Hello:
I have a PC running on windows XP, and lately I keep getting a message that my hard drive is running out of space. I have deleted several videos and over 2GB of memory space, but keep getting the out of space message, and in fact when I check my disk space is always back to zero free space. Looks like something is constantly eating up my free memory, even though I´m not downloading anything new anymore.
I appreciate any help you could provide.
Following is the DDS.TXT, and attached is the zipped attached.zip file containing ark.txt and attach.txt.
This is the only forum I´m posting this problem.
Thanks!
Robert
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_33
Run by Robi at 18:06:41 on 2013-03-16
Microsoft Windows XP Home Edition 5.1.2600.3.1252.55.1046.18.1022.331 [GMT -3:00]
.
FW: Norton Internet Worm Protection *Disabled*
.
============== Running Processes ================
.
C:\ARQUIV~1\GbPlugin\GbpSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Arquivos de programas\AVG\AVG9\avgchsvx.exe
C:\Arquivos de programas\AVG\AVG9\avgrsx.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe
C:\Arquivos de programas\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\Explorer.EXE
C:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe
C:\Arquivos de programas\Bonjour\mDNSResponder.exe
C:\Arquivos de programas\Java\jre6\bin\jqs.exe
C:\Arquivos de programas\LogMeIn\x86\LMIGuardianSvc.exe
C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Arquivos de programas\AVG\AVG9\avgnsx.exe
C:\Arquivos de programas\Microsoft LifeCam\MSCamSvc.exe
C:\Arquivos de programas\Arquivos comuns\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
C:\WINDOWS\CTHELPER.EXE
C:\Arquivos de Programas\CyberLink\PowerDVD\DVDLauncher.exe
C:\Arquivos de programas\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE
C:\Arquivos de programas\Creative\Shared Files\Module Loader\DLLML.exe
C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Arquivos de programas\Arquivos comuns\Logitech\QCDriver3\LVCOMS.EXE
C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\vVX1000.exe
C:\ARQUIV~1\AVG\AVG9\avgtray.exe
C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe
C:\Arquivos de programas\AVG Secure Search\vprot.exe
C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe
C:\Arquivos de programas\DivX\DivX Update\DivXUpdate.exe
C:\Arquivos de programas\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Akamai\netsession_win.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Facebook\Update\FacebookUpdate.exe
C:\Arquivos de programas\iPod\bin\iPodService.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Akamai\netsession_win.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.globo.com.br/
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://www1.la.dell.com/content/default.aspx?c=br&l=pt&s=gen
uInternet Connection Wizard,ShellNext = iexplore
uProxyOverride = localhost;127.0.0.1:9421;<local>;*.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>
BHO: AcroIEHlprObj Class: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\arquivos de programas\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: Skype add-on (mastermind): {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - c:\arquivos de programas\skype\phone\ieplugin\SkypeIEPlugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\arquivos de programas\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\arquivos de programas\avg\avg9\avgssie.dll
BHO: DriveLetterAccess: {5CA3D70E-1895-11CF-8E15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\arquivos de programas\java\jre6\bin\ssv.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\arquivos de programas\avg secure search\14.2.0.1\AVG Secure Search_toolbar.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\arquivos de programas\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\arquivos de programas\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - c:\arquivos de programas\gbplugin\gbieh.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540003} - c:\arquivos de programas\gbplugin\gbiehcef.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540007} - c:\arquivos de programas\gbplugin\gbiehabn.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - c:\arquivos de programas\gbplugin\gbiehuni.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\arquivos de programas\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\arquivos de programas\google\google toolbar\GoogleToolbar_32.dll
TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\arquivos de programas\avg secure search\14.2.0.1\AVG Secure Search_toolbar.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\arquivos de programas\google\google toolbar\GoogleToolbar_32.dll
EB: Real.com: {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\shdocvw.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\robi\configurações locais\dados de aplicativos\google\update\GoogleUpdate.exe" /c
uRun: [Akamai NetSession Interface] "c:\documents and settings\robi\configurações locais\dados de aplicativos\akamai\netsession_win.exe"
uRun: [Facebook Update] "c:\documents and settings\robi\configurações locais\dados de aplicativos\facebook\update\FacebookUpdate.exe" /c /nocrashserver
uRun: [swg] "c:\arquivos de programas\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [CTHelper] CTHELPER.EXE
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [ATIPTA] "c:\arquivos de programas\ati technologies\ati control panel\atiptaxx.exe"
mRun: [DVDLauncher] "c:\arquivos de programas\cyberlink\powerdvd\DVDLauncher.exe"
mRun: [CTDVDDET] "c:\arquivos de programas\creative\sound blaster x-fi\dvdaudio\CTDVDDET.EXE"
mRun: [VolPanel] "c:\arquivos de programas\creative\sound blaster x-fi\volume panel\VolPanel.exe" /r
mRun: [AudioDrvEmulator] "c:\arquivos de programas\creative\shared files\module loader\dllml.exe" -1 audiodrvemulator "c:\arquivos de programas\creative\shared files\module loader\audio emulator\AudDrvEm.dll"
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [ISUSPM Startup] c:\arquiv~1\arquiv~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\arquivos de programas\arquivos comuns\installshield\updateservice\issch.exe" -start
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [DXM6Patch_981116] c:\windows\p_981116.exe /Q:A
mRun: [LVCOMS] c:\arquivos de programas\arquivos comuns\logitech\qcdriver3\LVCOMS.EXE
mRun: [TkBellExe] "c:\arquivos de programas\arquivos comuns\real\update_ob\realsched.exe" -osboot
mRun: [LifeCam] "c:\arquivos de programas\microsoft lifecam\LifeExp.exe"
mRun: [VX1000] c:\windows\vVX1000.exe
mRun: [AppleSyncNotifier] c:\arquivos de programas\arquivos comuns\apple\mobile device support\AppleSyncNotifier.exe
mRun: [AVG9_TRAY] c:\arquiv~1\avg\avg9\avgtray.exe
mRun: [LogMeIn GUI] "c:\arquivos de programas\logmein\x86\LogMeInSystray.exe"
mRun: [vProt] "c:\arquivos de programas\avg secure search\vprot.exe"
mRun: [APSDaemon] "c:\arquivos de programas\arquivos comuns\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\arquivos de programas\quicktime\qttask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\arquivos de programas\arquivos comuns\java\java update\jusched.exe"
mRun: [DivXUpdate] "c:\arquivos de programas\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -k
mRun: [iTunesHelper] "c:\arquivos de programas\itunes\iTunesHelper.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\documents and settings\robi\menu iniciar\programas\inicializar\PowerReg Scheduler.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xportar para o Microsoft Excel - c:\arquiv~1\micros~2\office11\EXCEL.EXE/3000
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\arquivos de programas\skype\phone\ieplugin\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} - hxxps://lnmai002.cs-apps.carestreamhealth.com/iNotes6W.cab
DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} - hxxp://dl.tvunetworks.com/TVUAx.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe
DPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.realsecureweb.com.br/mpr/plugin/Cab/GbPluginABN.cab
DPF: {E37CB5F0-51F5-4395-A808-5FA49E399008} - hxxps://clickbanking.unibanco.com.br/GbPlugin/cab/GbPluginUni.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\arquivos de programas\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg9\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\arquivos de programas\arquivos comuns\skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\arquivos de programas\arquivos comuns\avg secure search\viprotocolinstaller\14.2.0\ViProtocol.dll
Notify: GbPluginAbn - c:\arquiv~1\gbplugin\gbiehabn.dll
Notify: GbPluginBb - c:\arquivos de programas\gbplugin\gbieh.dll
Notify: GbPluginCef - c:\arquivos de programas\gbplugin\gbiehCef.dll
Notify: GbPluginUni - c:\arquivos de programas\gbplugin\gbiehUni.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: LMIinit - LMIinit.dll
Notify: __GbPluginAbn - c:\arquivos de programas\gbplugin\gbiehabn.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - c:\arquivos de programas\gbplugin\gbiehabn.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - c:\arquivos de programas\gbplugin\gbiehuni.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - c:\arquivos de programas\gbplugin\gbieh.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - c:\arquivos de programas\gbplugin\gbiehcef.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\
FF - prefs.js: keyword.URL - hxxps://isearch.avg.com/search?cid={1138D44F-8332-4E14-AECC-48F3AAE26781}&mid=8af6d69a6b7b2c8d0e39e24602555d50-a7d8e55384477400ae5f548351c8b020d809b66c&lang=pt-br&ds=AVG&pr=fr&d=2011-12-04 09:05:06&v=12.2.5.32&sap=ku&q=
FF - component: c:\arquivos de programas\avg\avg9\firefox\components\avgssff.dll
FF - component: c:\arquivos de programas\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\arquivos de programas\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\arquivos de programas\avg\avg9\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - component: c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e8873}\components\GbMzhUni.dll
FF - component: c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e8874}\components\GbMzhAbn.dll
FF - plugin: c:\arquivos de programas\arquivos comuns\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll
FF - plugin: c:\arquivos de programas\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\arquivos de programas\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\arquivos de programas\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\arquivos de programas\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\arquivos de programas\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\npdeployJava1.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\npjpi160_33.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\npoji610.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\arquivos de programas\virtools\3d life player\npvirtools.dll
FF - plugin: c:\documents and settings\robi\configuraã§ãµes locais\dados de aplicativos\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\documents and settings\robi\dados de aplicativos\move networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\Npindeo.dll
FF - plugin: c:\windows\system32\npwmsdrm.dll
.
============= SERVICES / DRIVERS ===============
.
R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2008-12-11 47720]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-6-16 226016]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-6-16 29712]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-6-16 243152]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-8-27 33112]
R2 Agendador do LiveUpdate automático;Agendador do LiveUpdate automático;c:\arquivos de programas\symantec\liveupdate\AluSchedulerSvc.exe [2006-4-2 100032]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2004-9-17 14336]
R2 avg9wd;AVG Free WatchDog;c:\arquivos de programas\avg\avg9\avgwdsvc.exe [2010-7-16 308136]
R2 GbpSv;Gbp Service;c:\arquiv~1\gbplugin\GbpSv.exe [2007-1-15 281448]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\arquivos de programas\logmein\x86\LMIGuardianSvc.exe [2011-6-8 374704]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\logmein\x86\rainfo.sys [2011-1-11 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2011-6-28 47640]
R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\arquivos de programas\arquivos comuns\avg secure search\vtoolbarupdater\14.2.0\ToolbarUpdater.exe [2013-2-20 968880]
S3 AR9271;Wireless Network Adapter Service;c:\windows\system32\drivers\athuw.sys [2013-2-11 1763584]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\arquivos de programas\avg\avg9\toolbar\ToolbarBroker.exe [2010-10-26 167264]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys --> c:\windows\system32\drivers\rt2870.sys [?]
S4 LMIRfsClientNP;LMIRfsClientNP; [x]
.
=============== File Associations ===============
.
ShellExec: EasyShare.exe: Preview="c:\arquivos de programas\kodak\kodak easyshare software\bin\EasyShare.exe"
.
=============== Created Last 30 ================
.
2013-02-17 21:14:53 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe
.
==================== Find3M ====================
.
2013-02-20 22:03:06 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-02-11 20:45:44 226016 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2013-01-26 03:55:46 552448 ------w- c:\windows\system32\oleaut32.dll
2013-01-07 07:25:44 2152960 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-07 07:25:12 2031616 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-04 10:09:58 1867392 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49:48 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49:48 1296896 ----a-w- c:\windows\system32\quartz.dll
2012-12-26 20:20:00 916480 ----a-w- c:\windows\system32\wininet.dll
2012-12-26 20:19:44 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-12-26 20:19:43 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2012-12-24 06:42:08 385024 ----a-w- c:\windows\system32\html.iec
.
============= FINISH: 18:09:22,23 ===============
I have a PC running on windows XP, and lately I keep getting a message that my hard drive is running out of space. I have deleted several videos and over 2GB of memory space, but keep getting the out of space message, and in fact when I check my disk space is always back to zero free space. Looks like something is constantly eating up my free memory, even though I´m not downloading anything new anymore.
I appreciate any help you could provide.
Following is the DDS.TXT, and attached is the zipped attached.zip file containing ark.txt and attach.txt.
This is the only forum I´m posting this problem.
Thanks!
Robert
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_33
Run by Robi at 18:06:41 on 2013-03-16
Microsoft Windows XP Home Edition 5.1.2600.3.1252.55.1046.18.1022.331 [GMT -3:00]
.
FW: Norton Internet Worm Protection *Disabled*
.
============== Running Processes ================
.
C:\ARQUIV~1\GbPlugin\GbpSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Arquivos de programas\AVG\AVG9\avgchsvx.exe
C:\Arquivos de programas\AVG\AVG9\avgrsx.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Arquivos de programas\AVG\AVG9\avgcsrvx.exe
C:\Arquivos de programas\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\Explorer.EXE
C:\Arquivos de programas\AVG\AVG9\avgwdsvc.exe
C:\Arquivos de programas\Bonjour\mDNSResponder.exe
C:\Arquivos de programas\Java\jre6\bin\jqs.exe
C:\Arquivos de programas\LogMeIn\x86\LMIGuardianSvc.exe
C:\Arquivos de programas\Google\Update\GoogleUpdate.exe
C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Arquivos de programas\AVG\AVG9\avgnsx.exe
C:\Arquivos de programas\Microsoft LifeCam\MSCamSvc.exe
C:\Arquivos de programas\Arquivos comuns\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
C:\WINDOWS\CTHELPER.EXE
C:\Arquivos de Programas\CyberLink\PowerDVD\DVDLauncher.exe
C:\Arquivos de programas\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE
C:\Arquivos de programas\Creative\Shared Files\Module Loader\DLLML.exe
C:\Arquivos de programas\Arquivos comuns\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Arquivos de programas\Arquivos comuns\Logitech\QCDriver3\LVCOMS.EXE
C:\Arquivos de programas\Arquivos comuns\Real\Update_OB\realsched.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\vVX1000.exe
C:\ARQUIV~1\AVG\AVG9\avgtray.exe
C:\Arquivos de programas\LogMeIn\x86\LogMeInSystray.exe
C:\Arquivos de programas\AVG Secure Search\vprot.exe
C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe
C:\Arquivos de programas\DivX\DivX Update\DivXUpdate.exe
C:\Arquivos de programas\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Google\Update\GoogleUpdate.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Akamai\netsession_win.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Facebook\Update\FacebookUpdate.exe
C:\Arquivos de programas\iPod\bin\iPodService.exe
C:\Documents and Settings\Robi\Configurações locais\Dados de aplicativos\Akamai\netsession_win.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k Akamai
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.globo.com.br/
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://www1.la.dell.com/content/default.aspx?c=br&l=pt&s=gen
uInternet Connection Wizard,ShellNext = iexplore
uProxyOverride = localhost;127.0.0.1:9421;<local>;*.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>
BHO: AcroIEHlprObj Class: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\arquivos de programas\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: Skype add-on (mastermind): {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - c:\arquivos de programas\skype\phone\ieplugin\SkypeIEPlugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - c:\arquivos de programas\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\arquivos de programas\avg\avg9\avgssie.dll
BHO: DriveLetterAccess: {5CA3D70E-1895-11CF-8E15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\arquivos de programas\java\jre6\bin\ssv.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\arquivos de programas\avg secure search\14.2.0.1\AVG Secure Search_toolbar.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\arquivos de programas\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\arquivos de programas\google\googletoolbarnotifier\5.7.8313.1002\swg.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540000} - c:\arquivos de programas\gbplugin\gbieh.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540003} - c:\arquivos de programas\gbplugin\gbiehcef.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540007} - c:\arquivos de programas\gbplugin\gbiehabn.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - c:\arquivos de programas\gbplugin\gbiehuni.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\arquivos de programas\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\arquivos de programas\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\arquivos de programas\google\google toolbar\GoogleToolbar_32.dll
TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\arquivos de programas\avg secure search\14.2.0.1\AVG Secure Search_toolbar.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\arquivos de programas\google\google toolbar\GoogleToolbar_32.dll
EB: Real.com: {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\shdocvw.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\robi\configurações locais\dados de aplicativos\google\update\GoogleUpdate.exe" /c
uRun: [Akamai NetSession Interface] "c:\documents and settings\robi\configurações locais\dados de aplicativos\akamai\netsession_win.exe"
uRun: [Facebook Update] "c:\documents and settings\robi\configurações locais\dados de aplicativos\facebook\update\FacebookUpdate.exe" /c /nocrashserver
uRun: [swg] "c:\arquivos de programas\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [CTHelper] CTHELPER.EXE
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [ATIPTA] "c:\arquivos de programas\ati technologies\ati control panel\atiptaxx.exe"
mRun: [DVDLauncher] "c:\arquivos de programas\cyberlink\powerdvd\DVDLauncher.exe"
mRun: [CTDVDDET] "c:\arquivos de programas\creative\sound blaster x-fi\dvdaudio\CTDVDDET.EXE"
mRun: [VolPanel] "c:\arquivos de programas\creative\sound blaster x-fi\volume panel\VolPanel.exe" /r
mRun: [AudioDrvEmulator] "c:\arquivos de programas\creative\shared files\module loader\dllml.exe" -1 audiodrvemulator "c:\arquivos de programas\creative\shared files\module loader\audio emulator\AudDrvEm.dll"
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [ISUSPM Startup] c:\arquiv~1\arquiv~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\arquivos de programas\arquivos comuns\installshield\updateservice\issch.exe" -start
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [DXM6Patch_981116] c:\windows\p_981116.exe /Q:A
mRun: [LVCOMS] c:\arquivos de programas\arquivos comuns\logitech\qcdriver3\LVCOMS.EXE
mRun: [TkBellExe] "c:\arquivos de programas\arquivos comuns\real\update_ob\realsched.exe" -osboot
mRun: [LifeCam] "c:\arquivos de programas\microsoft lifecam\LifeExp.exe"
mRun: [VX1000] c:\windows\vVX1000.exe
mRun: [AppleSyncNotifier] c:\arquivos de programas\arquivos comuns\apple\mobile device support\AppleSyncNotifier.exe
mRun: [AVG9_TRAY] c:\arquiv~1\avg\avg9\avgtray.exe
mRun: [LogMeIn GUI] "c:\arquivos de programas\logmein\x86\LogMeInSystray.exe"
mRun: [vProt] "c:\arquivos de programas\avg secure search\vprot.exe"
mRun: [APSDaemon] "c:\arquivos de programas\arquivos comuns\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\arquivos de programas\quicktime\qttask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\arquivos de programas\arquivos comuns\java\java update\jusched.exe"
mRun: [DivXUpdate] "c:\arquivos de programas\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [KernelFaultCheck] c:\windows\system32\dumprep 0 -k
mRun: [iTunesHelper] "c:\arquivos de programas\itunes\iTunesHelper.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\documents and settings\robi\menu iniciar\programas\inicializar\PowerReg Scheduler.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xportar para o Microsoft Excel - c:\arquiv~1\micros~2\office11\EXCEL.EXE/3000
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\arquivos de programas\skype\phone\ieplugin\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\arquivos de programas\messenger\msmsgs.exe
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} - hxxps://lnmai002.cs-apps.carestreamhealth.com/iNotes6W.cab
DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} - hxxp://dl.tvunetworks.com/TVUAx.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_08-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe
DPF: {E37CB5F0-51F5-4395-A808-5FA49E399007} - hxxps://wwws.realsecureweb.com.br/mpr/plugin/Cab/GbPluginABN.cab
DPF: {E37CB5F0-51F5-4395-A808-5FA49E399008} - hxxps://clickbanking.unibanco.com.br/GbPlugin/cab/GbPluginUni.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\arquivos de programas\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\arquivos de programas\avg\avg9\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\arquivos de programas\arquivos comuns\skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\arquivos de programas\arquivos comuns\avg secure search\viprotocolinstaller\14.2.0\ViProtocol.dll
Notify: GbPluginAbn - c:\arquiv~1\gbplugin\gbiehabn.dll
Notify: GbPluginBb - c:\arquivos de programas\gbplugin\gbieh.dll
Notify: GbPluginCef - c:\arquivos de programas\gbplugin\gbiehCef.dll
Notify: GbPluginUni - c:\arquivos de programas\gbplugin\gbiehUni.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: LMIinit - LMIinit.dll
Notify: __GbPluginAbn - c:\arquivos de programas\gbplugin\gbiehabn.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399007} - c:\arquivos de programas\gbplugin\gbiehabn.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - c:\arquivos de programas\gbplugin\gbiehuni.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - c:\arquivos de programas\gbplugin\gbieh.dll
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - c:\arquivos de programas\gbplugin\gbiehcef.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\
FF - prefs.js: keyword.URL - hxxps://isearch.avg.com/search?cid={1138D44F-8332-4E14-AECC-48F3AAE26781}&mid=8af6d69a6b7b2c8d0e39e24602555d50-a7d8e55384477400ae5f548351c8b020d809b66c&lang=pt-br&ds=AVG&pr=fr&d=2011-12-04 09:05:06&v=12.2.5.32&sap=ku&q=
FF - component: c:\arquivos de programas\avg\avg9\firefox\components\avgssff.dll
FF - component: c:\arquivos de programas\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\arquivos de programas\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\arquivos de programas\avg\avg9\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - component: c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e8873}\components\GbMzhUni.dll
FF - component: c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\extensions\{87f8774f-b485-47e2-a755-a40a8a5e8874}\components\GbMzhAbn.dll
FF - plugin: c:\arquivos de programas\arquivos comuns\avg secure search\sitesafetyinstaller\12.2.6\npsitesafety.dll
FF - plugin: c:\arquivos de programas\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\arquivos de programas\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\arquivos de programas\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\arquivos de programas\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\arquivos de programas\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\npdeployJava1.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\npjpi160_33.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\npoji610.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\arquivos de programas\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\arquivos de programas\virtools\3d life player\npvirtools.dll
FF - plugin: c:\documents and settings\robi\configuraã§ãµes locais\dados de aplicativos\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\documents and settings\robi\dados de aplicativos\move networks\plugins\npqmp071505000010.dll
FF - plugin: c:\documents and settings\robi\dados de aplicativos\mozilla\firefox\profiles\9p0eacxo.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\Npindeo.dll
FF - plugin: c:\windows\system32\npwmsdrm.dll
.
============= SERVICES / DRIVERS ===============
.
R0 GbpKm;Gbp KernelMode;c:\windows\system32\drivers\GbpKm.sys [2008-12-11 47720]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-6-16 226016]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-6-16 29712]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-6-16 243152]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-8-27 33112]
R2 Agendador do LiveUpdate automático;Agendador do LiveUpdate automático;c:\arquivos de programas\symantec\liveupdate\AluSchedulerSvc.exe [2006-4-2 100032]
R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2004-9-17 14336]
R2 avg9wd;AVG Free WatchDog;c:\arquivos de programas\avg\avg9\avgwdsvc.exe [2010-7-16 308136]
R2 GbpSv;Gbp Service;c:\arquiv~1\gbplugin\GbpSv.exe [2007-1-15 281448]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\arquivos de programas\logmein\x86\LMIGuardianSvc.exe [2011-6-8 374704]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\arquivos de programas\logmein\x86\rainfo.sys [2011-1-11 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2011-6-28 47640]
R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\arquivos de programas\arquivos comuns\avg secure search\vtoolbarupdater\14.2.0\ToolbarUpdater.exe [2013-2-20 968880]
S3 AR9271;Wireless Network Adapter Service;c:\windows\system32\drivers\athuw.sys [2013-2-11 1763584]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\arquivos de programas\avg\avg9\toolbar\ToolbarBroker.exe [2010-10-26 167264]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys --> c:\windows\system32\drivers\rt2870.sys [?]
S4 LMIRfsClientNP;LMIRfsClientNP; [x]
.
=============== File Associations ===============
.
ShellExec: EasyShare.exe: Preview="c:\arquivos de programas\kodak\kodak easyshare software\bin\EasyShare.exe"
.
=============== Created Last 30 ================
.
2013-02-17 21:14:53 376832 ----a-w- c:\windows\system32\AegisI5Installer.exe
.
==================== Find3M ====================
.
2013-02-20 22:03:06 33112 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-02-11 20:45:44 226016 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2013-01-26 03:55:46 552448 ------w- c:\windows\system32\oleaut32.dll
2013-01-07 07:25:44 2152960 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-07 07:25:12 2031616 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-01-04 10:09:58 1867392 ----a-w- c:\windows\system32\win32k.sys
2013-01-02 06:49:48 148992 ----a-w- c:\windows\system32\mpg2splt.ax
2013-01-02 06:49:48 1296896 ----a-w- c:\windows\system32\quartz.dll
2012-12-26 20:20:00 916480 ----a-w- c:\windows\system32\wininet.dll
2012-12-26 20:19:44 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-12-26 20:19:43 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2012-12-24 06:42:08 385024 ----a-w- c:\windows\system32\html.iec
.
============= FINISH: 18:09:22,23 ===============