Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't load mostly websites, windows update won't work...w/logs


  • Please log in to reply
15 replies to this topic

#1 lipefuark

lipefuark

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 01 June 2016 - 04:51 PM

I'm from brazil, if there's some writing mistake , let me know <3 , hope you guys can understand everything 

 

 

Can't load mostly websites like facebook, yahoo.com, mostly google domains and youtube sometimes, windows update won't work either
 
Can someone please help me with this?

 

 

I already download today and scanned with AdwCleaner and Malwarebytes

 

 

Malwarebytes log1

 

 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 01/06/2016
Scan Time: 15:14
Logfile: 
Administrator: No
 
Version: 2.2.1.1043
Malware Database: v2016.06.01.06
Rootkit Database: v2016.05.27.01
License: Premium
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 8
CPU: x64
File System: NTFS
User: lipei_000
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 260320
Time Elapsed: 16 min, 4 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 15
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}, Delete-on-Reboot, [e0ea599e6e2b5cdaa82f651ac0427987], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, Delete-on-Reboot, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Delete-on-Reboot, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, Delete-on-Reboot, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Delete-on-Reboot, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, Delete-on-Reboot, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Delete-on-Reboot, [3694c334d9c032047265daa534ce2bd5], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [507a19de88110432ffd897e8a35fb24e], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [7258eb0c6a2fb185c5125c238979936d], 
PUP.Optional.Conduit, HKLM\SOFTWARE\DIVX\INSTALL\SETUP\WIZARDLAYOUT\ConduitToolbar, Delete-on-Reboot, [b9116394f2a782b44b9808ad9d65d62a], 
PUP.Optional.VDownloader, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\eoccbpoodnckjdnackiffhjfkogfhnhh, Delete-on-Reboot, [3892985ffc9dd066b1059a1b5fa305fb], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81DEC43B-B681-4A35-A993-F0554442C56E}, Delete-on-Reboot, [0cbe1addb1e891a5027e493f6b98c33d], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E7AC8D79-C7CB-408B-9C79-03A5168D34A4}, Delete-on-Reboot, [52783dbae6b391a56f132e5ac73c8c74], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FBFF5352-F5B3-4CAC-B0BD-F4998CFB94EE}, Delete-on-Reboot, [7654fff8158423137f024c3cae555ba5], 
 
Registry Values: 4
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81dec43b-b681-4a35-a993-f0554442c56e}|AppName, Plus-HD-1.6-bg.exe, Delete-on-Reboot, [0cbe1addb1e891a5027e493f6b98c33d]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e7ac8d79-c7cb-408b-9c79-03a5168d34a4}|AppName, Plus-HD-1.6-codedownloader.exe, Delete-on-Reboot, [52783dbae6b391a56f132e5ac73c8c74]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fbff5352-f5b3-4cac-b0bd-f4998cfb94ee}|AppName, Plus-HD-1.6-buttonutil.exe, Delete-on-Reboot, [7654fff8158423137f024c3cae555ba5]
PUP.Optional.CrossRider.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|Plus-HD-1.6-bg.exe, 8000, Delete-on-Reboot, [0fbbf8ff77221a1c6193df017a89e21e]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 18
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\userCode, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\icons, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\icons\actions, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\popupResource, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\_metadata, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.SurfAndKeep, C:\Program Files (x86)\surrf  and KeEpp, Quarantined, [7a50fbfc45549b9b4781861a9d66ab55], 
PUP.Optional.FunMoods, C:\Users\admin\AppData\Roaming\Funmoods, Delete-on-Reboot, [88428e691782a88efd7f6b4131d153ad], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.MultiPlug, C:\ProgramData\QuickSet\Sk-Enhancer, Delete-on-Reboot, [6862cd2a6a2fe0564416ddd44fb3fc04], 
 
Files: 75
Hijack.Host, C:\Windows\System32\Drivers\etc\hosts, Good: (), Bad: (0.0.0.0 keystone.mwbsys.com), No Action By User,[0bbf9760e4b5ef471e368bf3e123b64a]
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\crossriderManifest.json, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\background.html, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\chromeCoreFilesIndex.txt, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\manifest.json, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\popup.html, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\manifest.xml, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins.json, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\13_CrossriderAppUtils.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\14_CrossriderUtils.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\177_crossriderDashboard.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\17_jQuery.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\181_pageImpression.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\182_openUrl.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\183_tabsWrapper.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\19_CHAppAPIWrapper.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\1_base.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\207_dbWrapper.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\21_debug.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\22_resources.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\28_initializer.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\47_resources_background.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\4_jquery_1_7_1.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\5_notifications.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\64_appApiMessage.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\72_appApiValidation.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\78_CrossriderInfo.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\7_hooks.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\80_CHPopupAppAPI.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\97_resourceApiWrapper.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\plugins\9_search_engine_hook.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\userCode\background.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\extensionData\userCode\extension.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\icons\icon128.png, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\icons\icon16.png, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\icons\icon48.png, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\icons\actions\1.png, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\background.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\main.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\platformVersion.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api\chrome.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api\cookie.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api\message.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api\monitor.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api\pageAction.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\api\pageActionBG.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\app_api.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\bg_app_api.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\consts.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\cookie_store.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\crossriderAPI.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\delegate.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\events.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\extensionDataStore.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\installer.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\logFile.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\logging.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\onBGDocumentLoad.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\reports.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\storageWrapper.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\updateManager.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\util.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\xhr.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\popupResource\newPopup.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\js\lib\popupResource\popup.js, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\_metadata\computed_hashes.json, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.CrossRider, C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\moncgiclmgkdhmkagcincfkkikpaggcd\1.26.30_0\_metadata\verified_contents.json, Quarantined, [0ebc24d36138fc3a22db691d9271a45c], 
PUP.Optional.SurfAndKeep, C:\Program Files (x86)\surrf  and KeEpp\MSyNK.tlb, Quarantined, [7a50fbfc45549b9b4781861a9d66ab55], 
PUP.Optional.SurfAndKeep, C:\Program Files (x86)\surrf  and KeEpp\MSyNK.dat, Quarantined, [7a50fbfc45549b9b4781861a9d66ab55], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.Yontoo, C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll, Delete-on-Reboot, [c208f2053e5b53e39ce8fbb410f2dc24], 
PUP.Optional.MultiPlug, C:\ProgramData\QuickSet\Sk-Enhancer\5902107913.ini, Delete-on-Reboot, [6862cd2a6a2fe0564416ddd44fb3fc04], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

 

 

 

 

AdwCleaner log1

 

 

# AdwCleaner v5.116 - Logfile created 01/06/2016 at 16:58:05
# Updated 09/05/2016 by Xplode
# Database : 2016-05-09.1 [Server]
# Operating system : Windows 8 Pro  (X64)
# Username : lipei_000 - RODRIGO-CASA
# Running from : C:\Users\lipei_000\Desktop\FIX\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
Folder Found : C:\ProgramData\QuickSet
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\ProgramData\d76e1ecafa1e4b60
Folder Found : C:\ProgramData\surrf  and KeEpp
Folder Found : C:\ProgramData\Application Data\QuickSet
Folder Found : C:\ProgramData\Application Data\Tarma Installer
Folder Found : C:\ProgramData\Application Data\d76e1ecafa1e4b60
Folder Found : C:\ProgramData\Application Data\surrf  and KeEpp
Folder Found : C:\Program Files (x86)\RBM
Folder Found : C:\Users\Rodrigo\AppData\Local\Max Secure Software
Folder Found : C:\Users\Rodrigo\AppData\Roaming\DSite
Folder Found : C:\Users\admin\AppData\Roaming\Funmoods
Folder Found : C:\Users\lipei_000\AppData\Local\Mail.Ru
Folder Found : C:\Users\lipei_000\AppData\Local\Popcorn Time
Folder Found : C:\Users\lipei_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
Folder Found : C:\Users\lipei_000\Desktop\Got
Folder Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
Folder Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
Folder Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
Folder Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
Folder Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
Folder Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
Folder Found : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
Folder Found : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
Folder Found : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
Folder Found : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
Folder Found : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
Folder Found : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
 
***** [ Files ] *****
 
File Found : C:\END
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dliebcdggjepkbkagcplojbgfdpkmilp
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ecickbjijhcogobefdhbobpglceeodlb
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dliebcdggjepkbkagcplojbgfdpkmilp
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ecickbjijhcogobefdhbobpglceeodlb
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
File Found : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
File Found : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
File Found : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
File Found : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage
File Found : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal
 
***** [ DLL ] *****
 
 
***** [ WMI ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
Task Found : 0
Task Found : 4702
 
***** [ Registry ] *****
 
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Plus-HD-1.6-bg.exe]
Key Found : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKCU\Software\Appscion
Key Found : HKCU\Software\Mail.Ru
Key Found : HKLM\SOFTWARE\Sk-Enhancer
Key Found : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Key Found : HKU\S-1-5-21-4091926015-1244931800-462961456-1038\Software\Appscion
Key Found : HKU\S-1-5-21-4091926015-1244931800-462961456-1038\Software\Mail.Ru
 
***** [ Web browsers ] *****
 
 
*************************
 
C:\AdwCleaner\AdwCleaner[S1].txt - [9334 bytes] - [01/06/2016 16:50:53]
C:\AdwCleaner\AdwCleaner[S2].txt - [8301 bytes] - [01/06/2016 16:58:05]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [8374 bytes] ##########
 
 
 
then log AdwCleaner after restart 
 
# AdwCleaner v5.116 - Logfile created 01/06/2016 at 17:03:35
# Updated 09/05/2016 by Xplode
# Database : 2016-05-09.1 [Server]
# Operating system : Windows 8 Pro  (X64)
# Username : lipei_000 - RODRIGO-CASA
# Running from : C:\Users\lipei_000\Desktop\FIX\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\ProgramData\QuickSet
[-] Folder Deleted : C:\ProgramData\Tarma Installer
[-] Folder Deleted : C:\ProgramData\d76e1ecafa1e4b60
[-] Folder Deleted : C:\ProgramData\surrf  and KeEpp
[#] Folder Deleted : C:\ProgramData\Application Data\QuickSet
[#] Folder Deleted : C:\ProgramData\Application Data\Tarma Installer
[#] Folder Deleted : C:\ProgramData\Application Data\d76e1ecafa1e4b60
[#] Folder Deleted : C:\ProgramData\Application Data\surrf  and KeEpp
[-] Folder Deleted : C:\Program Files (x86)\RBM
[-] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Max Secure Software
[-] Folder Deleted : C:\Users\Rodrigo\AppData\Roaming\DSite
[-] Folder Deleted : C:\Users\admin\AppData\Roaming\Funmoods
[-] Folder Deleted : C:\Users\lipei_000\AppData\Local\Mail.Ru
[-] Folder Deleted : C:\Users\lipei_000\AppData\Local\Popcorn Time
[-] Folder Deleted : C:\Users\lipei_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
[-] Folder Deleted : C:\Users\lipei_000\Desktop\Got
[-] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
[-] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
[-] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
[#] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
[#] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
[#] Folder Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
[-] Folder Deleted : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
[-] Folder Deleted : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
[-] Folder Deleted : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
[#] Folder Deleted : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\chldfkldobhjbklogbegimipafiggpcd
[#] Folder Deleted : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dliebcdggjepkbkagcplojbgfdpkmilp
[#] Folder Deleted : C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecickbjijhcogobefdhbobpglceeodlb
 
***** [ Files ] *****
 
[-] File Deleted : C:\END
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dliebcdggjepkbkagcplojbgfdpkmilp
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ecickbjijhcogobefdhbobpglceeodlb
[#] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
[#] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
[#] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dliebcdggjepkbkagcplojbgfdpkmilp
[#] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
[#] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
[#] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ecickbjijhcogobefdhbobpglceeodlb
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
[-] File Deleted : C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
[-] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
[-] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
[-] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
[-] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
[#] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage
[#] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dliebcdggjepkbkagcplojbgfdpkmilp_0.localstorage-journal
[#] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage
[#] File Deleted : C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ecickbjijhcogobefdhbobpglceeodlb_0.localstorage-journal
[-] File Deleted : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
[-] File Deleted : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] File Deleted : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage
[-] File Deleted : C:\Users\lipei_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.azlyrics.com_0.localstorage-journal
 
***** [ DLLs ] *****
 
 
***** [ WMI ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
[-] Task Deleted : 0
[-] Task Deleted : 4702
 
***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Plus-HD-1.6-bg.exe]
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
[-] Key Deleted : HKCU\Software\Appscion
[-] Key Deleted : HKCU\Software\Mail.Ru
[-] Key Deleted : HKLM\SOFTWARE\Sk-Enhancer
[-] Key Deleted : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
[-] Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
 
***** [ Web browsers ] *****
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [8582 bytes] - [01/06/2016 17:03:35]
C:\AdwCleaner\AdwCleaner[S1].txt - [9334 bytes] - [01/06/2016 16:50:53]
C:\AdwCleaner\AdwCleaner[S2].txt - [8461 bytes] - [01/06/2016 16:58:05]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [8801 bytes] ##########
 
 
then i scanned with Malwarebytes again and again quarantined them; log:
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 01/06/2016
Scan Time: 17:09
Logfile: 
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.06.01.06
Rootkit Database: v2016.05.27.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 8
CPU: x64
File System: NTFS
User: lipei_000
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 459360
Time Elapsed: 1 hr, 8 min, 3 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 10
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}, Quarantined, [9f2bbd3aa1f883b3488f6d12976bc43c], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [ca00b2456237f640efe8017e9d6515eb], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}, Quarantined, [ca00b2456237f640efe8017e9d6515eb], 
PUP.Optional.MultiPlug, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Quarantined, [ca00b2456237f640efe8017e9d6515eb], 
PUP.Optional.VDownloader, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\eoccbpoodnckjdnackiffhjfkogfhnhh, Quarantined, [4b7f7a7d7425fb3b5e585d582ad8f60a], 
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0EBBD852-919C-49DA-8798-34B7B499542D}, Delete-on-Reboot, [72588275a6f395a1f1adbf1a6a99966a], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81DEC43B-B681-4A35-A993-F0554442C56E}, Quarantined, [efdb01f6d2c70a2c85fbee9a798a32ce], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E7AC8D79-C7CB-408B-9C79-03A5168D34A4}, Quarantined, [8941c33434651e18750d0b7d2ad9fd03], 
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{FBFF5352-F5B3-4CAC-B0BD-F4998CFB94EE}, Quarantined, [6f5b6d8aeaafdd599fe291f7fb0822de], 
PUP.Optional.InstallCore, HKU\S-1-5-21-4091926015-1244931800-462961456-1001\SOFTWARE\InstallCore, Quarantined, [f1d9a057e9b0a294b8e0d5bb21e27b85], 
 
Registry Values: 4
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{0EBBD852-919C-49DA-8798-34B7B499542D}|Path, \Microsoft\Windows\Setup\8.1 auto install v2, Delete-on-Reboot, [72588275a6f395a1f1adbf1a6a99966a]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{81dec43b-b681-4a35-a993-f0554442c56e}|AppName, Plus-HD-1.6-bg.exe, Quarantined, [efdb01f6d2c70a2c85fbee9a798a32ce]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{e7ac8d79-c7cb-408b-9c79-03a5168d34a4}|AppName, Plus-HD-1.6-codedownloader.exe, Quarantined, [8941c33434651e18750d0b7d2ad9fd03]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{fbff5352-f5b3-4cac-b0bd-f4998cfb94ee}|AppName, Plus-HD-1.6-buttonutil.exe, Quarantined, [6f5b6d8aeaafdd599fe291f7fb0822de]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 2
PUP.Optional.MediaHint.ChrPRST, C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja\0.1.13_0, Quarantined, [ad1d1add960395a10c766517dd277a86], 
PUP.Optional.MediaHint.ChrPRST, C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja, Quarantined, [ad1d1add960395a10c766517dd277a86], 
 
Files: 5
Hijack.Host, C:\Windows\System32\Drivers\etc\hosts, Good: (), Bad: (0.0.0.0 keystone.mwbsys.com), No Action By User,[0bbfc92ee1b890a686ce4d31fe069967]
PUP.Optional.InstallCore, C:\Users\admin\AppData\Local\Temp\94FB.tmp, Quarantined, [27a34daa5247a690aca634f426db19e7], 
PUP.Optional.MediaHint.ChrPRST, C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja\0.1.13_0\manifest.json, Quarantined, [ad1d1add960395a10c766517dd277a86], 
PUP.Optional.MediaHint.ChrPRST, C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja\0.1.13_0\app.js, Quarantined, [ad1d1add960395a10c766517dd277a86], 
PUP.Optional.MediaHint.ChrPRST, C:\Users\Rodrigo\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja\0.1.13_0\icon_128.png, Quarantined, [ad1d1add960395a10c766517dd277a86], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
 
now, what should i do? 
 
 
should i go to quarantine from malwarebytes and delete them all? 
 
 
Thanks !!
 
 

Edited by lipefuark, 01 June 2016 - 04:55 PM.


BC AdBot (Login to Remove)

 


#2 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 01 June 2016 - 09:02 PM

UPDATE:

 

After i did those two scans, nothing change but suddenly appears a big purple screen to update for windows 8.1 Pro and i've accepted it, after updated, my graphic card driver don't recognize and looks like it can only be updated for WINDOWS 8.1 via WINDOWS UPDATE that now we're back to the same problem as before: windows update won't update nothing...(probably because of this infection?)

 

 

UPDATE 2:

 

Graphics card driver already installed sucessfully after a quick search how to do it (manually w/ device manager) for WINDOWS 8.1 for my 4800 radeon

 

 

also this message always appears when i was trying to acess some sites, and today again when i openned this game "League of Legends" tho

 

0ef8a260d11a458c9d5a4c9b8248e58d.png

 

 

 

 

 

Thanks


Edited by lipefuark, 02 June 2016 - 12:35 PM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:39 AM

Posted 02 June 2016 - 01:01 PM

Can you run this?

ZN3USrZ.png Emsisoft Emergency Kit
  • Click here to download Emsisoft Emergency Kit. The download will automatically start after a moment.
  • Save EmsisoftEmergencyKit.exe to your Desktop.
  • Double click on EmsisoftEmergencyKit.exe (Windows Vista/7/8 users: Accept UAC warning if it is enabled). A screen like this will appear:
    dQVDkTW.png
  • Leave everything as it is, then click Extract. This will unpack Emsisoft Emergency Kit to the EEK folder located in the root drive (usually C:\).
  • Once the extraction is done, an icon qwL1Upn.png will appear on your Desktop. Double click it to start Emsisoft Emergency Kit.
  • Wait for Emsisoft Emergency Kit to finish loading signatures. A screen like this should appear:
    yEgPemv.png
  • Choose Yes, then wait for EEK to finish updating.
  • Choose Malware Scan under the Scan button. When EEK asks to activate PUP detection, choose Yes.
  • Wait for the scan to finish.
    RUeRoi4.png
  • If EEK detects something, all detected items will be displayed. Place a checkmark before everything, then choose Quarantine Selected.
  • If Emsisoft Emergency Kit asks to reboot, please do so immediately.
  • The scan log is located in Logs -> Scan Logs. Click on the entry of the latest scan, choose Export and save the report on your Desktop.
    P7FSALs.png
  • Please Copy and Paste the contents of the scan log in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 02 June 2016 - 01:47 PM

After tried download with google chrome and failed 4x time due to "My computer are doing too much things at the moment" then i finally downloaded it using IE...
 
and  SORRY , i forgot to change language to english before the scan, so the log is in portuguese , but i hope its still clearly
 

 

Here it is

 

 

Emsisoft Anti-Malware Free - Versão 11.0
Última atualização 02/06/2016 15:33:59
User account: RODRIGO-CASA\lipei_000
 
Configuração do exame:
 
Tipo de exame: Malware Scan
arquivos: Rootkits, Memória, Rastros, Files
 
Detect PUPs: Ligado
Análise de arquivos: Desligado
Análise de ADS: Ligado
Extensão de arquivo: Desligado
Caching avançado: Ligado
Acesso direto ao disco: Desligado
 
Início do exame: 02/06/2016 15:34:24
Key: HKEY_USERS\S-1-5-21-4091926015-1244931800-462961456-1005\SOFTWARE\INSTALLEDBROWSEREXTENSIONS detectados: Application.Win32.InstallAd (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\YOUTUBEADBLOCKER.YOUTUBEADBLOCKER detectados: Application.AdGenie (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\YOUTUBEADBLOCKER.YOUTUBEADBLOCKER detectados: Application.AdGenie (A)
Key: HKEY_USERS\S-1-5-21-4091926015-1244931800-462961456-1001\SOFTWARE\SOFTONIC detectados: Application.InstallAd (A)
Key: HKEY_USERS\S-1-5-21-4091926015-1244931800-462961456-1005\SOFTWARE\SOFTONIC detectados: Application.InstallAd (A)
Key: HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINDIVERT1.1 detectados: Application.AdShell (A)
Key: HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINDIVERT1.1 detectados: Application.AdShell (A)
 
Analisados: 85388
Achado 7
 
Fim do exame: 02/06/2016 15:41:37
Duração do exame: 0:07:13
 
Key: HKEY_LOCAL_MACHINE\SYSTEM\CONTROLSET001\SERVICES\WINDIVERT1.1 Application.AdShell (A)
Key: HKEY_USERS\S-1-5-21-4091926015-1244931800-462961456-1005\SOFTWARE\SOFTONIC Application.InstallAd (A)
Key: HKEY_USERS\S-1-5-21-4091926015-1244931800-462961456-1001\SOFTWARE\SOFTONIC Application.InstallAd (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\YOUTUBEADBLOCKER.YOUTUBEADBLOCKER Application.AdGenie (A)
Key: HKEY_USERS\S-1-5-21-4091926015-1244931800-462961456-1005\SOFTWARE\INSTALLEDBROWSEREXTENSIONS Application.Win32.InstallAd (A)
 
Em quarentena 5


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:39 AM

Posted 02 June 2016 - 02:13 PM

Any better?

restart and run these also.

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 03 June 2016 - 09:07 AM

MiniToolBox
 
 
MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by lipei_000 (administrator) on 02-06-2016 at 16:42:17
Running from "C:\Users\lipei_000\Desktop\FIX"
Microsoft Windows 8.1 Pro  (X64)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configura��o de IP do Windows
 
Libera��o do Cache do DNS Resolver bem-sucedida.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
0.0.0.0 keystone.mwbsys.com
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Ethernet (Connected)
 
 
# ----------------------------------
# Configura‡Æo de IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="ConexÆo Local* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# Final da configura‡Æo IPv4
 
 
 
Configura‡Æo de IP do Windows
 
   Nome do host. . . . . . . . . . . . . . . . : rodrigo-casa
   Sufixo DNS prim rio . . . . . . . . . . . . : 
   Tipo de n¢. . . . . . . . . . . . . . . . . : h¡brido
   Roteamento de IP ativado. . . . . . . . . . : nÆo
   Proxy WINS ativado. . . . . . . . . . . . . : nÆo
 
Adaptador Ethernet Ethernet:
 
   Sufixo DNS espec¡fico de conexÆo. . . . . . : 
   Descri‡Æo . . . . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Endere‡o F¡sico . . . . . . . . . . . . . . : 00-26-18-E9-C7-2D
   DHCP Habilitado . . . . . . . . . . . . . . : Sim
   Configura‡Æo Autom tica Habilitada. . . . . : Sim
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1::1(Preferencial) 
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:43:17
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1:d130:96b2:d49a:cd20(Preferencial) 
   Endere‡o IPv6 Tempor rio. . . . . . . . : 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d(Preferencial) 
   Endere‡o IPv6 de link local . . . . . . . . : fe80::d130:96b2:d49a:cd20%3(Preferencial) 
   Endere‡o IPv4. . . . . . . .  . . . . . . . : 192.168.0.10(Preferencial) 
   M scara de Sub-rede . . . . . . . . . . . . : 255.255.255.0
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 17:16:10
   Gateway PadrÆo. . . . . . . . . . . . . . . : fe80::2a32:c5ff:fec4:d1ba%3
                                                 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . . : 192.168.0.1
   IAID de DHCPv6. . . . . . . . . . . . . . . : 251667992
   DUID de Cliente DHCPv6. . . . . . . . . . . : 00-01-00-01-19-7E-6E-59-00-26-18-E9-C7-2D
   Servidores DNS. . . . . . . . . . . . . . . : 2001:4860:4860::8888
                                                 2001:4860:4860::8844
                                                 8.8.8.8
                                                 8.8.4.4
   NetBIOS em Tcpip. . . . . . . . . . . . . . : Habilitado
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    google.com
Addresses:  2800:3f0:4001:802::200e
 189.6.76.148
 189.6.76.172
 189.6.76.162
 189.6.76.168
 189.6.76.173
 189.6.76.183
 189.6.76.152
 189.6.76.177
 189.6.76.178
 189.6.76.182
 189.6.76.157
 189.6.76.167
 189.6.76.158
 189.6.76.153
 189.6.76.187
 189.6.76.163
 
 
Disparando google.com [2800:3f0:4001:811::200e] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2800:3f0:4001:811::200e: tempo=32ms 
 
Estat¡sticas do Ping para 2800:3f0:4001:811::200e:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 32ms, M ximo = 32ms, M‚dia = 32ms
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Disparando yahoo.com [2001:4998:44:204::a7] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2001:4998:44:204::a7: tempo=169ms 
 
Estat¡sticas do Ping para 2001:4998:44:204::a7:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 169ms, M ximo = 169ms, M‚dia = 169ms
 
Disparando 127.0.0.1 com 32 bytes de dados:
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
 
Estat¡sticas do Ping para 127.0.0.1:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 0ms, M ximo = 0ms, M‚dia = 0ms
===========================================================================
Lista de interfaces
  3...00 26 18 e9 c7 2d ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================
 
Tabela de rotas IPv4
===========================================================================
Rotas ativas:
Endere‡o de rede          M scara   Ender. gateway       Interface   Custo
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     20
        127.0.0.0        255.0.0.0      No v¡nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      No v¡nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      No v¡nculo      192.168.0.10    276
     192.168.0.10  255.255.255.255      No v¡nculo      192.168.0.10    276
    192.168.0.255  255.255.255.255      No v¡nculo      192.168.0.10    276
        224.0.0.0        240.0.0.0      No v¡nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      No v¡nculo      192.168.0.10    276
  255.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      No v¡nculo      192.168.0.10    276
===========================================================================
Rotas persistentes:
  Nenhuma
 
Tabela de rotas IPv6
===========================================================================
Rotas ativas:
 Se destino de rede de m‚trica      Gateway
  3    276 ::/0                     fe80::2a32:c5ff:fec4:d1ba
  1    306 ::1/128                  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  fe80::2a32:c5ff:fec4:d1ba
  3    276 2804:14c:65d5:63f1::1/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:d130:96b2:d49a:cd20/128
                                    No v¡nculo
  3    276 fe80::/64                No v¡nculo
  3    276 fe80::d130:96b2:d49a:cd20/128
                                    No v¡nculo
  1    306 ff00::/8                 No v¡nculo
  3    276 ff00::/8                 No v¡nculo
===========================================================================
Rotas persistentes:
  Nenhuma
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback.  hr =  0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: WinRAR.exe, versão: 5.1.0.0, carimbo de data/hora: 0x529aee4c
Nome do módulo com falha: libapr_tsvn.dll, versão: 1.4.6.0, carimbo de data/hora: 0x51bf4b4d
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000003503
ID do processo com falha: 0x1834
Hora de início do aplicativo com falha: 0xWinRAR.exe0
Caminho do aplicativo com falha: WinRAR.exe1
Caminho do módulo com falha: WinRAR.exe2
ID do Relatório: WinRAR.exe3
Nome completo do pacote com falha: WinRAR.exe4
ID do aplicativo relativo ao pacote com falha: WinRAR.exe5
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
System errors:
=============
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:16:14 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 12:42:13 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/02/2016 12:35:52 PM) (Source: Schannel) (User: AUTORIDADE NT)
Description: Alerta fatal recebido do ponto de extremidade remoto. O código de alerta fatal definido do protocolo TLS é 40.
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:33:31 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 08:22:31 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/01/2016 08:20:37 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: {9E175B68-F52A-11D8-B9A5-505054503030}
 
 
Microsoft Office Sessions:
=========================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS)(User: )
Description: 0x80070005, Acesso negado.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Desktop\FIX\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error)(User: )
Description: WinRAR.exe5.1.0.0529aee4clibapr_tsvn.dll1.4.6.051bf4b4dc00000050000000000003503183401d1bc6bb1300d18C:\Program Files\WinRAR\WinRAR.exeC:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll1d41d832-285f-11e6-8250-002618e9c72d
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Downloads\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
=========================== Installed Programs ============================
 
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.21 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Dreamweaver CS5 (HKLM-x32\...\{C79312BD-3E76-4474-A10C-1435D1856A4B}) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1711, 17.04.2016 - AIMP DevTeam)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version:  - Sandbox Interactive GmbH)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.2.2262 - AVAST Software)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.34728 - BitTorrent Inc.)
Bullzip PDF Printer 9.2.0.1499 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.2.0.1499 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
Central de Mouse e Teclado da Microsoft (HKLM\...\{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}) (Version: 2.3.145.0 - Microsoft Corporation) Hidden
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.145.0 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
Driver Booster 3.2 (HKLM-x32\...\Driver Booster_is1) (Version: 3.2 - IObit)
Estudo de aprimoramento de produto para HP Deskjet 1510 series (HKLM\...\{4F985052-FE19-4E21-9333-D847BCD06C0E}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GS Auto Clicker (HKCU\...\GS Auto Clicker_is1) (Version: V3.1.2 - goldensoft.org)
HP Deskjet 1510 series Ajuda (HKLM-x32\...\{6DFDA448-D4A1-49DB-9217-1501D24861F5}) (Version: 30.0.0 - Hewlett Packard)
HP Deskjet 1510 series Software básico do dispositivo (HKLM\...\{649F7314-489F-4E1D-877B-EAE9CB34D7AA}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Instalação do DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
JSFToolbox for Dreamweaver (Community Bundle) (HKLM-x32\...\{E33997C0-6B7E-4183-9407-12C21A976EF1}) (Version: 4.00.0000 - Tarantula Consulting Inc.)
K-Lite Codec Pack 10.4.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
League of Legends (HKLM-x32\...\{BCCDE721-9F4D-4396-9592-92DD865D965E}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Magebot (HKLM-x32\...\Magebot) (Version:  - )
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Módulo de Segurança - Banco do Brasil (HKCU\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - )
Mumble 1.2.10 (HKLM-x32\...\{29C78547-3B49-4C4D-8325-FC8D7BE7CDF5}) (Version: 1.2.10 - Thorvald Natvig)
MySQL Connector/ODBC 5.2 64bit (community edition) (HKLM\...\{D8053A16-A50E-401C-B162-18119EB7CC33}) (Version: 5.2.5 - Oracle Corporation)
MySQL Documents 5.6 (HKLM-x32\...\{D203629C-FB78-46E5-984C-FA4976F1A0CB}) (Version: 5.6.12 - Oracle Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA Cg Toolkit 3.1 April 2012 (HKLM-x32\...\Cg Toolkit_is1) (Version:  - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Popcorn Time (HKCU\...\Popcorn Time) (Version:  - Popcorn Official)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.7 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com)
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
SafeZone Stable 1.48.2066.101 (HKLM-x32\...\SafeZone 1.48.2066.101) (Version: 1.48.2066.101 - Avast Software) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0416-1000-0000000FF1CE}_Office14.PROPLUS_{3FE5480B-28E8-44EF-BC2C-BEDC366EBF31}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0416-1000-0000000FF1CE}_Office14.PROPLUS_{9E762773-4821-48D2-96E6-D14F9A86DBF9}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0416-1000-0000000FF1CE}_Office14.PROPLUS_{12148C47-62D8-49E4-8CD9-AF7EFB16B199}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0416-1000-0000000FF1CE}_Office14.PROPLUS_{FB36B2AE-6584-4E83-B63F-B53E908F52D3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS)
SW Update (HKLM-x32\...\{AAFEFB05-CF98-48FC-985E-F04CD8AD620D}) (Version: 2.2.9 - Samsung Electronics CO., LTD.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.82 - CipSoft GmbH)
Tibia Map Viewer (HKLM-x32\...\TMViewer) (Version:  - Yury Sidorov)
Tibia Piece version 1.0 (HKCU\...\{36652C22-150B-4AEA-90B7-F7DAC118A1E4}_is1) (Version: 1.0 - Tibia Piece Team)
Tibiacast (HKLM-x32\...\{52A46C37-E216-4464-B160-AECF688B0C87}) (Version: 3.1.05600 - Silver Squirrel Software HB)
TortoiseSVN 1.8.0.24401 (64 bit) (HKLM\...\{67630560-B0DC-4FC6-8B04-7B949F8ABEF0}) (Version: 1.8.24401 - TortoiseSVN)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WTFast 3.2 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 3.2.14.322 - Initex & AAA Internet Publishing)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 43%
Total physical RAM: 4095.18 MB
Available physical RAM: 2314.54 MB
Total Virtual: 8191.18 MB
Available Virtual: 5789.57 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:293.65 GB) (Free:147.68 GB) NTFS
2 Drive d: () (Fixed) (Total:1103.52 GB) (Free:252.65 GB) NTFS
 
===========MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by lipei_000 (administrator) on 02-06-2016 at 16:42:17
Running from "C:\Users\lipei_000\Desktop\FIX"
Microsoft Windows 8.1 Pro  (X64)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configura��o de IP do Windows
 
Libera��o do Cache do DNS Resolver bem-sucedida.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
0.0.0.0 keystone.mwbsys.com
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Ethernet (Connected)
 
 
# ----------------------------------
# Configura‡Æo de IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="ConexÆo Local* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# Final da configura‡Æo IPv4
 
 
 
Configura‡Æo de IP do Windows
 
   Nome do host. . . . . . . . . . . . . . . . : rodrigo-casa
   Sufixo DNS prim rio . . . . . . . . . . . . : 
   Tipo de n¢. . . . . . . . . . . . . . . . . : h¡brido
   Roteamento de IP ativado. . . . . . . . . . : nÆo
   Proxy WINS ativado. . . . . . . . . . . . . : nÆo
 
Adaptador Ethernet Ethernet:
 
   Sufixo DNS espec¡fico de conexÆo. . . . . . : 
   Descri‡Æo . . . . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Endere‡o F¡sico . . . . . . . . . . . . . . : 00-26-18-E9-C7-2D
   DHCP Habilitado . . . . . . . . . . . . . . : Sim
   Configura‡Æo Autom tica Habilitada. . . . . : Sim
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1::1(Preferencial) 
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:43:17
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1:d130:96b2:d49a:cd20(Preferencial) 
   Endere‡o IPv6 Tempor rio. . . . . . . . : 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d(Preferencial) 
   Endere‡o IPv6 de link local . . . . . . . . : fe80::d130:96b2:d49a:cd20%3(Preferencial) 
   Endere‡o IPv4. . . . . . . .  . . . . . . . : 192.168.0.10(Preferencial) 
   M scara de Sub-rede . . . . . . . . . . . . : 255.255.255.0
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 17:16:10
   Gateway PadrÆo. . . . . . . . . . . . . . . : fe80::2a32:c5ff:fec4:d1ba%3
                                                 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . . : 192.168.0.1
   IAID de DHCPv6. . . . . . . . . . . . . . . : 251667992
   DUID de Cliente DHCPv6. . . . . . . . . . . : 00-01-00-01-19-7E-6E-59-00-26-18-E9-C7-2D
   Servidores DNS. . . . . . . . . . . . . . . : 2001:4860:4860::8888
                                                 2001:4860:4860::8844
                                                 8.8.8.8
                                                 8.8.4.4
   NetBIOS em Tcpip. . . . . . . . . . . . . . : Habilitado
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    google.com
Addresses:  2800:3f0:4001:802::200e
 189.6.76.148
 189.6.76.172
 189.6.76.162
 189.6.76.168
 189.6.76.173
 189.6.76.183
 189.6.76.152
 189.6.76.177
 189.6.76.178
 189.6.76.182
 189.6.76.157
 189.6.76.167
 189.6.76.158
 189.6.76.153
 189.6.76.187
 189.6.76.163
 
 
Disparando google.com [2800:3f0:4001:811::200e] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2800:3f0:4001:811::200e: tempo=32ms 
 
Estat¡sticas do Ping para 2800:3f0:4001:811::200e:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 32ms, M ximo = 32ms, M‚dia = 32ms
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Disparando yahoo.com [2001:4998:44:204::a7] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2001:4998:44:204::a7: tempo=169ms 
 
Estat¡sticas do Ping para 2001:4998:44:204::a7:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 169ms, M ximo = 169ms, M‚dia = 169ms
 
Disparando 127.0.0.1 com 32 bytes de dados:
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
 
Estat¡sticas do Ping para 127.0.0.1:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 0ms, M ximo = 0ms, M‚dia = 0ms
===========================================================================
Lista de interfaces
  3...00 26 18 e9 c7 2d ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================
 
Tabela de rotas IPv4
===========================================================================
Rotas ativas:
Endere‡o de rede          M scara   Ender. gateway       Interface   Custo
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     20
        127.0.0.0        255.0.0.0      No v¡nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      No v¡nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      No v¡nculo      192.168.0.10    276
     192.168.0.10  255.255.255.255      No v¡nculo      192.168.0.10    276
    192.168.0.255  255.255.255.255      No v¡nculo      192.168.0.10    276
        224.0.0.0        240.0.0.0      No v¡nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      No v¡nculo      192.168.0.10    276
  255.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      No v¡nculo      192.168.0.10    276
===========================================================================
Rotas persistentes:
  Nenhuma
 
Tabela de rotas IPv6
===========================================================================
Rotas ativas:
 Se destino de rede de m‚trica      Gateway
  3    276 ::/0                     fe80::2a32:c5ff:fec4:d1ba
  1    306 ::1/128                  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  fe80::2a32:c5ff:fec4:d1ba
  3    276 2804:14c:65d5:63f1::1/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:d130:96b2:d49a:cd20/128
                                    No v¡nculo
  3    276 fe80::/64                No v¡nculo
  3    276 fe80::d130:96b2:d49a:cd20/128
                                    No v¡nculo
  1    306 ff00::/8                 No v¡nculo
  3    276 ff00::/8                 No v¡nculo
===========================================================================
Rotas persistentes:
  Nenhuma
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback.  hr =  0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: WinRAR.exe, versão: 5.1.0.0, carimbo de data/hora: 0x529aee4c
Nome do módulo com falha: libapr_tsvn.dll, versão: 1.4.6.0, carimbo de data/hora: 0x51bf4b4d
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000003503
ID do processo com falha: 0x1834
Hora de início do aplicativo com falha: 0xWinRAR.exe0
Caminho do aplicativo com falha: WinRAR.exe1
Caminho do módulo com falha: WinRAR.exe2
ID do Relatório: WinRAR.exe3
Nome completo do pacote com falha: WinRAR.exe4
ID do aplicativo relativo ao pacote com falha: WinRAR.exe5
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
System errors:
=============
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:16:14 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 12:42:13 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/02/2016 12:35:52 PM) (Source: Schannel) (User: AUTORIDADE NT)
Description: Alerta fatal recebido do ponto de extremidade remoto. O código de alerta fatal definido do protocolo TLS é 40.
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:33:31 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 08:22:31 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/01/2016 08:20:37 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: {9E175B68-F52A-11D8-B9A5-505054503030}
 
 
Microsoft Office Sessions:
=========================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS)(User: )
Description: 0x80070005, Acesso negado.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Desktop\FIX\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error)(User: )
Description: WinRAR.exe5.1.0.0529aee4clibapr_tsvn.dll1.4.6.051bf4b4dc00000050000000000003503183401d1bc6bb1300d18C:\Program Files\WinRAR\WinRAR.exeC:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll1d41d832-285f-11e6-8250-002618e9c72d
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Downloads\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
=========================== Installed Programs ============================
 
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.21 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Dreamweaver CS5 (HKLM-x32\...\{C79312BD-3E76-4474-A10C-1435D1856A4B}) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1711, 17.04.2016 - AIMP DevTeam)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version:  - Sandbox Interactive GmbH)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.2.2262 - AVAST Software)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.34728 - BitTorrent Inc.)
Bullzip PDF Printer 9.2.0.1499 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.2.0.1499 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
Central de Mouse e Teclado da Microsoft (HKLM\...\{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}) (Version: 2.3.145.0 - Microsoft Corporation) Hidden
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.145.0 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
Driver Booster 3.2 (HKLM-x32\...\Driver Booster_is1) (Version: 3.2 - IObit)
Estudo de aprimoramento de produto para HP Deskjet 1510 series (HKLM\...\{4F985052-FE19-4E21-9333-D847BCD06C0E}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GS Auto Clicker (HKCU\...\GS Auto Clicker_is1) (Version: V3.1.2 - goldensoft.org)
HP Deskjet 1510 series Ajuda (HKLM-x32\...\{6DFDA448-D4A1-49DB-9217-1501D24861F5}) (Version: 30.0.0 - Hewlett Packard)
HP Deskjet 1510 series Software básico do dispositivo (HKLM\...\{649F7314-489F-4E1D-877B-EAE9CB34D7AA}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Instalação do DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
JSFToolbox for Dreamweaver (Community Bundle) (HKLM-x32\...\{E33997C0-6B7E-4183-9407-12C21A976EF1}) (Version: 4.00.0000 - Tarantula Consulting Inc.)
K-Lite Codec Pack 10.4.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
League of Legends (HKLM-x32\...\{BCCDE721-9F4D-4396-9592-92DD865D965E}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Magebot (HKLM-x32\...\Magebot) (Version:  - )
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Módulo de Segurança - Banco do Brasil (HKCU\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - )
Mumble 1.2.10 (HKLM-x32\...\{29C78547-3B49-4C4D-8325-FC8D7BE7CDF5}) (Version: 1.2.10 - Thorvald Natvig)
MySQL Connector/ODBC 5.2 64bit (community edition) (HKLM\...\{D8053A16-A50E-401C-B162-18119EB7CC33}) (Version: 5.2.5 - Oracle Corporation)
MySQL Documents 5.6 (HKLM-x32\...\{D203629C-FB78-46E5-984C-FA4976F1A0CB}) (Version: 5.6.12 - Oracle Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA Cg Toolkit 3.1 April 2012 (HKLM-x32\...\Cg Toolkit_is1) (Version:  - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Popcorn Time (HKCU\...\Popcorn Time) (Version:  - Popcorn Official)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.7 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com)
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
SafeZone Stable 1.48.2066.101 (HKLM-x32\...\SafeZone 1.48.2066.101) (Version: 1.48.2066.101 - Avast Software) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0416-1000-0000000FF1CE}_Office14.PROPLUS_{3FE5480B-28E8-44EF-BC2C-BEDC366EBF31}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0416-1000-0000000FF1CE}_Office14.PROPLUS_{9E762773-4821-48D2-96E6-D14F9A86DBF9}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0416-1000-0000000FF1CE}_Office14.PROPLUS_{12148C47-62D8-49E4-8CD9-AF7EFB16B199}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0416-1000-0000000FF1CE}_Office14.PROPLUS_{FB36B2AE-6584-4E83-B63F-B53E908F52D3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS)
SW Update (HKLM-x32\...\{AAFEFB05-CF98-48FC-985E-F04CD8AD620D}) (Version: 2.2.9 - Samsung Electronics CO., LTD.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.82 - CipSoft GmbH)
Tibia Map Viewer (HKLM-x32\...\TMViewer) (Version:  - Yury Sidorov)
Tibia Piece version 1.0 (HKCU\...\{36652C22-150B-4AEA-90B7-F7DAC118A1E4}_is1) (Version: 1.0 - Tibia Piece Team)
Tibiacast (HKLM-x32\...\{52A46C37-E216-4464-B160-AECF688B0C87}) (Version: 3.1.05600 - Silver Squirrel Software HB)
TortoiseSVN 1.8.0.24401 (64 bit) (HKLM\...\{67630560-B0DC-4FC6-8B04-7B949F8ABEF0}) (Version: 1.8.24401 - TortoiseSVN)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WTFast 3.2 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 3.2.14.322 - Initex & AAA Internet Publishing)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 43%
Total physical RAM: 4095.18 MB
Available physical RAM: 2314.54 MB
Total Virtual: 8191.18 MB
Available Virtual: 5789.57 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:293.65 GB) (Free:147.68 GB) NTFS
2 Drive d: () (Fixed) (Total:1103.52 GB) (Free:252.65 GB) NTFS
 
========================= Users: ========================================
 
Contas de usu rio para \\RODRIGO-CASA
 
admin                    Administrador            Convidado                
graci_000                lipei_000                Rodrigo                  
Comando conclu¡do com ˆxito.
 
 
**** End of log ****============== Users: ========================================
 
Contas de usu rio para \\RODRIGO-CASA
 
admin                    Administrador            Convidado                
graci_000                lipei_000                Rodrigo                  
Comando conclu¡do com ˆxito.
 
 

 

**** End of log ****MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by lipei_000 (administrator) on 02-06-2016 at 16:42:17
Running from "C:\Users\lipei_000\Desktop\FIX"
Microsoft Windows 8.1 Pro  (X64)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configura��o de IP do Windows
 
Libera��o do Cache do DNS Resolver bem-sucedida.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
0.0.0.0 keystone.mwbsys.com
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Ethernet (Connected)
 
 
# ----------------------------------
# Configura‡Æo de IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="ConexÆo Local* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# Final da configura‡Æo IPv4
 
 
 
Configura‡Æo de IP do Windows
 
   Nome do host. . . . . . . . . . . . . . . . : rodrigo-casa
   Sufixo DNS prim rio . . . . . . . . . . . . : 
   Tipo de n¢. . . . . . . . . . . . . . . . . : h¡brido
   Roteamento de IP ativado. . . . . . . . . . : nÆo
   Proxy WINS ativado. . . . . . . . . . . . . : nÆo
 
Adaptador Ethernet Ethernet:
 
   Sufixo DNS espec¡fico de conexÆo. . . . . . : 
   Descri‡Æo . . . . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Endere‡o F¡sico . . . . . . . . . . . . . . : 00-26-18-E9-C7-2D
   DHCP Habilitado . . . . . . . . . . . . . . : Sim
   Configura‡Æo Autom tica Habilitada. . . . . : Sim
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1::1(Preferencial) 
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:43:17
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1:d130:96b2:d49a:cd20(Preferencial) 
   Endere‡o IPv6 Tempor rio. . . . . . . . : 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d(Preferencial) 
   Endere‡o IPv6 de link local . . . . . . . . : fe80::d130:96b2:d49a:cd20%3(Preferencial) 
   Endere‡o IPv4. . . . . . . .  . . . . . . . : 192.168.0.10(Preferencial) 
   M scara de Sub-rede . . . . . . . . . . . . : 255.255.255.0
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 17:16:10
   Gateway PadrÆo. . . . . . . . . . . . . . . : fe80::2a32:c5ff:fec4:d1ba%3
                                                 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . . : 192.168.0.1
   IAID de DHCPv6. . . . . . . . . . . . . . . : 251667992
   DUID de Cliente DHCPv6. . . . . . . . . . . : 00-01-00-01-19-7E-6E-59-00-26-18-E9-C7-2D
   Servidores DNS. . . . . . . . . . . . . . . : 2001:4860:4860::8888
                                                 2001:4860:4860::8844
                                                 8.8.8.8
                                                 8.8.4.4
   NetBIOS em Tcpip. . . . . . . . . . . . . . : Habilitado
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    google.com
Addresses:  2800:3f0:4001:802::200e
 189.6.76.148
 189.6.76.172
 189.6.76.162
 189.6.76.168
 189.6.76.173
 189.6.76.183
 189.6.76.152
 189.6.76.177
 189.6.76.178
 189.6.76.182
 189.6.76.157
 189.6.76.167
 189.6.76.158
 189.6.76.153
 189.6.76.187
 189.6.76.163
 
 
Disparando google.com [2800:3f0:4001:811::200e] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2800:3f0:4001:811::200e: tempo=32ms 
 
Estat¡sticas do Ping para 2800:3f0:4001:811::200e:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 32ms, M ximo = 32ms, M‚dia = 32ms
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Disparando yahoo.com [2001:4998:44:204::a7] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2001:4998:44:204::a7: tempo=169ms 
 
Estat¡sticas do Ping para 2001:4998:44:204::a7:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 169ms, M ximo = 169ms, M‚dia = 169ms
 
Disparando 127.0.0.1 com 32 bytes de dados:
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
 
Estat¡sticas do Ping para 127.0.0.1:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 0ms, M ximo = 0ms, M‚dia = 0ms
===========================================================================
Lista de interfaces
  3...00 26 18 e9 c7 2d ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================
 
Tabela de rotas IPv4
===========================================================================
Rotas ativas:
Endere‡o de rede          M scara   Ender. gateway       Interface   Custo
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     20
        127.0.0.0        255.0.0.0      No v¡nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      No v¡nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      No v¡nculo      192.168.0.10    276
     192.168.0.10  255.255.255.255      No v¡nculo      192.168.0.10    276
    192.168.0.255  255.255.255.255      No v¡nculo      192.168.0.10    276
        224.0.0.0        240.0.0.0      No v¡nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      No v¡nculo      192.168.0.10    276
  255.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      No v¡nculo      192.168.0.10    276
===========================================================================
Rotas persistentes:
  Nenhuma
 
Tabela de rotas IPv6
===========================================================================
Rotas ativas:
 Se destino de rede de m‚trica      Gateway
  3    276 ::/0                     fe80::2a32:c5ff:fec4:d1ba
  1    306 ::1/128                  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  fe80::2a32:c5ff:fec4:d1ba
  3    276 2804:14c:65d5:63f1::1/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:d130:96b2:d49a:cd20/128
                                    No v¡nculo
  3    276 fe80::/64                No v¡nculo
  3    276 fe80::d130:96b2:d49a:cd20/128
                                    No v¡nculo
  1    306 ff00::/8                 No v¡nculo
  3    276 ff00::/8                 No v¡nculo
===========================================================================
Rotas persistentes:
  Nenhuma
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback.  hr =  0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: WinRAR.exe, versão: 5.1.0.0, carimbo de data/hora: 0x529aee4c
Nome do módulo com falha: libapr_tsvn.dll, versão: 1.4.6.0, carimbo de data/hora: 0x51bf4b4d
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000003503
ID do processo com falha: 0x1834
Hora de início do aplicativo com falha: 0xWinRAR.exe0
Caminho do aplicativo com falha: WinRAR.exe1
Caminho do módulo com falha: WinRAR.exe2
ID do Relatório: WinRAR.exe3
Nome completo do pacote com falha: WinRAR.exe4
ID do aplicativo relativo ao pacote com falha: WinRAR.exe5
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
System errors:
=============
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:16:14 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 12:42:13 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/02/2016 12:35:52 PM) (Source: Schannel) (User: AUTORIDADE NT)
Description: Alerta fatal recebido do ponto de extremidade remoto. O código de alerta fatal definido do protocolo TLS é 40.
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:33:31 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 08:22:31 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/01/2016 08:20:37 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: {9E175B68-F52A-11D8-B9A5-505054503030}
 
 
Microsoft Office Sessions:
=========================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS)(User: )
Description: 0x80070005, Acesso negado.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Desktop\FIX\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error)(User: )
Description: WinRAR.exe5.1.0.0529aee4clibapr_tsvn.dll1.4.6.051bf4b4dc00000050000000000003503183401d1bc6bb1300d18C:\Program Files\WinRAR\WinRAR.exeC:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll1d41d832-285f-11e6-8250-002618e9c72d
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Downloads\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
=========================== Installed Programs ============================
 
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.21 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Dreamweaver CS5 (HKLM-x32\...\{C79312BD-3E76-4474-A10C-1435D1856A4B}) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1711, 17.04.2016 - AIMP DevTeam)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version:  - Sandbox Interactive GmbH)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.2.2262 - AVAST Software)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.34728 - BitTorrent Inc.)
Bullzip PDF Printer 9.2.0.1499 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.2.0.1499 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
Central de Mouse e Teclado da Microsoft (HKLM\...\{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}) (Version: 2.3.145.0 - Microsoft Corporation) Hidden
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.145.0 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
Driver Booster 3.2 (HKLM-x32\...\Driver Booster_is1) (Version: 3.2 - IObit)
Estudo de aprimoramento de produto para HP Deskjet 1510 series (HKLM\...\{4F985052-FE19-4E21-9333-D847BCD06C0E}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GS Auto Clicker (HKCU\...\GS Auto Clicker_is1) (Version: V3.1.2 - goldensoft.org)
HP Deskjet 1510 series Ajuda (HKLM-x32\...\{6DFDA448-D4A1-49DB-9217-1501D24861F5}) (Version: 30.0.0 - Hewlett Packard)
HP Deskjet 1510 series Software básico do dispositivo (HKLM\...\{649F7314-489F-4E1D-877B-EAE9CB34D7AA}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Instalação do DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
JSFToolbox for Dreamweaver (Community Bundle) (HKLM-x32\...\{E33997C0-6B7E-4183-9407-12C21A976EF1}) (Version: 4.00.0000 - Tarantula Consulting Inc.)
K-Lite Codec Pack 10.4.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
League of Legends (HKLM-x32\...\{BCCDE721-9F4D-4396-9592-92DD865D965E}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Magebot (HKLM-x32\...\Magebot) (Version:  - )
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Módulo de Segurança - Banco do Brasil (HKCU\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - )
Mumble 1.2.10 (HKLM-x32\...\{29C78547-3B49-4C4D-8325-FC8D7BE7CDF5}) (Version: 1.2.10 - Thorvald Natvig)
MySQL Connector/ODBC 5.2 64bit (community edition) (HKLM\...\{D8053A16-A50E-401C-B162-18119EB7CC33}) (Version: 5.2.5 - Oracle Corporation)
MySQL Documents 5.6 (HKLM-x32\...\{D203629C-FB78-46E5-984C-FA4976F1A0CB}) (Version: 5.6.12 - Oracle Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA Cg Toolkit 3.1 April 2012 (HKLM-x32\...\Cg Toolkit_is1) (Version:  - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Popcorn Time (HKCU\...\Popcorn Time) (Version:  - Popcorn Official)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.7 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com)
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
SafeZone Stable 1.48.2066.101 (HKLM-x32\...\SafeZone 1.48.2066.101) (Version: 1.48.2066.101 - Avast Software) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0416-1000-0000000FF1CE}_Office14.PROPLUS_{3FE5480B-28E8-44EF-BC2C-BEDC366EBF31}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0416-1000-0000000FF1CE}_Office14.PROPLUS_{9E762773-4821-48D2-96E6-D14F9A86DBF9}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0416-1000-0000000FF1CE}_Office14.PROPLUS_{12148C47-62D8-49E4-8CD9-AF7EFB16B199}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0416-1000-0000000FF1CE}_Office14.PROPLUS_{FB36B2AE-6584-4E83-B63F-B53E908F52D3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS)
SW Update (HKLM-x32\...\{AAFEFB05-CF98-48FC-985E-F04CD8AD620D}) (Version: 2.2.9 - Samsung Electronics CO., LTD.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.82 - CipSoft GmbH)
Tibia Map Viewer (HKLM-x32\...\TMViewer) (Version:  - Yury Sidorov)
Tibia Piece version 1.0 (HKCU\...\{36652C22-150B-4AEA-90B7-F7DAC118A1E4}_is1) (Version: 1.0 - Tibia Piece Team)
Tibiacast (HKLM-x32\...\{52A46C37-E216-4464-B160-AECF688B0C87}) (Version: 3.1.05600 - Silver Squirrel Software HB)
TortoiseSVN 1.8.0.24401 (64 bit) (HKLM\...\{67630560-B0DC-4FC6-8B04-7B949F8ABEF0}) (Version: 1.8.24401 - TortoiseSVN)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WTFast 3.2 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 3.2.14.322 - Initex & AAA Internet Publishing)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 43%
Total physical RAM: 4095.18 MB
Available physical RAM: 2314.54 MB
Total Virtual: 8191.18 MB
Available Virtual: 5789.57 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:293.65 GB) (Free:147.68 GB) NTFS
2 Drive d: () (Fixed) (Total:1103.52 GB) (Free:252.65 GB) NTFS
 
========================= Users: ========================================
 
Contas de usu rio para \\RODRIGO-CASA
 
admin                    Administrador            Convidado                
graci_000                lipei_000                Rodrigo                  
Comando conclu¡do com ˆxito.
 
 
**** End of log ****

 

 

MiniToolBox by Farbar  Version: 07-02-2016 01

Ran by lipei_000 (administrator) on 02-06-2016 at 16:42:17
Running from "C:\Users\lipei_000\Desktop\FIX"
Microsoft Windows 8.1 Pro  (X64)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configura��o de IP do Windows
 
Libera��o do Cache do DNS Resolver bem-sucedida.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
0.0.0.0 keystone.mwbsys.com
========================= IP Configuration: ================================
 
Realtek PCIe FE Family Controller = Ethernet (Connected)
 
 
# ----------------------------------
# Configura‡Æo de IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="ConexÆo Local* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# Final da configura‡Æo IPv4
 
 
 
Configura‡Æo de IP do Windows
 
   Nome do host. . . . . . . . . . . . . . . . : rodrigo-casa
   Sufixo DNS prim rio . . . . . . . . . . . . : 
   Tipo de n¢. . . . . . . . . . . . . . . . . : h¡brido
   Roteamento de IP ativado. . . . . . . . . . : nÆo
   Proxy WINS ativado. . . . . . . . . . . . . : nÆo
 
Adaptador Ethernet Ethernet:
 
   Sufixo DNS espec¡fico de conexÆo. . . . . . : 
   Descri‡Æo . . . . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Endere‡o F¡sico . . . . . . . . . . . . . . : 00-26-18-E9-C7-2D
   DHCP Habilitado . . . . . . . . . . . . . . : Sim
   Configura‡Æo Autom tica Habilitada. . . . . : Sim
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1::1(Preferencial) 
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:43:17
   Endere‡o IPv6 . . . . . . . . . . : 2804:14c:65d5:63f1:d130:96b2:d49a:cd20(Preferencial) 
   Endere‡o IPv6 Tempor rio. . . . . . . . : 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d(Preferencial) 
   Endere‡o IPv6 de link local . . . . . . . . : fe80::d130:96b2:d49a:cd20%3(Preferencial) 
   Endere‡o IPv4. . . . . . . .  . . . . . . . : 192.168.0.10(Preferencial) 
   M scara de Sub-rede . . . . . . . . . . . . : 255.255.255.0
   ConcessÆo Obtida. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 16:15:47
   ConcessÆo Expira. . . . . . . . . . . . . . : quinta-feira, 2 de junho de 2016 17:16:10
   Gateway PadrÆo. . . . . . . . . . . . . . . : fe80::2a32:c5ff:fec4:d1ba%3
                                                 192.168.0.1
   Servidor DHCP . . . . . . . . . . . . . . . : 192.168.0.1
   IAID de DHCPv6. . . . . . . . . . . . . . . : 251667992
   DUID de Cliente DHCPv6. . . . . . . . . . . : 00-01-00-01-19-7E-6E-59-00-26-18-E9-C7-2D
   Servidores DNS. . . . . . . . . . . . . . . : 2001:4860:4860::8888
                                                 2001:4860:4860::8844
                                                 8.8.8.8
                                                 8.8.4.4
   NetBIOS em Tcpip. . . . . . . . . . . . . . : Habilitado
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    google.com
Addresses:  2800:3f0:4001:802::200e
 189.6.76.148
 189.6.76.172
 189.6.76.162
 189.6.76.168
 189.6.76.173
 189.6.76.183
 189.6.76.152
 189.6.76.177
 189.6.76.178
 189.6.76.182
 189.6.76.157
 189.6.76.167
 189.6.76.158
 189.6.76.153
 189.6.76.187
 189.6.76.163
 
 
Disparando google.com [2800:3f0:4001:811::200e] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2800:3f0:4001:811::200e: tempo=32ms 
 
Estat¡sticas do Ping para 2800:3f0:4001:811::200e:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 32ms, M ximo = 32ms, M‚dia = 32ms
Servidor:  google-public-dns-a.google.com
Address:  2001:4860:4860::8888
 
Nome:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Disparando yahoo.com [2001:4998:44:204::a7] com 32 bytes de dados:
Esgotado o tempo limite do pedido.
Resposta de 2001:4998:44:204::a7: tempo=169ms 
 
Estat¡sticas do Ping para 2001:4998:44:204::a7:
    Pacotes: Enviados = 2, Recebidos = 1, Perdidos = 1 (50% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 169ms, M ximo = 169ms, M‚dia = 169ms
 
Disparando 127.0.0.1 com 32 bytes de dados:
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
Resposta de 127.0.0.1: bytes=32 tempo<1ms TTL=128
 
Estat¡sticas do Ping para 127.0.0.1:
    Pacotes: Enviados = 2, Recebidos = 2, Perdidos = 0 (0% de
             perda),
Aproximar um n£mero redondo de vezes em milissegundos:
    M¡nimo = 0ms, M ximo = 0ms, M‚dia = 0ms
===========================================================================
Lista de interfaces
  3...00 26 18 e9 c7 2d ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================
 
Tabela de rotas IPv4
===========================================================================
Rotas ativas:
Endere‡o de rede          M scara   Ender. gateway       Interface   Custo
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.10     20
        127.0.0.0        255.0.0.0      No v¡nculo         127.0.0.1    306
        127.0.0.1  255.255.255.255      No v¡nculo         127.0.0.1    306
  127.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
      192.168.0.0    255.255.255.0      No v¡nculo      192.168.0.10    276
     192.168.0.10  255.255.255.255      No v¡nculo      192.168.0.10    276
    192.168.0.255  255.255.255.255      No v¡nculo      192.168.0.10    276
        224.0.0.0        240.0.0.0      No v¡nculo         127.0.0.1    306
        224.0.0.0        240.0.0.0      No v¡nculo      192.168.0.10    276
  255.255.255.255  255.255.255.255      No v¡nculo         127.0.0.1    306
  255.255.255.255  255.255.255.255      No v¡nculo      192.168.0.10    276
===========================================================================
Rotas persistentes:
  Nenhuma
 
Tabela de rotas IPv6
===========================================================================
Rotas ativas:
 Se destino de rede de m‚trica      Gateway
  3    276 ::/0                     fe80::2a32:c5ff:fec4:d1ba
  1    306 ::1/128                  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  No v¡nculo
  3    276 2804:14c:65d5:63f1::/64  fe80::2a32:c5ff:fec4:d1ba
  3    276 2804:14c:65d5:63f1::1/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:1d3f:d23e:c0d8:dd0d/128
                                    No v¡nculo
  3    276 2804:14c:65d5:63f1:d130:96b2:d49a:cd20/128
                                    No v¡nculo
  3    276 fe80::/64                No v¡nculo
  3    276 fe80::d130:96b2:d49a:cd20/128
                                    No v¡nculo
  1    306 ff00::/8                 No v¡nculo
  3    276 ff00::/8                 No v¡nculo
===========================================================================
Rotas persistentes:
  Nenhuma
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS) (User: )
Description: Erro do Serviço de Cópias de Sombra de Volume: erro inesperado ao consultar a interface IVssWriterCallback.  hr =  0x80070005, Acesso negado.
.
Muitas vezes, isso é causado por configurações de segurança incorretas no processo gravador ou solicitante.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: WinRAR.exe, versão: 5.1.0.0, carimbo de data/hora: 0x529aee4c
Nome do módulo com falha: libapr_tsvn.dll, versão: 1.4.6.0, carimbo de data/hora: 0x51bf4b4d
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0000000000003503
ID do processo com falha: 0x1834
Hora de início do aplicativo com falha: 0xWinRAR.exe0
Caminho do aplicativo com falha: WinRAR.exe1
Caminho do módulo com falha: WinRAR.exe2
ID do Relatório: WinRAR.exe3
Nome completo do pacote com falha: WinRAR.exe4
ID do aplicativo relativo ao pacote com falha: WinRAR.exe5
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide) (User: )
Description: Falha na geração de contexto de ativação para "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1". Erro no arquivo de manifesto ou de política "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2", na linha C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3.
Uma versão de componente exigida pelo aplicativo está em conflito com outra versão de componente já ativa.
Os componentes conflitantes são:
Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.
Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime) (User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
System errors:
=============
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:19:29 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 04:16:14 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/02/2016 12:42:13 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/02/2016 12:35:52 PM) (Source: Schannel) (User: AUTORIDADE NT)
Description: Alerta fatal recebido do ponto de extremidade remoto. O código de alerta fatal definido do protocolo TLS é 40.
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:34:47 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 10:33:31 PM) (Source: Service Control Manager) (User: )
Description: Não foi possível iniciar o serviço Warsaw File Access svc devido ao seguinte erro: 
%%2
 
Error: (06/01/2016 08:22:31 PM) (Source: disk) (User: )
Description: O dispositivo, \Device\Harddisk0\DR0, possui um setor defeituoso.
 
Error: (06/01/2016 08:20:37 PM) (Source: DCOM) (User: AUTORIDADE NT)
Description: {9E175B68-F52A-11D8-B9A5-505054503030}
 
 
Microsoft Office Sessions:
=========================
Error: (06/02/2016 03:26:34 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 4772. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 11:19:12 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 11:18:59 PM) (Source: VSS)(User: )
Description: 0x80070005, Acesso negado.
 
 
Operação:
   Obtendo Dados do Gravador
 
Contexto:
   Id de Classe de Gravador: {e8132975-6f93-4464-a53e-1050253ae220}
   Nome do Gravador: System Writer
   ID de Instância de Gravador: {41dbd78b-9c34-4d32-8cf8-7583518e61c9}
 
Error: (06/01/2016 10:26:26 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.
 
System Error:
Acesso negado.
 
Error: (06/01/2016 10:13:24 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Desktop\FIX\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 10:12:46 PM) (Source: Application Error)(User: )
Description: WinRAR.exe5.1.0.0529aee4clibapr_tsvn.dll1.4.6.051bf4b4dc00000050000000000003503183401d1bc6bb1300d18C:\Program Files\WinRAR\WinRAR.exeC:\Program Files\TortoiseSVN\bin\libapr_tsvn.dll1d41d832-285f-11e6-8250-002618e9c72d
 
Error: (06/01/2016 10:11:28 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\lipei_000\Downloads\esetsmartinstaller_enu.exe
 
Error: (06/01/2016 08:26:53 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 3904. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:25:52 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2352. ID da Mensagem: [0x2509].
 
Error: (06/01/2016 08:23:55 PM) (Source: .NET Runtime)(User: )
Description: .NET Runtime version 4.0.30319.34014 - Falha ao inicializar a infra-estrutura de anexação da API do criador de perfil. Esse processo não permite que um perfil seja anexado. HRESULT: 0x80004005.  ID do Processo (decimal): 2672. ID da Mensagem: [0x2509].
 
 
=========================== Installed Programs ============================
 
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.21 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0921-000001000000}) (Version: 9.21.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Dreamweaver CS5 (HKLM-x32\...\{C79312BD-3E76-4474-A10C-1435D1856A4B}) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1711, 17.04.2016 - AIMP DevTeam)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version:  - Sandbox Interactive GmbH)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.2.2262 - AVAST Software)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.34728 - BitTorrent Inc.)
Bullzip PDF Printer 9.2.0.1499 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.2.0.1499 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 4.09 - Piriform)
Central de Mouse e Teclado da Microsoft (HKLM\...\{23D2AFC7-C01E-4413-9D9A-0BABF52569BF}) (Version: 2.3.145.0 - Microsoft Corporation) Hidden
Central de Mouse e Teclado da Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.145.0 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
DirectVobSub 2.40.4209 (HKLM-x32\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)
Driver Booster 3.2 (HKLM-x32\...\Driver Booster_is1) (Version: 3.2 - IObit)
Estudo de aprimoramento de produto para HP Deskjet 1510 series (HKLM\...\{4F985052-FE19-4E21-9333-D847BCD06C0E}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GS Auto Clicker (HKCU\...\GS Auto Clicker_is1) (Version: V3.1.2 - goldensoft.org)
HP Deskjet 1510 series Ajuda (HKLM-x32\...\{6DFDA448-D4A1-49DB-9217-1501D24861F5}) (Version: 30.0.0 - Hewlett Packard)
HP Deskjet 1510 series Software básico do dispositivo (HKLM\...\{649F7314-489F-4E1D-877B-EAE9CB34D7AA}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Instalação do DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
JSFToolbox for Dreamweaver (Community Bundle) (HKLM-x32\...\{E33997C0-6B7E-4183-9407-12C21A976EF1}) (Version: 4.00.0000 - Tarantula Consulting Inc.)
K-Lite Codec Pack 10.4.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
League of Legends (HKLM-x32\...\{BCCDE721-9F4D-4396-9592-92DD865D965E}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Lightshot-5.2.1.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.1.1 - Skillbrains)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Magebot (HKLM-x32\...\Magebot) (Version:  - )
Malwarebytes Anti-Malware versão 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Módulo de Segurança - Banco do Brasil (HKCU\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.12.1.2 - )
Mumble 1.2.10 (HKLM-x32\...\{29C78547-3B49-4C4D-8325-FC8D7BE7CDF5}) (Version: 1.2.10 - Thorvald Natvig)
MySQL Connector/ODBC 5.2 64bit (community edition) (HKLM\...\{D8053A16-A50E-401C-B162-18119EB7CC33}) (Version: 5.2.5 - Oracle Corporation)
MySQL Documents 5.6 (HKLM-x32\...\{D203629C-FB78-46E5-984C-FA4976F1A0CB}) (Version: 5.6.12 - Oracle Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA Cg Toolkit 3.1 April 2012 (HKLM-x32\...\Cg Toolkit_is1) (Version:  - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Popcorn Time (HKCU\...\Popcorn Time) (Version:  - Popcorn Official)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.7 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com)
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
SafeZone Stable 1.48.2066.101 (HKLM-x32\...\SafeZone 1.48.2066.101) (Version: 1.48.2066.101 - Avast Software) Hidden
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0416-1000-0000000FF1CE}_Office14.PROPLUS_{3FE5480B-28E8-44EF-BC2C-BEDC366EBF31}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{05916788-991E-417B-A8F3-77F90A2B8271}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0416-1000-0000000FF1CE}_Office14.PROPLUS_{9E762773-4821-48D2-96E6-D14F9A86DBF9}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0416-1000-0000000FF1CE}_Office14.PROPLUS_{12148C47-62D8-49E4-8CD9-AF7EFB16B199}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0416-1000-0000000FF1CE}_Office14.PROPLUS_{FB36B2AE-6584-4E83-B63F-B53E908F52D3}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0416-1000-0000000FF1CE}_Office14.PROPLUS_{87C9B14A-5111-4373-90B1-68852305D241}) (Version:  - Microsoft) Hidden
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS)
SW Update (HKLM-x32\...\{AAFEFB05-CF98-48FC-985E-F04CD8AD620D}) (Version: 2.2.9 - Samsung Electronics CO., LTD.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 10.82 - CipSoft GmbH)
Tibia Map Viewer (HKLM-x32\...\TMViewer) (Version:  - Yury Sidorov)
Tibia Piece version 1.0 (HKCU\...\{36652C22-150B-4AEA-90B7-F7DAC118A1E4}_is1) (Version: 1.0 - Tibia Piece Team)
Tibiacast (HKLM-x32\...\{52A46C37-E216-4464-B160-AECF688B0C87}) (Version: 3.1.05600 - Silver Squirrel Software HB)
TortoiseSVN 1.8.0.24401 (64 bit) (HKLM\...\{67630560-B0DC-4FC6-8B04-7B949F8ABEF0}) (Version: 1.8.24401 - TortoiseSVN)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Warsaw 1.5.1.8886 64 bits (HKLM\...\{20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1) (Version: 1.5.1.8886 - GAS Tecnologia)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WTFast 3.2 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 3.2.14.322 - Initex & AAA Internet Publishing)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 43%
Total physical RAM: 4095.18 MB
Available physical RAM: 2314.54 MB
Total Virtual: 8191.18 MB
Available Virtual: 5789.57 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:293.65 GB) (Free:147.68 GB) NTFS
2 Drive d: () (Fixed) (Total:1103.52 GB) (Free:252.65 GB) NTFS
 
========================= Users: ========================================
 
Contas de usu rio para \\RODRIGO-CASA
 
admin                    Administrador            Convidado                
graci_000                lipei_000                Rodrigo                  
Comando conclu¡do com ˆxito.
 
 
**** End of log ****
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 8.1 Pro x64 
Ran by lipei_000 (Administrator) on 02/06/2016 at 17:01:01,71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
About JRT log, the first time I ran it appeared an "error" , then i Exit it and ran again...
 
 
 
 
File System: 0 
 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02/06/2016 at 17:41:34,99
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
ESET 
 
C:\Users\All Users\KMSAuto\KMSES.exe a variant of Win32/HackTool.KMSAuto.B potentially unsafe application
C:\Users\Todos os Usuários\KMSAuto\KMSES.exe a variant of Win32/HackTool.KMSAuto.B potentially unsafe application
C:\Windows.old\Users\All Users\KMSAuto\KMSES.exe a variant of Win32/HackTool.KMSAuto.B potentially unsafe application
C:\ProgramData\KMSAuto\KMSES.exe a variant of Win32/HackTool.KMSAuto.B potentially unsafe application cleaned by deleting
C:\Users\admin\AppData\LocalLow\Sun\Java\jre1.7.0_55\java_sp.dll a variant of Win32/Bundled.Toolbar.Ask.M potentially unsafe application cleaned by deleting
C:\Users\admin\AppData\Roaming\DVDVideoSoft\FreeVideoToTabletPCConverter.exe Win32/OpenCandy potentially unsafe application deleted
C:\Users\admin\Desktop\DJ1510_188.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted
C:\Users\admin\Downloads\FreeVideoToTabletPCConverter.exe Win32/OpenCandy potentially unsafe application deleted
C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000f JS/Toolbar.Crossrider.B potentially unwanted application cleaned by deleting
C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000011 JS/Toolbar.Crossrider.A potentially unwanted application cleaned by deleting
C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000012 JS/Toolbar.Crossrider.A potentially unwanted application cleaned by deleting
C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000049 JS/Toolbar.Crossrider.B potentially unwanted application cleaned by deleting
C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00004e JS/Toolbar.Crossrider.B potentially unwanted application cleaned by deleting
C:\Users\graci_000\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000a5 JS/Toolbar.Crossrider.B potentially unwanted application cleaned by deleting
C:\Users\lipei_000\AppData\Roaming\BitTorrent\updates\7.9.0_30659.exe a variant of Win32/AdkDLLWrapper.A potentially unwanted application cleaned by deleting
C:\Users\lipei_000\AppData\Roaming\BitTorrent\updates\7.9.2_34728.exe a variant of Win32/OpenCandy.A potentially unsafe application cleaned by deleting
C:\Users\lipei_000\Desktop\BitTorrent.exe a variant of Win32/OpenCandy.A potentially unsafe application cleaned by deleting
C:\Users\lipei_000\Downloads\uTorrent.exe a variant of Win32/OpenCandy.A potentially unsafe application cleaned by deleting
C:\Users\Rodrigo\AppData\Roaming\uTorrent\updates\3.3.1_29963.exe a variant of Win32/AdkDLLWrapper.A potentially unwanted application cleaned by deleting
C:\Windows.old\Users\admin\AppData\Local\Temp\94920uninstall.exe a variant of Win32/InstallCore.ACJ potentially unwanted application cleaned by deleting
C:\Windows.old\Users\admin\AppData\Local\Temp\B382.tmp Win32/Toolbar.Iminent.I potentially unwanted application deleted
C:\Windows.old\Users\admin\AppData\Local\Temp\tester.dll a variant of Win32/InstallMonetizer.BD potentially unwanted application cleaned by deleting
C:\Windows.old\Users\admin\AppData\Local\Temp\autokms\KMSES.exe a variant of Win32/HackTool.KMSAuto.B potentially unsafe application cleaned by deleting
D:\$RECYCLE.BIN\S-1-5-21-4091926015-1244931800-462961456-1038\$R968JG3\ITIL.rar a variant of Win32/TrojanClicker.Delf.NNQ trojan deleted
D:\desenvolvimento\Adobe Dreamweaver CS5\Dreamweaver CS5 Crack + Tradução em Português\Dreamweaver CS5 Crack\patch.bat BAT/HostsChanger.A potentially unsafe application cleaned by deleting
 
 
Before eset scan completion my websites already looks fixed , i can acess all of them again
 
I'm  also checking if i'm able to verify updates from windows update
 
Do i need to uninstall all these cleaning programs? Next Step? and there's a recommendation program to not be infected like this again?
 
Thank you very much.

Edited by lipefuark, 03 June 2016 - 09:21 AM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:39 AM

Posted 03 June 2016 - 11:23 AM

Hello, it appears there are some cracked aps on here and they would be the cause.

C:\Documents and Settings\Les\Desktop\Programs\Dreamweaver MX\keygen.exe...a variant of Win32/Keygen.CY application


The practice of using keygens, hacking tools, cracking tools, warez, torrents or any pirated software is not only considered illegal activity but it is a serious security risk.


Cracking applications are used for illegally breaking (cracking) various copy-protection and registration techniques used in commercial software. These programs may be distributed via Web sites, Usenet, and P2P networks.

TrendMicro Warning


...warez and crack web pages are being used by cybercriminals as download sites for malware related to VIRUT and VIRUX. Searches for serial numbers, cracks, and even antivirus products like Trend Micro yield malcodes that come in the form of executables or self-extracting files...quick links in these sites also lead to malicious files. Ads and banners are also infection vectors...

Keygen and Crack Sites Distribute VIRUX and FakeAV


...warez/piracy sites ranked the highest in downloading spyware...just opening the web page usually sets off an exploit, never mind actually downloading anything. And by the time the malware is finished downloading, often the machine is trashed and rendered useless.

University of Washington spyware study


...One of the most aggressive and intrusive of all bad websites on the Internet are serial, warez, software cracking type sites...they sneak malware onto your system...Where do trojan viruses originate? One of the biggest malware distributors on the Internet are serial/warez/code cracking sites.

Bad Web Sites: Malware


...a staggering 59% of the key generators and crack tools downloaded from P2P networks represent a security liability since they contain malicious and unwanted code. "25% of the Web sites we accessed offering counterfeit product keys, pirated software, key generators or crack tools attempted to install either malicious software or potentially unwanted software. A significant number of these Web sites attempted to install malicious or unwanted code...In addition to the peer-to-peer networks, 11% of the key generators and crack tools downloaded from Web sites were also plagued by malicious and unwanted software.

Microsoft Reveals the Risks of Using Pirated XP and Office
Whatever You Do, Do Not Download Windows 7 Via Torrent Sites

When you use these kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, those sites are infested with a smörgåsbord of malware and an increasing source of system infection. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.

I strongly recommend that you remove all cracks and keygens immediately to reduce the risk of infection/reinfection. If not, then we are just wasting time trying to clean your system. Further, other tools used during the disinfection process may detect crack and keygens so they need to be removed.

Using these types of programs or the websites visited to get them is almost a guaranteed way to get yourself infected!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 03 June 2016 - 11:38 AM

Oh, i'll never crack anything again... lesson learned :P

 

UPDATE:

 

But Damm, I'Cant believe , when i was trying to repair the windows update constantly the same results saying that some error was repaired but there are some iddle problems also and coudn't update...

 


And while doing this ,"blackout" happenned my energy provider just "exploded" and my energy was shutdown , pc restarted and again same website problems, i couldn't acess youtube, google translate , etc...

 

 

What Should I Do Now? Re-run all scans over again?

 

 

OBS: After websites problems solved the only lasting problem was my pc was still slowly 



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:39 AM

Posted 03 June 2016 - 11:50 AM

Uninstall the cracks like MBAM.. rerun tools.. then we'll check file errors
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 03 June 2016 - 05:04 PM

Alright, I did uninstalled all programs Revo Uninstaller Pro that was cracked before, and lately MBAM that was working via lifetimekey /w host hijack

 

 

Also the message from the Chrome websites issues is getting a different variant , but always beetwen those two messages if this can help with anything...

 

The www.globo.com page isn’t working  

www.globo.com didn’t send any data.

ERR_EMPTY_RESPONSE
 

and lately this one:

 

This site can’t be reached  

translate.google.com.br unexpectedly closed the connection.

Try:

Also this "Security Alert" with Java Icon about something like this: "Security certificate revocation information on this site are not available" still appearing as the image below:

 

1049cc6cd8764451809238943dae5033.png

 

 

OBS: Yesterday when issues were fixed for a bit windows update managed to download the english language package that i've requested when add the new language

 

 

Waiting for the next step

 

Thank You !!

 

UPDATE: I've uninstalled most uselles programs today, (10~ at least), already re-run eset scanner yesterday but no threats were found


Edited by lipefuark, 04 June 2016 - 02:38 PM.


#11 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 06 June 2016 - 10:32 AM

UPDATE: The websites and windows update is working fine atm, there's also a a option to update to Windows 10 from Windows 8.1. is it good?

 

 

The only remaining problem is pc still slow when u watch streams at high quality or playing some LoL fps made it unplayable.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:39 AM

Posted 07 June 2016 - 01:07 PM

Hello ask about these 2 items in win 8 as there are specs for a good update. they can check for you.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 07 June 2016 - 04:31 PM

Sorry, i didn't understand ur last message, which items are u talking about? and how should I do this? 

 

Thank you :)



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:39 AM

Posted 08 June 2016 - 01:13 PM

The only remaining problem is pc still slow when u watch streams at high quality or playing some LoL fps made it unplayable.

And how you update to Win 10

Ask this in WIN 8
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 lipefuark

lipefuark
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 08 June 2016 - 05:35 PM

6134b7d5955b40bbac552d4731c68541.png

 

 

The report says that pc is ready and fine for updating to win 10

 

What do you recommend?


Edited by lipefuark, 08 June 2016 - 05:36 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users