Ir para conteúdo

POWERED BY:

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

walter4785

[Resolvido!] Erro de sshnas21.dll ao iniciar o pc

Recommended Posts

Boa Noite , analistas de segurança do IeMaster , eu estou com um problema ao iniciar o computador , ele fala que está sem o arquivo sshnas21.dll , eu ia baixa-lo para colocar na pasta System32 , mas eu pesquisei , e descobri que na verdade essas DLL é um vírus , que pode aos poucos estar afetando meu computando , então peço que me ajudem , Ficarei Grato,

 

 

Aqui está o Log do Hijackthis

 

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 19:48:30, on 09/08/2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\AVG\AVG9\avgtray.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Windows\VM303_STI.EXE

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Common Files\aol\1280790162\ee\aolsoftware.exe

C:\Program Files\DAEMON Tools Lite\DTLite.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\DAP\DAP.exe

C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program Files\Typle2.0v\Typle.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\proXPN\bin\proxpn.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\User4\Documents\My DAP Downloads\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ebay.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\DAP\DAPIEL~1.DLL

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

O4 - HKLM\..\Run: [bigDog303] C:\Windows\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1280790162\ee\AOLSoftware.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP

O4 - HKCU\..\Run: [Metropolis] rundll32.exe C:\Windows\system32\sshnas21.dll,GetHandle

O4 - HKCU\..\Run: [ZE18MW23GY] C:\Users\User4\AppData\Local\Temp\Dm1.exe

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')

O4 - Startup: Typle.lnk = C:\Program Files\Typle2.0v\Typle.exe

O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm

O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm

O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html

O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html

O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O13 - Gopher Prefix:

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe

O23 - Service: Dispositivo Celular da Apple (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe

O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe

O23 - Service: Serviço do Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) - http://libusb-win32.sourceforge.net - C:\Windows\system32\libusbd-nt.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

 

--

End of file - 8878 bytes

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa tarde....

 

 

*Baixe o MalwareBytes Anti-malware e salve-o no desktop

*Instale o programa

*Se alguma atualização existir, o download será automático. Aguarde...

*O programa será aberto automaticamente.

*Na aba [Verificação], selecione a opção [Verificação completa]

*Clique em [Verificar] e selecione as partições a serem examinadas (geralmente C:\ e D:\)

*Ao término do scan, poderá ser interrogado se deseja remover objetos da memória. Clique [sIM] > [OK] > [Mostrar Resultados]

*Clique em [Remover Selecionados]

*Um relatório (mbam-log-ano-mês-data.txt) será apresentado.

*Cole-o na sua próxima resposta

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá Wings , obrigado pela atenção , jaja editarei o log, estou escaneando agora.

 

Bom , achou seis arquivos infectados , aqui está o log.

 

 

 

 

 

 

 

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

 

Versão da Base de Dados: 4412

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

10/08/2010 18:45:17

mbam-log-2010-08-10 (18-45-17).txt

 

Tipo de Verificação: Verificação Completa (C:\|D:\|)

Objetos escaneados: 284973

Tempo decorrido: 50 minuto(s), 17 segundo(s)

 

Processos de Memória Infectados: 0

Módulos de Memória Infectados: 0

Chaves de Registro Infectadas: 3

Valores de Registro Infectados: 2

Itens de Dados no Registro Infectados: 0

Pastas Infectadas: 0

Arquivos Infectados: 1

 

Processos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Módulos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Chaves de Registro Infectadas:

HKEY_CURRENT_USER\SOFTWARE\ZE18MW23GY (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\10DPP6O2VE (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.

 

Valores de Registro Infectados:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ze18mw23gy (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\metropolis (Trojan.FakeAlert) -> Quarantined and deleted successfully.

 

Itens de Dados no Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Pastas Infectadas:

(Não foram detectados ítens maliciosos)

 

Arquivos Infectados:

D:\System Volume Information\_restore{054D99F3-3255-4CEF-97D8-C93041092C17}\RP182\A0090530.rbf (Trojan.Downloader) -> Quarantined and deleted successfully.

 

Ei , Wings , Muito Obrigado mesmo , acabei de reiniciar o computador para ver se ainda está dando o erro , e ele parou , muito obrigado , Já pode fechar , estou muito agradecido

Compartilhar este post


Link para o post
Compartilhar em outros sites

1.

*Abra o programa Malwarebytes e na aba [Quarentena], selecione todos os resultados e clique em [Apagar tudo]

*Clique na aba [Logs], selecione o relatório e clique em [Apagar]

 

2.

*Baixe o RSIT e salve-o no desktop

*Execute o RSIT e clique em [Continue]

*Ao término do processo, cole o relatório criado em C:\rsit\log.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Aqui está :

 

Logfile of random's system information tool 1.08 (written by random/random)

Run by User4 at 2010-08-10 19:00:04

Microsoft Windows 7 Professional

System drive C: has 29 GB (29%) free of 100 GB

Total RAM: 3325 MB (70% free)

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 19:00:21, on 10/08/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\AVG\AVG9\avgtray.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Windows\VM303_STI.EXE

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Common Files\aol\1280790162\ee\aolsoftware.exe

C:\Program Files\DAEMON Tools Lite\DTLite.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\DAP\DAP.exe

C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program Files\Typle2.0v\Typle.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\proXPN\bin\proxpn.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\User4\Documents\My DAP Downloads\RSIT.exe

C:\Program Files\trend micro\User4.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ebay.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Auxiliar de Conexão do Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: DAPIELoader Class - {FF6C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\DAP\DAPIEL~1.DLL

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

O4 - HKLM\..\Run: [bigDog303] C:\Windows\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1280790162\ee\AOLSoftware.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE')

O4 - Startup: Typle.lnk = C:\Program Files\Typle2.0v\Typle.exe

O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm

O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm

O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html

O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html

O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.00\MediaManager\grab.html

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe

O23 - Service: Dispositivo Celular da Apple (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe

O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe

O23 - Service: Serviço do Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) - http://libusb-win32.sourceforge.net - C:\Windows\system32\libusbd-nt.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

 

--

End of file - 8722 bytes

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]

AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-07-21 1619296]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Auxiliar de Conexão do Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-20 41760]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]

DAPIELoader Class - C:\PROGRA~1\DAP\DAPIEL~1.DLL [2010-07-26 140880]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-11-23 56928]

"LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [2006-12-05 54832]

"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-07-21 2065760]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]

"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]

"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-06-28 2837864]

"BigDog303"=C:\Windows\VM303_STI.EXE [2006-01-24 61440]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-03-18 421888]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-06-15 141624]

"HostManager"=C:\Program Files\Common Files\AOL\1280790162\ee\AOLSoftware.exe [2009-07-20 41264]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-13 1173504]

"DownloadAccelerator"=C:\Program Files\DAP\DAP.EXE [2010-07-26 2819584]

"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-07-19 2403568]

 

C:\Users\User4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Typle.lnk - C:\Program Files\Typle2.0v\Typle.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"="avgrsstx.dll"

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"=credssp.dll

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"ConsentPromptBehaviorAdmin"=0

"ConsentPromptBehaviorUser"=3

"EnableLUA"=0

"EnableUIADesktopToggle"=0

"PromptOnSecureDesktop"=0

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Nexon\Combat Arms\CombatArms.exe"="C:\Nexon\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe"

"C:\Nexon\Combat Arms\Engine.exe"="C:\Nexon\Combat Arms\Engine.exe:*Enabled:Engine.exe"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

======File associations======

 

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe "%1" %*

 

======List of files/folders created in the last 1 months======

 

2010-08-10 19:00:04 ----D---- C:\rsit

2010-08-10 19:00:04 ----D---- C:\Program Files\trend micro

2010-08-10 17:28:55 ----D---- C:\ProgramData\KONAMI

2010-08-10 17:19:04 ----D---- C:\Program Files\KONAMI

2010-08-10 17:15:16 ----D---- C:\PES2010

2010-08-09 18:50:01 ----D---- C:\Users\User4\AppData\Roaming\SUPERAntiSpyware.com

2010-08-09 18:50:01 ----D---- C:\ProgramData\SUPERAntiSpyware.com

2010-08-09 18:49:29 ----D---- C:\Program Files\SUPERAntiSpyware

2010-08-09 18:44:00 ----D---- C:\Users\User4\AppData\Roaming\Malwarebytes

2010-08-09 18:43:54 ----D---- C:\ProgramData\Malwarebytes

2010-08-09 18:43:54 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys

2010-08-09 18:43:54 ----A---- C:\Windows\system32\drivers\mbam.sys

2010-08-09 18:43:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2010-08-09 14:25:43 ----D---- C:\Users\User4\AppData\Roaming\GetRightToGo

2010-08-03 21:59:45 ----A---- C:\aolconnfix.txt

2010-08-03 21:24:02 ----D---- C:\Program Files\LogMeIn Hamachi

2010-08-03 16:53:36 ----D---- C:\Users\User4\AppData\Roaming\Dev-Cpp

2010-08-03 16:53:26 ----D---- C:\Dev-Cpp

2010-08-02 20:03:37 ----D---- C:\Users\User4\AppData\Roaming\AOL

2010-08-02 20:03:36 ----D---- C:\ProgramData\Macromedia

2010-08-02 20:03:17 ----D---- C:\ProgramData\Viewpoint

2010-08-02 20:03:17 ----D---- C:\Program Files\Viewpoint

2010-08-02 20:02:56 ----A---- C:\Windows\system32\drivers\wanatw4.sys

2010-08-02 20:02:52 ----D---- C:\ProgramData\AOL OCP

2010-08-02 20:02:42 ----D---- C:\Program Files\AOL

2010-08-02 20:02:36 ----D---- C:\ProgramData\AOL

2010-08-02 20:02:36 ----D---- C:\Program Files\Common Files\aolshare

2010-08-02 20:02:36 ----D---- C:\Program Files\Common Files\aol

2010-08-02 20:02:36 ----D---- C:\Program Files\AOL 9.5

2010-08-01 20:50:38 ----D---- C:\Program Files\Windows Live Safety Center

2010-07-31 23:23:54 ----A---- C:\stoprecording.txt

2010-07-31 23:23:53 ----D---- C:\Program Files\Typle2.0v

2010-07-31 11:00:59 ----D---- C:\Level Up! Games

2010-07-30 00:22:28 ----D---- C:\Users\User4\AppData\Roaming\BitTorrent

2010-07-30 00:22:19 ----D---- C:\Program Files\BitTorrent

2010-07-29 19:13:21 ----D---- C:\Users\User4\AppData\Roaming\PlatinumHideIP

2010-07-29 19:13:21 ----D---- C:\ProgramData\PlatinumHideIP

2010-07-29 19:13:18 ----D---- C:\Program Files\PlatinumHideIP

2010-07-26 19:46:56 ----AD---- C:\ProgramData\TEMP

2010-07-26 19:46:50 ----D---- C:\ProgramData\SpeedBit

2010-07-26 19:46:43 ----D---- C:\Program Files\DAP

2010-07-26 19:28:15 ----A---- C:\Windows\system32\zlib.dll

2010-07-26 19:28:15 ----A---- C:\Windows\system32\ijl15.dll

2010-07-26 19:28:15 ----A---- C:\Windows\system32\dx7vb.dll

2010-07-26 12:47:05 ----A---- C:\Windows\system32\MSVCR100D.dll

2010-07-26 12:47:05 ----A---- C:\Windows\system32\msvcr100.dll

2010-07-26 12:47:05 ----A---- C:\Windows\system32\MSVCP100D.dll

2010-07-26 12:47:05 ----A---- C:\Windows\system32\D3DX9_43.dll

2010-07-26 11:52:17 ----D---- C:\Windows\Minidump

2010-07-26 00:43:57 ----A---- C:\Windows\system32\GEARAspi.dll

2010-07-26 00:43:57 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys

2010-07-26 00:43:41 ----D---- C:\Program Files\iTunes

2010-07-26 00:43:41 ----D---- C:\Program Files\iPod

2010-07-26 00:43:10 ----D---- C:\Program Files\QuickTime

2010-07-26 00:29:04 ----D---- C:\ProgramData\NVIDIA

2010-07-26 00:28:07 ----D---- C:\ProgramData\NVIDIA Corporation

2010-07-26 00:27:35 ----A---- C:\Windows\system32\OpenCL.dll

2010-07-26 00:27:35 ----A---- C:\Windows\system32\nvoglv32.dll

2010-07-26 00:27:35 ----A---- C:\Windows\system32\nvdecodemft.dll

2010-07-26 00:27:35 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvd3dum.dll

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvcuvid.dll

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvcuvenc.dll

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvcuda.dll

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvcompiler.dll

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvcod1922.dll

2010-07-26 00:27:33 ----A---- C:\Windows\system32\nvcod.dll

2010-07-26 00:27:31 ----A---- C:\Windows\system32\nvapi.dll

2010-07-26 00:27:28 ----D---- C:\NVIDIA

2010-07-25 14:19:33 ----D---- C:\Program Files\SystemRequirementsLab

2010-07-25 14:19:20 ----D---- C:\Windows\Sun

2010-07-24 21:44:25 ----D---- C:\Program Files\Valve

2010-07-24 11:31:50 ----D---- C:\Users\User4\AppData\Roaming\Media Player Classic

2010-07-24 11:31:01 ----A---- C:\Windows\system32\unrar.dll

2010-07-24 11:31:00 ----A---- C:\Windows\avisplitter.ini

2010-07-24 11:30:57 ----A---- C:\Windows\system32\yv12vfw.dll

2010-07-24 11:30:57 ----A---- C:\Windows\system32\xvidvfw.dll

2010-07-24 11:30:57 ----A---- C:\Windows\system32\xvidcore.dll

2010-07-24 11:30:57 ----A---- C:\Windows\system32\ff_vfw.dll.manifest

2010-07-24 11:30:57 ----A---- C:\Windows\system32\dpl100.dll

2010-07-24 11:30:57 ----A---- C:\Windows\system32\divx.dll

2010-07-24 11:30:56 ----A---- C:\Windows\system32\ff_vfw.dll

2010-07-24 11:30:54 ----D---- C:\Program Files\K-Lite Codec Pack

2010-07-24 11:21:11 ----D---- C:\Users\User4\AppData\Roaming\Apple Computer

2010-07-24 11:21:01 ----DC---- C:\Windows\system32\DRVSTORE

2010-07-24 11:20:48 ----D---- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}

2010-07-24 11:20:19 ----D---- C:\ProgramData\Apple Computer

2010-07-24 11:20:14 ----D---- C:\Program Files\Apple Software Update

2010-07-24 11:20:00 ----D---- C:\Program Files\Bonjour

2010-07-24 11:19:52 ----D---- C:\ProgramData\Apple

2010-07-24 11:19:52 ----D---- C:\Program Files\Common Files\Apple

2010-07-23 21:31:14 ----D---- C:\ProgramData\Electronic Arts

2010-07-23 20:55:54 ----D---- C:\Program Files\Counter-Strike Source

2010-07-23 15:34:05 ----A---- C:\Windows\system32\vp6vfw.dll

2010-07-23 15:34:03 ----D---- C:\Program Files\Microsoft WSE

2010-07-23 15:29:55 ----D---- C:\Program Files\Electronic Arts

2010-07-23 14:21:37 ----D---- C:\Windows\system32\appmgmt

2010-07-23 14:17:14 ----D---- C:\iOrgSoft AMV Converter OutPut

2010-07-23 14:15:35 ----D---- C:\Program Files\iOrgSoft

2010-07-23 13:44:00 ----D---- C:\Program Files\Total Video Converter

2010-07-22 22:15:53 ----D---- C:\Program Files\CCleaner

2010-07-22 20:53:13 ----A---- C:\Windows\War3Unin.pif

2010-07-22 20:53:13 ----A---- C:\Windows\War3Unin.exe

2010-07-22 20:50:46 ----D---- C:\Program Files\Warcraft III

2010-07-22 20:45:27 ----D---- C:\Program Files\Garena

2010-07-22 14:29:13 ----A---- C:\Windows\system32\drivers\aswSP.sys

2010-07-22 14:29:13 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys

2010-07-22 14:29:12 ----A---- C:\Windows\system32\drivers\aswRdr.sys

2010-07-22 14:29:11 ----A---- C:\Windows\system32\drivers\aswTdi.sys

2010-07-22 14:29:09 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys

2010-07-22 14:28:37 ----A---- C:\Windows\system32\aswBoot.exe

2010-07-22 14:28:32 ----D---- C:\ProgramData\Alwil Software

2010-07-22 14:28:32 ----D---- C:\Program Files\Alwil Software

2010-07-22 13:33:28 ----D---- C:\Users\User4\AppData\Roaming\ProgSense

2010-07-22 13:33:28 ----D---- C:\Downloads

2010-07-22 13:32:57 ----D---- C:\Users\User4\AppData\Roaming\Orbit

2010-07-22 13:12:57 ----D---- C:\Users\User4\AppData\Roaming\VitySoft

2010-07-21 21:23:55 ----D---- C:\ProgramData\Nexon

2010-07-21 20:52:38 ----D---- C:\Program Files\proXPN

2010-07-21 18:50:41 ----A---- C:\Windows\GunzLauncher.INI

2010-07-21 18:43:13 ----D---- C:\Program Files\LEFT 4 DEAD 2

2010-07-21 18:32:22 ----D---- C:\ProgramData\NexonUS

2010-07-21 18:32:22 ----D---- C:\Nexon

2010-07-21 16:47:40 ----D---- C:\Users\User4\AppData\Roaming\Mozilla

2010-07-21 16:32:19 ----D---- C:\Users\User4\AppData\Roaming\skypePM

2010-07-21 16:31:32 ----D---- C:\Users\User4\AppData\Roaming\Skype

2010-07-21 16:21:19 ----RD---- C:\Program Files\Skype

2010-07-21 16:21:19 ----D---- C:\Program Files\Common Files\Skype

2010-07-21 16:21:18 ----D---- C:\ProgramData\Skype

2010-07-21 15:58:29 ----D---- C:\Program Files\FreeRapid-0.83u1

2010-07-21 15:58:08 ----D---- C:\Program Files\Mozilla Firefox

2010-07-21 14:17:59 ----A---- C:\Windows\system32\avgrsstx.dll

2010-07-21 13:40:52 ----D---- C:\Program Files\Sierra

2010-07-21 13:39:56 ----HD---- C:\$AVG

2010-07-21 13:35:45 ----D---- C:\Program Files\LibUSB-Win32-0.1.10.1

2010-07-21 13:35:45 ----A---- C:\Windows\system32\libusbd-nt.exe

2010-07-21 13:35:45 ----A---- C:\Windows\system32\libusbd-9x.exe

2010-07-21 13:35:45 ----A---- C:\Windows\system32\libusb0.dll

2010-07-21 13:35:45 ----A---- C:\Windows\system32\drivers\libusb0.sys

2010-07-21 12:53:27 ----D---- C:\Assassin's Creed II

2010-07-21 12:33:29 ----D---- C:\Program Files\Ubisoft

2010-07-21 12:10:36 ----D---- C:\Users\User4\AppData\Roaming\Ubisoft

2010-07-21 12:10:36 ----D---- C:\ProgramData\Ubisoft

2010-07-21 11:28:28 ----A---- C:\Windows\system32\XAudio2_5.dll

2010-07-21 11:28:28 ----A---- C:\Windows\system32\xactengine3_5.dll

2010-07-21 11:28:28 ----A---- C:\Windows\system32\D3DCompiler_42.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\D3DX9_42.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\D3DX9_41.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\d3dx11_42.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\d3dx10_42.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\d3dx10_41.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\d3dcsx_42.dll

2010-07-21 11:28:27 ----A---- C:\Windows\system32\D3DCompiler_41.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\XAudio2_4.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\XAudio2_3.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\XAPOFX1_3.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\XAPOFX1_2.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\xactengine3_4.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\xactengine3_3.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\X3DAudio1_6.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\X3DAudio1_5.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\D3DX9_40.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\d3dx10_40.dll

2010-07-21 11:28:26 ----A---- C:\Windows\system32\D3DCompiler_40.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\XAudio2_2.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\XAudio2_1.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\XAPOFX1_1.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\XAPOFX1_0.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\xactengine3_2.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\xactengine3_1.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\X3DAudio1_4.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\D3DX9_39.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\d3dx10_39.dll

2010-07-21 11:28:25 ----A---- C:\Windows\system32\D3DCompiler_39.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\XAudio2_0.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\xactengine3_0.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\xactengine2_10.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\X3DAudio1_3.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\D3DX9_38.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\D3DX9_37.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\d3dx10_38.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\d3dx10_37.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\D3DCompiler_38.dll

2010-07-21 11:28:24 ----A---- C:\Windows\system32\D3DCompiler_37.dll

2010-07-21 11:28:23 ----A---- C:\Windows\system32\xactengine2_9.dll

2010-07-21 11:28:23 ----A---- C:\Windows\system32\d3dx9_36.dll

2010-07-21 11:28:23 ----A---- C:\Windows\system32\d3dx10_36.dll

2010-07-21 11:28:23 ----A---- C:\Windows\system32\d3dx10_35.dll

2010-07-21 11:28:23 ----A---- C:\Windows\system32\D3DCompiler_36.dll

2010-07-21 11:28:23 ----A---- C:\Windows\system32\D3DCompiler_35.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\xinput1_3.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\xactengine2_8.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\xactengine2_7.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\X3DAudio1_2.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\d3dx9_35.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\d3dx9_34.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\d3dx10_34.dll

2010-07-21 11:28:22 ----A---- C:\Windows\system32\D3DCompiler_34.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\xactengine2_6.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\xactengine2_5.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\d3dx9_33.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\d3dx9_32.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\d3dx10_33.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\d3dx10.dll

2010-07-21 11:28:21 ----A---- C:\Windows\system32\D3DCompiler_33.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\xinput1_2.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\xinput1_1.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\xactengine2_4.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\xactengine2_3.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\xactengine2_2.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\xactengine2_1.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\x3daudio1_1.dll

2010-07-21 11:28:20 ----A---- C:\Windows\system32\d3dx9_31.dll

2010-07-21 11:28:16 ----A---- C:\Windows\system32\xactengine2_0.dll

2010-07-21 11:28:16 ----A---- C:\Windows\system32\x3daudio1_0.dll

2010-07-21 11:28:16 ----A---- C:\Windows\system32\d3dx9_29.dll

2010-07-21 11:28:16 ----A---- C:\Windows\system32\d3dx9_27.dll

2010-07-21 11:28:15 ----A---- C:\Windows\system32\d3dx9_26.dll

2010-07-21 11:28:15 ----A---- C:\Windows\system32\d3dx9_25.dll

2010-07-21 11:28:15 ----A---- C:\Windows\system32\d3dx9_24.dll

2010-07-21 11:06:03 ----D---- C:\ProgramData\Google

2010-07-21 11:02:06 ----D---- C:\Program Files\Vimicro

2010-07-21 10:24:31 ----D---- C:\Program Files\DAEMON Tools Toolbar

2010-07-21 10:24:29 ----A---- C:\Windows\system32\drivers\sptd.sys

2010-07-21 10:24:18 ----D---- C:\Program Files\DAEMON Tools Lite

2010-07-21 10:23:55 ----D---- C:\Users\User4\AppData\Roaming\DAEMON Tools Lite

2010-07-21 10:23:53 ----D---- C:\ProgramData\DAEMON Tools Lite

2010-07-20 10:22:12 ----A---- C:\Windows\system32\drivers\avgtdix.sys

2010-07-20 10:22:08 ----A---- C:\Windows\system32\drivers\avgldx86.sys

2010-07-20 10:22:06 ----D---- C:\Windows\system32\drivers\Avg

2010-07-20 10:22:06 ----A---- C:\Windows\system32\drivers\avgmfx86.sys

2010-07-20 10:22:04 ----D---- C:\ProgramData\avg9

2010-07-20 10:22:04 ----D---- C:\Program Files\AVG

2010-07-20 10:12:36 ----D---- C:\Windows\PCHEALTH

2010-07-20 10:04:04 ----D---- C:\ProgramData\Sun

2010-07-20 10:04:04 ----D---- C:\Program Files\Common Files\Java

2010-07-20 10:00:48 ----D---- C:\Program Files\Google

2010-07-20 10:00:30 ----A---- C:\Windows\system32\javaws.exe

2010-07-20 10:00:30 ----A---- C:\Windows\system32\javaw.exe

2010-07-20 10:00:30 ----A---- C:\Windows\system32\java.exe

2010-07-20 10:00:30 ----A---- C:\Windows\system32\deployJava1.dll

2010-07-20 10:00:25 ----D---- C:\Program Files\Java

2010-07-20 09:59:37 ----A---- C:\Windows\system32\msv1_0.dll

2010-07-20 09:59:03 ----D---- C:\Program Files\NVIDIA Corporation

2010-07-20 09:58:24 ----A---- C:\Windows\system32\PresentationHostProxy.dll

2010-07-20 09:58:24 ----A---- C:\Windows\system32\PresentationHost.exe

2010-07-20 09:58:24 ----A---- C:\Windows\system32\netfxperf.dll

2010-07-20 09:58:24 ----A---- C:\Windows\system32\mscoree.dll

2010-07-20 09:58:23 ----A---- C:\Windows\system32\dfshim.dll

2010-07-20 09:57:14 ----A---- C:\Windows\system32\MRT.exe

2010-07-20 09:56:39 ----N---- C:\Windows\system32\msxml3a.dll

2010-07-20 09:56:09 ----D---- C:\Program Files\Microsoft

2010-07-20 09:56:03 ----D---- C:\Program Files\Windows Live

2010-07-20 09:55:47 ----D---- C:\Program Files\Windows Live SkyDrive

2010-07-20 09:55:46 ----HD---- C:\Program Files\InstallShield Installation Information

2010-07-20 09:55:46 ----D---- C:\Program Files\CyberLink

2010-07-20 09:55:23 ----SHD---- C:\Windows\Installer

2010-07-20 09:55:23 ----D---- C:\Program Files\Common Files\InstallShield

2010-07-20 09:54:51 ----A---- C:\Windows\system32\drivers\sffp_sd.sys

2010-07-20 09:54:42 ----D---- C:\Program Files\Common Files\Windows Live

2010-07-20 09:53:34 ----D---- C:\Program Files\WinRAR

2010-07-20 09:49:33 ----A---- C:\Windows\system32\shell32.dll

2010-07-20 09:49:33 ----A---- C:\Windows\system32\lsasrv.dll

2010-07-20 09:49:33 ----A---- C:\Windows\system32\drivers\ksecpkg.sys

2010-07-20 09:49:30 ----A---- C:\Windows\system32\msasn1.dll

2010-07-20 09:49:30 ----A---- C:\Windows\system32\drivers\fvevol.sys

2010-07-20 09:49:29 ----A---- C:\Windows\system32\winlogon.exe

2010-07-20 09:49:29 ----A---- C:\Windows\system32\inetcomm.dll

2010-07-20 09:49:29 ----A---- C:\Windows\explorer.exe

2010-07-20 09:49:28 ----A---- C:\Windows\system32\wmp.dll

2010-07-20 09:49:28 ----A---- C:\Windows\system32\ntdll.dll

2010-07-20 09:49:27 ----A---- C:\Windows\system32\wmploc.DLL

2010-07-20 09:49:27 ----A---- C:\Windows\system32\winresume.exe

2010-07-20 09:49:27 ----A---- C:\Windows\system32\winload.exe

2010-07-20 09:49:27 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys

2010-07-20 09:49:27 ----A---- C:\Windows\system32\CertEnroll.dll

2010-07-20 09:49:18 ----A---- C:\Windows\system32\psisdecd.dll

2010-07-20 09:49:18 ----A---- C:\Windows\system32\msdri.dll

2010-07-20 09:49:18 ----A---- C:\Windows\system32\CPFilters.dll

2010-07-20 09:49:11 ----A---- C:\Windows\system32\win32k.sys

2010-07-20 09:49:06 ----A---- C:\Windows\system32\vbscript.dll

2010-07-20 09:49:02 ----A---- C:\Windows\system32\mshtml.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\wininet.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\urlmon.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\mstime.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\msfeedsbs.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\jsproxy.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\ieframe.dll

2010-07-20 09:49:01 ----A---- C:\Windows\system32\iedkcs32.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\tsbyuv.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\quartz.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\msyuv.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\msvidc32.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\msrle32.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\mciavi32.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\iyuv_32.dll

2010-07-20 09:48:57 ----A---- C:\Windows\system32\avifil32.dll

2010-07-20 09:48:56 ----A---- C:\Windows\system32\tzres.dll

2010-07-20 09:48:55 ----A---- C:\Windows\system32\secproc_ssp_isv.dll

2010-07-20 09:48:55 ----A---- C:\Windows\system32\secproc_ssp.dll

2010-07-20 09:48:55 ----A---- C:\Windows\system32\secproc_isv.dll

2010-07-20 09:48:55 ----A---- C:\Windows\system32\secproc.dll

2010-07-20 09:48:55 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe

2010-07-20 09:48:55 ----A---- C:\Windows\system32\RMActivate_ssp.exe

2010-07-20 09:48:55 ----A---- C:\Windows\system32\RMActivate_isv.exe

2010-07-20 09:48:55 ----A---- C:\Windows\system32\RMActivate.exe

2010-07-20 09:48:55 ----A---- C:\Windows\system32\ntoskrnl.exe

2010-07-20 09:48:55 ----A---- C:\Windows\system32\ntkrnlpa.exe

2010-07-20 09:48:54 ----A---- C:\Windows\system32\t2embed.dll

2010-07-20 09:48:54 ----A---- C:\Windows\system32\kernel32.dll

2010-07-20 09:48:54 ----A---- C:\Windows\system32\apphelp.dll

2010-07-20 09:48:53 ----A---- C:\Windows\system32\jscript.dll

2010-07-20 09:48:53 ----A---- C:\Windows\system32\drivers\srvnet.sys

2010-07-20 09:48:53 ----A---- C:\Windows\system32\drivers\srv.sys

2010-07-20 09:48:53 ----A---- C:\Windows\system32\asycfilt.dll

2010-07-20 09:48:49 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys

2010-07-20 09:48:49 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys

2010-07-20 09:48:49 ----A---- C:\Windows\system32\drivers\mrxsmb.sys

2010-07-20 09:48:41 ----A---- C:\Windows\system32\fontsub.dll

2010-07-20 09:48:41 ----A---- C:\Windows\system32\atmlib.dll

2010-07-20 09:48:41 ----A---- C:\Windows\system32\atmfd.dll

2010-07-20 09:47:24 ----N---- C:\Windows\system32\MpSigStub.exe

2010-07-20 09:46:43 ----A---- C:\Windows\system32\wintrust.dll

2010-07-20 09:46:32 ----A---- C:\Windows\system32\cabview.dll

2010-07-20 09:35:10 ----A---- C:\Windows\system32\PerfStringBackup.INI

2010-07-20 09:31:36 ----D---- C:\Users\User4\AppData\Roaming\Identities

2010-07-20 09:31:28 ----SD---- C:\Users\User4\AppData\Roaming\Microsoft

2010-07-20 09:31:28 ----D---- C:\Users\User4\AppData\Roaming\Media Center Programs

2010-07-20 09:31:22 ----SHD---- C:\Recovery

2010-07-20 09:31:22 ----SHD---- C:\ProgramData\Modelos

2010-07-20 09:31:22 ----SHD---- C:\ProgramData\Menu Iniciar

2010-07-20 09:31:22 ----SHD---- C:\ProgramData\Favoritos

2010-07-20 09:31:22 ----SHD---- C:\ProgramData\Documentos

2010-07-20 09:31:22 ----SHD---- C:\ProgramData\Dados de aplicativos

2010-07-20 09:31:22 ----SHD---- C:\Program Files\Common Files\Sistema

2010-07-20 09:31:22 ----SHD---- C:\Program Files\Arquivos Comuns

2010-07-20 09:31:22 ----SHD---- C:\Arquivos de Programas

2010-07-20 09:31:20 ----D---- C:\Windows\SoftwareDistribution

2010-07-20 09:24:20 ----D---- C:\Windows\Prefetch

2010-07-20 09:24:07 ----ASH---- C:\pagefile.sys

2010-07-20 09:24:06 ----SHD---- C:\System Volume Information

2010-07-20 09:24:06 ----ASH---- C:\hiberfil.sys

2010-07-20 09:23:23 ----D---- C:\Windows\Panther

2010-07-20 09:23:11 ----RASH---- C:\BOOTSECT.BAK

2010-07-20 09:23:10 ----SHD---- C:\Boot

2010-07-19 10:59:23 ----D---- C:\Program Files\MSXML 4.0

2010-07-19 10:30:51 ----A---- C:\Windows\system32\mdimon.dll

2010-07-19 10:30:14 ----D---- C:\Program Files\Microsoft Works

2010-07-19 10:30:08 ----D---- C:\Program Files\Microsoft Visual Studio

2010-07-19 10:30:07 ----D---- C:\Program Files\Common Files\DESIGNER

2010-07-19 10:30:01 ----D---- C:\Program Files\Microsoft.NET

2010-07-19 10:28:55 ----D---- C:\ProgramData\Microsoft Help

2010-07-19 10:28:55 ----D---- C:\Program Files\Microsoft Office

2010-07-19 10:28:38 ----RHD---- C:\MSOCache

2010-07-19 10:26:38 ----D---- C:\ProgramData\Nero

2010-07-19 10:26:38 ----D---- C:\Program Files\Nero

2010-07-19 10:26:38 ----D---- C:\Program Files\Common Files\Ahead

2010-07-19 10:25:59 ----A---- C:\Windows\system32\d3dx9_30.dll

2010-07-19 10:25:59 ----A---- C:\Windows\system32\d3dx9_28.dll

2010-07-19 10:24:51 ----D---- C:\Users\User4\AppData\Roaming\Macromedia

2010-07-19 10:24:50 ----D---- C:\Users\User4\AppData\Roaming\Adobe

2010-07-19 10:24:39 ----D---- C:\Windows\system32\Macromed

2010-07-19 10:23:47 ----D---- C:\ProgramData\Adobe

2010-07-19 10:23:45 ----D---- C:\Program Files\Common Files\Adobe

2010-07-19 10:23:45 ----D---- C:\Program Files\Adobe

 

======List of files/folders modified in the last 1 months======

 

2010-08-10 19:00:04 ----RD---- C:\Program Files

2010-08-10 18:53:42 ----D---- C:\Windows\System32

2010-08-10 18:53:42 ----D---- C:\Windows\inf

2010-08-10 18:49:59 ----D---- C:\Windows\Temp

2010-08-10 18:48:47 ----D---- C:\Windows\system32\drivers

2010-08-10 18:48:47 ----D---- C:\Windows\ehome

2010-08-10 17:28:55 ----HD---- C:\ProgramData

2010-08-09 19:33:38 ----D---- C:\Windows\system32\catroot2

2010-08-09 16:44:27 ----D---- C:\Windows\system32\Tasks

2010-08-09 16:44:26 ----D---- C:\Windows\Tasks

2010-08-09 16:44:26 ----D---- C:\Windows

2010-08-06 21:02:43 ----D---- C:\Windows\system32\config

2010-08-06 21:02:41 ----D---- C:\Windows\system32\wfp

2010-08-06 21:02:41 ----D---- C:\Windows\system32\wbem

2010-08-06 21:02:41 ----D---- C:\Windows\system32\NDF

2010-08-06 21:02:41 ----D---- C:\Windows\system32\DriverStore

2010-08-06 21:02:41 ----D---- C:\Windows\AppPatch

2010-08-06 21:02:40 ----D---- C:\Windows\system32\CodeIntegrity

2010-08-06 21:02:39 ----D---- C:\Windows\AppCompat

2010-08-06 21:02:35 ----D---- C:\Windows\registration

2010-08-06 21:00:41 ----D---- C:\Windows\system32\LogFiles

2010-08-02 20:05:06 ----A---- C:\Windows\win.ini

2010-08-02 20:02:57 ----D---- C:\Windows\system32\catroot

2010-08-02 20:02:36 ----D---- C:\Program Files\Common Files

2010-07-28 02:30:59 ----RSD---- C:\Windows\assembly

2010-07-26 00:28:33 ----D---- C:\Windows\Help

2010-07-24 11:20:26 ----D---- C:\Program Files\Internet Explorer

2010-07-23 19:23:44 ----D---- C:\Windows\twain_32

2010-07-23 13:44:04 ----RSD---- C:\Windows\Fonts

2010-07-23 13:18:00 ----SD---- C:\ProgramData\Microsoft

2010-07-23 13:17:59 ----D---- C:\Windows\system32\drivers\UMDF

2010-07-23 12:53:22 ----D---- C:\Windows\debug

2010-07-22 22:00:50 ----D---- C:\Windows\system32\drivers\etc

2010-07-22 14:29:05 ----D---- C:\Windows\winsxs

2010-07-21 16:31:25 ----D---- C:\Windows\system32\wdi

2010-07-21 11:28:17 ----D---- C:\Windows\Microsoft.NET

2010-07-21 11:28:16 ----D---- C:\Windows\Logs

2010-07-20 10:06:02 ----D---- C:\Windows\system32\migration

2010-07-20 10:06:02 ----D---- C:\Windows\system32\Boot

2010-07-20 10:06:02 ----D---- C:\Program Files\Windows Media Player

2010-07-20 10:06:02 ----D---- C:\Program Files\Windows Mail

2010-07-20 10:06:01 ----D---- C:\Windows\system32\pt-BR

2010-07-20 09:47:15 ----D---- C:\Windows\system32\restore

2010-07-20 09:31:35 ----SHD---- C:\$Recycle.Bin

2010-07-20 09:31:28 ----RD---- C:\Users

2010-07-20 09:31:22 ----D---- C:\Program Files\Windows NT

2010-07-20 09:26:15 ----D---- C:\Windows\system32\sysprep

2010-07-20 09:24:45 ----D---- C:\Windows\CSC

2010-07-19 12:51:14 ----D---- C:\Windows\rescache

2010-07-19 11:55:22 ----D---- C:\Windows\Downloaded Program Files

2010-07-19 11:00:53 ----D---- C:\Program Files\Common Files\microsoft shared

2010-07-19 10:29:09 ----D---- C:\Windows\ShellNew

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-13 173648]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-07-21 691696]

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-06-28 23376]

R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-06-28 165456]

R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-06-28 46672]

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2010-07-21 216400]

R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2010-07-21 29584]

R1 AvgTdiX;AVG Free Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2010-07-21 243024]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-13 387584]

R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872]

R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2010-05-10 67656]

R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-06-28 17744]

R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-06-28 50256]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]

R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1; C:\Windows\system32\drivers\libusb0.sys [2005-03-09 33792]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-08-19 189440]

R3 RTL85n86;Realtek 8180/8185 Extensible 802.11 Wireless Device Driver; C:\Windows\system32\DRIVERS\RTL85n86.sys [2010-03-23 1812512]

R3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2010-04-22 26112]

R3 wanatw;WAN Miniport (ATW); C:\Windows\system32\DRIVERS\wanatw4.sys [2006-11-29 33588]

R3 ZSMC303;VIMICRO USB PC Camera (VC0303); C:\Windows\System32\Drivers\usbVM303.sys [2006-02-23 391300]

S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-13 8704]

S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-13 70720]

S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-13 53312]

S3 axay3zen;axay3zen; C:\Windows\system32\drivers\axay3zen.sys []

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]

S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []

S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\User4\AppData\Local\Temp\KJOB72E.tmp [2010-08-08 25616]

S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-13 12368]

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-13 133120]

S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-13 5632]

S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-13 52304]

S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-13 28224]

S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-13 53328]

S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-13 52736]

S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-13 175824]

S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-13 17920]

S3 XDva327;XDva327; \??\C:\Windows\system32\XDva327.sys []

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 Apple Mobile Device;Dispositivo Celular da Apple; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]

R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2010-07-21 921952]

R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-07-21 308136]

R2 Bonjour Service;Serviço do Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-13 20992]

R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1; C:\Windows\system32\libusbd-nt.exe [2005-03-09 18944]

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]

R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2005-08-08 167936]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]

R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]

R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]

R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-06-15 540472]

S3 AOL ACS;AOL Connectivity Service; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [2006-10-23 46640]

S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-13 20992]

S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-08 271920]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-13 20992]

S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-13 20992]

S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-13 20992]

 

-----------------EOF-----------------

Compartilhar este post


Link para o post
Compartilhar em outros sites

*Baixe o SystemLook e salve-o no desktop

*Execute o SystemLook

*Cole o código abaixo no espaço em branco:

 

:file

C:\Windows\system32\drivers\axay3zen.sys

*Clique em [Look]

*Cole o relatório SystemLook.txt localizado no desktop

Compartilhar este post


Link para o post
Compartilhar em outros sites

SystemLook v1.0 by jpshortstuff (11.01.10)

Log created at 19:16 on 10/08/2010 by User4 (Administrator - Elevation successful)

 

========== file ==========

 

C:\Windows\system32\drivers\axay3zen.sys - File found and opened.

MD5: 338C86357871C167A96AB976519BF59E

Created at 23:11 on 13/07/2009

Modified at 01:26 on 14/07/2009

Size: 21584 bytes

Attributes: --a---

FileDescription: ATAPI IDE Miniport Driver

FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)

ProductVersion: 6.1.7600.16385

OriginalFilename: atapi.sys

InternalName: atapi.sys

ProductName: Microsoft® Windows® Operating System

CompanyName: Microsoft Corporation

LegalCopyright: © Microsoft Corporation. All rights reserved.

 

-=End Of File=-

Compartilhar este post


Link para o post
Compartilhar em outros sites

OK...log limpo.

 

1.

*Delete o RSIT e a pasta C:\rsit

 

2.

*Delete o System Look e seu relatório.

 

 

Um abraço.

Compartilhar este post


Link para o post
Compartilhar em outros sites

PROBLEMA RESOLVIDO!

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post


Link para o post
Compartilhar em outros sites

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.