Ir para conteúdo

POWERED BY:

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

aaadrianooo

[Resolvido] &nbspNotebook travando, CPU 100%

Recommended Posts

Boa tarde,

 

-> Ao ligar o note, demora uns 10 minutos até conseguir fazer alguma coisa,

-> Depois de alguns minutos, CPU fica com 100% e trava tudo,

-> Se, finalizar svchost.exe +- 25%, melhora e volta ao normal,

-> Após alguns minutos trava novamente [100%], se finalizar svchost.exe novamente, melhora e em seguida cai o sinal da internet. Só reiniciando pra voltar o sinal.

 

100_1.jpg

 

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:59:35, on 30/10/2011

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Windows\System32\igfxtray.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\Control Center\CCenter.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Windows\system32\taskhost.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe

C:\Windows\system32\rundll32.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Usuario\Downloads\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.oquefazernainternet.com/

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.oquefazernainternet.com/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/?ref=hp

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oquefazernainternet.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.oquefazernainternet.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.oquefazernainternet.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.oquefazernainternet.com/

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.oquefazernainternet.com/

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.oquefazernainternet.com/q/%s

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: SearchPredictObj Class - {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - C:\PROGRA~1\SEARCH~1\SEARCH~1.DLL

O2 - BHO: SBCONVERT - {4AF9DF3E-17A4-428F-A39E-28ADA0A3A522} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: GrabberObj Class - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\SPEEDB~1\Toolbar\grabber.dll

O3 - Toolbar: SpeedBit Video Downloader - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll

O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [Control Center] C:\Program Files\Control Center\CCenter.exe

O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [Google Update] "C:\Users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O8 - Extra context menu item: &Enviar para o OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Baixar com o Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: Baixar tudo com o Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Baixar vídeo com o Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm

O8 - Extra context menu item: Download selecionado pelo Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe

O9 - Extra button: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll

O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} (UploadListView Class) - http://picasaweb.google.com.br/s/v/67.18/uploader2.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{6EA3E8EE-B85F-457C-BB86-AE46D5595F57}: NameServer = 192.168.0.1

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

 

--

End of file - 10216 bytes

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá aaadrianooo

 

 

1.

*Baixe e instale o MalwareBytes

*Aguarde a atualização e o programa será aberto automaticamente

*Na aba [Verificação], selecione [Verificação completa]

*Clique [Verificar] e selecione a partição onde o Windows está instalado

*Ao finalizar o scan, clique [sIM] > [OK] > [Ver Resultados] > [Remover Selecionados]

*Cole o relatório apresentado

 

Caso já tenhas o Malwarebytes instalado....

 

*Abra o Malwarebytes, clique [Atualização] > [baixar Atualizações]

*Na aba [Verificação], selecione Verificação completa

*Clique [Verificar] e selecione a partição onde o Windows está instalado

*Ao finalizar o scan, clique [sIM] > [OK] > [Ver Resultados] > [Remover Selecionados]

*Cole o relatório apresentado

 

 

2.

*Baixe o OTL e salve-o no desktop

*Execute-o e selecione as opções:

Verificar All Users

Ignorar Arquivos Microsoft

Usar WhiteList para Nomes de Companhias

Verificar Lop

Verificar Purity

 

*Selecione, copie e cole o código no espaço abaixo de Exames Personalizados/Correções

netsvcs

msconfig

/md5start

tcpip.sys.mui

/md5stop

%ALLUSERSPROFILE%\*.*

%ALLUSERSPROFILE%\Dados de aplicativos\*

%ALLUSERSPROFILE%\Dados de aplicativos\*.*

%ALLUSERSPROFILE%\Menu Iniciar\Programas\Inicializar\*.*

%APPDATA%\*

%APPDATA%\*.*

%COMMONAPPDATA%\*.*

%SYSTEMDRIVE%\*

%SYSTEMDRIVE%\*.*

CREATERESTOREPOINT

 

*Clique [Verificar]

*Cole apenas o relatório OTL.txt

 

 

Caso o relatório fique demasiadamente grande...

 

*Acesse este link

*Clique [Enviar arquivo]

*Localize o arquivo OTL.txt no desktop

*Clique [Abrir] > [Créer le lien Cjoint]

*Cole o endereço criado

Compartilhar este post


Link para o post
Compartilhar em outros sites

Malwarebytes' Anti-Malware 1.51.2.1300

www.malwarebytes.org

 

Versão da Base de Dados: 8051

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

31/10/2011 14:32:42

mbam-log-2011-10-31 (14-32-42).txt

 

Tipo de Verificação: Verificação Completa (C:\|D:\|)

Objetos escaneados: 273654

Tempo decorrido: 1 hora(s), 15 minuto(s), 17 segundo(s)

 

Processos de Memória Infectados: 0

Módulos de Memória Infectados: 0

Chaves de Registro Infectadas: 0

Valores de Registro Infectados: 0

Itens de Dados no Registro Infectados: 0

Pastas Infectadas: 0

Arquivos Infectados: 0

 

Processos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Módulos de Memória Infectados:

(Não foram detectados ítens maliciosos)

 

Chaves de Registro Infectadas:

(Não foram detectados ítens maliciosos)

 

Valores de Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Itens de Dados no Registro Infectados:

(Não foram detectados ítens maliciosos)

 

Pastas Infectadas:

(Não foram detectados ítens maliciosos)

 

Arquivos Infectados:

(Não foram detectados ítens maliciosos)

 

Relatório OTL.txt

 

http://cjoint.com/?AJFr4jk0QdB

Compartilhar este post


Link para o post
Compartilhar em outros sites

1. Você tem o AD-Remover ainda no PC...

*Execute-o, clique [Clean] > [sim] > [OK] > [sim]. O PC poderá ser reiniciado para a completa limpeza.

*Cole o relatório C:\Ad-Report-CLEAN[1].txt

 

2.

*Execute o OTL

*Selecione, copie (Ctrl+c) e cole (Ctrl+v) o código no espaço abaixo de Exames Personalizados/Correções:

:OTL

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oquefazernainternet.com/

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oquefazernainternet.com/

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.oquefazernainternet.com/

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.oquefazernainternet.com/

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.oquefazernainternet.com/

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.oquefazernainternet.com/

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oquefazernainternet.com/

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.oquefazernainternet.com/

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oquefazernainternet.com/

IE - HKU\S-1-5-21-1647895026-1292580321-627541049-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.oquefazernainternet.com/

IE - HKU\S-1-5-21-1647895026-1292580321-627541049-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oquefazernainternet.com/

IE - HKU\S-1-5-21-1647895026-1292580321-627541049-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.oquefazernainternet.com/

 

:Commands

[purity]

[emptytemp]

[reboot]

 

*Clique [Consertar] e o PC será reiniciado

*Cole o relatório apresentado

Compartilhar este post


Link para o post
Compartilhar em outros sites

======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

 

Updated by TeamXscript on 12/04/11

Contact: AdRemover[DOT]contact[AT]gmail[DOT]com

website: http://www.teamxscript.org

 

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Launched at 00:53:25 on 01/11/2011, Normal boot

 

Microsoft Windows 7 Professional (X86)

Usuario@ADRIANO (CCE Capella & IbexPeak-M Chipset)

 

============== ACTION(S) ==============

 

 

Folder deleted: C:\Users\Usuario\AppData\LocalLow\Toolbar4

 

(!) -- Temporary files deleted.

 

 

Key deleted: HKLM\Software\Classes\Interface\{384FE458-A963-450D-9187-EEFF81913FD0}

Key deleted: HKLM\Software\Microsoft\Internet Explorer\Extensions\{3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF}

 

 

============== ADDITIONNAL SCAN ==============

 

**** Google Chrome Version [15.0.874.106] ****

 

Extension\djcpfkccckpeeghiklnhienllljccglb (C:\Program Files\SpeedBit Video Downloader\Chrome\DownloaderChrome.crx) (?)

Extension\icmlaeflemplmjndnaapfdbbnpncnbda (C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

Extension\ledcpigomgblcmofccnacobhmcdkpiea (C:\Program Files\SearchPredict\Chrome\SearchPredictChrome.crx) (?)

 

-- C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default --

Preferences - default_search_provider: "Google" (Enabled: true) (?)

Preferences - homepage: hxxps://11.0.0.1/cake/hotcakes/welcome/go/?res=notyet&uamip=11.0.0.1&uamport=3990&challenge=ba209d914079686f50...

Preferences - homepage_is_newtabpage: false

Plugin - Remoting Viewer (Enabled: true) (internal-remoting-viewer) (x)

Plugin - Native Client (Enabled: true) (C:\Users\Usuario\AppData\Local\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll)

Plugin - Windows Live\u0099 Photo Gallery (Enabled: true) (C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll)

Plugin - Unity Player (Enabled: true) (C:\Users\Usuario\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll)

Plugin - "Java" (Enabled: true)

Plugin - "Silverlight" (Enabled: true)

Plugin - "Remoting Viewer" (Enabled: true)

Plugin - "Native Client" (Enabled: true)

Plugin - "Screen Capture Plugin" (Enabled: true)

Plugin - "Chrome SVD extension" (Enabled: true)

Plugin - "Picasa" (Enabled: true)

Plugin - "Windows Live\u0099 Photo Gallery" (Enabled: true)

Plugin - "Unity Player" (Enabled: true)

Preferences - urls_to_restore_on_startup: hxxps://11.0.0.1/cake/hotcakes/welcome/go/?res=notyet&uamip=11.0.0.1&uamport=3990&challenge...

 

========================================

 

**** Internet Explorer Version [8.0.7600.16385] ****

 

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896

HKCU_Main|Start Page - hxxp://fr.msn.com/

HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896

HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm

HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM_Main|Start Page - hxxp://fr.msn.com/

HKCU_SearchScopes\{7C734FA1-D304-4083-9CFA-8FE2AFED504D} - "Wikipedia (br)" (hxxp://br.wikipedia.org/w/index.php?title=Dibar:Klask&search={searchTerms})

HKCU_Toolbar\WebBrowser|{4064EA35-578D-4073-A834-C96D82CBCF40} (x)

HKCU_Toolbar\WebBrowser|{0329E7D6-6F54-462D-93F6-F5C3118BADF2} (C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll)

HKLM_Toolbar|{0329E7D6-6F54-462D-93F6-F5C3118BADF2} (C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll)

HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

HKCU_ElevationPolicy\{603C4CC9-5DC6-4C44-873F-8281509DF953} - C:\Program Files\SpeedBit Video Downloader\Converter.exe (SpeedBit Ltd.)

HKCU_ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A} - C:\Users\Usuario\AppData\Local\Google\Chrome\Application\14.0.835.202\chrome_launcher.exe (x)

HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)

HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)

HKLM_ElevationPolicy\{1C306DF7-2171-45c8-9324-D36448104BD5} - C:\Program Files\Free Download Manager\fdm.exe (FreeDownloadManager.ORG)

HKLM_ElevationPolicy\{603C4CC9-5DC6-4C44-873F-8281509DF953} - C:\Program Files\SpeedBit Video Downloader\Converter.exe (SpeedBit Ltd.)

HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\SpeedBit Video Downloader\Toolbar\TbHelper2.exe (?)

HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)

BHO\{389943B0-C3A2-4E69-82CB-8596A84CB3DC} - "SearchPredictObj Class" (C:\PROGRA~1\SEARCH~1\SEARCH~1.DLL)

BHO\{4AF9DF3E-17A4-428F-A39E-28ADA0A3A522} - "SBCONVERT Class" (C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll)

BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

BHO\{CC59E0F9-7E43-44FA-9FAA-8377850BF205} - "Free Download Manager" (C:\Program Files\Free Download Manager\iefdm2.dll)

BHO\{FF7C3CF0-4B15-11D1-ABED-709549C10000} - "GrabberObj Class" (C:\PROGRA~1\SPEEDB~1\Toolbar\grabber.dll)

 

========================================

 

C:\Program Files\Ad-Remover\Quarantine: 4 File(s)

C:\Program Files\Ad-Remover\Backup: 14 File(s)

 

C:\Ad-Report-CLEAN[1].txt - 01/11/2011 00:53:56 (5565 Byte(s))

C:\Ad-Report-SCAN[1].txt - 31/10/2011 03:06:44 (5689 Byte(s))

 

End at: 00:56:35, 01/11/2011

 

============== E.O.F ==============

 

 

 

===============================================================================================

 

 

Após fazer o procedimento que você passou.. clicando [ok] para reiniciar o sistema, NÃO REINICIOU nem pediu pra salvar algum relatório.

Reiniciei manualmente e fiz outro "verificar" com "OTL" [2 arquivos]

 

http://cjoint.com/?AKbfFqavgQA

 

http://cjoint.com/?AKbfGxmiwKS

Compartilhar este post


Link para o post
Compartilhar em outros sites

Repita o procedimento do OTL conforme orientei.

 

Cole o relatório. Caso não seja gerado nenhum relatório, apenas informe.

Compartilhar este post


Link para o post
Compartilhar em outros sites

1.

*Execute o AD-Remover e clique [uninstall] > [Não] > [Close]

*Delete a pasta C:\Arquivos de programas\Ad-Remover

 

2.

*Execute o OTL e clique [Limpeza] > [OK]

*O PC será reiniciado

 

3.

*Baixe o ERUNT e salve-o no desktop

*Crie uma pasta em C:\ chamada ERUNT e extraia para ela

*Execute o arquivo C:\ERUNT\ERUNT.exe

*Clique [OK] > [OK] > [sim] > [OK]

 

4.

*Desative temporariamente seu antivírus

 

*Baixe o ComboFix e salve-o no desktop

*Execute-o, aceite o contrato e aguarde a conclusão das etapas

 

Algumas observações:

1) Não use o mouse nem o teclado durante as etapas!!

2) Para interromper o scan, tecle N

 

*Cole o relatório apresentado

Compartilhar este post


Link para o post
Compartilhar em outros sites

ComboFix 11-11-02.01 - Usuario 02/11/2011 11:43:17.2.4 - x86

Microsoft Windows 7 Professional 6.1.7600.0.1252.55.1046.18.2933.1953 [GMT -2:00]

Executando de: c:\users\Usuario\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Criado um novo ponto de restauração

.

.

(((((((((((((((( Arquivos/Ficheiros criados de 2011-10-02 to 2011-11-02 ))))))))))))))))))))))))))))

.

.

2011-11-02 13:51 . 2011-11-02 13:51 -------- d-----w- c:\users\Usuario\AppData\Local\temp

2011-11-02 13:51 . 2011-11-02 13:51 -------- d-----w- c:\users\Public\AppData\Local\temp

2011-11-02 13:51 . 2011-11-02 13:51 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-11-02 13:26 . 2011-11-02 13:26 -------- d-----w- C:\erunt

2011-10-31 05:06 . 2011-11-02 12:50 -------- d-----w- c:\program files\Ad-Remover

2011-10-29 04:26 . 2011-10-29 04:26 0 ---ha-w- c:\users\Usuario\AppData\Local\BITE6B6.tmp

2011-10-17 05:02 . 2011-09-06 19:37 320856 ----a-w- c:\windows\system32\drivers\aswSP.sys

2011-10-17 05:02 . 2011-09-06 19:36 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2011-10-17 05:02 . 2011-09-06 19:36 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2011-10-17 05:02 . 2011-09-06 19:36 52568 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2011-10-17 05:02 . 2011-09-06 19:38 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2011-10-17 05:02 . 2011-09-06 19:36 54616 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2011-10-17 05:01 . 2011-09-06 19:45 41184 ----a-w- c:\windows\avastSS.scr

2011-10-17 05:01 . 2011-09-06 19:45 199304 ----a-w- c:\windows\system32\aswBoot.exe

2011-10-17 05:01 . 2011-10-17 05:01 -------- d-----w- c:\programdata\AVAST Software

2011-10-17 05:01 . 2011-10-17 05:01 -------- d-----w- c:\program files\AVAST Software

2011-10-17 04:50 . 2011-10-17 04:51 -------- d-----w- C:\LinhaDefensiva

2011-10-10 06:30 . 2011-10-10 06:30 0 ---ha-w- c:\users\Usuario\AppData\Local\BIT4FB6.tmp

2011-10-10 05:39 . 2011-10-10 05:39 0 ---ha-w- c:\users\Usuario\AppData\Local\BITDBEE.tmp

2011-10-04 06:07 . 2011-10-04 06:07 0 ---ha-w- c:\users\Usuario\AppData\Local\BIT3468.tmp

2011-10-03 21:19 . 2011-10-03 21:19 0 ---ha-w- c:\users\Usuario\AppData\Local\BITF823.tmp

.

.

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-09-26 19:36 . 2011-05-19 02:21 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-09-07 06:01 . 2011-09-07 06:01 0 ---ha-w- c:\users\Usuario\AppData\Local\BIT97AD.tmp

2011-09-02 19:33 . 2011-09-02 19:33 0 ---ha-w- c:\users\Usuario\AppData\Local\BIT8DCE.tmp

2011-08-31 20:00 . 2011-07-05 04:42 22216 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-08-20 03:38 . 2011-08-20 03:38 0 ---ha-w- c:\users\Usuario\AppData\Local\BIT694D.tmp

2011-08-16 11:48 . 2011-09-13 08:36 7152464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FD5E6728-8CB8-4265-8CAC-E34A597DE3A9}\mpengine.dll

2011-08-07 20:49 . 2011-08-07 20:49 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2011-08-04 19:18 . 2011-08-04 19:17 249856 ------w- c:\windows\Setup1.exe

2011-08-04 19:18 . 2011-08-04 19:17 73216 ----a-w- c:\windows\ST6UNST.EXE

.

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

.

*Nota* entradas vazias e legítimas por padrão não são apresentadas.

REGEDIT4

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{389943B0-C3A2-4E69-82CB-8596A84CB3DC}]

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4AF9DF3E-17A4-428F-A39E-28ADA0A3A522}]

2011-08-08 17:51 2643120 ----a-w- c:\program files\SpeedBit Video Downloader\Toolbar\tbcore3.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2011-09-06 19:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2011-05-13 4283256]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-11-10 7866912]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-15 141848]

"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-15 175640]

"Control Center"="c:\program files\Control Center\CCenter.exe" [2010-02-03 799744]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

"EnableLinkedConnections"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"mixer4"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

[HKLM\~\startupfolder\C:^Users^Usuario^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk]

path=c:\users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk

backup=c:\windows\pss\OneNote 2010 Screen Clipper and Launcher.lnk.Startup

backupExtension=.Startup

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2011-06-06 15:55 937920 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]

2010-03-13 17:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]

2010-09-08 21:11 3788847 ----a-w- c:\program files\Free Download Manager\fdm.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fspuip]

2009-11-09 21:42 3342336 ----a-w- c:\program files\FSP\FspUip.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2010-09-27 22:34 136176 ----atw- c:\users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]

2005-08-11 18:30 249856 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware (reboot)]

2011-08-31 20:00 1047208 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

2011-05-13 19:03 4283256 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]

2010-02-22 19:17 1226024 ----a-w- c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess]

2010-03-16 05:58 718208 ----a-w- c:\program files\Microsoft Office\Office14\MSOSYNC.EXE

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]

2010-01-15 13:44 166936 ----a-w- c:\windows\System32\igfxpers.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]

2007-04-09 12:23 200704 ----a-w- c:\program files\PowerISO\PWRISOVM.EXE

.

R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 136176]

R3 gupdatem;Serviço do Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 136176]

R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]

R3 netr73;RT73 USB Wireless LAN Card Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2009-07-13 545792]

R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4640000]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

S0 tpsacpi;TPS Firmware Extension Device Driver;c:\windows\system32\DRIVERS\tpsacpi.SYS [2008-08-27 10728]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]

S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616]

S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-02-18 462632]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-09-30 2320920]

S3 athur;Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athur.sys [2009-08-14 1334784]

S3 fspad_wlh32;Finger Sensing Pad Driver for Windows 2000/XP/Vista/Win7_wlh32;c:\windows\system32\DRIVERS\fspad_wlh32.sys [2009-11-09 42496]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-26 125696]

S3 IntcDAud;Áudio do vídeo Intel®;c:\windows\system32\DRIVERS\IntcDAud.sys [2009-11-27 209920]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]

.

.

Conteúdo da pasta 'Tarefas Agendadas'

.

2011-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 18:08]

.

2011-11-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-10-16 18:08]

.

2011-11-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1647895026-1292580321-627541049-1000Core.job

- c:\users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-27 22:34]

.

2011-11-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1647895026-1292580321-627541049-1000UA.job

- c:\users\Usuario\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-27 22:34]

.

2011-07-22 c:\windows\Tasks\User_Feed_Synchronization-{98A8B53F-07B0-44A3-8848-0E1587DCD7D0}.job

- c:\windows\system32\msfeedssync.exe [2010-09-27 06:19]

.

.

------- Scan Suplementar -------

.

IE: &Enviar para o OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Baixar com o Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm

IE: Baixar tudo com o Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm

IE: Baixar vídeo com o Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm

IE: Download selecionado pelo Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm

IE: E&xportar para o Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

TCP: DhcpNameServer = 187.95.0.7 8.8.8.8

TCP: Interfaces\{6EA3E8EE-B85F-457C-BB86-AE46D5595F57}: NameServer = 192.168.0.1

.

- - - - ORFÃOS REMOVIDOS - - - -

.

MSConfigStartUp-uTorrent - c:\program files\uTorrent\uTorrent.exe

.

.

.

--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Tempo para conclusão: 2011-11-02 11:55:46

ComboFix-quarantined-files.txt 2011-11-02 13:55

.

Pré-execução: 224.499.724.288 bytes disponíveis

Pós execução: 224.442.462.208 bytes disponíveis

.

- - End Of File - - D727463975E872BC39E4D02A25DED01A

Compartilhar este post


Link para o post
Compartilhar em outros sites

O log está limpo. Não há relação com malwares.

 

1.

*Clique [iniciar] > [Todos os programas] > [Acessórios] > [Executar] > copie e cole:

c:\users\Usuario\Desktop\ComboFix.exe /uninstall

 

*Clique [OK] e aguarde a mensagem: "ComboFix está desinstalado"

 

Faça um checkdisk...

 

*Baixe o CheckDiskGUI

*Execute-o e clique [Run]

*Caso receba a mensagem de agendar a verificação na próxima reinicialização do sistema, tecle S, reinicie o PC e aguarde o término.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Seu Windows está desatualizado. Portanto, antes de mais nada: atualize-o.

 

 

1.

*Baixe o TDdump e salve-o no desktop

*Execute-o e cole o relatorio apresentado

 

2.

*Baixe o ZHPDiag e salve-o no desktop

*Instale o programa clicando em [suivant] e durante a instalação selecione a opção [x]Créer une icône sur le Bureau

*Execute-o através do ícone criado no desktop e0c5acc8b51c39860b8a3527487791a47d622d9b1175bf23d081b8ed8722b8746g.jpg

 

*Clique PanelGlobal.jpg

 

*Selecione [All]

 

ZHPDiag_All.jpg

 

*Clique 36d3dfc24e.jpg e selecione: 15 Days

 

*Clique 51685e29d4.jpg e aguarde o término

 

*Cole o relatório ZHPDiag.txt criado no desktop

 

Caso o relatório seja demasiadamente grande..

 

*Acesse este link

*Clique [Enviar arquivo]

*Localize o arquivo ZHPDiag.txt

*Clique [Abrir] > [Créer le lien Cjoint]

*Cole o endereço criado

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá,

 

1º Windows atualizado. [OK]

 

2º Executei o TDdump, NÃO apresentou relatório.

 

3º Executei ZHPDiag, ERRO ao executar.FOTO

Compartilhar este post


Link para o post
Compartilhar em outros sites

1.

*Delete o TDump

 

2.

*Vá em Adicionar ou remover programas e desinstale ZHPDiag

*Delete os arquivos ZHPDiag2.exe, ZHPDiag.txt e ZHPFixReport.txt localizados no desktop

*Delete as pastas C:\Arquivos de programas\ZHPdiag e C:\ZHP

 

3.

*Baixe o Norman Malware Cleaner e salve-o no desktop

*Execute-o e instale o programa

*Clique [Add] e selecione todas as partições do seu HD (C:\, D:\...)

*Clique [start Scan]

*Ao finalizar, clique [Quit]

*Caso seja questionado se deseja reiniciar o computador (Do you want restart now?) clique [Não]

*Cole o relatório criado no desktop (NFix_data.txt)

 

4.

*Baixe o TDSSKiller e salve-o no desktop

*Execute-o e clique Change parameters

*Selecione Detect TDLFS file system e clique [OK]

*Clique [start scan]

*Caso encontre algo, selecione [skip]

 

tdss.png

 

*Ao término, clique Report

 

tdss2.png

 

*Cole o relatório

Compartilhar este post


Link para o post
Compartilhar em outros sites

Norman Malware Cleaner v2.03.03

Copyright © 1990 - 2011, Norman ASA.

 

Norman Scanner Engine Version: 6.07.13

nvcbin.def: Version: 6.07.00, Date: 2011/11/05 16:14:04, Variants: 11605686

nvcmacro.def: Version: 6.07.00, Date: 2011/02/01 12:21:31, Variants: 20465

 

Operating System: Windows 7

 

Switches: /iagree /nosb

 

Scan started: 2011/11/06 01:44:13

 

Running pre-scan cleanup routine...

 

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Scanning time: 0s

 

Scanning system for active rootkit activity...

 

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 0s

 

Scanning running processes and process memory...

 

Number of objects found: 2275

Number of objects scanned: 2275

Number of objects not scanned: 0

Number of malicious memory objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 1m 23s

 

Scanning system for FakeAV...

 

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 2s

 

Running quick scan...

C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0: Error opening file for read: 0x00000020

C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0: Error opening file for read: 0x00000020

C:\Windows\System32\log.txt: Error opening file for read: 0x00000020

 

Number of files found: 3360

Number of archives unpacked: 0

Number of objects found: 3360

Number of objects scanned: 3357

Number of objects not scanned: 3

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Number of malicious files found: 0

Number of malicious files cleaned: 0

Scanning time: 2m 0s

 

Running post-scan cleanup routine...

 

Number of malicious objects found: 0

Number of malicious objects cleaned: 0

Scanning time: 0s

 

Results:

Total number of files found: 3360

Total number of archives unpacked: 0

Total number of objects found: 5635

Total number of objects scanned: 5632

Total number of objects not scanned: 3

Total number of malicious objects found: 0

Total scanning time: 3m 25s

 

===========================================================

 

02:08:42.0593 5332 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49

02:08:44.0595 5332 ============================================================

02:08:44.0595 5332 Current date / time: 2011/11/06 02:08:44.0595

02:08:44.0595 5332 SystemInfo:

02:08:44.0595 5332

02:08:44.0595 5332 OS Version: 6.1.7600 ServicePack: 0.0

02:08:44.0595 5332 Product type: Workstation

02:08:44.0595 5332 ComputerName: ADRIANO

02:08:44.0595 5332 UserName: Usuario

02:08:44.0595 5332 Windows directory: C:\Windows

02:08:44.0595 5332 System windows directory: C:\Windows

02:08:44.0595 5332 Processor architecture: Intel x86

02:08:44.0595 5332 Number of processors: 4

02:08:44.0595 5332 Page size: 0x1000

02:08:44.0595 5332 Boot type: Normal boot

02:08:44.0595 5332 ============================================================

02:08:44.0959 5332 Initialize success

02:09:32.0267 4380 ============================================================

02:09:32.0267 4380 Scan started

02:09:32.0267 4380 Mode: Manual; TDLFS;

02:09:32.0267 4380 ============================================================

02:09:33.0056 4380 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\drivers\1394ohci.sys

02:09:33.0056 4380 1394ohci - ok

02:09:33.0160 4380 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\drivers\ACPI.sys

02:09:33.0162 4380 ACPI - ok

02:09:33.0249 4380 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\drivers\acpipmi.sys

02:09:33.0250 4380 AcpiPmi - ok

02:09:33.0373 4380 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys

02:09:33.0377 4380 adp94xx - ok

02:09:33.0483 4380 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys

02:09:33.0485 4380 adpahci - ok

02:09:33.0570 4380 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys

02:09:33.0571 4380 adpu320 - ok

02:09:33.0671 4380 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys

02:09:33.0674 4380 AFD - ok

02:09:33.0752 4380 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys

02:09:33.0753 4380 agp440 - ok

02:09:33.0844 4380 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys

02:09:33.0846 4380 aic78xx - ok

02:09:33.0968 4380 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys

02:09:33.0970 4380 aliide - ok

02:09:34.0000 4380 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys

02:09:34.0001 4380 amdagp - ok

02:09:34.0087 4380 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys

02:09:34.0089 4380 amdide - ok

02:09:34.0170 4380 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys

02:09:34.0171 4380 AmdK8 - ok

02:09:34.0256 4380 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys

02:09:34.0257 4380 AmdPPM - ok

02:09:34.0358 4380 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\drivers\amdsata.sys

02:09:34.0359 4380 amdsata - ok

02:09:34.0446 4380 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys

02:09:34.0448 4380 amdsbs - ok

02:09:34.0477 4380 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\drivers\amdxata.sys

02:09:34.0478 4380 amdxata - ok

02:09:34.0558 4380 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys

02:09:34.0560 4380 AppID - ok

02:09:34.0673 4380 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys

02:09:34.0674 4380 arc - ok

02:09:34.0747 4380 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys

02:09:34.0748 4380 arcsas - ok

02:09:34.0867 4380 aswFsBlk (c47623ffd181a1e7d63574dde2a0a711) C:\Windows\system32\drivers\aswFsBlk.sys

02:09:34.0868 4380 aswFsBlk - ok

02:09:34.0984 4380 aswMonFlt (4804753a4ec7d67cc22d226bffd1c1e3) C:\Windows\system32\drivers\aswMonFlt.sys

02:09:34.0985 4380 aswMonFlt - ok

02:09:35.0100 4380 aswRdr (36239e24470a3dd81fae37510953cc6c) C:\Windows\system32\drivers\aswRdr.sys

02:09:35.0101 4380 aswRdr - ok

02:09:35.0229 4380 aswSnx (caa846e9c83836bdc3d2d700c678db65) C:\Windows\system32\drivers\aswSnx.sys

02:09:35.0232 4380 aswSnx - ok

02:09:35.0324 4380 aswSP (748ae7f2d7da33adb063fe05704a9969) C:\Windows\system32\drivers\aswSP.sys

02:09:35.0326 4380 aswSP - ok

02:09:35.0428 4380 aswTdi (ca9925ce1dbd07ffe1eb357752cf5577) C:\Windows\system32\drivers\aswTdi.sys

02:09:35.0429 4380 aswTdi - ok

02:09:35.0510 4380 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys

02:09:35.0511 4380 AsyncMac - ok

02:09:35.0568 4380 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys

02:09:35.0569 4380 atapi - ok

02:09:35.0703 4380 athur (50edc3bc29ffe35a3604e0cf041fdf24) C:\Windows\system32\DRIVERS\athur.sys

02:09:35.0719 4380 athur - ok

02:09:35.0865 4380 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys

02:09:35.0868 4380 b06bdrv - ok

02:09:35.0944 4380 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys

02:09:35.0946 4380 b57nd60x - ok

02:09:36.0058 4380 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys

02:09:36.0059 4380 Beep - ok

02:09:36.0169 4380 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys

02:09:36.0170 4380 blbdrive - ok

02:09:36.0211 4380 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys

02:09:36.0212 4380 bowser - ok

02:09:36.0268 4380 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys

02:09:36.0269 4380 BrFiltLo - ok

02:09:36.0364 4380 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys

02:09:36.0365 4380 BrFiltUp - ok

02:09:36.0465 4380 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys

02:09:36.0467 4380 Brserid - ok

02:09:36.0544 4380 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys

02:09:36.0545 4380 BrSerWdm - ok

02:09:36.0565 4380 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys

02:09:36.0566 4380 BrUsbMdm - ok

02:09:36.0624 4380 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys

02:09:36.0625 4380 BrUsbSer - ok

02:09:36.0701 4380 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys

02:09:36.0702 4380 BTHMODEM - ok

02:09:36.0811 4380 catchme - ok

02:09:36.0906 4380 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys

02:09:36.0907 4380 cdfs - ok

02:09:37.0015 4380 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\drivers\cdrom.sys

02:09:37.0017 4380 cdrom - ok

02:09:37.0100 4380 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys

02:09:37.0101 4380 circlass - ok

02:09:37.0129 4380 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys

02:09:37.0132 4380 CLFS - ok

02:09:37.0212 4380 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys

02:09:37.0213 4380 CmBatt - ok

02:09:37.0245 4380 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys

02:09:37.0245 4380 cmdide - ok

02:09:37.0322 4380 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys

02:09:37.0325 4380 CNG - ok

02:09:37.0416 4380 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys

02:09:37.0417 4380 Compbatt - ok

02:09:37.0517 4380 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\drivers\CompositeBus.sys

02:09:37.0519 4380 CompositeBus - ok

02:09:37.0625 4380 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys

02:09:37.0626 4380 crcdisk - ok

02:09:37.0735 4380 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys

02:09:37.0738 4380 CSC - ok

02:09:37.0948 4380 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys

02:09:37.0949 4380 DfsC - ok

02:09:38.0031 4380 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys

02:09:38.0031 4380 discache - ok

02:09:38.0131 4380 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys

02:09:38.0132 4380 Disk - ok

02:09:38.0240 4380 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys

02:09:38.0241 4380 drmkaud - ok

02:09:38.0580 4380 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys

02:09:38.0587 4380 DXGKrnl - ok

02:09:38.0732 4380 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys

02:09:38.0765 4380 ebdrv - ok

02:09:38.0872 4380 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys

02:09:38.0876 4380 elxstor - ok

02:09:39.0092 4380 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys

02:09:39.0094 4380 ErrDev - ok

02:09:39.0187 4380 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys

02:09:39.0189 4380 exfat - ok

02:09:39.0377 4380 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys

02:09:39.0379 4380 fastfat - ok

02:09:39.0463 4380 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys

02:09:39.0464 4380 fdc - ok

02:09:39.0483 4380 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys

02:09:39.0484 4380 FileInfo - ok

02:09:39.0822 4380 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys

02:09:39.0823 4380 Filetrace - ok

02:09:39.0869 4380 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys

02:09:39.0871 4380 flpydisk - ok

02:09:39.0939 4380 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys

02:09:39.0941 4380 FltMgr - ok

02:09:40.0014 4380 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys

02:09:40.0016 4380 FsDepends - ok

02:09:40.0110 4380 fspad_wlh32 (1d300e884e4c539239aaf36bc8d0947a) C:\Windows\system32\DRIVERS\fspad_wlh32.sys

02:09:40.0111 4380 fspad_wlh32 - ok

02:09:40.0213 4380 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys

02:09:40.0214 4380 fssfltr - ok

02:09:40.0305 4380 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys

02:09:40.0306 4380 Fs_Rec - ok

02:09:40.0394 4380 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys

02:09:40.0396 4380 fvevol - ok

02:09:40.0479 4380 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys

02:09:40.0480 4380 gagp30kx - ok

02:09:40.0656 4380 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys

02:09:40.0657 4380 hcw85cir - ok

02:09:40.0770 4380 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys

02:09:40.0773 4380 HdAudAddService - ok

02:09:40.0847 4380 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\drivers\HDAudBus.sys

02:09:40.0849 4380 HDAudBus - ok

02:09:40.0973 4380 HECI (a88485dc6a7136c10d9a6c7e38fdfe3c) C:\Windows\system32\DRIVERS\HECI.sys

02:09:40.0974 4380 HECI - ok

02:09:41.0007 4380 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys

02:09:41.0008 4380 HidBatt - ok

02:09:41.0074 4380 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys

02:09:41.0074 4380 HidBth - ok

02:09:41.0094 4380 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys

02:09:41.0094 4380 HidIr - ok

02:09:41.0202 4380 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\drivers\hidusb.sys

02:09:41.0204 4380 HidUsb - ok

02:09:41.0303 4380 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys

02:09:41.0304 4380 HpSAMD - ok

02:09:41.0357 4380 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys

02:09:41.0361 4380 HTTP - ok

02:09:41.0409 4380 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys

02:09:41.0410 4380 hwpolicy - ok

02:09:41.0508 4380 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys

02:09:41.0509 4380 i8042prt - ok

02:09:41.0623 4380 iaStor (0baa4115dfffd6a6d809a89d65e1281a) C:\Windows\system32\DRIVERS\iaStor.sys

02:09:41.0625 4380 iaStor - ok

02:09:41.0722 4380 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\drivers\iaStorV.sys

02:09:41.0725 4380 iaStorV - ok

02:09:41.0961 4380 igfx (27d15d69ba5565f42ecdec6902c1a1e3) C:\Windows\system32\DRIVERS\igdkmd32.sys

02:09:42.0006 4380 igfx - ok

02:09:42.0087 4380 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys

02:09:42.0088 4380 iirsp - ok

02:09:42.0198 4380 Impcd (2db41ba61d5e44d0667cf126d35dcf34) C:\Windows\system32\DRIVERS\Impcd.sys

02:09:42.0199 4380 Impcd - ok

02:09:42.0376 4380 IntcAzAudAddService (4e3f36f7704cbbcd1b32657491a1944f) C:\Windows\system32\drivers\RTKVHDA.sys

02:09:42.0410 4380 IntcAzAudAddService - ok

02:09:42.0510 4380 IntcDAud (2d79c681ce6d53a0c6c725a84594df4c) C:\Windows\system32\DRIVERS\IntcDAud.sys

02:09:42.0512 4380 IntcDAud - ok

02:09:42.0601 4380 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys

02:09:42.0602 4380 intelide - ok

02:09:42.0695 4380 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys

02:09:42.0697 4380 intelppm - ok

02:09:42.0776 4380 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys

02:09:42.0777 4380 IpFilterDriver - ok

02:09:42.0870 4380 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\drivers\IPMIDrv.sys

02:09:42.0872 4380 IPMIDRV - ok

02:09:42.0906 4380 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys

02:09:42.0907 4380 IPNAT - ok

02:09:42.0996 4380 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys

02:09:42.0997 4380 IRENUM - ok

02:09:43.0020 4380 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys

02:09:43.0021 4380 isapnp - ok

02:09:43.0102 4380 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\drivers\msiscsi.sys

02:09:43.0104 4380 iScsiPrt - ok

02:09:43.0204 4380 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys

02:09:43.0206 4380 kbdclass - ok

02:09:43.0314 4380 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\drivers\kbdhid.sys

02:09:43.0315 4380 kbdhid - ok

02:09:43.0388 4380 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys

02:09:43.0390 4380 KSecDD - ok

02:09:43.0415 4380 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys

02:09:43.0417 4380 KSecPkg - ok

02:09:43.0526 4380 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys

02:09:43.0527 4380 lltdio - ok

02:09:43.0676 4380 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys

02:09:43.0677 4380 LSI_FC - ok

02:09:43.0775 4380 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys

02:09:43.0776 4380 LSI_SAS - ok

02:09:43.0856 4380 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys

02:09:43.0858 4380 LSI_SAS2 - ok

02:09:43.0885 4380 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys

02:09:43.0887 4380 LSI_SCSI - ok

02:09:43.0983 4380 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys

02:09:43.0985 4380 luafv - ok

02:09:44.0022 4380 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys

02:09:44.0024 4380 megasas - ok

02:09:44.0114 4380 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys

02:09:44.0116 4380 MegaSR - ok

02:09:44.0200 4380 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys

02:09:44.0201 4380 Modem - ok

02:09:44.0292 4380 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys

02:09:44.0293 4380 monitor - ok

02:09:44.0389 4380 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys

02:09:44.0390 4380 mouclass - ok

02:09:44.0463 4380 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys

02:09:44.0464 4380 mouhid - ok

02:09:44.0546 4380 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys

02:09:44.0548 4380 mountmgr - ok

02:09:44.0585 4380 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\drivers\mpio.sys

02:09:44.0587 4380 mpio - ok

02:09:44.0663 4380 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys

02:09:44.0664 4380 mpsdrv - ok

02:09:44.0687 4380 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys

02:09:44.0688 4380 MRxDAV - ok

02:09:44.0774 4380 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys

02:09:44.0776 4380 mrxsmb - ok

02:09:44.0814 4380 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys

02:09:44.0816 4380 mrxsmb10 - ok

02:09:44.0883 4380 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys

02:09:44.0885 4380 mrxsmb20 - ok

02:09:44.0962 4380 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\drivers\msahci.sys

02:09:44.0963 4380 msahci - ok

02:09:45.0044 4380 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\drivers\msdsm.sys

02:09:45.0047 4380 msdsm - ok

02:09:45.0130 4380 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys

02:09:45.0131 4380 Msfs - ok

02:09:45.0148 4380 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys

02:09:45.0149 4380 mshidkmdf - ok

02:09:45.0330 4380 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys

02:09:45.0331 4380 msisadrv - ok

02:09:45.0440 4380 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys

02:09:45.0441 4380 MSKSSRV - ok

02:09:45.0650 4380 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys

02:09:45.0651 4380 MSPCLOCK - ok

02:09:45.0737 4380 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys

02:09:45.0747 4380 MSPQM - ok

02:09:45.0767 4380 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys

02:09:45.0767 4380 MsRPC - ok

02:09:45.0854 4380 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys

02:09:45.0855 4380 mssmbios - ok

02:09:46.0124 4380 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys

02:09:46.0125 4380 MSTEE - ok

02:09:46.0200 4380 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys

02:09:46.0202 4380 MTConfig - ok

02:09:46.0215 4380 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys

02:09:46.0217 4380 Mup - ok

02:09:46.0314 4380 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys

02:09:46.0319 4380 NativeWifiP - ok

02:09:46.0421 4380 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys

02:09:46.0427 4380 NDIS - ok

02:09:46.0510 4380 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys

02:09:46.0512 4380 NdisCap - ok

02:09:46.0552 4380 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys

02:09:46.0553 4380 NdisTapi - ok

02:09:46.0631 4380 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys

02:09:46.0632 4380 Ndisuio - ok

02:09:46.0665 4380 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys

02:09:46.0668 4380 NdisWan - ok

02:09:46.0877 4380 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys

02:09:46.0878 4380 NDProxy - ok

02:09:46.0968 4380 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys

02:09:46.0969 4380 NetBIOS - ok

02:09:47.0167 4380 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys

02:09:47.0169 4380 NetBT - ok

02:09:47.0280 4380 netr73 (76b1157ef850830c5ece61d3e591ca8b) C:\Windows\system32\DRIVERS\netr73.sys

02:09:47.0286 4380 netr73 - ok

02:09:47.0463 4380 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys

02:09:47.0464 4380 nfrd960 - ok

02:09:47.0554 4380 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys

02:09:47.0555 4380 Npfs - ok

02:09:47.0782 4380 nsak_9EE36EDD - ok

02:09:47.0864 4380 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys

02:09:47.0865 4380 nsiproxy - ok

02:09:47.0916 4380 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys

02:09:47.0929 4380 Ntfs - ok

02:09:48.0207 4380 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys

02:09:48.0209 4380 Null - ok

02:09:48.0301 4380 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\drivers\nvraid.sys

02:09:48.0304 4380 nvraid - ok

02:09:48.0405 4380 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\drivers\nvstor.sys

02:09:48.0407 4380 nvstor - ok

02:09:48.0495 4380 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys

02:09:48.0497 4380 nv_agp - ok

02:09:48.0597 4380 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys

02:09:48.0599 4380 ohci1394 - ok

02:09:48.0643 4380 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys

02:09:48.0644 4380 Parport - ok

02:09:48.0718 4380 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys

02:09:48.0719 4380 partmgr - ok

02:09:48.0795 4380 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys

02:09:48.0796 4380 Parvdm - ok

02:09:48.0829 4380 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\drivers\pci.sys

02:09:48.0831 4380 pci - ok

02:09:48.0915 4380 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys

02:09:48.0917 4380 pciide - ok

02:09:49.0112 4380 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys

02:09:49.0114 4380 pcmcia - ok

02:09:49.0193 4380 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys

02:09:49.0194 4380 pcw - ok

02:09:49.0310 4380 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys

02:09:49.0316 4380 PEAUTH - ok

02:09:49.0561 4380 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys

02:09:49.0562 4380 PptpMiniport - ok

02:09:49.0634 4380 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys

02:09:49.0636 4380 Processor - ok

02:09:49.0734 4380 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys

02:09:49.0736 4380 Psched - ok

02:09:49.0875 4380 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys

02:09:49.0890 4380 ql2300 - ok

02:09:49.0980 4380 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys

02:09:49.0983 4380 ql40xx - ok

02:09:50.0006 4380 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys

02:09:50.0008 4380 QWAVEdrv - ok

02:09:50.0082 4380 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys

02:09:50.0083 4380 RasAcd - ok

02:09:50.0168 4380 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys

02:09:50.0169 4380 RasAgileVpn - ok

02:09:50.0262 4380 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys

02:09:50.0263 4380 Rasl2tp - ok

02:09:50.0360 4380 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys

02:09:50.0360 4380 RasPppoe - ok

02:09:50.0450 4380 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys

02:09:50.0460 4380 RasSstp - ok

02:09:50.0540 4380 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys

02:09:50.0540 4380 rdbss - ok

02:09:50.0627 4380 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys

02:09:50.0628 4380 rdpbus - ok

02:09:50.0709 4380 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys

02:09:50.0710 4380 RDPCDD - ok

02:09:50.0745 4380 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys

02:09:50.0748 4380 RDPDR - ok

02:09:50.0834 4380 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys

02:09:50.0835 4380 RDPENCDD - ok

02:09:50.0858 4380 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys

02:09:50.0859 4380 RDPREFMP - ok

02:09:50.0925 4380 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys

02:09:50.0928 4380 RDPWD - ok

02:09:51.0024 4380 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys

02:09:51.0026 4380 rdyboost - ok

02:09:51.0133 4380 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys

02:09:51.0135 4380 rspndr - ok

02:09:51.0235 4380 RTL8167 (3983cea05bb855351d75f5482b6c42ce) C:\Windows\system32\DRIVERS\Rt86win7.sys

02:09:51.0238 4380 RTL8167 - ok

02:09:51.0339 4380 RTL8187Se (1117352dd3f1f457d6b2d0bcab9611be) C:\Windows\system32\DRIVERS\RTL8187Se.sys

02:09:51.0342 4380 RTL8187Se - ok

02:09:51.0422 4380 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\drivers\vms3cap.sys

02:09:51.0424 4380 s3cap - ok

02:09:51.0523 4380 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\drivers\sbp2port.sys

02:09:51.0525 4380 sbp2port - ok

02:09:51.0631 4380 SCDEmu (ee7a1b6e155258288d99be61190e1112) C:\Windows\system32\drivers\SCDEmu.sys

02:09:51.0633 4380 SCDEmu - ok

02:09:51.0708 4380 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys

02:09:51.0709 4380 scfilter - ok

02:09:51.0801 4380 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

02:09:51.0803 4380 secdrv - ok

02:09:51.0921 4380 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys

02:09:51.0922 4380 Serenum - ok

02:09:51.0935 4380 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys

02:09:51.0936 4380 Serial - ok

02:09:52.0024 4380 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys

02:09:52.0026 4380 sermouse - ok

02:09:52.0118 4380 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys

02:09:52.0119 4380 sffdisk - ok

02:09:52.0197 4380 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys

02:09:52.0200 4380 sffp_mmc - ok

02:09:52.0277 4380 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\drivers\sffp_sd.sys

02:09:52.0278 4380 sffp_sd - ok

02:09:52.0305 4380 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys

02:09:52.0306 4380 sfloppy - ok

02:09:52.0407 4380 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys

02:09:52.0409 4380 sisagp - ok

02:09:52.0493 4380 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys

02:09:52.0495 4380 SiSRaid2 - ok

02:09:52.0575 4380 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys

02:09:52.0578 4380 SiSRaid4 - ok

02:09:52.0676 4380 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys

02:09:52.0678 4380 Smb - ok

02:09:52.0784 4380 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys

02:09:52.0784 4380 spldr - ok

02:09:52.0909 4380 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys

02:09:52.0914 4380 srv - ok

02:09:53.0011 4380 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys

02:09:53.0014 4380 srv2 - ok

02:09:53.0096 4380 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys

02:09:53.0099 4380 srvnet - ok

02:09:53.0201 4380 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys

02:09:53.0203 4380 stexstor - ok

02:09:53.0306 4380 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\drivers\vmstorfl.sys

02:09:53.0308 4380 storflt - ok

02:09:53.0403 4380 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\drivers\storvsc.sys

02:09:53.0405 4380 storvsc - ok

02:09:53.0485 4380 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys

02:09:53.0486 4380 swenum - ok

02:09:53.0622 4380 Tcpip (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\drivers\tcpip.sys

02:09:53.0641 4380 Tcpip - ok

02:09:53.0760 4380 TCPIP6 (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\DRIVERS\tcpip.sys

02:09:53.0769 4380 TCPIP6 - ok

02:09:53.0857 4380 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys

02:09:53.0858 4380 tcpipreg - ok

02:09:53.0901 4380 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys

02:09:53.0902 4380 TDPIPE - ok

02:09:53.0942 4380 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys

02:09:53.0944 4380 TDTCP - ok

02:09:54.0003 4380 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys

02:09:54.0004 4380 tdx - ok

02:09:54.0088 4380 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\drivers\termdd.sys

02:09:54.0089 4380 TermDD - ok

02:09:54.0180 4380 tpsacpi (04cc2b51ec511e96f38d3ac82e122495) C:\Windows\system32\DRIVERS\tpsacpi.SYS

02:09:54.0181 4380 tpsacpi - ok

02:09:54.0276 4380 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys

02:09:54.0277 4380 tssecsrv - ok

02:09:54.0368 4380 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys

02:09:54.0370 4380 tunnel - ok

02:09:54.0453 4380 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys

02:09:54.0454 4380 uagp35 - ok

02:09:54.0474 4380 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys

02:09:54.0477 4380 udfs - ok

02:09:54.0567 4380 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys

02:09:54.0569 4380 uliagpkx - ok

02:09:54.0653 4380 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\drivers\umbus.sys

02:09:54.0656 4380 umbus - ok

02:09:54.0726 4380 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys

02:09:54.0727 4380 UmPass - ok

02:09:54.0824 4380 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\drivers\usbccgp.sys

02:09:54.0828 4380 usbccgp - ok

02:09:54.0864 4380 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys

02:09:54.0866 4380 usbcir - ok

02:09:54.0940 4380 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\drivers\usbehci.sys

02:09:54.0942 4380 usbehci - ok

02:09:54.0986 4380 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\drivers\usbhub.sys

02:09:54.0990 4380 usbhub - ok

02:09:55.0068 4380 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\drivers\usbohci.sys

02:09:55.0069 4380 usbohci - ok

02:09:55.0107 4380 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys

02:09:55.0108 4380 usbprint - ok

02:09:55.0174 4380 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\drivers\USBSTOR.SYS

02:09:55.0174 4380 USBSTOR - ok

02:09:55.0274 4380 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\drivers\usbuhci.sys

02:09:55.0274 4380 usbuhci - ok

02:09:55.0364 4380 usbvideo (f642a7e4bf78cfa359cca0a3557c28d7) C:\Windows\System32\Drivers\usbvideo.sys

02:09:55.0364 4380 usbvideo - ok

02:09:55.0483 4380 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys

02:09:55.0484 4380 vdrvroot - ok

02:09:55.0604 4380 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys

02:09:55.0605 4380 vga - ok

02:09:55.0682 4380 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys

02:09:55.0684 4380 VgaSave - ok

02:09:55.0722 4380 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\drivers\vhdmp.sys

02:09:55.0724 4380 vhdmp - ok

02:09:55.0822 4380 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys

02:09:55.0824 4380 viaagp - ok

02:09:55.0857 4380 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys

02:09:55.0860 4380 ViaC7 - ok

02:09:55.0942 4380 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys

02:09:55.0944 4380 viaide - ok

02:09:55.0977 4380 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\drivers\vmbus.sys

02:09:55.0979 4380 vmbus - ok

02:09:56.0071 4380 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\drivers\VMBusHID.sys

02:09:56.0072 4380 VMBusHID - ok

02:09:56.0248 4380 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\drivers\volmgr.sys

02:09:56.0250 4380 volmgr - ok

02:09:56.0334 4380 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys

02:09:56.0337 4380 volmgrx - ok

02:09:56.0538 4380 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\drivers\volsnap.sys

02:09:56.0538 4380 volsnap - ok

02:09:56.0758 4380 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys

02:09:56.0758 4380 vsmraid - ok

02:09:56.0838 4380 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys

02:09:56.0838 4380 vwifibus - ok

02:09:57.0078 4380 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys

02:09:57.0078 4380 vwififlt - ok

02:09:57.0178 4380 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys

02:09:57.0180 4380 vwifimp - ok

02:09:57.0261 4380 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys

02:09:57.0263 4380 WacomPen - ok

02:09:57.0283 4380 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys

02:09:57.0285 4380 WANARP - ok

02:09:57.0404 4380 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys

02:09:57.0406 4380 Wanarpv6 - ok

02:09:57.0546 4380 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys

02:09:57.0547 4380 Wd - ok

02:09:57.0634 4380 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys

02:09:57.0638 4380 Wdf01000 - ok

02:09:57.0750 4380 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys

02:09:57.0751 4380 WfpLwf - ok

02:09:57.0768 4380 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys

02:09:57.0770 4380 WIMMount - ok

02:09:57.0943 4380 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys

02:09:57.0945 4380 WmiAcpi - ok

02:09:58.0053 4380 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys

02:09:58.0054 4380 ws2ifsl - ok

02:09:58.0084 4380 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys

02:09:58.0086 4380 WudfPf - ok

02:09:58.0202 4380 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys

02:09:58.0204 4380 WUDFRd - ok

02:09:58.0300 4380 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

02:09:59.0259 4380 \Device\Harddisk0\DR0 - ok

02:09:59.0291 4380 Boot (0x1200) (42a0735965e319adc0ad3bdd67ddf513) \Device\Harddisk0\DR0\Partition0

02:09:59.0292 4380 \Device\Harddisk0\DR0\Partition0 - ok

02:09:59.0305 4380 Boot (0x1200) (7e4b241d8bfe83e50f85a9e4bef47857) \Device\Harddisk0\DR0\Partition1

02:09:59.0307 4380 \Device\Harddisk0\DR0\Partition1 - ok

02:09:59.0326 4380 Boot (0x1200) (408aaa814ce11748abf2addad4ebf47d) \Device\Harddisk0\DR0\Partition2

02:09:59.0327 4380 \Device\Harddisk0\DR0\Partition2 - ok

02:09:59.0328 4380 ============================================================

02:09:59.0328 4380 Scan finished

02:09:59.0328 4380 ============================================================

02:09:59.0341 3712 Detected object count: 0

02:09:59.0341 3712 Actual detected object count: 0

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá aaadrianooo

 

O PC está limpo. Não há relação com malwares.

 

 

1.

*Desinstale o Norman

 

2.

*Delete o TDSSKiller e o arquivo C:\TDSSKiller.txt

 

 

Um abraço.

Compartilhar este post


Link para o post
Compartilhar em outros sites

PROBLEMA RESOLVIDO

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post


Link para o post
Compartilhar em outros sites

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.