pcenthusiast

After unchecking "run this program as an administrator" everything came back to normal. Thanks a lot for your help.

I ran the MB support tool in safe mode . The file you require has been attached. mbst-grab-results.zip

Hi, thanks for the reply. I tried to Download and run Malwarebytes Support Tool ( file mb-support-1.1.2.471) . When i click to open the file nothing happens, tried to run as administrator and didn´t work. The second procedure you recommend is for Malwarebytes 2.x , but I´m using version 3.6.1.2711-1.0.463-1.0.7197.

Hi, after installing the newest version of MB3 (mb3-setup-consumer-3.6.1.2711-1.0.463-1.0.7197) , i Cannot open nor uninstall Malwarebytes . I´m using W10 and the problem persists before and after the w10 october update. I run the RKILL but it did find anything wrong. What can i do to reestablish the MB3 proper working? Thanks in advance

Hi, every time i run malwarebytes anti-malware it finds some mindspark files. I remove all of them but after a new scan the software finds again the mindspark files . How can i completely get rid of mindspark ? regards Alex

Hi TwinHeadedEagle , thanks very much for your reply. I updated the Malwarebytes Anti-Malware to the latest build and everything came back working fine. kind regards Alexandre

Hi guys, I used the Malwarebytes Anti-Malware software but after 2 Windows restarts all the ads come back making it impossible to browse. The results are atached below. What else could i try ? thanks in advance priceminus.txt

Hello, thank you very much for your help, it was quite effective and now everything goes fine with my pc. best wishes

Hi Gringo, nothing was found , is there anything else to do? kind regards

Hi Gringo, I did what you ask me to do and everything is still great. It seems there´s no problem at all . What do you think ? Logfile of Trend Micro HijackThis v2.0.4Scan saved at 01:55:16, on 26/08/2013Platform: Windows 7 SP1 (WinNT 6.00.3505)MSIE: Internet Explorer v10.0 (10.00.9200.16660)Boot mode: Normal Running processes:C:\Program Files (x86)\CleanMem\mini_monitor.exeC:\Program Files (x86)\EVGA Precision X\EVGAPrecision.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exeC:\Program Files (x86)\XFastUSB\XFastUsb.exeC:\Program Files (x86)\AVG\AVG2013\avgui.exeC:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exeC:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\eMule\eMule.exeC:\Program Files (x86)\AVG\AVG2013\avgcfgex.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\Ale\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htmR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dllO2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dllO2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~2\TEXTware\QUICKF~1\PlugIns\IEHelp.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dllO4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"O4 - HKLM\..\Run: [XFastUSB] "C:\Program Files (x86)\XFastUSB\XFastUsb.exe"O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLYO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphicsO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{3FE1642A-9F22-4AA0-9556-5EE8ABEC3815}: NameServer = 200.204.0.10 200.204.0.138O17 - HKLM\System\CS1\Services\Tcpip\..\{3FE1642A-9F22-4AA0-9556-5EE8ABEC3815}: NameServer = 200.204.0.10 200.204.0.138O17 - HKLM\System\CS2\Services\Tcpip\..\{3FE1642A-9F22-4AA0-9556-5EE8ABEC3815}: NameServer = 200.204.0.10 200.204.0.138O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLLO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeO23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exeO23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgfws.exeO23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exeO23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exeO23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exeO23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\ASRock\XFast LAN\spd.exeO23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeO23 - Service: Intel® Integrated Clock Controller Service - Intel® ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exeO23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exeO23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exeO23 - Service: Intel® ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exeO23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exeO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeO23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exeO23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exeO23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exeO23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exeO23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exeO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeO23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) --End of file - 9922 bytes Malwarebytes Anti-Malware (PRO) 1.75.0.1300www.malwarebytes.org Database version: v2013.08.25.06 Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16660Ale :: ALE-PC [administrator] Protection: Enabled 26/08/2013 01:50:23mbam-log-2013-08-26 (01-50-23).txt Scan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 218943Time elapsed: 3 minute(s), 26 second(s) Memory Processes Detected: 0(No malicious items detected) Memory Modules Detected: 0(No malicious items detected) Registry Keys Detected: 0(No malicious items detected) Registry Values Detected: 0(No malicious items detected) Registry Data Items Detected: 0(No malicious items detected) Folders Detected: 0(No malicious items detected) Files Detected: 0(No malicious items detected) (end)

Hi Gringo, the PC keeps running fine. Below the new combofix report: ComboFix 13-08-25.01 - Ale 25/08/2013 15:19:18.2.4 - x64Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1033.18.4023.2747 [GMT -3:00]Executando de: c:\users\Ale\Desktop\ComboFix.exeComandos utilizados :: c:\users\Ale\Desktop\CFScript.txtAV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..(((((((((((((((( Arquivos/Ficheiros criados de 2013-07-25 to 2013-08-25 ))))))))))))))))))))))))))))..2013-08-25 18:25 . 2013-08-25 18:25 -------- d-----w- c:\users\Default\AppData\Local\temp2013-08-24 05:39 . 2013-08-24 05:39 -------- d-----w- c:\windows\ERUNT2013-08-24 05:05 . 2013-08-24 05:09 -------- d-----w- C:\AdwCleaner2013-08-23 23:49 . 2013-08-23 23:49 -------- d-----w- C:\$AVG2013-08-23 23:46 . 2013-08-24 00:06 -------- d-----w- c:\users\Ale\AppData\Local\Avg20132013-08-23 21:39 . 2013-08-23 21:51 -------- d-----w- c:\program files (x86)\Fallout 32013-08-23 21:39 . 2005-04-04 02:00 63488 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe2013-08-23 21:39 . 2013-08-23 21:39 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll2013-08-23 21:39 . 2013-08-23 21:39 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll2013-08-23 21:39 . 2005-04-04 02:02 753664 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll2013-08-23 21:39 . 2005-04-04 02:02 69714 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll2013-08-23 21:39 . 2005-04-04 02:01 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll2013-08-23 21:39 . 2005-04-04 02:00 184320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll2013-08-23 21:39 . 2005-04-04 01:59 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe2013-08-23 21:35 . 2013-08-23 21:51 -------- d-----w- c:\users\Ale\AppData\Local\Fallout32013-08-23 13:33 . 2013-08-23 13:33 -------- d-----w- c:\users\Ale\AppData\Roaming\AVG2013-08-23 13:32 . 2013-08-23 13:33 -------- d-----w- c:\programdata\AVG2013-08-23 13:32 . 2013-08-23 13:32 -------- d-sh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}2013-08-23 12:27 . 2013-08-23 12:27 -------- d-----w- c:\users\Ale\AppData\Roaming\TuneUp Software2013-08-23 12:26 . 2013-08-25 13:50 -------- d-----w- c:\program files (x86)\AVG2013-08-23 12:20 . 2013-08-25 16:30 -------- d-----w- c:\programdata\MFAData2013-08-23 12:20 . 2013-08-23 12:20 -------- d--h--w- c:\programdata\Common Files2013-08-23 12:20 . 2013-08-23 12:20 -------- d-----w- c:\users\Ale\AppData\Local\MFAData2013-08-23 11:22 . 2012-12-10 14:04 81920 ----a-w- c:\windows\eSellerateControl350.dll2013-08-23 11:22 . 2012-12-10 14:04 356352 ----a-w- c:\windows\eSellerateEngine.dll2013-08-23 11:22 . 2009-07-23 21:32 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll2013-08-23 11:22 . 2009-07-23 21:32 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll2013-08-23 11:22 . 2013-08-23 11:26 -------- d-----w- c:\program files (x86)\Bit Coin Miner Removal Tool2013-08-23 11:11 . 2013-08-23 11:11 -------- d-----w- c:\program files\Enigma Software Group2013-08-23 11:10 . 2013-08-23 11:28 -------- d-----w- c:\windows\8AE3CFB678B24F55A7BE618FCFF43A03.TMP2013-08-23 10:27 . 2013-08-20 03:46 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{815943B1-1EC2-4BF0-A56C-F3FFC3FFE37A}\mpengine.dll2013-08-23 10:01 . 2013-08-23 10:08 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)2013-08-23 04:27 . 2013-07-13 19:49 6598432 ----a-w- c:\windows\system32\nvcpl.dll2013-08-23 04:27 . 2013-07-13 19:49 3447072 ----a-w- c:\windows\system32\nvsvc64.dll2013-08-23 04:27 . 2013-07-13 19:48 911136 ----a-w- c:\windows\system32\nvvsvc.exe2013-08-23 04:27 . 2013-07-13 19:48 63776 ----a-w- c:\windows\system32\nvshext.dll2013-08-23 04:27 . 2013-07-13 19:48 3274475 ----a-w- c:\windows\system32\nvcoproc.bin2013-08-23 04:27 . 2013-07-13 19:48 219424 ----a-w- c:\windows\system32\nvmctray.dll2013-08-23 04:26 . 2013-08-23 04:26 -------- d-----w- c:\programdata\NVIDIA Corporation2013-08-23 04:26 . 2013-08-23 04:27 -------- d-----w- c:\program files (x86)\NVIDIA Corporation2013-08-22 23:45 . 2013-08-22 23:45 -------- d-----w- c:\users\Ale\AppData\Roaming\Malwarebytes2013-08-22 23:44 . 2013-08-23 02:57 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware2013-08-22 23:44 . 2013-08-22 23:44 -------- d-----w- c:\programdata\Malwarebytes2013-08-22 23:44 . 2013-04-04 17:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys2013-08-22 22:58 . 2013-08-22 23:03 -------- d-----w- c:\program files (x86)\Rockstar Games2013-08-22 22:02 . 2013-08-22 22:02 -------- d-----w- c:\users\Ale\AppData\Local\Intel_Corporation2013-08-22 22:00 . 2013-04-23 08:33 106496 ----a-w- c:\windows\SysWow64\IntelOpenCL32.dll2013-08-22 22:00 . 2013-04-23 08:29 142336 ----a-w- c:\windows\system32\IntelOpenCL64.dll2013-08-22 18:08 . 2013-04-23 08:30 24576 ----a-w- c:\windows\SysWow64\OpenCL.dll2013-08-22 18:08 . 2013-04-23 08:27 25088 ----a-w- c:\windows\system32\OpenCL.dll2013-08-22 17:09 . 2013-08-22 17:34 -------- d-----w- c:\users\Ale\AppData\Local\Microsoft Game Studios2013-08-21 05:04 . 2013-08-22 19:06 -------- d-----w- c:\users\Ale\AppData\Local\GameSpy2013-08-21 05:04 . 2013-08-21 05:16 -------- d-----w- c:\users\Ale\AppData\Local\ApplicationHistory2013-08-20 00:16 . 2013-08-20 00:16 -------- d--h--r- c:\users\Ale\AppData\Roaming\SecuROM2013-08-19 21:34 . 2013-08-25 00:10 -------- d-----w- c:\program files\Movies2013-08-19 21:32 . 2013-08-25 00:10 -------- d-----w- c:\program files\Screenshots2013-08-19 19:47 . 2013-08-19 19:47 -------- d-----w- c:\windows\SysWow64\URTTEMP2013-08-19 19:47 . 2013-08-19 19:47 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe2013-08-19 19:47 . 2013-08-19 19:47 66872 ----a-w- c:\windows\SysWow64\PnkBstrA.exe2013-08-19 19:47 . 2013-08-19 19:47 669184 ----a-w- c:\windows\SysWow64\pbsvc.exe2013-08-19 02:36 . 2013-08-22 17:34 -------- d-----w- c:\program files (x86)\Common Files\Microsoft Games2013-08-19 02:24 . 2013-08-22 17:09 -------- d-----w- c:\program files (x86)\Microsoft Games2013-08-17 21:39 . 2013-08-17 21:39 -------- d-----w- c:\windows\Sun2013-08-16 17:01 . 2013-08-16 17:01 -------- d-----w- c:\users\Ale\AppData\Local\SKIDROW2013-08-16 17:00 . 2013-08-16 17:01 -------- d-----w- c:\program files (x86)\Pinball FX22013-08-14 02:59 . 2003-04-19 03:39 6659 ----a-w- c:\windows\SysWow64\TANDPL.VXD2013-08-14 02:59 . 2003-04-19 03:32 4736 ----a-w- c:\windows\SysWow64\drivers\tandpl.sys2013-08-14 02:59 . 2003-03-02 20:44 7552 ----a-w- c:\windows\SysWow64\drivers\enodpl.sys2013-08-14 02:59 . 2001-08-31 18:16 6532 ----a-w- c:\windows\SysWow64\ENODPL.VXD2013-08-13 20:22 . 2013-07-19 01:58 2048 ----a-w- c:\windows\system32\tzres.dll2013-08-12 03:01 . 2013-08-12 03:07 -------- d-----w- c:\programdata\ASGVIS2013-08-12 00:30 . 2013-08-12 00:30 -------- d-----w- c:\program files (x86)\Common Files\Intel Corporation2013-08-12 00:26 . 2013-08-12 00:26 -------- d-----w- c:\users\Ale\AppData\Roaming\Intel Corporation2013-08-12 00:26 . 2013-08-12 00:26 -------- d-----w- c:\windows\SysWow64\config\systemprofile\Intel2013-08-12 00:26 . 2013-08-12 00:26 -------- d-----w- c:\users\Ale\Intel2013-08-10 18:03 . 2013-08-10 18:03 -------- d-----w- c:\users\Ale\AppData\Roaming\SketchUp2013-08-10 18:02 . 2013-08-10 18:02 -------- d-----w- c:\program files (x86)\SketchUp2013-08-10 17:49 . 2013-08-12 03:07 -------- d-----w- c:\program files (x86)\Google SketchUp 82013-08-10 16:33 . 2013-08-10 16:33 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help2013-08-10 02:55 . 2013-02-08 18:37 544568 ----a-w- c:\windows\system32\PROUnstl.exe2013-08-10 02:46 . 2011-05-10 19:28 17192 ----a-w- c:\windows\system32\drivers\AsrAppCharger.sys2013-08-10 02:46 . 2013-08-22 20:15 -------- d-----w- c:\program files\ASRock Utility2013-08-10 02:46 . 2013-08-10 02:46 -------- d-----w- c:\program files (x86)\ASM106xSATA2013-08-10 02:45 . 2011-09-11 06:41 88832 ----a-w- c:\windows\system32\drivers\EtronXHCI.sys2013-08-10 02:45 . 2011-09-11 06:41 65152 ----a-w- c:\windows\system32\drivers\EtronHub3.sys2013-08-10 02:45 . 2013-08-10 02:45 -------- d-----w- c:\program files (x86)\Etron Technology2013-08-10 02:44 . 2013-04-11 03:10 41984 ----a-w- c:\windows\system32\drivers\USB3Ver.dll2013-08-10 02:43 . 2013-03-12 16:19 16344 ----a-w- c:\windows\system32\drivers\IntelMEFWVer.dll2013-08-10 02:43 . 2013-08-12 00:26 -------- d-----w- c:\programdata\Intel2013-08-10 02:43 . 2013-08-22 20:59 -------- d-----w- c:\program files\Intel2013-08-10 02:42 . 2013-08-10 02:42 -------- d-----w- c:\program files (x86)\Common Files\postureAgent2013-08-10 02:42 . 2013-03-12 16:19 64624 ----a-w- c:\windows\system32\drivers\HECIx64.sys2013-08-10 02:36 . 2013-08-10 02:40 -------- d-----w- c:\windows\SysWow64\RTCOM2013-08-10 02:36 . 2013-08-10 02:36 -------- d-----w- c:\program files\Realtek2013-08-10 02:34 . 2013-08-22 22:00 -------- d-----w- c:\program files (x86)\Intel2013-08-10 02:34 . 2013-02-27 18:37 53248 ----a-w- c:\windows\SysWow64\CSVer.dll2013-08-10 02:33 . 2013-08-10 02:33 -------- d-----w- C:\Intel2013-08-10 01:45 . 2013-08-10 01:45 -------- d-----w- c:\programdata\Protexis642013-08-10 01:45 . 2013-08-10 01:45 -------- d-----w- c:\users\Ale\AppData\Roaming\Corel2013-08-10 01:38 . 2013-08-10 01:44 -------- d-----w- c:\programdata\CorelDRAW Graphics Suite X62013-08-10 01:35 . 2013-08-22 17:39 -------- d-----w- c:\program files\Benchmarks2013-08-09 17:06 . 2013-08-22 20:12 -------- d-----w- c:\users\Ale\AppData\Local\CrashDumps2013-08-09 16:48 . 2013-08-22 20:56 -------- d-----w- c:\program files (x86)\RivaTuner Statistics Server2013-08-09 05:03 . 2013-08-09 05:03 -------- d-----w- c:\users\Ale\AppData\Local\cFos2013-08-09 05:03 . 2013-08-09 05:03 -------- d-----w- c:\program files\ASRock2013-08-09 05:03 . 2011-07-04 18:19 1632128 ----a-w- c:\windows\system32\drivers\cfosspeed6.sys2013-08-09 05:02 . 2013-08-09 05:02 -------- d-----w- c:\programdata\cFos2013-08-09 04:59 . 2013-08-25 00:34 32320 ----a-w- c:\windows\system32\drivers\FNETTBOH_305.SYS2013-08-09 04:59 . 2013-08-09 04:59 69344 ----a-w- c:\windows\system32\TurboShell_105.dll2013-08-09 04:59 . 2013-08-09 04:59 -------- d-----w- c:\users\Ale\AppData\Roaming\FNET2013-08-09 04:59 . 2013-08-09 04:59 16648 ----a-w- c:\windows\system32\drivers\FNETURPX.SYS2013-08-09 04:59 . 2013-08-09 04:59 -------- d-----w- c:\programdata\FNET2013-08-09 04:59 . 2013-08-09 04:59 -------- d-----w- c:\program files (x86)\XFastUSB2013-08-09 04:58 . 2013-08-09 04:58 -------- d-----w- c:\users\Ale\AppData\Local\Programs2013-08-09 04:57 . 2013-08-09 04:57 22280 ----a-w- c:\windows\SysWow64\drivers\AsrDrv101.sys2013-08-08 21:04 . 2013-04-11 03:10 785904 ----a-w- c:\windows\system32\drivers\iusb3xhc.sys2013-08-08 21:04 . 2013-04-11 03:10 366576 ----a-w- c:\windows\system32\drivers\iusb3hub.sys..((((((((((((((((((((((((((((((((((((( Relatório Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))).2013-08-13 20:25 . 2013-05-04 22:38 78161360 ----a-w- c:\windows\system32\MRT.exe2013-07-25 04:32 . 2013-05-04 21:54 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-07-25 04:32 . 2013-05-04 21:54 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2013-07-20 04:51 . 2013-07-20 04:51 311608 ----a-w- c:\windows\system32\drivers\avgloga.sys2013-07-20 04:50 . 2013-07-20 04:50 71480 ----a-w- c:\windows\system32\drivers\avgidsha.sys2013-07-20 04:50 . 2013-07-20 04:50 246072 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys2013-07-20 04:50 . 2013-07-20 04:50 206648 ----a-w- c:\windows\system32\drivers\avgldx64.sys2013-07-14 01:17 . 2013-07-25 05:55 7694808 ----a-w- c:\windows\SysWow64\nvcuda.dll2013-07-14 01:17 . 2013-07-25 05:55 2630304 ----a-w- c:\windows\SysWow64\nvapi.dll2013-07-14 01:17 . 2013-07-25 05:55 7648000 ----a-w- c:\windows\system32\nvopencl.dll2013-07-14 01:17 . 2013-07-25 05:55 6329552 ----a-w- c:\windows\SysWow64\nvopencl.dll2013-07-14 01:17 . 2013-07-25 05:55 632096 ----a-w- c:\windows\system32\NvFBC64.dll2013-07-14 01:17 . 2013-07-25 05:55 603424 ----a-w- c:\windows\system32\NvIFR64.dll2013-07-14 01:17 . 2013-07-25 05:55 458528 ----a-w- c:\windows\system32\nvEncodeAPI64.dll2013-07-14 01:17 . 2013-07-25 05:55 387536 ----a-w- c:\windows\system32\nvinitx.dll2013-07-14 01:17 . 2013-07-25 05:55 326224 ----a-w- c:\windows\SysWow64\nvinit.dll2013-07-14 01:17 . 2013-07-25 05:55 2985648 ----a-w- c:\windows\system32\nvapi64.dll2013-07-14 01:17 . 2013-07-25 05:55 2968352 ----a-w- c:\windows\system32\nvcuvid.dll2013-07-14 01:17 . 2013-07-25 05:55 29335328 ----a-w- c:\windows\system32\nvoglv64.dll2013-07-14 01:17 . 2013-07-25 05:55 2789152 ----a-w- c:\windows\SysWow64\nvcuvid.dll2013-07-14 01:17 . 2013-07-25 05:55 25256224 ----a-w- c:\windows\system32\nvcompiler.dll2013-07-14 01:17 . 2013-07-25 05:55 22100256 ----a-w- c:\windows\SysWow64\nvoglv32.dll2013-07-14 01:17 . 2013-07-25 05:55 2007328 ----a-w- c:\windows\SysWow64\nvcuvenc.dll2013-07-14 01:17 . 2013-07-25 05:55 2007328 ----a-w- c:\windows\system32\nvcuvenc.dll2013-07-14 01:17 . 2013-07-25 05:55 15890648 ----a-w- c:\windows\system32\nvwgf2umx.dll2013-07-14 01:17 . 2013-07-25 05:55 1412832 ----a-w- c:\windows\system32\nvumdshimx.dll2013-07-14 01:17 . 2013-07-25 05:55 13621504 ----a-w- c:\windows\SysWow64\nvwgf2um.dll2013-07-14 01:17 . 2013-07-25 05:55 1222824 ----a-w- c:\windows\SysWow64\nvumdshim.dll2013-07-14 01:17 . 2013-07-25 05:55 11244320 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys2013-07-14 01:17 . 2013-07-25 05:55 9248072 ----a-w- c:\windows\system32\nvcuda.dll2013-07-14 01:17 . 2013-07-25 05:55 517408 ----a-w- c:\windows\SysWow64\NvFBC.dll2013-07-14 01:17 . 2013-07-25 05:55 515360 ----a-w- c:\windows\SysWow64\NvIFR.dll2013-07-14 01:17 . 2013-07-25 05:55 388384 ----a-w- c:\windows\SysWow64\nvEncodeAPI.dll2013-07-14 01:17 . 2013-07-25 05:55 317472 ----a-w- c:\windows\system32\nvoglshim64.dll2013-07-14 01:17 . 2013-07-25 05:55 266984 ----a-w- c:\windows\SysWow64\nvoglshim32.dll2013-07-14 01:17 . 2013-07-25 05:55 1882912 ----a-w- c:\windows\system32\nvdispco6432619.dll2013-07-14 01:17 . 2013-07-25 05:55 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll2013-07-14 01:17 . 2013-07-25 05:55 15631064 ----a-w- c:\windows\system32\nvd3dumx.dll2013-07-14 01:17 . 2013-07-25 05:55 1511712 ----a-w- c:\windows\system32\nvdispgenco6432619.dll2013-07-14 01:17 . 2013-07-25 05:55 12880928 ----a-w- c:\windows\SysWow64\nvd3dum.dll2013-07-13 18:24 . 2013-07-13 18:24 571168 ----a-w- c:\windows\SysWow64\nvStreaming.exe2013-07-10 04:32 . 2013-07-10 04:32 45880 ----a-w- c:\windows\system32\drivers\avgrkx64.sys2013-07-09 04:45 . 2013-08-13 20:22 44032 ----a-w- c:\windows\apppatch\acwow64.dll2013-07-01 04:45 . 2013-07-01 04:45 116536 ----a-w- c:\windows\system32\drivers\avgmfx64.sys2013-06-30 01:12 . 2013-06-30 01:12 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll2013-06-13 00:48 . 2013-05-04 23:08 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll2013-06-13 00:48 . 2013-05-04 23:08 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll2013-06-13 00:47 . 2013-06-22 01:21 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll2013-06-05 03:34 . 2013-07-09 21:23 3153920 ----a-w- c:\windows\system32\win32k.sys2013-06-04 06:00 . 2013-07-09 21:24 624128 ----a-w- c:\windows\system32\qedit.dll2013-06-04 04:53 . 2013-07-09 21:24 509440 ----a-w- c:\windows\SysWow64\qedit.dll2012-08-30 13:47 . 2012-08-30 13:47 68792 ----a-w- c:\program files\fraps64.dat2012-08-30 13:47 . 2012-08-30 13:47 2369720 ----a-w- c:\program files\fraps.exe2012-08-30 13:46 . 2012-08-30 13:46 139776 ----a-w- c:\program files\frapslcd.dll2012-08-30 13:20 . 2012-08-30 13:20 234168 ----a-w- c:\program files\fraps32.dll2012-08-30 13:20 . 2012-08-30 13:20 186552 ----a-w- c:\program files\fraps64.dll..(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))..*Nota* entradas vazias e legítimas por padrão não são apresentadas. REGEDIT4.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-11 292848]"XFastUSB"="c:\program files (x86)\XFastUSB\XFastUsb.exe" [2013-08-09 6313664]"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-07-01 4411440].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe""TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe".R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R3 AsrDrv101;AsrDrv101;c:\windows\SysWOW64\Drivers\AsrDrv101.sys;c:\windows\SysWOW64\Drivers\AsrDrv101.sys [x]R3 AxtuDrv;AxtuDrv;c:\windows\SysWOW64\Drivers\AxtuDrv.sys;c:\windows\SysWOW64\Drivers\AxtuDrv.sys [x]R3 D-Vitec;D-Vitec Driver;c:\windows\system32\DRIVERS\dvitdcnt.sys;c:\windows\SYSNATIVE\DRIVERS\dvitdcnt.sys [x]R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]R3 FNETTBOH_305;FNETTBOH_305;c:\windows\system32\drivers\FNETTBOH_305.SYS;c:\windows\SYSNATIVE\drivers\FNETTBOH_305.SYS [x]R3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]R3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]R4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]R4 tor;Tor Win32 Service;c:\program files (x86)\Tor\tor.exe;c:\program files (x86)\Tor\tor.exe [x]S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AsrAppCharger.sys [x]S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]S1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS;c:\windows\SYSNATIVE\drivers\FNETURPX.SYS [x]S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe;c:\program files (x86)\AVG\AVG2013\avgfws.exe [x]S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]S2 Intel® ME Service;Intel® ME Service;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [x]S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x]S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]S3 ALSysIO;ALSysIO;c:\users\ALE\APPDATA\LOCAL\TEMP\ALSysIO64.sys;c:\users\ALE\APPDATA\LOCAL\TEMP\ALSysIO64.sys [x]S3 e1dexpress;Intel® PRO/1000 PCI Express Network Connection Driver D;c:\windows\system32\DRIVERS\e1d62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1d62x64.sys [x]S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]S3 ISCT;Intel® Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]S3 RTCore64;RTCore64;c:\program files (x86)\EVGA Precision X\RTCore64.sys;c:\program files (x86)\EVGA Precision X\RTCore64.sys [x]..--- =Outros Serviços/Drivers Na Memória ---.*NewlyCreated* - ALSYSIO*Deregistered* - TuneUpUtilitiesDrv.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2013-08-22 07:35 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe.Conteúdo da pasta 'Tarefas Agendadas'.2013-08-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-04 23:04].2013-08-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-04 23:04]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-29 13513288]"XFast LAN"="c:\program files\ASRock\XFast LAN\cFosSpeed.exe" [2011-10-19 1441152]"IAStorIcon"="c:\program files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" [2013-04-30 36352].------- Scan Suplementar -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmTCP: DhcpNameServer = 192.168.1.1TCP: Interfaces\{3FE1642A-9F22-4AA0-9556-5EE8ABEC3815}: NameServer = 200.204.0.10 200.204.0.138.- - - - ORFÃOS REMOVIDOS - - - -.AddRemove-Fraps - c:\program files\uninstall.exeAddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe...--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="IFlashBroker5".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.11".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="IFlashBroker5".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).Tempo para conclusão: 2013-08-25 15:28:37ComboFix-quarantined-files.txt 2013-08-25 18:28ComboFix2.txt 2013-08-25 04:28.Pré-execução: 162.542.149.632 bytes freePós execução: 162.258.763.776 bytes free.- - End Of File - - 03038D0373083208D1FFED91969D1B34A36C5E4F47E84449FF07ED3517B43A31 Thanks again

Hi Gringo, everything is running fine, I can´t notice any problem at all . Here it goes the combofix report : ComboFix 13-08-22.01 - Ale 25/08/2013 1:26.1.4 - x64Microsoft Windows 7 Ultimate 6.1.7601.1.1252.55.1033.18.4023.2425 [GMT -3:00]Executando de: c:\users\Ale\Desktop\ComboFix.exeAV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))..c:\programdata\Tagesc:\programdata\Tages\100663362\Serial.txtc:\programdata\Tages\Priv.xeyc:\windows\SysWow64\frapsvid.dllc:\windows\SysWow64\tmp69A2.tmpc:\windows\SysWow64\tmp69A3.tmp..(((((((((((((((( Arquivos/Ficheiros criados de 2013-07-25 to 2013-08-25 ))))))))))))))))))))))))))))..2013-08-24 05:39 . 2013-08-24 05:39 -------- d-----w- c:\windows\ERUNT2013-08-24 05:05 . 2013-08-24 05:09 -------- d-----w- C:\AdwCleaner2013-08-23 23:49 . 2013-08-23 23:49 -------- d-----w- C:\$AVG2013-08-23 23:46 . 2013-08-24 00:06 -------- d-----w- c:\users\Ale\AppData\Local\Avg20132013-08-23 21:39 . 2013-08-23 21:51 -------- d-----w- c:\program files (x86)\Fallout 32013-08-23 21:39 . 2005-04-04 02:00 63488 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe2013-08-23 21:39 . 2013-08-23 21:39 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll2013-08-23 21:39 . 2013-08-23 21:39 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll2013-08-23 21:39 . 2005-04-04 02:02 753664 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll2013-08-23 21:39 . 2005-04-04 02:02 69714 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll2013-08-23 21:39 . 2005-04-04 02:01 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll2013-08-23 21:39 . 2005-04-04 02:00 184320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll2013-08-23 21:39 . 2005-04-04 01:59 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe2013-08-23 21:35 . 2013-08-23 21:51 -------- d-----w- c:\users\Ale\AppData\Local\Fallout32013-08-23 17:49 . 2012-08-23 14:31 35192 ----a-w- c:\windows\system32\TURegOpt.exe2013-08-23 17:49 . 2012-08-23 14:31 26488 ----a-w- c:\windows\system32\authuitu.dll2013-08-23 17:49 . 2012-08-23 14:31 21880 ----a-w- c:\windows\SysWow64\authuitu.dll2013-08-23 13:33 . 2013-08-23 13:33 -------- d-----w- c:\users\Ale\AppData\Roaming\AVG2013-08-23 13:32 . 2013-08-23 13:33 -------- d-----w- c:\programdata\AVG2013-08-23 13:32 . 2013-08-23 13:32 -------- d-sh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}2013-08-23 12:27 . 2013-08-23 12:27 -------- d-----w- c:\users\Ale\AppData\Roaming\TuneUp Software2013-08-23 12:26 . 2013-08-23 23:49 -------- d-----w- c:\program files (x86)\AVG2013-08-23 12:20 . 2013-08-25 03:49 -------- d-----w- c:\programdata\MFAData2013-08-23 12:20 . 2013-08-23 12:20 -------- d--h--w- c:\programdata\Common Files2013-08-23 12:20 . 2013-08-23 12:20 -------- d-----w- c:\users\Ale\AppData\Local\MFAData2013-08-23 11:22 . 2012-12-10 14:04 81920 ----a-w- c:\windows\eSellerateControl350.dll2013-08-23 11:22 . 2012-12-10 14:04 356352 ----a-w- c:\windows\eSellerateEngine.dll2013-08-23 11:22 . 2009-07-23 21:32 274432 ----a-w- c:\windows\SysWow64\ssleay32.dll2013-08-23 11:22 . 2009-07-23 21:32 1122304 ----a-w- c:\windows\SysWow64\libeay32.dll2013-08-23 11:22 . 2013-08-23 11:26 -------- d-----w- c:\program files (x86)\Bit Coin Miner Removal Tool2013-08-23 11:11 . 2013-08-23 11:11 -------- d-----w- c:\program files\Enigma Software Group2013-08-23 11:10 . 2013-08-23 11:28 -------- d-----w- c:\windows\8AE3CFB678B24F55A7BE618FCFF43A03.TMP2013-08-23 10:27 . 2013-08-20 03:46 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{815943B1-1EC2-4BF0-A56C-F3FFC3FFE37A}\mpengine.dll2013-08-23 10:01 . 2013-08-23 10:08 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)2013-08-23 04:27 . 2013-07-13 19:49 6598432 ----a-w- c:\windows\system32\nvcpl.dll2013-08-23 04:27 . 2013-07-13 19:49 3447072 ----a-w- c:\windows\system32\nvsvc64.dll2013-08-23 04:27 . 2013-07-13 19:48 911136 ----a-w- c:\windows\system32\nvvsvc.exe2013-08-23 04:27 . 2013-07-13 19:48 63776 ----a-w- c:\windows\system32\nvshext.dll2013-08-23 04:27 . 2013-07-13 19:48 3274475 ----a-w- c:\windows\system32\nvcoproc.bin2013-08-23 04:27 . 2013-07-13 19:48 219424 ----a-w- c:\windows\system32\nvmctray.dll2013-08-23 04:26 . 2013-08-23 04:26 -------- d-----w- c:\programdata\NVIDIA Corporation2013-08-23 04:26 . 2013-08-23 04:27 -------- d-----w- c:\program files (x86)\NVIDIA Corporation2013-08-22 23:45 . 2013-08-22 23:45 -------- d-----w- c:\users\Ale\AppData\Roaming\Malwarebytes2013-08-22 23:44 . 2013-08-23 02:57 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware2013-08-22 23:44 . 2013-08-22 23:44 -------- d-----w- c:\programdata\Malwarebytes2013-08-22 23:44 . 2013-04-04 17:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys2013-08-22 22:58 . 2013-08-22 23:03 -------- d-----w- c:\program files (x86)\Rockstar Games2013-08-22 22:02 . 2013-08-22 22:02 -------- d-----w- c:\users\Ale\AppData\Local\Intel_Corporation2013-08-22 22:00 . 2013-04-23 08:33 106496 ----a-w- c:\windows\SysWow64\IntelOpenCL32.dll2013-08-22 22:00 . 2013-04-23 08:29 142336 ----a-w- c:\windows\system32\IntelOpenCL64.dll2013-08-22 18:08 . 2013-04-23 08:30 24576 ----a-w- c:\windows\SysWow64\OpenCL.dll2013-08-22 18:08 . 2013-04-23 08:27 25088 ----a-w- c:\windows\system32\OpenCL.dll2013-08-22 17:09 . 2013-08-22 17:34 -------- d-----w- c:\users\Ale\AppData\Local\Microsoft Game Studios2013-08-21 05:04 . 2013-08-22 19:06 -------- d-----w- c:\users\Ale\AppData\Local\GameSpy2013-08-21 05:04 . 2013-08-21 05:16 -------- d-----w- c:\users\Ale\AppData\Local\ApplicationHistory2013-08-20 00:16 . 2013-08-20 00:16 -------- d--h--r- c:\users\Ale\AppData\Roaming\SecuROM2013-08-19 21:34 . 2013-08-25 00:10 -------- d-----w- c:\program files\Movies2013-08-19 21:32 . 2013-08-25 00:10 -------- d-----w- c:\program files\Screenshots2013-08-19 19:47 . 2013-08-19 19:47 -------- d-----w- c:\windows\SysWow64\URTTEMP2013-08-19 19:47 . 2013-08-19 19:47 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe2013-08-19 19:47 . 2013-08-19 19:47 66872 ----a-w- c:\windows\SysWow64\PnkBstrA.exe2013-08-19 19:47 . 2013-08-19 19:47 669184 ----a-w- c:\windows\SysWow64\pbsvc.exe2013-08-19 02:36 . 2013-08-22 17:34 -------- d-----w- c:\program files (x86)\Common Files\Microsoft Games2013-08-19 02:24 . 2013-08-22 17:09 -------- d-----w- c:\program files (x86)\Microsoft Games2013-08-17 21:39 . 2013-08-17 21:39 -------- d-----w- c:\windows\Sun2013-08-16 17:01 . 2013-08-16 17:01 -------- d-----w- c:\users\Ale\AppData\Local\SKIDROW2013-08-16 17:00 . 2013-08-16 17:01 -------- d-----w- c:\program files (x86)\Pinball FX22013-08-14 02:59 . 2003-04-19 03:39 6659 ----a-w- c:\windows\SysWow64\TANDPL.VXD2013-08-14 02:59 . 2003-04-19 03:32 4736 ----a-w- c:\windows\SysWow64\drivers\tandpl.sys2013-08-14 02:59 . 2003-03-02 20:44 7552 ----a-w- c:\windows\SysWow64\drivers\enodpl.sys2013-08-14 02:59 . 2001-08-31 18:16 6532 ----a-w- c:\windows\SysWow64\ENODPL.VXD2013-08-13 20:22 . 2013-07-19 01:58 2048 ----a-w- c:\windows\system32\tzres.dll2013-08-12 03:01 . 2013-08-12 03:07 -------- d-----w- c:\programdata\ASGVIS2013-08-12 00:30 . 2013-08-12 00:30 -------- d-----w- c:\program files (x86)\Common Files\Intel Corporation2013-08-12 00:26 . 2013-08-12 00:26 -------- d-----w- c:\users\Ale\AppData\Roaming\Intel Corporation2013-08-12 00:26 . 2013-08-12 00:26 -------- d-----w- c:\windows\SysWow64\config\systemprofile\Intel2013-08-12 00:26 . 2013-08-12 00:26 -------- d-----w- c:\users\Ale\Intel2013-08-10 18:03 . 2013-08-10 18:03 -------- d-----w- c:\users\Ale\AppData\Roaming\SketchUp2013-08-10 18:02 . 2013-08-10 18:02 -------- d-----w- c:\program files (x86)\SketchUp2013-08-10 17:49 . 2013-08-12 03:07 -------- d-----w- c:\program files (x86)\Google SketchUp 82013-08-10 16:33 . 2013-08-10 16:33 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help2013-08-10 02:55 . 2013-02-08 18:37 544568 ----a-w- c:\windows\system32\PROUnstl.exe2013-08-10 02:46 . 2011-05-10 19:28 17192 ----a-w- c:\windows\system32\drivers\AsrAppCharger.sys2013-08-10 02:46 . 2013-08-22 20:15 -------- d-----w- c:\program files\ASRock Utility2013-08-10 02:46 . 2013-08-10 02:46 -------- d-----w- c:\program files (x86)\ASM106xSATA2013-08-10 02:45 . 2011-09-11 06:41 88832 ----a-w- c:\windows\system32\drivers\EtronXHCI.sys2013-08-10 02:45 . 2011-09-11 06:41 65152 ----a-w- c:\windows\system32\drivers\EtronHub3.sys2013-08-10 02:45 . 2013-08-10 02:45 -------- d-----w- c:\program files (x86)\Etron Technology2013-08-10 02:44 . 2013-04-11 03:10 41984 ----a-w- c:\windows\system32\drivers\USB3Ver.dll2013-08-10 02:43 . 2013-03-12 16:19 16344 ----a-w- c:\windows\system32\drivers\IntelMEFWVer.dll2013-08-10 02:43 . 2013-08-12 00:26 -------- d-----w- c:\programdata\Intel2013-08-10 02:43 . 2013-08-22 20:59 -------- d-----w- c:\program files\Intel2013-08-10 02:42 . 2013-08-10 02:42 -------- d-----w- c:\program files (x86)\Common Files\postureAgent2013-08-10 02:42 . 2013-03-12 16:19 64624 ----a-w- c:\windows\system32\drivers\HECIx64.sys2013-08-10 02:36 . 2013-08-10 02:40 -------- d-----w- c:\windows\SysWow64\RTCOM2013-08-10 02:36 . 2013-08-10 02:36 -------- d-----w- c:\program files\Realtek2013-08-10 02:34 . 2013-08-22 22:00 -------- d-----w- c:\program files (x86)\Intel2013-08-10 02:34 . 2013-02-27 18:37 53248 ----a-w- c:\windows\SysWow64\CSVer.dll2013-08-10 02:33 . 2013-08-10 02:33 -------- d-----w- C:\Intel2013-08-10 01:45 . 2013-08-10 01:45 -------- d-----w- c:\programdata\Protexis642013-08-10 01:45 . 2013-08-10 01:45 -------- d-----w- c:\users\Ale\AppData\Roaming\Corel2013-08-10 01:38 . 2013-08-10 01:44 -------- d-----w- c:\programdata\CorelDRAW Graphics Suite X62013-08-10 01:35 . 2013-08-22 17:39 -------- d-----w- c:\program files\Benchmarks2013-08-09 17:06 . 2013-08-22 20:12 -------- d-----w- c:\users\Ale\AppData\Local\CrashDumps2013-08-09 16:48 . 2013-08-22 20:56 -------- d-----w- c:\program files (x86)\RivaTuner Statistics Server2013-08-09 05:03 . 2013-08-09 05:03 -------- d-----w- c:\users\Ale\AppData\Local\cFos2013-08-09 05:03 . 2013-08-09 05:03 -------- d-----w- c:\program files\ASRock2013-08-09 05:03 . 2011-07-04 18:19 1632128 ----a-w- c:\windows\system32\drivers\cfosspeed6.sys2013-08-09 05:02 . 2013-08-09 05:02 -------- d-----w- c:\programdata\cFos2013-08-09 04:59 . 2013-08-25 00:34 32320 ----a-w- c:\windows\system32\drivers\FNETTBOH_305.SYS2013-08-09 04:59 . 2013-08-09 04:59 69344 ----a-w- c:\windows\system32\TurboShell_105.dll2013-08-09 04:59 . 2013-08-09 04:59 -------- d-----w- c:\users\Ale\AppData\Roaming\FNET2013-08-09 04:59 . 2013-08-09 04:59 16648 ----a-w- c:\windows\system32\drivers\FNETURPX.SYS2013-08-09 04:59 . 2013-08-09 04:59 -------- d-----w- c:\programdata\FNET2013-08-09 04:59 . 2013-08-09 04:59 -------- d-----w- c:\program files (x86)\XFastUSB..((((((((((((((((((((((((((((((((((((( Relatório Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))).2013-08-13 20:25 . 2013-05-04 22:38 78161360 ----a-w- c:\windows\system32\MRT.exe2013-07-25 04:32 . 2013-05-04 21:54 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2013-07-25 04:32 . 2013-05-04 21:54 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2013-07-20 04:51 . 2013-07-20 04:51 311608 ----a-w- c:\windows\system32\drivers\avgloga.sys2013-07-20 04:50 . 2013-07-20 04:50 71480 ----a-w- c:\windows\system32\drivers\avgidsha.sys2013-07-20 04:50 . 2013-07-20 04:50 246072 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys2013-07-20 04:50 . 2013-07-20 04:50 206648 ----a-w- c:\windows\system32\drivers\avgldx64.sys2013-07-14 01:17 . 2013-07-25 05:55 7694808 ----a-w- c:\windows\SysWow64\nvcuda.dll2013-07-14 01:17 . 2013-07-25 05:55 2630304 ----a-w- c:\windows\SysWow64\nvapi.dll2013-07-14 01:17 . 2013-07-25 05:55 7648000 ----a-w- c:\windows\system32\nvopencl.dll2013-07-14 01:17 . 2013-07-25 05:55 6329552 ----a-w- c:\windows\SysWow64\nvopencl.dll2013-07-14 01:17 . 2013-07-25 05:55 632096 ----a-w- c:\windows\system32\NvFBC64.dll2013-07-14 01:17 . 2013-07-25 05:55 603424 ----a-w- c:\windows\system32\NvIFR64.dll2013-07-14 01:17 . 2013-07-25 05:55 458528 ----a-w- c:\windows\system32\nvEncodeAPI64.dll2013-07-14 01:17 . 2013-07-25 05:55 387536 ----a-w- c:\windows\system32\nvinitx.dll2013-07-14 01:17 . 2013-07-25 05:55 326224 ----a-w- c:\windows\SysWow64\nvinit.dll2013-07-14 01:17 . 2013-07-25 05:55 2985648 ----a-w- c:\windows\system32\nvapi64.dll2013-07-14 01:17 . 2013-07-25 05:55 2968352 ----a-w- c:\windows\system32\nvcuvid.dll2013-07-14 01:17 . 2013-07-25 05:55 29335328 ----a-w- c:\windows\system32\nvoglv64.dll2013-07-14 01:17 . 2013-07-25 05:55 2789152 ----a-w- c:\windows\SysWow64\nvcuvid.dll2013-07-14 01:17 . 2013-07-25 05:55 25256224 ----a-w- c:\windows\system32\nvcompiler.dll2013-07-14 01:17 . 2013-07-25 05:55 22100256 ----a-w- c:\windows\SysWow64\nvoglv32.dll2013-07-14 01:17 . 2013-07-25 05:55 2007328 ----a-w- c:\windows\SysWow64\nvcuvenc.dll2013-07-14 01:17 . 2013-07-25 05:55 2007328 ----a-w- c:\windows\system32\nvcuvenc.dll2013-07-14 01:17 . 2013-07-25 05:55 15890648 ----a-w- c:\windows\system32\nvwgf2umx.dll2013-07-14 01:17 . 2013-07-25 05:55 1412832 ----a-w- c:\windows\system32\nvumdshimx.dll2013-07-14 01:17 . 2013-07-25 05:55 13621504 ----a-w- c:\windows\SysWow64\nvwgf2um.dll2013-07-14 01:17 . 2013-07-25 05:55 1222824 ----a-w- c:\windows\SysWow64\nvumdshim.dll2013-07-14 01:17 . 2013-07-25 05:55 11244320 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys2013-07-14 01:17 . 2013-07-25 05:55 9248072 ----a-w- c:\windows\system32\nvcuda.dll2013-07-14 01:17 . 2013-07-25 05:55 517408 ----a-w- c:\windows\SysWow64\NvFBC.dll2013-07-14 01:17 . 2013-07-25 05:55 515360 ----a-w- c:\windows\SysWow64\NvIFR.dll2013-07-14 01:17 . 2013-07-25 05:55 388384 ----a-w- c:\windows\SysWow64\nvEncodeAPI.dll2013-07-14 01:17 . 2013-07-25 05:55 317472 ----a-w- c:\windows\system32\nvoglshim64.dll2013-07-14 01:17 . 2013-07-25 05:55 266984 ----a-w- c:\windows\SysWow64\nvoglshim32.dll2013-07-14 01:17 . 2013-07-25 05:55 1882912 ----a-w- c:\windows\system32\nvdispco6432619.dll2013-07-14 01:17 . 2013-07-25 05:55 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll2013-07-14 01:17 . 2013-07-25 05:55 15631064 ----a-w- c:\windows\system32\nvd3dumx.dll2013-07-14 01:17 . 2013-07-25 05:55 1511712 ----a-w- c:\windows\system32\nvdispgenco6432619.dll2013-07-14 01:17 . 2013-07-25 05:55 12880928 ----a-w- c:\windows\SysWow64\nvd3dum.dll2013-07-13 18:24 . 2013-07-13 18:24 571168 ----a-w- c:\windows\SysWow64\nvStreaming.exe2013-07-10 04:32 . 2013-07-10 04:32 45880 ----a-w- c:\windows\system32\drivers\avgrkx64.sys2013-07-09 04:45 . 2013-08-13 20:22 44032 ----a-w- c:\windows\apppatch\acwow64.dll2013-07-01 04:45 . 2013-07-01 04:45 116536 ----a-w- c:\windows\system32\drivers\avgmfx64.sys2013-06-30 01:12 . 2013-06-30 01:12 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll2013-06-13 00:48 . 2013-05-04 23:08 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll2013-06-13 00:48 . 2013-05-04 23:08 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll2013-06-13 00:47 . 2013-06-22 01:21 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll2013-06-05 03:34 . 2013-07-09 21:23 3153920 ----a-w- c:\windows\system32\win32k.sys2013-06-04 06:00 . 2013-07-09 21:24 624128 ----a-w- c:\windows\system32\qedit.dll2013-06-04 04:53 . 2013-07-09 21:24 509440 ----a-w- c:\windows\SysWow64\qedit.dll2012-08-30 13:47 . 2012-08-30 13:47 68792 ----a-w- c:\program files\fraps64.dat2012-08-30 13:47 . 2012-08-30 13:47 2369720 ----a-w- c:\program files\fraps.exe2012-08-30 13:46 . 2012-08-30 13:46 139776 ----a-w- c:\program files\frapslcd.dll2012-08-30 13:20 . 2012-08-30 13:20 234168 ----a-w- c:\program files\fraps32.dll2012-08-30 13:20 . 2012-08-30 13:20 186552 ----a-w- c:\program files\fraps64.dll..(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))..*Nota* entradas vazias e legítimas por padrão não são apresentadas. REGEDIT4.[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2012-01-05 75624]"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"USB3MON"="c:\program files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-11 292848]"XFastUSB"="c:\program files (x86)\XFastUSB\XFastUsb.exe" [2013-08-09 6313664]"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-07-01 4411440].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 5 (0x5)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableUIADesktopToggle"= 0 (0x0).[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe""TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe".R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]R3 AsrDrv101;AsrDrv101;c:\windows\SysWOW64\Drivers\AsrDrv101.sys;c:\windows\SysWOW64\Drivers\AsrDrv101.sys [x]R3 AxtuDrv;AxtuDrv;c:\windows\SysWOW64\Drivers\AxtuDrv.sys;c:\windows\SysWOW64\Drivers\AxtuDrv.sys [x]R3 D-Vitec;D-Vitec Driver;c:\windows\system32\DRIVERS\dvitdcnt.sys;c:\windows\SYSNATIVE\DRIVERS\dvitdcnt.sys [x]R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]R3 FNETTBOH_305;FNETTBOH_305;c:\windows\system32\drivers\FNETTBOH_305.SYS;c:\windows\SYSNATIVE\drivers\FNETTBOH_305.SYS [x]R3 Intel® Capability Licensing Service TCP IP Interface;Intel® Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]R4 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]R4 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]R4 Intel® ME Service;Intel® ME Service;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [x]R4 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [x]R4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]R4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]R4 tor;Tor Win32 Service;c:\program files (x86)\Tor\tor.exe;c:\program files (x86)\Tor\tor.exe [x]S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AsrAppCharger.sys [x]S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]S1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS;c:\windows\SYSNATIVE\drivers\FNETURPX.SYS [x]S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe;c:\program files (x86)\AVG\AVG2013\avgfws.exe [x]S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe;c:\windows\SYSNATIVE\IProsetMonitor.exe [x]S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]S3 ALSysIO;ALSysIO;c:\users\ALE\APPDATA\LOCAL\TEMP\ALSysIO64.sys;c:\users\ALE\APPDATA\LOCAL\TEMP\ALSysIO64.sys [x]S3 e1dexpress;Intel® PRO/1000 PCI Express Network Connection Driver D;c:\windows\system32\DRIVERS\e1d62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1d62x64.sys [x]S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]S3 ISCT;Intel® Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]S3 iusb3hub;Intel® USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]S3 RTCore64;RTCore64;c:\program files (x86)\EVGA Precision X\RTCore64.sys;c:\program files (x86)\EVGA Precision X\RTCore64.sys [x]S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]..[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]2013-08-22 07:35 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe.Conteúdo da pasta 'Tarefas Agendadas'.2013-08-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-04 23:04].2013-08-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-04 23:04]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2013-04-24 7477016]"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-29 13513288]"XFast LAN"="c:\program files\ASRock\XFast LAN\cFosSpeed.exe" [2011-10-19 1441152]"IAStorIcon"="c:\program files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe" [2013-04-30 36352].------- Scan Suplementar -------.uLocal Page = c:\windows\system32\blank.htmmLocal Page = c:\windows\SysWOW64\blank.htmTCP: DhcpNameServer = 192.168.1.1TCP: Interfaces\{3FE1642A-9F22-4AA0-9556-5EE8ABEC3815}: NameServer = 200.204.0.10 200.204.0.138.- - - - ORFÃOS REMOVIDOS - - - -.HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - startAddRemove-Fraps - c:\program files\uninstall.exeAddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe...--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="IFlashBroker5".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.11".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]@Denied: (A 2) (Everyone)@="IFlashBroker5".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).Tempo para conclusão: 2013-08-25 01:28:46ComboFix-quarantined-files.txt 2013-08-25 04:28.Pré-execução: 165.592.199.168 bytes freePós execução: 165.643.554.816 bytes free.- - End Of File - - 39A9570AC97BFF80BCDD9AB30854E328A36C5E4F47E84449FF07ED3517B43A31 waiting for your conclusion, THANKS

Hi Gringo, thanks for your help , now everything seems to running fine. I put below the text that you asked me. Do you think it´s necessary to do something else ? # AdwCleaner v3.000 - Report created 24/08/2013 at 02:05:47 # Updated 20/08/2013 by Xplode# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)# Username : Ale - ALE-PC# Running from : C:\Users\Ale\Downloads\AdwCleaner.exe# Option : Scan ***** [ Services ] ***** ***** [ Files / Folders ] ***** File Found : C:\Program Files\Uninstall.exeFolder Found C:\ProgramData\ParetoLogicFolder Found C:\Users\Ale\AppData\Roaming\DriverCureFolder Found C:\Users\Ale\AppData\Roaming\ParetoLogic ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}Key Found : [x64] HKLM\SOFTWARE\Tarma Installer ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16660 -\\ Google Chrome v29.0.1547.57 [ File : C:\Users\Ale\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1100 octets] - [24/08/2013 02:05:47] ########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1160 octets] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Junkware Removal Tool (JRT) by ThisisuVersion: 5.5.4 (08.22.2013:1)OS: Windows 7 Ultimate x64Ran by Ale on 24/08/2013 at 2:39:12,78~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Scan was completed on 24/08/2013 at 2:48:00,49End of JRT log~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Thanks again

Thanks daledoc1, I´ve just started this topic in the right place. kind regards

Hi guys, I´ve tried a lot of softs and recommendations but none of them were able to completely remove bitcoiminer and svchost. Please , could someone help me? thanks in advance dds.txt attach.txt