivers\tib_mounter.sys [2013-4-1 1093256]
R0 vdrvroot;Driver de enumerador da unidade virtual Microsoft;C:\Windows\System32\drivers\vdrvroot.sys [2009-7-13 36432]
R0 vididr;Acronis Virtual Disk;C:\Windows\System32\drivers\vididr.sys [2013-4-1 228488]
R0 vidsflt;Acronis Disk Storage Filter;C:\Windows\System32\drivers\vidsflt.sys [2013-4-1 166024]
R0 volmgr;Volume Manager Driver;C:\Windows\System32\drivers\volmgr.sys [2010-11-21 71552]
R0 volmgrx;Gerenciador de Volume Dinâmico;C:\Windows\System32\drivers\volmgrx.sys [2010-11-21 363392]
R0 volsnap;Volumes de armazenamento;C:\Windows\System32\drivers\volsnap.sys [2010-11-21 295808]
R0 Wdf01000;Serviço de Estruturas de Driver em Modo Kernel;C:\Windows\System32\drivers\Wdf01000.sys [2013-4-1 785512]
R1 AFD;Ancillary Function Driver for Winsock;C:\Windows\System32\drivers\afd.sys [2012-10-30 498688]
R1 Beep;Beep;C:\Windows\System32\drivers\beep.sys [2009-7-13 6656]
R1 blbdrive;blbdrive;C:\Windows\System32\drivers\blbdrive.sys [2009-7-13 45056]
R1 cdrom;Driver de CD-ROM;C:\Windows\System32\drivers\cdrom.sys [2010-11-21 147456]
R1 DfsC;DFS Namespace Client Driver;C:\Windows\System32\drivers\dfsc.sys [2010-11-21 102400]
R1 discache;System Attribute Cache;C:\Windows\System32\drivers\discache.sys [2009-7-13 40448]
R1 Msfs;Msfs;C:\Windows\System32\drivers\msfs.sys [2009-7-13 26112]
R1 mssmbios;Driver de BIOS de Gerenciamento de Sistema Microsoft;C:\Windows\System32\drivers\mssmbios.sys [2009-7-13 32320]
R1 NetBIOS;NetBIOS Interface;C:\Windows\System32\drivers\netbios.sys [2009-7-13 44544]
R1 NetBT;NetBT;C:\Windows\System32\drivers\netbt.sys [2010-11-21 261632]
R1 Npfs;Npfs;C:\Windows\System32\drivers\npfs.sys [2009-7-13 44032]
R1 nsiproxy;NSI proxy service driver.;C:\Windows\System32\drivers\nsiproxy.sys [2009-7-13 24576]
R1 Null;Null;C:\Windows\System32\drivers\null.sys [2009-7-13 6144]
R1 Psched;Agendador de pacotes de serviço;C:\Windows\System32\drivers\pacer.sys [2010-11-21 131584]
R1 rdbss;Subsistema de Buffer Redirecionado;C:\Windows\System32\drivers\rdbss.sys [2010-11-21 309248]
R1 RDPCDD;RDPCDD;C:\Windows\System32\drivers\RDPCDD.sys [2009-7-13 7680]
R1 RDPENCDD;RDP Encoder Mirror Driver;C:\Windows\System32\drivers\RDPENCDD.sys [2009-7-13 7680]
R1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;C:\Windows\System32\drivers\RDPREFMP.sys [2009-7-13 8192]
R1 SCDEmu;SCDEmu;C:\Windows\System32\drivers\scdemu.sys [2013-4-1 127384]
R1 Serial;Serial port driver;C:\Windows\System32\drivers\serial.sys [2009-7-13 94208]
R1 tdx;Driver de Suporte a TDI Herdado de NetIO;C:\Windows\System32\drivers\tdx.sys [2010-11-21 119296]
R1 TermDD;Driver de dispositivo de terminal;C:\Windows\System32\drivers\termdd.sys [2010-11-21 63360]
R1 VgaSave;VgaSave;C:\Windows\System32\drivers\vga.sys [2009-7-13 29184]
R1 Wanarpv6;Driver ARP IPv6 de Acesso Remoto;C:\Windows\System32\drivers\wanarp.sys [2010-11-21 88576]
R1 WfpLwf;WFP Lightweight Filter;C:\Windows\System32\drivers\wfplwf.sys [2009-7-13 12800]
R1 ws2ifsl;Winsock IFS Driver;C:\Windows\System32\drivers\ws2ifsl.sys [2009-7-13 21504]
R2 AcrSch2Svc;Acronis Scheduler2 Service;C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2012-8-23 1126912]
R2 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2013-4-1 3696632]
R2 AppHostSvc;Serviço Auxiliar de Host do Aplicativo;C:\Windows\System32\svchost.exe -k apphost [2009-7-13 27136]
R2 AudioEndpointBuilder;Construtor de Pontos de Extremidade de Áudio do Windows;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R2 AudioSrv;Áudio do Windows;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
R2 BFE;Mecanismo de Filtragem Básica;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-13 27136]
R2 CISVC;Serviço de indexação;C:\Windows\System32\CISVC.EXE [2009-7-13 19456]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 CryptSvc;Serviços de criptografia;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
R2 DcomLaunch;Inicializador de Processo de Servidor DCOM;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-13 27136]
R2 Dhcp;Cliente DHCP;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
R2 Dnscache;Cliente DNS;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
R2 DPS;Serviço de Diretiva de Diagnóstico;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-13 27136]
R2 eventlog;Log de Eventos do Windows;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
R2 EventSystem;COM+ evento do sistema;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
R2 FontCache;Serviço de Cache de Fontes do Windows;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2013-3-15 526888]
R2 gpsvc;Cliente da Diretiva de Grupo;C:\Windows\System32\svchost.exe -k GPSvcGroup [2009-7-13 27136]
R2 iphlpsvc;Auxiliar de IP;C:\Windows\System32\svchost.exe -k NetSvcs [2009-7-13 27136]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;C:\Windows\System32\drivers\lltdio.sys [2009-7-13 60928]
R2 lmhosts;Auxiliar NetBIOS TCP/IP;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
R2 LMS;Intel® Management and Security Application Local Management Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2013-3-31 325656]
R2 luafv;Virtualização de arquivo UAC;C:\Windows\System32\drivers\luafv.sys [2009-7-13 113152]
R2 MMCSS;Agendador de Classes de Multimídia;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 MpsSvc;Firewall do Windows;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-13 27136]
R2 Netman;Conexões de Rede;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R2 netprofm;Serviço da Lista de Redes;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
R2 NlaSvc;Reconhecimento de Locais de Rede;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
R2 nsi;Serviço de Interface de Repositório de Rede;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
R2 nvsvc;NVIDIA Display Driver Service;C:\Windows\System32\nvvsvc.exe [2013-3-16 877856]
R2 PcaSvc;Serviço Auxiliar de Compatibilidade de Programas;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R2 PEAUTH;PEAUTH;C:\Windows\System32\drivers\PEAuth.sys [2009-7-13 651264]
R2 PlugPlay;Plug and Play;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-13 27136]
R2 Power;Energia;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-13 27136]
R2 ProfSvc;Serviço de Perfil de Usuário;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 RpcEptMapper;Mapeador de Ponto de Extremidade RPC;C:\Windows\System32\svchost.exe -k RPCSS [2009-7-13 27136]
R2 RpcSs;Chamada de procedimento remoto (RPC);C:\Windows\System32\svchost.exe -k rpcss [2009-7-13 27136]
R2 rspndr;Link-Layer Topology Discovery Responder;C:\Windows\System32\drivers\rspndr.sys [2009-7-13 76800]
R2 RtNdPt60;Realtek NDIS Protocol Driver;C:\Windows\System32\drivers\RtNdPt60.sys [2013-3-31 32544]
R2 SamSs;Gerente de Contas de Segurança;C:\Windows\System32\lsass.exe [2012-10-30 31232]
R2 Schedule;Agendador de Tarefas;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 secdrv;Security Driver;C:\Windows\System32\drivers\secdrv.sys [2009-7-13 23040]
R2 seclogon;Logon secundário;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 SENS;Serviço de Notificação de Eventos do Sistema;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 ShellHWDetection;Detecção do hardware do shell;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 SysMain;Superfetch;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R2 tcpipreg;TCP/IP Registry Compatibility;C:\Windows\System32\drivers\tcpipreg.sys [2013-3-13 45568]
R2 Themes;Temas;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 TrkWks;Cliente de rastreamento de link distribuído;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-3-31 2656280]
R2 UxSms;Gerenciador de Sessão do Gerenciador de Janelas da Área de Trabalho;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R2 W3SVC;Serviço de Publicação da World Wide Web;C:\Windows\System32\svchost.exe -k iissvcs [2009-7-13 27136]
R2 WinDefend;Windows Defender;C:\Windows\System32\svchost.exe -k secsvcs [2009-7-13 27136]
R2 Winmgmt;Testador de instrumentação de gerenciam. do Windows;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R2 wscsvc;Central de Segurança;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
R2 WSearch;Windows Search;C:\Windows\System32\SearchIndexer.exe [2012-10-30 591872]
R2 wuauserv;Windows Update;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R3 AeLookupSvc;Experiência com Aplicativo;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2013-4-1 367200]
R3 Appinfo;Informações sobre Aplicativos;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R3 AppMgmt;Gerenciamento de aplicativo;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
R3 AsyncMac;Driver de mídia assíncrona RAS;C:\Windows\System32\drivers\asyncmac.sys [2009-7-13 23040]
R3 CompositeBus;Driver Enumerador de Barramento de Composição;C:\Windows\System32\drivers\CompositeBus.sys [2010-11-21 38912]
R3 DXGKrnl;LDDM Graphics Subsystem;C:\Windows\System32\drivers\dxgkrnl.sys [2010-11-21 982912]
R3 fastfat;FAT12/16/32 File System Driver;C:\Windows\System32\drivers\fastfat.sys [2009-7-13 204800]
R3 HDAudBus;Driver de Barramento Microsoft UAA para High Definition Audio;C:\Windows\System32\drivers\hdaudbus.sys [2010-11-21 122368]
R3 hidserv;Acesso a Dispositivo de Interface Humana;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R3 HidUsb;Driver de classe HID da Microsoft;C:\Windows\System32\drivers\hidusb.sys [2010-11-21 30208]
R3 HTTP;HTTP;C:\Windows\System32\drivers\http.sys [2010-11-21 753664]
R3 i8042prt;i8042 Keyboard and PS/2 Mouse Port Driver;C:\Windows\System32\drivers\i8042prt.sys [2009-7-13 105472]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM);C:\Windows\System32\drivers\RTKVHD64.sys [2012-10-30 2565736]
R3 intelppm;Driver de Processador Intel;C:\Windows\System32\drivers\intelppm.sys [2009-7-13 62464]
R3 kbdclass;Driver de Classe de Teclado;C:\Windows\System32\drivers\kbdclass.sys [2009-7-13 50768]
R3 kbdhid;Keyboard HID Driver;C:\Windows\System32\drivers\kbdhid.sys [2010-11-21 33280]
R3 ksthunk;Kernel Streaming Thunks;C:\Windows\System32\drivers\ksthunk.sys [2009-7-13 20992]
R3 MEIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2012-10-30 56344]
R3 monitor;Microsoft Monitor Class Function Driver Service;C:\Windows\System32\drivers\monitor.sys [2009-7-13 30208]
R3 mouclass;Mouse Class Driver;C:\Windows\System32\drivers\mouclass.sys [2009-7-13 49216]
R3 mpsdrv;Driver de Autorização do Firewall do Windows;C:\Windows\System32\drivers\mpsdrv.sys [2009-7-13 77312]
R3 NdisTapi;Driver TAPI NDIS de acesso remoto;C:\Windows\System32\drivers\ndistapi.sys [2009-7-13 24064]
R3 NdisWan;Driver WAN NDIS de acesso remoto;C:\Windows\System32\drivers\ndiswan.sys [2010-11-21 164352]
R3 NDProxy;NDIS Proxy;C:\Windows\System32\drivers\ndproxy.sys [2010-11-21 57856]
R3 Ntfs;Ntfs;C:\Windows\System32\drivers\ntfs.sys [2012-10-30 1659760]
R3 nvlddmkm;nvlddmkm;C:\Windows\System32\drivers\nvlddmkm.sys [2013-4-1 11048736]
R3 Parport;Driver de porta paralela;C:\Windows\System32\drivers\parport.sys [2009-7-13 97280]
R3 PptpMiniport;Miniporta WAN (PPTP);C:\Windows\System32\drivers\raspptp.sys [2010-11-21 111104]
R3 ProtectedStorage;Armazenamento Protegido;C:\Windows\System32\lsass.exe [2012-10-30 31232]
R3 RasAgileVpn;WAN Miniport (IKEv2);C:\Windows\System32\drivers\agilevpn.sys [2009-7-13 60416]
R3 Rasl2tp;Miniporta WAN (L2TP);C:\Windows\System32\drivers\rasl2tp.sys [2010-11-21 129536]
R3 RasPppoe;Driver PPPOE de acesso remoto;C:\Windows\System32\drivers\raspppoe.sys [2009-7-13 92672]
R3 RasSstp;Miniporta WAN (SSTP);C:\Windows\System32\drivers\rassstp.sys [2009-7-13 83968]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver;C:\Windows\System32\drivers\rdpbus.sys [2009-7-13 24064]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-4-1 428136]
R3 Serenum;Serenum Filter Driver;C:\Windows\System32\drivers\serenum.sys [2009-7-13 23552]
R3 swenum;Software Bus Driver;C:\Windows\System32\drivers\swenum.sys [2009-7-13 12496]
R3 TabletInputService;Serviço de Entrada de Tablet PC;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R3 TapiSrv;Telefonia;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
R3 tunnel;Driver do Adaptador de Miniporta de Túnel da Microsoft;C:\Windows\System32\drivers\tunnel.sys [2010-11-21 125440]
R3 umbus;Driver de Enumerador UMBus;C:\Windows\System32\drivers\umbus.sys [2010-11-21 48640]
R3 usbccgp;Microsoft USB Generic Parent Driver;C:\Windows\System32\drivers\usbccgp.sys [2012-10-30 98816]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver;C:\Windows\System32\drivers\usbehci.sys [2012-10-30 52736]
R3 usbhub;Microsoft USB Standard Hub Driver;C:\Windows\System32\drivers\usbhub.sys [2012-10-30 343040]
R3 WAS;Serviço de Ativação de Processos do Windows;C:\Windows\System32\svchost.exe -k iissvcs [2009-7-13 27136]
R3 WdiServiceHost;Host do Serviço de Diagnóstico;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI;C:\Windows\System32\drivers\wmiacpi.sys [2009-7-13 14336]
R3 WudfPf;User Mode Driver Frameworks Platform Driver;C:\Windows\System32\drivers\WUDFPf.sys [2013-4-1 87040]
R3 wudfsvc;Windows Driver Foundation - Estrutura do Driver de Modo de Usuário;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
R4 udfs;udfs;C:\Windows\System32\drivers\udfs.sys [2010-11-21 328192]
S2 SharedAccess;ICS (Compartilhamento de Conexão com a Internet);C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S2 sppsvc;Proteção de Software;C:\Windows\System32\sppsvc.exe [2010-11-21 3524608]
S3 1394ohci;1394 OHCI Compliant Host Controller;C:\Windows\System32\drivers\1394ohci.sys [2010-11-21 229888]
S3 AcpiPmi;ACPI Power Meter Driver;C:\Windows\System32\drivers\acpipmi.sys [2010-11-21 12800]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-30 253656]
S3 adp94xx;adp94xx;C:\Windows\System32\drivers\adp94xx.sys [2009-6-10 491088]
S3 adpahci;adpahci;C:\Windows\System32\drivers\adpahci.sys [2009-7-13 339536]
S3 adpu320;adpu320;C:\Windows\System32\drivers\adpu320.sys [2009-7-13 182864]
S3 agp440;Intel AGP Bus Filter;C:\Windows\System32\drivers\AGP440.sys [2009-7-13 61008]
S3 ALG;Serviço Gateway de Camada de Aplicativo;C:\Windows\System32\alg.exe [2009-7-13 79360]
S3 aliide;aliide;C:\Windows\System32\drivers\aliide.sys [2009-7-13 15440]
S3 amdide;amdide;C:\Windows\System32\drivers\amdide.sys [2009-7-13 15440]
S3 AmdK8;AMD K8 Processor Driver;C:\Windows\System32\drivers\amdk8.sys [2009-7-13 64512]
S3 AmdPPM;AMD Processor Driver;C:\Windows\System32\drivers\amdppm.sys [2009-7-13 60928]
S3 amdsata;amdsata;C:\Windows\System32\drivers\amdsata.sys [2012-10-30 107904]
S3 amdsbs;amdsbs;C:\Windows\System32\drivers\amdsbs.sys [2009-6-10 194128]
S3 AppID;Driver IDApl;C:\Windows\System32\drivers\appid.sys [2010-11-21 61440]
S3 AppIDSvc;Identidade do Aplicativo;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 arc;arc;C:\Windows\System32\drivers\arc.sys [2009-7-13 87632]
S3 arcsas;arcsas;C:\Windows\System32\drivers\arcsas.sys [2009-7-13 97856]
S3 aspnet_state;Serviço de estado do ASP.NET;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-3-18 44376]
S3 AxInstSV;Instalador do ActiveX (AxInstSV);C:\Windows\System32\svchost.exe -k AxInstSVGroup [2009-7-13 27136]
S3 b06bdrv;Broadcom NetXtreme II VBD;C:\Windows\System32\drivers\bxvbda.sys [2009-6-10 468480]
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\b57nd60a.sys [2009-6-10 270848]
S3 BDESVC;Serviço de Criptografia de Unidade de Disco BitLocker;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 BITS;Serviço de transferência inteligente de plano de fundo;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 bowser;Driver de Suporte a Navegador;C:\Windows\System32\drivers\bowser.sys [2012-10-30 90624]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;C:\Windows\System32\drivers\BrFiltLo.sys [2009-7-13 18432]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;C:\Windows\System32\drivers\BrFiltUp.sys [2009-7-13 8704]
S3 BridgeMP;Miniporta de Ponte de MAC;C:\Windows\System32\drivers\bridge.sys [2009-7-13 95232]
S3 Browser;Pesquisador de Computadores;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM);C:\Windows\System32\drivers\BrSerId.sys [2009-7-13 286720]
S3 BrSerWdm;Brother WDM Serial driver;C:\Windows\System32\drivers\BrSerWdm.sys [2009-7-13 47104]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem;C:\Windows\System32\drivers\BrUsbMdm.sys [2009-7-13 14976]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver;C:\Windows\System32\drivers\BrUsbSer.sys [2009-7-13 14720]
S3 BTHMODEM;Bluetooth Serial Communications Driver;C:\Windows\System32\drivers\bthmodem.sys [2009-7-13 72192]
S3 bthserv;Serviço de Suporte a Bluetooth;C:\Windows\System32\svchost.exe -k bthsvcs [2009-7-13 27136]
S3 CertPropSvc;Propagação de Certificado;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 circlass;Consumer IR Devices;C:\Windows\System32\drivers\circlass.sys [2009-7-13 45568]
S3 CmBatt;Microsoft ACPI Control Method Battery Driver;C:\Windows\System32\drivers\CmBatt.sys [2009-7-13 17664]
S3 cmdide;cmdide;C:\Windows\System32\drivers\cmdide.sys [2009-7-13 17488]
S3 Compbatt;Compbatt;C:\Windows\System32\drivers\compbatt.sys [2009-7-13 21584]
S3 COMSysApp;COM+ System Application;C:\Windows\System32\dllhost.exe [2009-7-13 9728]
S3 defragsvc;Desfragmentador de Disco;C:\Windows\System32\svchost.exe -k defragsvc [2009-7-13 27136]
S3 DFX11_1;DFX Audio Enhancer 11.1;C:\Windows\System32\drivers\dfx11_1x64.sys [2012-12-13 28008]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 dot3svc;Configuração Automática com Fio;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 drmkaud;Drivers de Áudio Confiáveis da Microsoft;C:\Windows\System32\drivers\drmkaud.sys [2009-7-13 5632]
S3 EapHost;Protocolo de Autenticação Extensível;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;C:\Windows\System32\drivers\evbda.sys [2009-6-10 3286016]
S3 elxstor;elxstor;C:\Windows\System32\drivers\elxstor.sys [2009-6-10 530496]
S3 ErrDev;Microsoft Hardware Error Device Driver;C:\Windows\System32\drivers\errdev.sys [2009-7-13 9728]
S3 exfat;exFAT File System Driver;C:\Windows\System32\drivers\exfat.sys [2009-7-13 195072]
S3 fdc;Floppy Disk Controller Driver;C:\Windows\System32\drivers\fdc.sys [2009-7-13 29696]
S3 fdPHost;Host de Provedor da Descoberta de Função;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 FDResPub;Publicação de Recursos de Descoberta de Função;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 Filetrace;Filetrace;C:\Windows\System32\drivers\filetrace.sys [2009-7-13 34304]
S3 flpydisk;Floppy Disk Driver;C:\Windows\System32\drivers\flpydisk.sys [2009-7-13 24576]
S3 FsDepends;File System Dependency Minifilter;C:\Windows\System32\drivers\fsdepends.sys [2009-7-13 55376]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms;C:\Windows\System32\drivers\GAGP30KX.SYS [2009-7-13 65088]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver;C:\Windows\System32\drivers\hcw85cir.sys [2009-7-13 31232]
S3 HdAudAddService;Driver de Função Microsoft 1.1 UAA para Serviço de High Definition Audio;C:\Windows\System32\drivers\HdAudio.sys [2010-11-21 350208]
S3 HidBatt;HID UPS Battery Driver;C:\Windows\System32\drivers\hidbatt.sys [2009-7-13 26624]
S3 HidBth;Microsoft Bluetooth HID Miniport;C:\Windows\System32\drivers\hidbth.sys [2009-7-13 100864]
S3 HidIr;Microsoft Infrared HID Driver;C:\Windows\System32\drivers\hidir.sys [2009-7-13 46592]
S3 hkmsvc;Gerenciamento de Chaves e Certificados de Integridade;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 HomeGroupListener;Escuta do Grupo Doméstico;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 HomeGroupProvider;Provedor do Grupo Doméstico;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
S3 HpSAMD;HpSAMD;C:\Windows\System32\drivers\HpSAMD.sys [2010-11-21 78720]
S3 iaStorV;Intel RAID Controller Windows 7;C:\Windows\System32\drivers\iaStorV.sys [2012-10-30 410496]
S3 iirsp;iirsp;C:\Windows\System32\drivers\iirsp.sys [2009-7-13 44112]
S3 IKEEXT;Módulos de Criação de Chaves IKE e AuthIP do IPSec;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 intelide;intelide;C:\Windows\System32\drivers\intelide.sys [2009-7-13 16960]
S3 IPBusEnum;Enumerador de Barramento PnP-X IP;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 IpFilterDriver;Driver de filtro de tráfego IP;C:\Windows\System32\drivers\ipfltdrv.sys [2010-11-21 82944]
S3 IPMIDRV;IPMIDRV;C:\Windows\System32\drivers\IPMIDrv.sys [2010-11-21 78848]
S3 IPNAT;IP Network Address Translator;C:\Windows\System32\drivers\ipnat.sys [2009-7-13 116224]
S3 IRENUM;IR Bus Enumerator;C:\Windows\System32\drivers\irenum.sys [2009-7-13 17920]
S3 isapnp;isapnp;C:\Windows\System32\drivers\isapnp.sys [2009-7-13 20544]
S3 iScsiPrt;iScsiPort Driver;C:\Windows\System32\drivers\msiscsi.sys [2010-11-21 273792]
S3 KMWDFILTER;HIDServiceDesc;C:\Windows\System32\drivers\KMWDFILTER.sys [2009-4-29 30208]
S3 KtmRm;KtmRm para Coordenador de Transações Distribuídas;C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation [2009-7-13 27136]
S3 lltdsvc;Mapeador da Descoberta de Topologia da Camada de Link;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 LSI_FC;LSI_FC;C:\Windows\System32\drivers\lsi_fc.sys [2009-7-13 114752]
S3 LSI_SAS;LSI_SAS;C:\Windows\System32\drivers\lsi_sas.sys [2009-7-13 106560]
S3 LSI_SAS2;LSI_SAS2;C:\Windows\System32\drivers\lsi_sas2.sys [2009-7-13 65600]
S3 LSI_SCSI;LSI_SCSI;C:\Windows\System32\drivers\lsi_scsi.sys [2009-7-13 115776]
S3 megasas;megasas;C:\Windows\System32\drivers\megasas.sys [2009-6-10 35392]
S3 MegaSR;MegaSR;C:\Windows\System32\drivers\MegaSR.sys [2009-7-13 284736]
S3 Modem;Modem;C:\Windows\System32\drivers\modem.sys [2009-7-13 40448]
S3 mouhid;Mouse HID Driver;C:\Windows\System32\drivers\mouhid.sys [2009-7-13 31232]
S3 mpio;mpio;C:\Windows\System32\drivers\mpio.sys [2010-11-21 155008]
S3 MRxDAV;Driver do Redirecionador de Cliente WebDav;C:\Windows\System32\drivers\mrxdav.sys [2010-11-21 140800]
S3 mrxsmb;Wrapper e Mecanismo Mini-Redirecionador do SMB;C:\Windows\System32\drivers\mrxsmb.sys [2012-10-30 158208]
S3 mrxsmb10;Mini-Redirecionador do SMB 1.x;C:\Windows\System32\drivers\mrxsmb10.sys [2012-10-30 288768]
S3 mrxsmb20;Mini-Redirecionador do SMB 2.0;C:\Windows\System32\drivers\mrxsmb20.sys [2012-10-30 128000]
S3 msahci;msahci;C:\Windows\System32\drivers\msahci.sys [2010-11-21 31104]
S3 msdsm;msdsm;C:\Windows\System32\drivers\msdsm.sys [2010-11-21 140672]
S3 MSDTC;Coordenador de transações distribuídas;C:\Windows\System32\msdtc.exe [2009-7-13 141824]
S3 mshidkmdf;Pass-through HID to KMDF Filter Driver;C:\Windows\System32\drivers\mshidkmdf.sys [2009-7-13 8192]
S3 MSiSCSI;Serviço Iniciador Microsoft iSCSI;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 msiserver;Windows Installer;C:\Windows\System32\msiexec.exe [2010-11-21 128000]
S3 MSKSSRV;Proxy de serviço de streaming Microsoft;C:\Windows\System32\drivers\mskssrv.sys [2009-7-13 11136]
S3 MSPCLOCK;Proxy do relógio de streaming Microsoft;C:\Windows\System32\drivers\mspclock.sys [2009-7-13 7168]
S3 MSPQM;Proxy de gerenciador de qualidade de streaming Microsoft;C:\Windows\System32\drivers\mspqm.sys [2009-7-13 6784]
S3 MsRPC;MsRPC;C:\Windows\System32\drivers\msrpc.sys [2010-11-21 366976]
S3 MSTEE;Conversor em T entre Coletores de streaming Microsoft;C:\Windows\System32\drivers\mstee.sys [2009-7-13 8064]
S3 MTConfig;Microsoft Input Configuration Driver;C:\Windows\System32\drivers\MTConfig.sys [2009-7-13 15360]
S3 napagent;Agente de Proteção de Acesso à Rede;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
S3 NativeWifiP;NativeWiFi Filter;C:\Windows\System32\drivers\nwifi.sys [2009-7-13 318976]
S3 NdisCap;NDIS Capture LightWeight Filter;C:\Windows\System32\drivers\ndiscap.sys [2009-7-13 35328]
S3 Ndisuio;NDIS Usermode I/O Protocol;C:\Windows\System32\drivers\ndisuio.sys [2010-11-21 56832]
S3 Netlogon;Logon de rede;C:\Windows\System32\lsass.exe [2012-10-30 31232]
S3 nfrd960;nfrd960;C:\Windows\System32\drivers\nfrd960.sys [2009-7-13 51264]
S3 npggsvc;nProtect GameGuard Service;C:\Windows\System32\GameMon.des -service --> C:\Windows\System32\GameMon.des -service [?]
S3 nv_agp;NVIDIA nForce AGP Bus Filter;C:\Windows\System32\drivers\NV_AGP.SYS [2009-7-13 122960]
S3 nvraid;nvraid;C:\Windows\System32\drivers\nvraid.sys [2012-10-30 148352]
S3 nvstor;nvstor;C:\Windows\System32\drivers\nvstor.sys [2012-10-30 166272]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy);C:\Windows\System32\drivers\ohci1394.sys [2009-7-13 72832]
S3 p2pimsvc;Gerenciador de Identidades de Rede de Mesmo Nível;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-13 27136]
S3 p2psvc;Agrupamento de Rede de Mesmo Nível;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-13 27136]
S3 pcmcia;pcmcia;C:\Windows\System32\drivers\pcmcia.sys [2009-7-13 220752]
S3 PeerDistSvc;BranchCache;C:\Windows\System32\svchost.exe -k PeerDist [2009-7-13 27136]
S3 PerfHost;Host de DLL de Contador de Desempenho;C:\Windows\SysWOW64\perfhost.exe [2009-7-13 20992]
S3 pla;Logs e alertas de desempenho;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-13 27136]
S3 PNRPAutoReg;Serviço de Publicação de Nome de Computador do PNRP;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-13 27136]
S3 PNRPsvc;Protocolo PNRP;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-13 27136]
S3 PolicyAgent;Agente de Diretiva IPsec;C:\Windows\System32\svchost.exe -k NetworkServiceNetworkRestricted [2009-7-13 27136]
S3 Processor;Processor Driver;C:\Windows\System32\drivers\processr.sys [2009-7-13 60416]
S3 ql2300;ql2300;C:\Windows\System32\drivers\ql2300.sys [2009-6-10 1524816]
S3 ql40xx;ql40xx;C:\Windows\System32\drivers\ql40xx.sys [2009-7-13 128592]
S3 QWAVE;Quality Windows Audio Video Experience;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 QWAVEdrv;QWAVE driver;C:\Windows\System32\drivers\qwavedrv.sys [2009-7-13 46592]
S3 RasAcd;Remote Access Auto Connection Driver;C:\Windows\System32\drivers\rasacd.sys [2009-7-13 14848]
S3 RasAuto;Gerenciador de conexão de acesso remoto automático;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 RasMan;Gerenciador de conexão de acesso remoto;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 RDPDR;Terminal Server Device Redirector Driver;C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-12 19456]
S3 RDPWD;RDP Winstation Driver;C:\Windows\System32\drivers\rdpwd.sys [2012-10-30 210944]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);C:\Windows\System32\drivers\RtTeam60.sys [2013-3-31 48416]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);C:\Windows\System32\drivers\RtVlan60.sys [2013-3-31 29472]
S3 s3cap;s3cap;C:\Windows\System32\drivers\vms3cap.sys [2011-4-12 6656]
S3 sbp2port;sbp2port;C:\Windows\System32\drivers\sbp2port.sys [2010-11-21 103808]
S3 SCardSvr;Cartão inteligente;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 scfilter;Driver de Filtro de Classe PnP de Cartão inteligente;C:\Windows\System32\drivers\scfilter.sys [2010-11-21 29696]
S3 SCPolicySvc;Diretiva de Remoção de Cartão Inteligente;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 SensrSvc;Brilho Adaptável;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 sermouse;Serial Mouse Driver;C:\Windows\System32\drivers\sermouse.sys [2009-7-13 26624]
S3 SessionEnv;Configuração da Área de Trabalho Remota;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 sffdisk;SFF Storage Class Driver;C:\Windows\System32\drivers\sffdisk.sys [2009-7-13 14336]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC;C:\Windows\System32\drivers\sffp_mmc.sys [2009-7-13 13824]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus;C:\Windows\System32\drivers\sffp_sd.sys [2010-11-21 14336]
S3 sfloppy;High-Capacity Floppy Disk Drive;C:\Windows\System32\drivers\sfloppy.sys [2009-7-13 16896]
S3 SiSRaid2;SiSRaid2;C:\Windows\System32\drivers\sisraid2.sys [2009-6-10 43584]
S3 SiSRaid4;SiSRaid4;C:\Windows\System32\drivers\sisraid4.sys [2009-7-13 80464]
S3 Smb;Protocolos TCP/IP e TCP/IPv6 Orientados a Mensagens (sessão SMB);C:\Windows\System32\drivers\smb.sys [2009-7-13 93184]
S3 SNMPTRAP;Interceptação SNMP;C:\Windows\System32\snmptrap.exe [2009-7-13 14336]
S3 sppuinotify;Serviço de Notificação da SPP;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 srv;Driver SMB 1.xxx do Servidor;C:\Windows\System32\drivers\srv.sys [2012-10-30 467456]
S3 srv2;Driver SMB 2.xxx do Servidor;C:\Windows\System32\drivers\srv2.sys [2012-10-30 410112]
S3 srvnet;srvnet;C:\Windows\System32\drivers\srvnet.sys [2012-10-30 168448]
S3 stexstor;stexstor;C:\Windows\System32\drivers\stexstor.sys [2009-7-13 24656]
S3 stisvc;Assistente de aquisição de imagens do Windows (WIA);C:\Windows\System32\svchost.exe -k imgsvc [2009-7-13 27136]
S3 StorSvc;Serviço de Armazenamento;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 storvsc;storvsc;C:\Windows\System32\drivers\storvsc.sys [2011-4-12 34688]
S3 swprv;Provedor de Cópia de Sombra de Software da Microsoft;C:\Windows\System32\svchost.exe -k swprv [2009-7-13 27136]
S3 TBS;Serviços Base de TPM;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 TCPIP6;Microsoft IPv6 Protocol Driver;C:\Windows\System32\drivers\tcpip.sys [2013-3-13 1913192]
S3 TDPIPE;TDPIPE;C:\Windows\System32\drivers\tdpipe.sys [2009-7-13 15872]
S3 TDTCP;TDTCP;C:\Windows\System32\drivers\tdtcp.sys [2012-10-30 23552]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);C:\Windows\System32\drivers\RtTeam60.sys [2013-3-31 48416]
S3 TermService;Serviços de Área de Trabalho Remota;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
S3 THREADORDER;Servidor de Ordem de Thread;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 TrustedInstaller;Instalador de Módulos do Windows;C:\Windows\servicing\TrustedInstaller.exe [2010-11-21 194048]
S3 tssecsrv;Remote Desktop Services Security Filter Driver;C:\Windows\System32\drivers\tssecsrv.sys [2010-11-21 39424]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-12 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-11-12 30208]
S3 uagp35;Microsoft AGPv3.5 Filter;C:\Windows\System32\drivers\UAGP35.SYS [2009-7-13 64080]
S3 UI0Detect;Detecção de Serviços Interativos;C:\Windows\System32\UI0Detect.exe [2009-7-13 40960]
S3 uliagpkx;Uli AGP Bus Filter;C:\Windows\System32\drivers\ULIAGPKX.SYS [2009-7-13 64592]
S3 UmPass;Microsoft UMPass Driver;C:\Windows\System32\drivers\umpass.sys [2009-7-13 9728]
S3 UmRdpService;Redirecionador de Portas do Modo do Usuário dos Serviços de Área de Trabalho;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 usbcir;eHome Infrared Receiver (USBCIR);C:\Windows\System32\drivers\usbcir.sys [2009-7-13 100352]
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver;C:\Windows\System32\drivers\usbohci.sys [2012-10-30 25600]
S3 usbprint;Microsoft USB PRINTER Class;C:\Windows\System32\drivers\usbprint.sys [2009-7-13 25088]
S3 USBSTOR;USB Mass Storage Driver;C:\Windows\System32\drivers\USBSTOR.SYS [2012-10-30 91648]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver;C:\Windows\System32\drivers\usbuhci.sys [2012-10-30 30720]
S3 VaultSvc;Gerenciador de Credenciais;C:\Windows\System32\lsass.exe [2012-10-30 31232]
S3 vds;Disco Virtual;C:\Windows\System32\vds.exe [2010-11-21 533504]
S3 vga;vga;C:\Windows\System32\drivers\vgapnp.sys [2009-7-13 29184]
S3 vhdmp;vhdmp;C:\Windows\System32\drivers\vhdmp.sys [2010-11-21 215936]
S3 viaide;viaide;C:\Windows\System32\drivers\viaide.sys [2009-7-13 17488]
S3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);C:\Windows\System32\drivers\RtVlan60.sys [2013-3-31 29472]
S3 vmbus;vmbus;C:\Windows\System32\drivers\vmbus.sys [2011-4-12 199552]
S3 VMBusHID;VMBusHID;C:\Windows\System32\drivers\VMBusHID.sys [2011-4-12 21760]
S3 vsmraid;vsmraid;C:\Windows\System32\drivers\vsmraid.sys [2009-6-10 161872]
S3 VSS;Cópia de Sombra de Volume;C:\Windows\System32\VSSVC.exe [2010-11-21 1600512]
S3 vwifibus;Driver de Barramento WiFi Virtual;C:\Windows\System32\drivers\vwifibus.sys [2009-7-13 24576]
S3 W32Time;Horário do Windows;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 WacomPen;Wacom Serial Pen HID Driver;C:\Windows\System32\drivers\wacompen.sys [2009-7-13 27776]
S3 WANARP;Driver ARP IP de acesso remoto;C:\Windows\System32\drivers\wanarp.sys [2010-11-21 88576]
S3 WatAdminSvc;Serviço de Tecnologias de Ativação do Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-11-1 1255736]
S3 wbengine;Serviço de Mecanismo de Backup em Nível de Bloco;C:\Windows\System32\wbengine.exe [2010-11-21 1504256]
S3 WbioSrvc;Serviço de Biometria do Windows;C:\Windows\System32\svchost.exe -k WbioSvcGroup [2009-7-13 27136]
S3 wcncsvc;Conexão Fácil do Windows - Registrador de Configuração;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S3 WcsPlugInService;Sistema de Cores do Windows;C:\Windows\System32\svchost.exe -k wcssvc [2009-7-13 27136]
S3 Wd;Wd;C:\Windows\System32\drivers\wd.sys [2009-7-13 21056]
S3 WdiSystemHost;Host do Sistema de Diagnósticos;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 WebClient;Cliente da Web;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 Wecsvc;Coletor de Eventos do Windows;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
S3 wercplsupport;Suporte do Painel de Controle Relatórios de Problemas e Soluções;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S3 WerSvc;Serviço de Relatórios de Erro do Windows;C:\Windows\System32\svchost.exe -k WerSvcGroup [2009-7-13 27136]
S3 WIMMount;WIMMount;C:\Windows\System32\drivers\wimmount.sys [2009-7-13 22096]
S3 WinHttpAutoProxySvc;Serviço de Descoberta Automática de Proxy da Web do WinHTTP;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S3 WinRM;Windows Remote Management (WS-Management);C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
S3 Wlansvc;Configuração Automática de WLAN;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 wmiApSrv;WMI Performance Adapter;C:\Windows\System32\wbem\WmiApSrv.exe [2009-7-13 203264]
S3 WPCSvc;Parental Controls;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-13 27136]
S3 WPDBusEnum;Serviço Enumerador de Dispositivos Portáteis;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 WUDFRd;WUDFRd;C:\Windows\System32\drivers\WUDFRd.sys [2013-4-1 198656]
S3 WwanSvc;Configuração Automática de WWAN;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-13 27136]
S4 cdfs;CD/DVD File System Reader;C:\Windows\System32\drivers\cdfs.sys [2009-7-13 92160]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86;C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-7-13 66384]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-7-13 89920]
S4 crcdisk;Crcdisk Filter Driver;C:\Windows\System32\drivers\crcdisk.sys [2009-7-13 24144]
S4 CSC;Driver de Arquivos Offline;C:\Windows\System32\drivers\csc.sys [2010-11-21 514560]
S4 CscService;Arquivos Offline;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S4 EFS;EFS (Encrypting File System);C:\Windows\System32\lsass.exe [2012-10-30 31232]
S4 KeyIso;Isolamento de Chave CNG;C:\Windows\System32\lsass.exe [2012-10-30 31232]
S4 LanmanServer;Server;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S4 LanmanWorkstation;Estação de trabalho;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-13 27136]
S4 RemoteAccess;Roteamento e Acesso Remoto;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-13 27136]
S4 RemoteRegistry;Registro remoto;C:\Windows\System32\svchost.exe -k regsvc [2009-7-13 27136]
S4 RpcLocator;Alocador Remote Procedure Call (RPC);C:\Windows\System32\Locator.exe [2009-7-13 10240]
S4 SDRSVC;Backup do Windows;C:\Windows\System32\svchost.exe -k SDRSVC [2009-7-13 27136]
S4 Spooler;Spooler de Impressão;C:\Windows\System32\spoolsv.exe [2012-10-30 559104]
S4 SSDPSRV;Descoberta SSDP;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
S4 SstpSvc;Serviço SSTP;C:\Windows\System32\svchost.exe -k LocalService [2009-7-13 27136]
S4 syncagentsrv;Acronis Sync Agent Service;C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2012-8-18 7017896]
S4 upnphost;Host de dispositivo UPnP;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-13 27136]
.
=============== File Associations ===============
.
FileExt: .bat: batfile="%1" %*
FileExt: .cmd: cmdfile="%1" %*
FileExt: .com: ComFile="%1" %*
FileExt: .exe: exefile="%1" %*
FileExt: .pif: piffile="%1" %*
FileExt: .scr: scrfile="%1" /S
FileExt: .reg: regfile=regedit.exe "%1"
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .chm: chm.file="C:\Windows\hh.exe" %1
FileExt: .ini: inifile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .inf: inffile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .js: Applications\notepad.exe=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
ShellExec: AcroRD32.exe: Read="C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "%1"
ShellExec: iexplore.exe: open="C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1
ShellExec: mspaint.exe: edit="C:\Windows\System32\mspaint.exe" "%1"
ShellExec: NCLauncher.exe: open="C:\Program Files (x86)\NCSoft\Launcher\NCLauncher.exe" "%1"
ShellExec: notepad.exe: edit=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: notepad.exe: open=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: photoviewer.dll: open=C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: photoviewer.dll: print=C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: WMPDMC.exe: open="C:\Program Files\Windows Media Player\WMPDMC.exe" "%1"
ShellExec: wordpad.exe: open="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1"
.
=============== Created Last 60 ================
.
2013-04-01 11:51:55 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CB50F9A6-205B-4F44-9210-E8B9C41AA088}\offreg.dll
2013-04-01 09:48:05 127384 ----a-w- C:\Windows\System32\drivers\scdemu.sys
2013-04-01 09:24:05 -------- d-----w- C:\.exe
2013-04-01 09:10:39 367200 ----a-w- C:\Windows\System32\drivers\afcdp.sys
2013-04-01 09:10:28 -------- d-----w- C:\ProgramData\Acronis
2013-04-01 09:10:20 -------- d-----w- C:\Program Files (x86)\Common Files\Acronis
2013-04-01 08:11:01 -------- d-sh--w- C:\$RECYCLE.BIN
2013-04-01 07:25:03 -------- d-----w- C:\Users\ASUS\AppData\Roaming\Acronis
2013-04-01 07:24:28 1340040 ----a-w- C:\Windows\System32\drivers\tdrpman.sys
2013-04-01 07:24:27 1093256 ----a-w- C:\Windows\System32\drivers\tib_mounter.sys
2013-04-01 07:24:24 228488 ----a-w- C:\Windows\System32\drivers\vididr.sys
2013-04-01 07:24:23 166024 ----a-w- C:\Windows\System32\drivers\vidsflt.sys
2013-04-01 07:24:21 340104 ----a-w- C:\Windows\System32\drivers\snapman.sys
2013-04-01 07:24:20 155272 ----a-w- C:\Windows\System32\drivers\fltsrv.sys
2013-04-01 06:01:26 74272 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-04-01 06:01:26 428136 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2013-04-01 05:10:58 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2013-04-01 05:10:58 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-04-01 05:10:58 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2013-04-01 05:10:58 2560 ----a-w- C:\Windows\System32\drivers\pt-BR\wdf01000.sys.mui
2013-04-01 05:10:20 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2013-04-01 05:10:20 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2013-04-01 05:10:20 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2013-04-01 05:10:20 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2013-04-01 05:10:20 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2013-04-01 05:10:20 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2013-04-01 05:10:20 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2013-04-01 05:10:19 50688 ----a-w- C:\Windows\SysWow64\admwprox.dll
2013-04-01 05:10:19 192000 ----a-w- C:\Windows\System32\iisRtl.dll
2013-04-01 05:10:19 10752 ----a-w- C:\Windows\SysWow64\wamregps.dll
2013-04-01 04:56:15 -------- d-sh--r- C:\desktop.ini
2013-04-01 04:56:15 -------- d-sh--r- C:\comment.htt
2013-04-01 04:56:15 -------- d-sh--r- C:\autorun.inf
2013-04-01 03:53:24 -------- d-----w- C:\Users\ASUS\AppData\Local\DFX
2013-04-01 03:53:21 -------- d-----w- C:\ProgramData\DFX
2013-04-01 03:50:18 -------- d-----w- C:\Users\ASUS\AppData\Roaming\vlc
2013-04-01 03:46:35 9414456 ----a-w- C:\Windows\System32\nvcuda.dll
2013-04-01 03:46:35 7959000 ----a-w- C:\Windows\SysWow64\nvcuda.dll
2013-04-01 03:46:35 7573816 ----a-w- C:\Windows\System32\nvopencl.dll
2013-04-01 03:46:35 6271872 ----a-w- C:\Windows\SysWow64\nvopencl.dll
2013-04-01 03:46:35 2913056 ----a-w- C:\Windows\System32\nvcuvid.dll
2013-04-01 03:46:35 2728736 ----a-w- C:\Windows\SysWow64\nvcuvid.dll
2013-04-01 03:46:35 26956576 ----a-w- C:\Windows\System32\nvoglv64.dll
2013-04-01 03:46:35 2355488 ----a-w- C:\Windows\System32\nvcuvenc.dll
2013-04-01 03:46:35 20542752 ----a-w- C:\Windows\SysWow64\nvoglv32.dll
2013-04-01 03:46:35 1995552 ----a-w- C:\Windows\SysWow64\nvcuvenc.dll
2013-04-01 03:46:35 1807136 ----a-w- C:\Windows\System32\nvdispco6431422.dll
2013-04-01 03:46:35 17990800 ----a-w- C:\Windows\System32\nvd3dumx.dll
2013-04-01 03:46:35 1510176 ----a-w- C:\Windows\System32\nvdispgenco6431422.dll
2013-04-01 03:46:35 11048736 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys
2013-04-01 03:46:34 2539128 ----a-w- C:\Windows\SysWow64\nvapi.dll
2013-04-01 03:46:34 25256736 ----a-w- C:\Windows\System32\nvcompiler.dll
2013-04-01 03:46:34 17560352 ----a-w- C:\Windows\SysWow64\nvcompiler.dll
2013-04-01 01:15:55 -------- d-----w- C:\ProgramData\RegRun
2013-04-01 01:14:46 -------- d-----w- C:\@RestoreQuarantine
2013-04-01 01:08:59 -------- d-----w- C:\Program Files (x86)\Greatis
2013-04-01 00:39:44 -------- d-----w- C:\Backreg
2013-04-01 00:33:03 40208 ----a-w- C:\Windows\System32\Partizan.exe
2013-04-01 00:18:38 2 --shatr- C:\Windows\winstart.bat
2013-04-01 00:18:23 -------- d-----w- C:\Program Files (x86)\UnHackMe
2013-03-31 23:47:01 -------- d-----w- C:\ads
2013-03-31 21:54:58 -------- d-----w- C:\Program Files (x86)\Common Files\Java
2013-03-31 21:54:45 262560 ----a-w- C:\Windows\SysWow64\javaws.exe
2013-03-31 21:54:42 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-31 21:54:42 174496 ----a-w- C:\Windows\SysWow64\javaw.exe
2013-03-31 21:54:42 174496 ----a-w- C:\Windows\SysWow64\java.exe
2013-03-31 21:54:39 -------- d-----w- C:\Program Files (x86)\Java
2013-03-31 20:40:28 -------- d-----w- C:\Users\ASUS\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2013-03-31 19:46:59 -------- d-----w- C:\Users\ASUS\AppData\Local\Macromedia
2013-03-31 17:17:11 -------- d-----w- C:\Users\ASUS\AppData\Local\Microsoft_Corporation
2013-03-31 16:16:35 -------- d-----w- C:\Program Files\Windows Imaging
2013-03-31 13:28:54 -------- d-----w- C:\Windows\temp
2013-03-31 13:28:54 -------- d-----w- C:\Users\ASUS\AppData\Local\temp
2013-03-31 13:24:08 98816 ----a-w- C:\Windows\sed.exe
2013-03-31 13:24:08 80412 ----a-w- C:\Windows\grep.exe
2013-03-31 13:24:08 68096 ----a-w- C:\Windows\zip.exe
2013-03-31 13:24:08 60416 ----a-w- C:\Windows\NIRCMD.exe
2013-03-31 13:24:08 518144 ----a-w- C:\Windows\SWREG.exe
2013-03-31 13:24:08 406528 ----a-w- C:\Windows\SWSC.exe
2013-03-31 13:24:08 256000 ----a-w- C:\Windows\PEV.exe
2013-03-31 13:24:08 208896 ----a-w- C:\Windows\MBR.exe
2013-03-31 13:22:53 -------- d-----w- C:\Qoobox
2013-03-31 12:40:09 -------- d-----w- C:\Users\ASUS\AppData\Roaming\Tific
2013-03-31 12:17:39 -------- d-----w- C:\Program Files (x86)\Common Files\Adobe AIR
2013-03-31 11:55:32 -------- d-----w- C:\Users\ASUS\AppData\Local\Adobe
2013-03-31 11:53:31 -------- d-----w- C:\Program Files (x86)\Common Files\Adobe
2013-03-31 11:53:31 -------- d-----w- C:\Program Files (x86)\Adobe
2013-03-31 11:51:25 48416 ----a-r- C:\Windows\System32\drivers\RtTeam60.sys
2013-03-31 11:51:23 29472 ----a-r- C:\Windows\System32\drivers\RtVlan60.sys
2013-03-31 11:51:21 32544 ----a-r- C:\Windows\System32\drivers\RtNdPt60.sys
2013-03-31 11:30:45 -------- d-----w- C:\Users\ASUS\AppData\Roaming\Mozilla
2013-03-31 11:30:38 -------- d-----w- C:\ProgramData\Mozilla
2013-03-31 11:30:37 96664 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe
2013-03-31 11:30:37 92056 ----a-w- C:\Program Files (x86)\Mozilla Firefox\smime3.dll
2013-03-31 11:30:37 917400 ----a-w- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
2013-03-31 11:30:37 91544 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
2013-03-31 11:30:37 866760 ----a-w- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
2013-03-31 11:30:37 812440 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll
2013-03-31 11:30:37 770384 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
2013-03-31 11:30:37 74136 ----a-w- C:\Program Files (x86)\Mozilla Firefox\breakpadinjector.dll
2013-03-31 11:30:37 641944 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nss3.dll
2013-03-31 11:30:37 59288 ----a-w- C:\Program Files (x86)\Mozilla Firefox\libEGL.dll
2013-03-31 11:30:37 478104 ----a-w- C:\Program Files (x86)\Mozilla Firefox\libGLESv2.dll
2013-03-31 11:30:37 421200 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
2013-03-31 11:30:37 375192 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
2013-03-31 11:30:37 3069848 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-03-31 11:30:37 2954136 ----a-w- C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
2013-03-31 11:30:37 277400 ----a-w- C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
2013-03-31 11:30:37 272280 ----a-w- C:\Program Files (x86)\Mozilla Firefox\updater.exe
2013-03-31 11:30:37 263064 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
2013-03-31 11:30:37 21912 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plc4.dll
2013-03-31 11:30:37 21400 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plds4.dll
2013-03-31 11:30:37 2106216 ----a-w- C:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll
2013-03-31 11:30:37 1998168 ----a-w- C:\Program Files (x86)\Mozilla Firefox\d3dx9_43.dll
2013-03-31 11:30:37 193584 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2013-03-31 11:30:37 19352 ----a-w- C:\Program Files (x86)\Mozilla Firefox\xpcom.dll
2013-03-31 11:30:37 19352 ----a-w- C:\Program Files (x86)\Mozilla Firefox\AccessibleMarshal.dll
2013-03-31 11:30:37 17887640 ----a-w- C:\Program Files (x86)\Mozilla Firefox\xul.dll
2013-03-31 11:30:37 17304 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
2013-03-31 11:30:37 172440 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nspr4.dll
2013-03-31 11:30:37 170232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\webapp-uninstaller.exe
2013-03-31 11:30:37 16280 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
2013-03-31 11:30:37 155544 ----a-w- C:\Program Files (x86)\Mozilla Firefox\ssl3.dll
2013-03-31 11:30:37 151960 ----a-w- C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
2013-03-31 11:30:37 131480 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
2013-03-31 11:30:37 116120 ----a-w- C:\Program Files (x86)\Mozilla Firefox\crashreporter.exe
2013-03-31 11:30:37 115608 ----a-w- C:\Program Files (x86)\Mozilla Firefox\maintenanceservice.exe
2013-03-31 11:30:37 104344 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll
2013-03-31 11:30:37 -------- d-----w- C:\Program Files (x86)\Mozilla Firefox
2013-03-31 04:21:33 -------- d-----w- C:\Users\ASUS\AppData\Local\NPE
2013-03-31 04:03:17 -------- d-----w- C:\Users\ASUS\AppData\Roaming\DeviceVm
2013-03-31 04:03:17 -------- d-----w- C:\ProgramData\DeviceVm
2013-03-31 00:40:06 1140850688 --sha-w- C:\NRTPage.sys
2013-03-30 22:07:38 -------- d-----w- C:\Users\ASUS\AppData\Local\ElevatedDiagnostics
2013-03-30 20:26:22 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2013-03-30 18:30:41 -------- d-----w- C:\ProgramData\PCSettings
2013-03-30 17:41:07 -------- d-----w- C:\ProgramData\Symantec
2013-03-30 17:15:24 -------- d-----w- C:\Users\ASUS\AppData\Roaming\IsolatedStorage
2013-03-30 17:15:24 -------- d-----w- C:\ProgramData\IsolatedStorage
2013-03-30 17:14:14 -------- d-----w- C:\Users\ASUS\AppData\Local\_
2013-03-30 15:19:30 -------- d-----w- C:\Users\ASUS\AppData\Local\Immunet
2013-03-30 15:19:30 -------- d-----w- C:\ProgramData\Immunet
2013-03-30 15:18:39 -------- d-----w- C:\Program Files\Immunet
2013-03-30 02:01:48 256904 ----a-w- C:\Windows\SysWow64\drivers\tmcomm.sys
2013-03-29 21:43:29 9311288 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{CB50F9A6-205B-4F44-9210-E8B9C41AA088}\mpengine.dll
2013-03-29 21:40:53 -------- d-----w- C:\Users\ASUS\AppData\Local\WindowsUpdate
2013-03-29 17:33:30 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2013-03-29 17:33:30 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2013-03-29 17:33:30 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2013-03-29 17:33:30 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2013-03-29 17:33:30 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2013-03-29 14:51:40 -------- d-----w- C:\Windows\FltMgr
2013-03-29 14:01:48 -------- d-----w- C:\Program Files (x86)\Panda Security
2013-03-27 15:47:30 -------- d-----w- C:\ProgramData\Ad-Aware Antivirus
2013-03-27 14:59:48 -------- d-----w- C:\Config.Msi
2013-03-27 08:51:10 -------- d-----w- C:\Windows\CheckSur
2013-03-27 06:48:30 48648 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2013-03-27 04:46:20 -------- d-----w- C:\Windows\System32\appmgmt
2013-03-25 05:38:04 -------- d-----w- C:\Users\ASUS\AppData\Roaming\Malwarebytes
2013-03-25 04:54:31 -------- d-----w- C:\Users\ASUS\AppData\Local\Wokhan
2013-03-25 04:21:56 -------- d-----w- C:\Windows\System32\drivers\etc\LocaleMetaData
2013-03-22 19:20:45 1031056 ----a-w- C:\Windows\PE_File.dll
2013-03-22 18:32:13 -------- d-----w- C:\ProgramData\ASUS OC Profiles
2013-03-22 18:20:41 184320 ----a-w- C:\Windows\SysWow64\drivers\UpdateHelper.dll
2013-03-22 17:55:54 -------- d-----w- C:\Program Files (x86)\ASUS
2013-03-22 16:54:23 -------- d-----w- C:\$WINDOWS.~LS
2013-03-21 21:10:21 -------- d-----w- C:\MATS
2013-03-21 20:32:41 -------- d-----w- C:\Users\ASUS\AppData\Local\Microsoft Corporation
2013-03-21 08:19:05 8192 ----a-w- C:\Windows\SysWow64\iisrstap.dll
2013-03-21 08:19:05 60928 ----a-w- C:\Windows\System32\ahadmin.dll
2013-03-21 08:19:05 55296 ----a-w- C:\Windows\System32\admwprox.dll
2013-03-21 08:19:05 26624 ----a-w- C:\Windows\SysWow64\ahadmin.dll
2013-03-21 08:19:05 16896 ----a-w- C:\Windows\System32\iisreset.exe
2013-03-21 08:19:05 154624 ----a-w- C:\Windows\SysWow64\iisRtl.dll
2013-03-21 08:19:05 15360 ----a-w- C:\Windows\SysWow64\iisreset.exe
2013-03-21 08:19:05 14848 ----a-w- C:\Windows\System32\wamregps.dll
2013-03-21 08:19:05 11264 ----a-w- C:\Windows\System32\iisrstap.dll
2013-03-21 08:11:50 -------- d-----w- C:\Windows\System32\BestPractices
2013-03-21 08:11:48 -------- d-----w- C:\inetpub
2013-03-20 15:11:11 -------- d-----w- C:\ProgramData\InstallShield
2013-03-19 02:22:16 48648 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2013-03-19 02:22:14 578896 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-03-18 10:36:22 -------- dc----w- C:\Windows\System32\DRVSTORE
2013-03-17 16:26:25 -------- d-----w- C:\ProgramData\Sun
2013-03-17 16:25:47 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-03-17 16:25:47 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-03-17 16:05:11 -------- d-----w- C:\Program Files (x86)\Google
2013-03-17 16:04:01 -------- d-----w- C:\Users\ASUS\AppData\Local\Deployment
2013-03-17 16:04:01 -------- d-----w- C:\Users\ASUS\AppData\Local\Apps
2013-03-17 13:43:14 -------- d-----w- C:\Windows\SoftwareDistribution
2013-03-16 03:50:10 -------- d-----w- C:\ProgramData\NVIDIA
2013-03-16 03:49:51 877856 ----a-w- C:\Windows\System32\nvvsvc.exe
2013-03-16 03:49:51 6398240 ----a-w- C:\Windows\System32\nvcpl.dll
2013-03-16 03:49:51 63776 ----a-w- C:\Windows\System32\nvshext.dll
2013-03-16 03:49:51 3477280 ----a-w- C:\Windows\System32\nvsvc64.dll
2013-03-16 03:49:51 2555680 ----a-w- C:\Windows\System32\nvsvcr.dll
2013-03-16 03:49:51 237856 ----a-w- C:\Windows\System32\nvmctray.dll
2013-03-16 03:49:33 -------- d-----w- C:\ProgramData\NVIDIA Corporation
2013-03-16 03:48:51 2864144 ----a-w- C:\Windows\System32\nvapi64.dll
2013-03-16 03:48:51 1807136 ----a-w- C:\Windows\System32\nvdispco6420294.dll
2013-03-16 03:48:51 15508512 ----a-w- C:\Windows\System32\nvwgf2umx.dll
2013-03-16 03:48:51 1510176 ----a-w- C:\Windows\System32\nvdispgenco6420162.dll
2013-03-16 03:48:51 15042928 ----a-w- C:\Windows\SysWow64\nvd3dum.dll
2013-03-16 03:48:51 13088000 ----a-w- C:\Windows\SysWow64\nvwgf2um.dll
2013-03-15 03:48:47 -------- d-----w- C:\Users\ASUS\AppData\Roaming\LavasoftStatistics
2013-03-15 03:47:01 -------- d-----w- C:\ProgramData\Lavasoft
2013-03-15 03:47:00 -------- d-----w- C:\Program Files (x86)\Ad-Aware Antivirus
2013-03-15 03:46:53 -------- d-----w- C:\ProgramData\Downloaded Installations
2013-03-15 03:46:42 -------- d-----w- C:\Program Files (x86)\Toolbar Cleaner
2013-03-15 03:44:20 14456 ----a-w- C:\Windows\System32\drivers\gfibto.sys
2013-03-15 03:44:18 -------- d-----w- C:\Users\ASUS\AppData\Roaming\Ad-Aware Antivirus
2013-03-14 22:52:18 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-03-14 22:41:31 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-14 22:41:31 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-14 22:41:31 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-14 22:41:31 5632 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-14 22:41:31 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-14 22:41:31 5632 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-14 22:41:31 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-14 22:41:31 4096 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-14 22:41:31 364544 ----a-w- C:\Windows\SysWow64\XpsGdiConverter.dll
2013-03-14 22:41:31 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-14 22:41:31 3584 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-14 22:41:31 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-14 22:41:31 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-14 22:41:31 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-14 22:41:31 3072 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-14 22:41:31 2560 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-14 22:41:31 2560 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-14 22:41:31 1682432 ----a-w- C:\Windows\System32\XpsPrint.dll
2013-03-14 22:41:31 1158144 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2013-03-14 22:41:31 10752 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-14 22:41:31 10752 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-03-14 22:41:30 648192 ----a-w- C:\Windows\System32\d3d10level9.dll
2013-03-14 22:41:30 604160 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2013-03-14 22:41:30 522752 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-03-14 22:41:30 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2013-03-14 22:41:30 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-03-14 22:41:30 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2013-03-14 22:41:30 363008 ----a-w- C:\Windows\System32\dxgi.dll
2013-03-14 22:41:30 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2013-03-14 22:41:30 333312 ----a-w- C:\Windows\System32\d3d10_1core.dll
2013-03-14 22:41:30 296960 ----a-w- C:\Windows\System32\d3d10core.dll
2013-03-14 22:41:30 293376 ----a-w- C:\Windows\SysWow64\dxgi.dll
2013-03-14 22:41:30 2776576 ----a-w- C:\Windows\System32\msmpeg2vdec.dll
2013-03-14 22:41:30 2565120 ----a-w- C:\Windows\System32\d3d10warp.dll
2013-03-14 22:41:30 249856 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2013-03-14 22:41:30 245248 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll
2013-03-14 22:41:30 2284544 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2013-03-14 22:41:30 221184 ----a-w- C:\Windows\System32\UIAnimation.dll
2013-03-14 22:41:30 220160 ----a-w- C:\Windows\SysWow64\d3d10core.dll
2013-03-14 22:41:30 207872 ----a-w- C:\Windows\SysWow64\WindowsCodecsExt.dll
2013-03-14 22:41:30 1988096 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2013-03-14 22:41:30 194560 ----a-w- C:\Windows\System32\d3d10_1.dll
2013-03-14 22:41:30 1887232 ----a-w- C:\Windows\System32\d3d11.dll
2013-03-14 22:41:30 187392 ----a-w- C:\Windows\SysWow64\UIAnimation.dll
2013-03-14 22:41:30 1643520 ----a-w- C:\Windows\System32\DWrite.dll
2013-03-14 22:41:30 161792 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2013-03-14 22:41:30 1504768 ----a-w- C:\Windows\SysWow64\d3d11.dll
2013-03-14 22:41:30 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-03-14 22:41:30 1247744 ----a-w- C:\Windows\SysWow64\DWrite.dll
2013-03-14 22:41:30 1238528 ----a-w- C:\Windows\System32\d3d10.dll
2013-03-14 22:41:30 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-03-14 22:41:30 1175552 ----a-w- C:\Windows\System32\FntCache.dll
2013-03-14 22:41:30 1080832 ----a-w- C:\Windows\SysWow64\d3d10.dll
2013-03-13 21:02:45 -------- d-----w- C:\Users\ASUS\AppData\Local\PMB Files
2013-03-13 21:02:43 -------- d-----w- C:\ProgramData\PMB Files
2013-03-13 20:42:12 768000 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-13 20:42:11 996352 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-13 20:40:12 96768 ----a-w- C:\Windows\System32\mshtmled.dll
2013-03-13 20:40:12 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-03-13 20:40:12 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-03-13 20:40:11 73216 ----a-w- C:\Windows\SysWow64\mshtmled.dll
2013-03-13 20:40:11 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-03-13 20:40:11 304640 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-03-13 20:40:11 194048 ----a-w- C:\Program Files (x86)\Internet Explorer\IEShims.dll
2013-03-13 20:40:11 182816 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll
2013-03-13 20:40:11 176640 ----a-w- C:\Windows\SysWow64\ieui.dll
2013-03-13 20:40:11 149552 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
2013-03-13 20:40:10 757296 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-03-13 20:40:10 248320 ----a-w- C:\Windows\System32\ieui.dll
2013-03-13 20:40:10 237056 ----a-w- C:\Windows\System32\url.dll
2013-03-13 20:40:10 231936 ----a-w- C:\Windows\SysWow64\url.dll
2013-03-13 20:40:10 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-03-13 20:40:10 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-03-13 20:40:09 763424 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2013-03-13 20:40:09 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-03-13 20:40:09 1346048 ----a-w- C:\Windows\System32\urlmon.dll
2013-03-13 20:40:09 1103872 ----a-w- C:\Windows\SysWow64\urlmon.dll
2013-03-13 20:40:08 729088 ----a-w- C:\Windows\System32\msfeeds.dll
2013-03-13 20:40:08 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-03-13 20:40:08 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-03-13 20:40:07 85504 ----a-w- C:\Windows\System32\jsproxy.dll
2013-03-13 20:40:07 607744 ----a-w- C:\Windows\SysWow64\msfeeds.dll
2013-03-13 20:40:07 548864 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll
2013-03-13 20:40:07 194560 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-03-13 20:40:07 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-03-13 20:40:07 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-03-13 20:40:07 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-03-13 20:40:06 816640 ----a-w- C:\Windows\System32\jscript.dll
2013-03-13 20:40:06 717824 ----a-w- C:\Windows\SysWow64\jscript.dll
2013-03-13 20:40:06 65024 ----a-w- C:\Windows\SysWow64\jsproxy.dll
2013-03-13 20:40:06 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-03-13 20:40:06 2147840 ----a-w- C:\Windows\System32\iertutil.dll
2013-03-13 20:40:06 1796096 ----a-w- C:\Windows\SysWow64\iertutil.dll
2013-03-13 20:40:05 887808 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll
2013-03-13 20:40:05 678912 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll
2013-03-13 20:40:05 499200 ----a-w- C:\Program Files\Internet Explorer\jsdbgui.dll
2013-03-13 20:40:05 387584 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdbgui.dll
2013-03-13 20:40:04 12321792 ----a-w- C:\Windows\SysWow64\mshtml.dll
2013-03-13 20:40:03 17815040 ----a-w- C:\Windows\System32\mshtml.dll
2013-03-13 20:40:01 9738240 ----a-w- C:\Windows\SysWow64\ieframe.dll
2013-03-13 20:40:01 10925568 ----a-w- C:\Windows\System32\ieframe.dll
2013-03-13 20:38:51 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2013-03-13 20:38:51 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2013-03-13 20:38:51 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2013-03-13 20:38:51 216576 ----a-w- C:\Windows\System32\ncsi.dll
2013-03-13 20:38:51 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2013-03-13 20:38:50 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2013-03-13 20:38:50 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2013-03-13 20:38:50 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2013-03-13 20:38:50 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2013-03-13 20:38:50 18944 ----a-w- C:\Windows\System32\netevent.dll
2013-03-13 20:38:50 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2013-03-13 20:38:44 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2013-03-13 20:38:44 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2013-03-13 20:38:44 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2013-03-13 20:38:44 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2013-03-13 20:38:40 800768 ----a-w- C:\Windows\System32\usp10.dll
2013-03-13 20:38:40 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2013-03-13 20:38:31 46592 ----a-w- C:\Windows\SysWow64\fpb.rs
2013-03-13 20:38:31 46592 ----a-w- C:\Windows\System32\fpb.rs
2013-03-13 20:38:31 45568 ----a-w- C:\Windows\SysWow64\oflc-nz.rs
2013-03-13 20:38:31 45568 ----a-w- C:\Windows\System32\oflc-nz.rs
2013-03-13 20:38:31 44544 ----a-w- C:\Windows\SysWow64\pegibbfc.rs
2013-03-13 20:38:31 44544 ----a-w- C:\Windows\System32\pegibbfc.rs
2013-03-13 20:38:31 441856 ----a-w- C:\Windows\System32\Wpc.dll
2013-03-13 20:38:31 43520 ----a-w- C:\Windows\SysWow64\csrr.rs
2013-03-13 20:38:31 43520 ----a-w- C:\Windows\System32\csrr.rs
2013-03-13 20:38:31 40960 ----a-w- C:\Windows\SysWow64\cob-au.rs
2013-03-13 20:38:31 40960 ----a-w- C:\Windows\System32\cob-au.rs
2013-03-13 20:38:31 30720 ----a-w- C:\Windows\SysWow64\usk.rs
2013-03-13 20:38:31 30720 ----a-w- C:\Windows\System32\usk.rs
2013-03-13 20:38:31 2746368 ----a-w- C:\Windows\System32\gameux.dll
2013-03-13 20:38:31 2576384 ----a-w- C:\Windows\SysWow64\gameux.dll
2013-03-13 20:38:31 21504 ----a-w- C:\Windows\SysWow64\grb.rs
2013-03-13 20:38:31 21504 ----a-w- C:\Windows\System32\grb.rs
2013-03-13 20:38:31 20480 ----a-w- C:\Windows\SysWow64\pegi.rs
2013-03-13 20:38:31 20480 ----a-w- C:\Windows\SysWow64\pegi-pt.rs
2013-03-13 20:38:31 20480 ----a-w- C:\Windows\System32\pegi.rs
2013-03-13 20:38:31 20480 ----a-w- C:\Windows\System32\pegi-pt.rs
2013-03-13 20:38:31 15360 ----a-w- C:\Windows\SysWow64\djctq.rs
2013-03-13 20:38:31 15360 ----a-w- C:\Windows\System32\djctq.rs
2013-03-13 20:38:30 55296 ----a-w- C:\Windows\SysWow64\cero.rs
2013-03-13 20:38:30 55296 ----a-w- C:\Windows\System32\cero.rs
2013-03-13 20:38:30 51712 ----a-w- C:\Windows\SysWow64\esrb.rs
2013-03-13 20:38:30 51712 ----a-w- C:\Windows\System32\esrb.rs
2013-03-13 20:38:30 308736 ----a-w- C:\Windows\SysWow64\Wpc.dll
2013-03-13 20:38:30 23552 ----a-w- C:\Windows\SysWow64\oflc.rs
2013-03-13 20:38:30 23552 ----a-w- C:\Windows\System32\oflc.rs
2013-03-13 20:38:30 20480 ----a-w- C:\Windows\SysWow64\pegi-fi.rs
2013-03-13 20:38:30 20480 ----a-w- C:\Windows\System32\pegi-fi.rs
2013-03-13 20:37:24 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-03-13 20:37:23 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-03-13 20:37:23 1161216 ----a-w- C:\Windows\System32\kernel32.dll
2013-03-13 20:37:23 1114112 ----a-w- C:\Windows\SysWow64\kernel32.dll
2013-03-13 20:37:22 6144 ---ha-w- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2013-03-13 20:37:22 5120 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2013-03-13 20:37:22 5120 ---ha-w- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2013-03-13 20:37:22 4608 ---ha-w- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2013-03-13 20:37:22 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-03-13 20:37:22 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2013-03-13 20:37:22 4096 ---ha-w- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-03-13 20:37:22 4096 ---ha-w- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2013-03-13 20:37:22 362496 ----a-w- C:\Windows\System32\wow64win.dll
2013-03-13 20:37:22 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-03-13 20:37:22 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2013-03-13 20:37:22 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2013-03-13 20:37:22 243200 ----a-w- C:\Windows\System32\wow64.dll
2013-03-13 20:37:22 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2013-03-13 20:37:22 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2013-03-13 20:37:21 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2013-03-13 20:37:21 4608 ---ha-w- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2013-03-13 20:37:21 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2013-03-13 20:37:21 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2013-03-13 20:37:21 4096 ---ha-w- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-03-13 20:37:21 3584 ---ha-w- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-03-13 20:37:21 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2013-03-13 20:37:20 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-03-13 20:37:20 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-03-13 20:37:20 4096 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2013-03-13 20:37:20 4096 ---ha-w- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2013-03-13 20:37:20 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-03-13 20:37:20 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-03-13 20:37:20 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-03-13 20:37:20 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2013-03-13 20:37:20 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2013-03-13 20:37:20 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2013-03-13 20:37:20 3072 ---ha-w- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2013-03-13 20:36:17 1913192 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-03-13 20:36:16 3153408 ----a-w- C:\Windows\System32\win32k.sys
2013-03-13 20:36:13 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-03-13 20:36:13 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-03-13 20:36:13 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-03-13 20:36:13 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-03-13 20:36:13 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-03-13 20:36:12 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-03-13 20:36:11 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-03-13 20:36:11 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-03-13 20:36:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-03-13 12:34:10 -------- d-----w- C:\Program Files (x86)\seila
2013-03-10 00:35:07 -------- d-----w- C:\Windows\erdnt
2013-03-09 23:41:58 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
.
==================== Find6M  ====================
.
2013-03-31 18:47:33 73432 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-31 18:47:33 693976 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-03-13 20:49:40 72013344 ----a-w- C:\Windows\System32\MRT.exe
2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-01-17 04:28:58 273840 ------w- C:\Windows\System32\MpSigStub.exe
2013-01-04 04:43:21 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2012-12-16 17:11:22 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-16 14:45:03 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-16 14:13:28 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-16 14:13:20 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-13 15:41:10 28008 ----a-w- C:\Windows\System32\drivers\dfx11_1x64.sys
2012-11-23 03:13:57 68608 ----a-w- C:\Windows\System32\taskhost.exe
2012-11-20 05:48:49 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2012-11-20 04:51:09 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2012-11-09 05:45:32 750592 ----a-w- C:\Windows\System32\win32spl.dll
2012-11-09 05:45:09 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-11-09 04:43:04 492032 ----a-w- C:\Windows\SysWow64\win32spl.dll
2012-11-09 04:42:49 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-11-02 05:59:11 478208 ----a-w- C:\Windows\System32\dpnet.dll
2012-11-02 05:11:31 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2012-11-01 05:43:42 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2012-11-01 05:43:42 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2012-11-01 04:47:54 1389568 ----a-w- C:\Windows\SysWow64\msxml6.dll
2012-11-01 04:47:54 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll
2012-10-09 15:29:58 46440 ----a-w- C:\Windows\SysWow64\drivers\gbpkm.sys
.
============= FINISH: 11:40:22,52 ===============

 

DDs : Too i ask for no attach log but in log have instrucion for attach ok

name log :attach.txt

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 30/10/2012 14:48:05
System Uptime: 01/04/2013 08:41:03 (3 hours ago)
.
Motherboard: ASUSTeK COMPUTER INC. |  | P8H61-M LE/BR
Processor: Intel® Core™ i7-2600 CPU @ 3.40GHz | LGA1155 | 3298/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 368 GiB total, 238,549 GiB free.
D: is FIXED (NTFS) - 98 GiB total, 96,237 GiB free.
E: is CDROM ()
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP209: 28/03/2013 12:49:45 - Ponto de Verificação Agendado
.
==== Installed Programs ======================
.
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader 9.1
AVG PC TuneUp Language Pack (pt-BR)
Free Mouse Auto Clicker 3.0
Intel® Management Engine Components
Internet Explorer (Enable DEP)
Java 7 Update 17
Java Auto Updater
Kit de Pré-instalação OEM do Windows
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile PTB Language Pack
Microsoft .NET Framework 4 Extended
Microsoft .NET Framework 4 Extended PTB Language Pack
Microsoft Application Error Reporting
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Mozilla Firefox 19.0.2 (x86 pt-BR)
NCsoft Launcher
NVIDIA Driver de controle do 3D Vision 314.22
NVIDIA Driver de gráficos 314.22
NVIDIA Driver do 3D Vision 314.22
NVIDIA Install Application
NVIDIA PhysX
NVIDIA Software do sistema PhysX 9.12.1031
Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)
Pacote de Idiomas do Microsoft .NET Framework 4 Extended - Português (Brasil)
Painel de controle da NVIDIA 314.22
Pando Media Booster
PowerISO
Realtek Ethernet Controller Driver
Realtek Ethernet Diagnostic Utility
Realtek High Definition Audio Driver
Revo Uninstaller 1.94
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
True Image 2013
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
VS10Runtimex64
WinRAR 4.20 (64-bit)
.
==== End Of File ===========================
 

AdwCleaner[S1].txt

 

# AdwCleaner v2.115 - Relatório criado em 01/04/2013 às 12:11:28
# Atualizado em 17/03/2013 por Xplode
# Sistema Operacional : Windows 7 Professional Service Pack 1 (64 bits)
# Usuário : ASUS - ASUS-PC
# Modo de Boot : Normal
# Executado de : C:\Users\ASUS\Desktop\adwcleaner.exe
# Opção [Remover]


***** [Serviços] *****


***** [Arquivos/Pastas] *****


***** [Registro] *****

Chave Removida : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chave Removida : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Removida : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Removida : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Removida : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

***** [Navegadores] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Registro está limpo.

-\\ Mozilla Firefox v19.0.2 (pt-BR)

Arquivo : C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\tc3yvz2m.default\prefs.js

[OK] Arquivo está limpo.

*************************

AdwCleaner[S1].txt - [1160 octets] - [01/04/2013 12:11:28]

########## EOF - C:\AdwCleaner[S1].txt - [1220 octets] ##########

 

checkup.txt

 

 Results of screen317's Security Check version 0.99.61 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 9 
``````````````Antivirus/Firewall Check:``````````````
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 AVG PC TuneUp Language Pack (pt-BR)
 Java 7 Update 17 
 Adobe Flash Player 11.6.602.180 
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (19.0.2)
 Google Chrome 25.0.1364.172 
````````Process Check: objlist.exe by Laurent```````` 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: =
````````````````````End of Log``````````````````````
 

 

Very thancks for try help me 

OBS: all files genere generated after I try to make a complaint on the website CGI and I notice that many things were deleted suits me to do it in 1 or 2 days again

Atenciosamente overlock

 

 

 


 



#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:14 AM

Posted 01 April 2013 - 12:36 PM

Get the latest version of the Adobe Reader.
http://get.adobe.com/reader/
Before your download I suggest you unckeck the box on the top right "Yes, install McAfee Security Scan Plus - optional" this is not required if you are not a McAfee subscriber. While the installation is in progress you can also deny the installation of any other programs that may be suggested.

When installed remove your old version of the Reader using the Add/Remove Programs applet if present.

Please let me know what problem remains.

p.s.
Use your own language I can translate it with some tools.

#5 overlock

overlock
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:14 AM

Posted 02 April 2013 - 03:17 PM

Get the latest version of the Adobe Reader.
http://get.adobe.com/reader/
Before your download I suggest you unckeck the box on the top right "Yes, install McAfee Security Scan Plus - optional" this is not required if you are not a McAfee subscriber. While the installation is in progress you can also deny the installation of any other programs that may be suggested.

When installed remove your old version of the Reader using the Add/Remove Programs applet if present.

Please let me know what problem remains.

p.s.
Use your own language I can translate it with some tools.

 

 

 

ok usarei minha linguage meu problema nao e esse , isso foi tudo que achou no log? obrigado por ajudar

ps: eu uso pc para game nao preciso disso foi desistalado

nossa ajuda legal  obrigado

...



#6 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:14 AM

Posted 03 April 2013 - 08:18 AM

If all is well:

Time for some housekeeping
  • The following will implement some cleanup procedures as well as reset System Restore points:
  • Click Start > Run and copy/paste the following bold text into the Run box and click OK:
  • ComboFix /Uninstall
  • ===

    To remove AdwCleaner.

    Please double click on AdwCleaner.exe to run the tool.
    Click on Uninstall.
    Confirm with Yes.

    If you decide to keep the AdwCleaner tool make sure to delete your version and download the latest before running it.

    Delete the other tools we used.
    You can Keep the DDS tool as most forum will ask to see a log before suggesting a fix.

    Surf Safely, and Think Prevention!
    ===



#7 nasdaq

nasdaq

  • Malware Response Team
  • 38,936 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:14 AM

Posted 09 April 2013 - 07:32 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users