Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Junker removal tool in scanning without taking complete it


  • This topic is locked This topic is locked
19 replies to this topic

#1 Clade

Clade

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 01 April 2014 - 12:30 PM

Good morning !
 
It is the first time we're posting in this forum . . . and we would like to thank BleepingComputer.com for this opportunity and hope , when needed , do it again . . .
 
We are not experts in the English language . . .
 
As we like to try different software , even analyzing them with specific tools , difficulties with the operating system normally occur .
 
We would like to report what is happening in our equipment , Windows 7 64 -bit, Memory Ram 4,0 GB, Intel Core I3 - 2350 M. CPU 2,3 GHz, 2294 Mhz.. . :
 
After using various tools online antivirus scanning , cleaning and optimization . . . using the JRT in normal mode it is taking longer than 1 hour for scanning. . . When he starts work on the record , after some time , the following message appears : " Access Denied " , and 2 lines , "Could not ... the file , it is being used in another process " . . In the analysis of browsers , Internet Explorer passes the 11 , when it arrives in Firefox message: " Access Denied " and later closes the software , without the issuance of report. In safe mode , around 3 minutes to scan and found little , only in the Firefox browser . After re- scanning in normal mode , and occurs above reported .
Apparently the analysis of the hijackthis log is Normal ( attached file ) .
 
If possible , please place .
 
Thanks for your attention

Edit: Moved topic from Windows 7 to the more appropriate forum.~ Animal

Attached Files



BC AdBot (Login to Remove)

 


#2 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 03 April 2014 - 11:56 AM

Could you please inform to where this topic has been removed?

 

Thanks!



#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,925 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:43 AM

Posted 04 April 2014 - 08:05 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

The HijackThis tool is not compatibly with your Operating system.
Please run the following tool and post the logs for my review.
Let me know what problems you are having with this computer.

Download the correct version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
===

#4 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 04 April 2014 - 08:30 AM

Good morning Nasdaq 
 
In fact, our concern is related to the use of impossibidade JRT otherwise apparently device is responding well. . . After the use of various anti rootkit software, malware. . . (Scan Eset, Kaspersky Removal Tool, Adw, Combofix ...) and optimizers as well as chkdsk and sfc / scannow, which found, but can not fix. . . We think it is interesting to seek aid from this forum, which makes learn too. . . 
 
We wonder why the Hijackthis is not considered with our OS. For which OS it is indicated or what situations? 
 
Thanks for your attention!
 
 
Here are the logs; 

 

1. FRST.txt:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Dell (administrator) on DELL-PC on 04-04-2014 10:10:21
Running from C:\Users\Dell\Desktop
Windows 7 Home Basic Service Pack 1 (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(Enigma Software Group USA, LLC.) C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Fork Ltd.) C:\Prey\platform\windows\cronsvc.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(LastPass) C:\Program Files (x86)\LastPass\nplastpass.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\DllHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Users\Dell\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\PROGRAM FILES (X86)\EASEUS\TODO BACKUP\BIN\TRAYNOTIFY.EXE
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(VS Revo Group) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [SynTPEnh] - C:\Program Files\synaptics\syntp\syntpenh.exe [3011312 2014-01-24] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM-x32\...\Run: [KeyScrambler] - C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [508144 2013-11-14] (QFX Software Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ GbPluginBb-x32: C:\Program Files (x86)\GbPlugin\gbieh.dll (Banco do Brasil)
HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\.DEFAULT\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoFile] 0
HKU\.DEFAULT\...\Policies\Explorer: [HideClock] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSetFolders] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoDFSTab] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoLogoff] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoResolveSearch] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoSaveSettings] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoHardwareTab] 0
HKU\.DEFAULT\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-604499010-3047789608-1666320658-1000\...\Run: [WinPatrol] - c:\program files (x86)\billp studios\winpatrol\winpatrol.exe [429120 2014-01-23] (BillP Studios)
HKU\S-1-5-21-604499010-3047789608-1666320658-1000\...\Policies\Explorer: [] 
HKU\S-1-5-21-604499010-3047789608-1666320658-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-604499010-3047789608-1666320658-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
Startup: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitorar alertas de tinta - HP Officejet Pro 8600 (Rede).lnk
ShortcutTarget: Monitorar alertas de tinta - HP Officejet Pro 8600 (Rede).lnk -> C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
 
==================== Internet (Whitelisted) ====================
 
ProxyServer: localhost:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.br/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {17FA518B-7FFF-4721-962D-AEAF587A7E3F} URL = http://www.google.com/search?hl=en&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {17FA518B-7FFF-4721-962D-AEAF587A7E3F} URL = http://www.google.com/search?hl=en&q={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.9.0.22\trustedads.dll (AdTrustMedia)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
BHO-x32: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\Program Files (x86)\GbPlugin\gbieh.dll (Banco do Brasil)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.15.0.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1582632 2014-02-21] (Banco do Brasil)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{772B5A8A-A834-4D54-A2F7-397A644D2902}: [NameServer]156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{DD5529F5-1F46-4AC6-9407-30603A3DB7DD}: [NameServer]156.154.70.22,156.154.71.22
 
FireFox:
========
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default
FF user.js: detected! => C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\user.js
FF NewTab: www.google.com.br
FF Homepage: about:home
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass64.dll (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass - C:\Program Files (x86)\LastPass\nplastpass.dll (LastPass)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Dell\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Dell\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Dell\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Dell\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Dell\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: gastecnologia.com.br/sf/cef - C:\Users\Dell\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Dell\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Dell\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\Dell\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-br.xml
FF Extension: Fasterfox Lite - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\FasterFox_Lite@BigRedBrent [2013-06-17]
FF Extension: LastPass - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\support@lastpass.com [2014-02-28]
FF Extension: Forecastfox - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2014-03-01]
FF Extension: Qualys BrowserCheck - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} [2014-01-25]
FF Extension: Ghostery - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\firefox@ghostery.com.xpi [2013-09-16]
FF Extension: Webmail Ad Blocker - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\gmailnoads@mywebber.com.xpi [2013-09-16]
FF Extension: Self-Destructing Cookies - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi [2013-09-16]
FF Extension: Lightbeam - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2013-10-26]
FF Extension: PrivDog - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-03-19]
FF Extension: YSlow - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\yslow@yahoo-inc.com.xpi [2013-09-16]
FF Extension: Adblock Plus - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-16]
FF Extension: User Agent Switcher - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi [2013-09-16]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-03]
FF HKCU\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\Dell\AppData\Local\GAS Tecnologia\GBBD\cef\xpi
FF Extension: GBBD Caixa Economica Federal - C:\Users\Dell\AppData\Local\GAS Tecnologia\GBBD\cef\xpi [2014-01-16]
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com.br/
CHR DefaultSearchKeyword: google.com.br
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
CHR Plugin: (Java™ Platform SE 7 U45) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
CHR Plugin: (Nokia Suite Enabler Plugin) - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
CHR Plugin: (Módulo de Proteção - Caixa Economica Federal) - C:\Users\Dell\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll (GAS Tecnologia)
CHR Plugin: (Google Update) - C:\Users\Dell\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Google Talk Plugin) - C:\Users\Dell\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Dell\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Dell\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Extension: (Google Translate) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2013-07-11]
CHR Extension: (TooManyTabs for Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2013-07-11]
CHR Extension: (WOT) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2013-07-11]
CHR Extension: (Webmail Ad Blocker) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbhfdchmklhpcngcgjmpdbjakdggkkjp [2013-07-11]
CHR Extension: (Adblock Plus) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-07-26]
CHR Extension: (better Browser - for Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cokcmhdapcendeddejjpicpdmngcnhca [2013-10-22]
CHR Extension: (eCorreios - Rastreamentos dos Correios) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\delefjilcjidbcnnfkcebjphcfbokpfb [2013-07-11]
CHR Extension: (Tampermonkey) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-07-11]
CHR Extension: (MaskMe) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpkiidbpeijnaaacjlfnijncdlkicejg [2013-09-11]
CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2014-01-25]
CHR Extension: (DoNotTrackMe: Online Privacy Protection) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd [2013-07-11]
CHR Extension: (Spotflux Lite) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcakbkpmlidimpglgiaclbpgbedlmpfl [2014-01-31]
CHR Extension: (SiteAdvisor) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-02-08]
CHR Extension: (Avira Browser Safety) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-03-09]
CHR Extension: (Click&Clean) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2014-03-01]
CHR Extension: (AdBlock) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-07-26]
CHR Extension: (FlashBlock) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gofhjkjmkpinhpoiabjplobcaignabnl [2013-10-24]
CHR Extension: (PageSpeed Insights (by Google)) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplegfbjlmmehdoakndmohflojccocli [2013-07-11]
CHR Extension: (Unsocialize: The Link Unsocializer) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdogcpghhdcocgdjogbglgejhdeedijn [2013-07-11]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-01-26]
CHR Extension: (Cool Relógio) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\icegcmhgphfkgglbljbkdegiaaihifce [2014-01-12]
CHR Extension: (instant translate) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2013-07-11]
CHR Extension: (View Thru) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkncfnbcgbclefkbknfdbngiegdppgdd [2013-07-11]
CHR Extension: (Conversor de PDF para Word) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclbidlajocjmicnpgpfmkblhdhjelfe [2013-07-11]
CHR Extension: (Motorola Connect) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\kigmoblgooahdmdibodmcnffgnejlndh [2014-02-08]
CHR Extension: (Skype Click to Call) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-03-08]
CHR Extension: (Verificador de mensagens do Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2013-07-11]
CHR Extension: (Pocket (formerly Read It Later)) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2013-07-11]
CHR Extension: (Google Wallet) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-19]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2013-10-30]
CHR Extension: (Rolagem rápida do Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc [2013-10-23]
CHR Extension: (Quebrador de Links) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pchaoppopfjnlficjlobfjhfceadbfla [2013-07-11]
CHR Extension: (Bitdefender QuickScan) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2014-03-02]
CHR Extension: (AVG PrivacyFix) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmejhjjecaldkllonlokhkglbdbkdcni [2013-07-11]
CHR HKCU\...\Chrome\Extension: [nnjbodopomfddehlalfilheomcahbpei] - C:\Users\Dell\AppData\Local\GAS Tecnologia\GBBD\cef\sf.crx [2013-10-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
S4 a2AntiMalware; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2service.exe [4153784 2013-09-13] (Emsisoft GmbH)
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S4 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Ath_CoexAgent.exe [135168 2011-02-16] (Atheros)
S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363616 2014-01-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748640 2014-01-03] (Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6812400 2014-03-25] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 CronService; C:\Prey\platform\windows\cronsvc.exe [23552 2013-03-26] (Fork Ltd.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-01-28] ()
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [36936 2013-12-02] (CHENGDU YIWO Tech Development Co., Ltd)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [519720 2014-02-21] (GAS Tecnologia)
R2 Guard Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\GuardAgent.exe [23624 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-01-26] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC)
S4 ReflectService.exe; C:\Program Files\Macrium\Reflect\ReflectService.exe [409720 2013-06-28] ()
R2 SpyHunter 4 Service; C:\Program Files (x86)\Enigma Software Group\SpyHunter\SH4Service.exe [327064 2010-05-18] (Enigma Software Group USA, LLC.)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2014-01-21] (WiseCleaner.com)
S4 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-04-22] (Atheros)
 
==================== Drivers (Whitelisted) ====================
 
R0 12778157; C:\Windows\System32\DRIVERS\12778157.sys [460888 2014-04-01] (Kaspersky Lab ZAO)
R0 52972590; C:\Windows\System32\DRIVERS\52972590.sys [460888 2014-04-01] (Kaspersky Lab ZAO)
S3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [70960 2013-08-24] (Emsisoft GmbH)
R1 A2DDA; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)
S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-03-17] (Glarysoft Ltd)
S3 catchme; No ImagePath
S3 cleanhlp; C:\EEK\RUN\cleanhlp64.sys [57024 2014-02-11] (Emsisoft GmbH)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-03-25] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-03-25] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-03-25] (COMODO)
S3 cpuz132; No ImagePath
S3 cpuz136; No ImagePath
S3 Delldiag; No ImagePath
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] ()
S3 esgiguard; No ImagePath
S3 EUBAKUP0; No ImagePath
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48200 2013-09-04] ()
S3 EUBKMON0; C:\Windows\system32\drivers\EUBKMON0.sys [48200 2013-09-04] ()
S3 EUFDDISK0; No ImagePath
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-21] (Microsoft Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-11-19] (Intel Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-03-25] (COMODO)
R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [222200 2013-05-31] (QFX Software Corporation)
S3 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-04-02] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2014-01-24] (Intel Corporation)
S3 MFE_RR; No ImagePath
U0 Partizan; C:\Windows\SysWOW64\drivers\Partizan.sys [35816 2014-03-13] (Greatis Software)
S3 rspSanity; C:\Windows\System32\DRIVERS\rspSanity64.sys [31328 2012-10-29] (Resplendence Software Projects Sp.)
S3 SANDRA; No ImagePath
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [768680 2013-06-26] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2013-06-26] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29352 2013-06-26] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2013-06-26] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2014-01-24] (Synaptics Incorporated)
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [18776 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-08-01] ()
S3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [38664 2013-04-29] (Spotflux, Inc)
U2 SR; 
U2 srservice; 
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-04-04 10:10 - 2014-04-04 10:13 - 00035265 _____ () C:\Users\Dell\Desktop\FRST.txt
2014-04-04 10:08 - 2014-04-04 10:07 - 02157056 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2014-04-04 10:07 - 2014-04-04 10:07 - 02157056 _____ (Farbar) C:\Users\Dell\Downloads\FRST64.exe
2014-04-03 13:02 - 2014-04-04 09:57 - 00025227 _____ () C:\Windows\WindowsUpdate.log
2014-04-03 12:59 - 2014-04-03 12:59 - 00000334 _____ () C:\Windows\PFRO.log
2014-04-03 12:59 - 2014-04-03 12:59 - 00000056 _____ () C:\Windows\setupact.log
2014-04-03 12:59 - 2014-04-03 12:59 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-03 07:58 - 2014-04-03 07:58 - 00000085 _____ () C:\Windows\wininit.ini
2014-04-03 07:25 - 2014-04-03 07:25 - 00003560 ____N () C:\bootsqm.dat
2014-04-03 00:23 - 2014-04-03 00:27 - 00000000 ____D () C:\Windows\system32\config\RRBackups
2014-04-03 00:04 - 2014-04-03 00:04 - 00184745 _____ () C:\Users\Dell\Documents\GMER log complete.log
2014-04-02 21:52 - 2014-04-02 21:53 - 00087360 _____ () C:\Users\Dell\Downloads\gmer.wmv
2014-04-02 14:27 - 2014-04-02 14:28 - 01472131 _____ () C:\Users\Dell\Downloads\vba32arkit.zip
2014-04-02 13:31 - 2014-04-03 17:54 - 00005297 _____ () C:\Users\Dell\Documents\Sal grosso.txt
2014-04-02 12:37 - 2014-04-02 12:37 - 00006759 _____ () C:\Users\Dell\Downloads\gmer.log
2014-04-02 12:05 - 2014-04-02 12:05 - 11424368 _____ (Bitdefender LLC) C:\Users\Dell\Downloads\BootkitRemoval_x64.exe
2014-04-02 10:29 - 2014-04-02 10:29 - 00119000 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-02 10:22 - 2014-04-02 10:22 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Dell\Downloads\mbar-1.07.0.1009.exe
2014-04-02 09:01 - 2014-04-02 09:01 - 18517048 _____ (SUPERAntiSpyware) C:\Users\Dell\Downloads\SUPERAntiSpywarePro.exe
2014-04-02 08:24 - 2014-04-02 08:26 - 134103416 _____ () C:\Users\Dell\Downloads\setup_11.0.1.1245.x01_2014_04_02_13_56.exe
2014-04-02 07:34 - 2014-04-01 03:54 - 00460888 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\12778157.sys
2014-04-02 07:16 - 2014-04-02 07:16 - 72081408 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-04-02 07:16 - 2014-04-02 07:16 - 00364544 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-04-02 07:16 - 2014-04-02 07:16 - 00053248 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-04-02 07:16 - 2014-04-02 07:16 - 00032768 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-04-02 00:39 - 2014-04-02 00:39 - 10971424 _____ (SurfRight B.V.) C:\Users\Dell\Downloads\HitmanPro_x64.exe
2014-04-02 00:37 - 2014-04-02 00:39 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-01 23:53 - 2014-04-01 23:54 - 10094400 _____ (SurfRight B.V.) C:\Users\Dell\Downloads\HitmanPro.exe
2014-04-01 18:36 - 2014-04-01 18:36 - 00002205 _____ () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\360 Browser.lnk
2014-04-01 18:36 - 2014-04-01 18:36 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Browser
2014-04-01 18:34 - 2014-04-01 18:36 - 00000000 ____D () C:\Users\Dell\AppData\Local\360Browser
2014-04-01 13:16 - 2014-04-01 13:16 - 02926184 _____ (Emsisoft GmbH ) C:\Users\Dell\Downloads\EmsisoftHiJackFreeSetup.exe
2014-03-31 21:45 - 2014-04-01 03:54 - 00460888 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\52972590.sys
2014-03-31 21:40 - 2014-03-31 21:44 - 133978288 _____ () C:\Users\Dell\Downloads\setup_11.0.1.1245.x01_2014_04_01_03_55.exe
2014-03-31 20:17 - 2014-03-31 20:17 - 00044407 _____ () C:\ComboFix.txt
2014-03-31 14:10 - 2014-03-31 10:53 - 01038974 _____ (Thisisu) C:\Users\Dell\Desktop\JRT.exe
2014-03-31 10:52 - 2014-03-31 10:52 - 05192353 _____ (Swearware) C:\Users\Dell\Downloads\ComboFix.exe
2014-03-31 10:50 - 2014-03-31 10:50 - 00850067 _____ (www.isoopener.com ) C:\Users\Dell\Downloads\Abrir Iso isoopener_setup.exe
2014-03-31 09:42 - 2014-03-31 09:42 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Dell\Downloads\rkill.exe
2014-03-31 08:09 - 2014-03-31 09:34 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Wise Registry Cleaner
2014-03-31 07:39 - 2014-03-31 07:40 - 03224200 _____ (WiseCleaner.com ) C:\Users\Dell\Downloads\WRCFree.exe
2014-03-30 21:12 - 2014-04-02 06:18 - 00000000 ____D () C:\ProgramData\RegistryReviver.exe
2014-03-30 20:28 - 2014-03-30 20:28 - 00001022 _____ () C:\Users\Public\Desktop\Registry Reviver.lnk
2014-03-30 20:28 - 2014-03-30 20:28 - 00001022 _____ () C:\ProgramData\Desktop\Registry Reviver.lnk
2014-03-30 20:28 - 2014-03-30 20:28 - 00000000 ____D () C:\ProgramData\ReviverSoft
2014-03-30 20:28 - 2014-03-30 20:28 - 00000000 ____D () C:\Program Files\ReviverSoft
2014-03-30 18:55 - 2014-03-30 18:55 - 00000000 ____D () C:\Users\Dell\Downloads\ParetoLogic PC Health Advisor v3.1.3 Including Crack + Key [h33t][iahq76]
2014-03-30 18:52 - 2014-03-30 18:52 - 00000000 ____D () C:\Users\Dell\Downloads\Registry.Reviver.3.0.1.142
2014-03-30 18:50 - 2014-03-30 18:52 - 00000000 ____D () C:\Users\Dell\Downloads\Systweak RegClean Pro v6.21.65.2364 With Key [h33t][iahq76]
2014-03-30 18:40 - 2014-03-30 18:40 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-03-30 18:39 - 2014-04-03 08:00 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-30 18:39 - 2014-04-03 07:58 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-30 18:35 - 2014-03-30 18:36 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Dell\Downloads\spybot-2.2.exe
2014-03-30 18:31 - 2014-03-30 18:31 - 00102960 _____ () C:\Users\Dell\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-30 18:03 - 2014-03-30 18:03 - 00391432 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-30 13:54 - 2014-03-30 13:54 - 07195272 _____ (Goversoft LLC) C:\Users\Dell\Downloads\privazer_free.exe
2014-03-30 09:23 - 2014-03-30 09:23 - 00001073 _____ () C:\Users\Dell\Desktop\DllSuite.lnk
2014-03-30 09:23 - 2014-03-30 09:23 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2014
2014-03-30 09:23 - 2014-03-30 09:23 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2014-03-28 16:55 - 2014-03-28 16:56 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Dell\Downloads\mb3-setup-1878.1878-3.5.1.2522.exe
2014-03-28 06:59 - 2014-03-29 10:32 - 00003036 _____ () C:\Windows\System32\Tasks\AnVir Task Manager
2014-03-28 06:59 - 2014-03-28 21:50 - 00000000 ____D () C:\Program Files (x86)\AnVir Task Manager Pro
2014-03-28 06:59 - 2014-03-28 06:59 - 00001077 _____ () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\AnVir Task Manager Pro.lnk
2014-03-28 06:59 - 2014-03-28 06:59 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnVir Task Manager Pro
2014-03-27 10:14 - 2009-02-24 18:35 - 00255552 _____ (MagicISO, Inc.) C:\Windows\system32\Drivers\mcdbus.sys
2014-03-27 09:27 - 2014-03-27 09:27 - 05933233 _____ () C:\Users\Dell\Downloads\AnVir Task Manager Crack Pro 7.5.2.rar
2014-03-26 17:13 - 2014-03-26 17:13 - 00000000 ____D () C:\Users\Dell\Downloads\ESET Smart Security 7.0.302.26+Keymaker~~
2014-03-26 12:19 - 2014-04-03 13:15 - 00001985 _____ () C:\Users\Public\Desktop\COMODO Internet Security.lnk
2014-03-26 12:19 - 2014-04-03 13:15 - 00001985 _____ () C:\ProgramData\Desktop\COMODO Internet Security.lnk
2014-03-26 12:17 - 2014-03-26 12:19 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-03-26 12:16 - 2014-03-26 12:16 - 00057096 _____ (COMODO CA Limited) C:\Windows\system32\certsentry.dll
2014-03-26 12:16 - 2014-03-26 12:16 - 00048392 _____ (COMODO CA Limited) C:\Windows\SysWOW64\certsentry.dll
2014-03-26 12:16 - 2014-03-26 12:16 - 00000000 ____D () C:\Users\Dell\AppData\Local\Comodo
2014-03-26 12:02 - 2014-03-26 12:02 - 00000000 ____D () C:\ProgramData\Weskysoft
2014-03-26 11:50 - 2014-03-26 11:52 - 16578402 _____ ( ) C:\Users\Dell\Downloads\DLLSuite_Setup_2013.exe
2014-03-25 23:05 - 2014-03-25 23:05 - 00000385 _____ () C:\Users\Dell\AppData\Roaminguser_gensett.xml
2014-03-25 22:37 - 2014-03-25 22:37 - 00229839 _____ () C:\Users\Dell\Downloads\AllsoftwareKeyGenerator2013.rar
2014-03-25 20:54 - 2014-03-25 20:54 - 00000000 ____D () C:\ProgramData\BDLogging
2014-03-25 19:55 - 2014-03-25 23:26 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-03-25 19:34 - 2014-03-25 19:34 - 00397475 _____ () C:\Users\Dell\Downloads\DLL Suite 2013 - Free download and errors Clade Brandalise .odt
2014-03-25 19:34 - 2014-03-25 19:34 - 00219555 _____ () C:\Users\Dell\Downloads\DLL Suite 2013 - trying  correct errors Clade Brandalise.odt
2014-03-25 19:29 - 2014-03-25 19:29 - 00641594 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - errors Clade Brandalise 6.odt
2014-03-25 19:28 - 2014-03-25 19:28 - 00227759 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - errors Clade Brandalise 5.odt
2014-03-25 19:27 - 2014-03-25 19:27 - 00227616 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - errors Clade Brandalise 4.odt
2014-03-25 19:26 - 2014-03-25 19:27 - 00219555 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - trying  correct errors Clade Brandalise.odt
2014-03-25 19:25 - 2014-03-25 19:25 - 00228083 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - errors Clade Brandalise 3.odt
2014-03-25 19:24 - 2014-03-25 19:24 - 00397475 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - Free download and errors Clade Brandalise .odt
2014-03-25 19:23 - 2014-03-25 19:23 - 00454118 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - erros Clade Brandalise 2.odt
2014-03-25 18:35 - 2014-03-25 19:01 - 01453024 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - erros Clade Brandalise 1.odt
2014-03-25 17:24 - 2014-03-25 18:35 - 01024390 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - errors Clade Brandalise 2.odt
2014-03-25 16:54 - 2014-03-25 17:00 - 02421392 _____ () C:\Users\Dell\Documents\DLL errors Clade Brandalise.odt
2014-03-25 15:02 - 2014-03-28 20:27 - 00000000 ____D () C:\Users\Dell\AppData\Local\AnVir
2014-03-25 14:50 - 2014-03-25 14:50 - 11493480 _____ (OPSWAT, Inc.) C:\Users\Dell\Downloads\AppRemover.exe
2014-03-25 14:45 - 2014-03-25 14:45 - 00000052 _____ () C:\Users\Dell\Documents\Comandos Zoek.txt
2014-03-25 12:31 - 2014-03-26 06:27 - 00000000 ____D () C:\Users\Dell\Downloads\DLL Suite 2013.0.0.2067 ML+Key-Vovan
2014-03-25 09:36 - 2014-03-25 09:36 - 00001041 _____ () C:\Users\Dell\Documents\SO Clade Brandalise.txt
2014-03-23 10:54 - 2014-03-23 10:54 - 00000052 _____ () C:\Users\Dell\Documents\Suite 2013 DLL - chave de ativação.txt
2014-03-22 02:14 - 2014-03-22 02:14 - 00000000 ____D () C:\Program Files\Java
2014-03-21 16:57 - 2014-03-21 16:58 - 638477812 _____ () C:\Users\Dell\Downloads\W-X-P.rar
2014-03-21 16:44 - 2014-03-21 16:44 - 00320036 _____ () C:\Users\Dell\Downloads\LcvsdWXP.rar
2014-03-21 16:22 - 2014-03-21 16:28 - 34082966 _____ () C:\Users\Dell\Downloads\Novicorp WinToFlash 0.8.0009 beta Portable.zip
2014-03-20 17:38 - 2014-03-30 02:56 - 00000000 ____D () C:\uninstall
2014-03-19 16:34 - 2014-03-19 16:34 - 00000000 ____D () C:\Program Files\AdTrustMedia
2014-03-19 12:54 - 2014-03-19 12:54 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Everything
2014-03-19 12:45 - 2014-03-17 03:07 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-03-19 11:53 - 2014-03-19 11:57 - 133989312 _____ () C:\Users\Dell\Downloads\setup_11.0.1.1245.x01_2014_03_19_17_27.exe
2014-03-18 22:22 - 2014-03-30 02:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-18 09:15 - 2014-03-18 09:15 - 00002588 _____ () C:\Users\Dell\Downloads\ninja.txt
2014-03-17 22:04 - 2014-03-17 22:04 - 00764416 ____N (Nuno Brito) C:\Users\Dell\Downloads\ninja.exe
2014-03-17 17:53 - 2014-03-17 17:54 - 32084536 _____ () C:\Users\Dell\Downloads\atualizarf98 (1).bin
2014-03-17 16:25 - 2014-03-17 16:25 - 00063088 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2014-03-17 15:40 - 2014-03-17 15:40 - 00050800 _____ (VMware, Inc.) C:\Windows\system32\vmhgfs.dll
2014-03-17 15:40 - 2014-03-17 15:40 - 00034416 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLibJava.dll
2014-03-17 14:37 - 2014-03-17 14:37 - 00029232 _____ (VMware, Inc.) C:\Users\Dell\Downloads\vmaudio.sys
2014-03-17 13:23 - 2013-11-22 17:30 - 00125952 ___SH () C:\Users\Dell\Desktop\Thumbs.db
2014-03-17 13:08 - 2014-03-17 13:08 - 00003026 _____ () C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2014-03-17 13:08 - 2014-03-17 13:08 - 00003012 _____ () C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2014-03-17 12:54 - 2014-03-17 12:54 - 00053360 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLib.dll
2014-03-17 12:40 - 2014-03-18 18:39 - 00002359 _____ () C:\Users\Dell\Desktop\Facebook.txt
2014-03-17 11:30 - 2014-03-17 11:30 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2014-03-17 10:04 - 2014-03-17 10:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-03-17 09:54 - 2014-03-17 09:54 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2014-03-17 09:54 - 2014-03-17 09:54 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2014-03-17 09:53 - 2014-03-17 09:54 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2014-03-17 09:53 - 2014-03-17 09:53 - 01047552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2014-03-17 09:51 - 2014-03-17 15:28 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2014-03-17 09:51 - 2014-03-17 15:28 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2014-03-17 09:50 - 2014-03-17 09:54 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2014-03-17 09:50 - 2014-03-17 09:53 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2014-03-17 09:50 - 2014-03-17 09:53 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2014-03-17 09:50 - 2014-03-17 09:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2014-03-17 09:50 - 2014-03-17 09:53 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2014-03-17 09:50 - 2014-03-17 09:53 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2014-03-17 09:49 - 2014-03-17 09:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2014-03-16 07:35 - 2014-03-16 07:35 - 00000000 ____D () C:\g8101g
2014-03-16 07:28 - 2014-03-16 14:10 - 00000000 ____D () C:\g
2014-03-15 18:57 - 2014-03-15 18:57 - 00003042 _____ () C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Dell)
2014-03-15 18:54 - 2014-03-15 18:54 - 00000000 ____D () C:\ProgramData\SlimWare Utilities Inc
2014-03-13 19:04 - 2014-03-13 19:04 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-13 17:24 - 2014-04-02 15:33 - 00000328 _____ () C:\Windows\SysWOW64\Partizan.RRI
2014-03-13 17:24 - 2014-04-02 15:32 - 00000000 ____D () C:\@RestoreQuarantine
2014-03-13 17:24 - 2014-03-13 17:24 - 00040720 _____ (Greatis Software) C:\Windows\system32\Partizan.exe
2014-03-13 11:58 - 2014-03-13 11:58 - 00001024 _____ () C:\Users\Dell\Documents\Custo serviços estética - base de dados.txt
2014-03-12 12:55 - 2014-03-01 03:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-12 12:55 - 2014-03-01 02:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 12:55 - 2014-03-01 02:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-12 12:55 - 2014-03-01 01:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 12:55 - 2014-03-01 01:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-12 12:55 - 2014-03-01 01:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-12 12:55 - 2014-03-01 01:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 12:55 - 2014-03-01 01:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-12 12:55 - 2014-03-01 01:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-12 12:55 - 2014-03-01 01:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-12 12:55 - 2014-03-01 01:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-12 12:55 - 2014-03-01 01:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-12 12:55 - 2014-03-01 01:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-12 12:55 - 2014-03-01 01:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-12 12:55 - 2014-03-01 01:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-12 12:55 - 2014-03-01 01:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-12 12:55 - 2014-03-01 01:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-12 12:55 - 2014-03-01 00:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 12:55 - 2014-03-01 00:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-12 12:55 - 2014-03-01 00:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-12 12:55 - 2014-03-01 00:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-12 12:55 - 2014-03-01 00:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-12 12:55 - 2014-03-01 00:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-12 12:55 - 2014-03-01 00:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 12:55 - 2014-03-01 00:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-12 12:55 - 2014-03-01 00:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-12 12:55 - 2014-03-01 00:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-12 12:55 - 2014-03-01 00:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-12 12:55 - 2014-03-01 00:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 12:55 - 2014-03-01 00:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-12 12:55 - 2014-03-01 00:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-12 12:55 - 2014-03-01 00:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 12:55 - 2014-03-01 00:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-12 12:55 - 2014-03-01 00:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-12 12:55 - 2014-02-28 23:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-12 12:55 - 2014-02-28 23:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 12:55 - 2014-02-28 23:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-12 12:55 - 2014-02-28 23:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-12 12:55 - 2014-02-28 23:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-12 12:55 - 2014-02-28 23:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-12 12:54 - 2014-01-28 23:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-12 12:54 - 2014-01-28 23:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-12 12:53 - 2014-02-06 22:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-12 12:52 - 2014-02-03 23:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-12 12:52 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-12 12:52 - 2014-02-03 23:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-12 12:52 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-12 12:52 - 2014-01-27 23:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-12 10:07 - 2014-03-12 12:58 - 00017381 _____ () C:\Users\Dell\Documents\Plantas e doenças.ods
2014-03-12 09:02 - 2014-04-01 19:47 - 00025222 _____ () C:\Users\Dell\Documents\Preço serviços - Be.ods
2014-03-12 07:44 - 2014-03-13 17:19 - 00035816 _____ (Greatis Software) C:\Windows\SysWOW64\Drivers\Partizan.sys
2014-03-12 07:44 - 2014-03-12 07:44 - 00000046 _____ () C:\Users\Dell\Documents\Unackme 7.1 chave.txt
2014-03-11 16:05 - 2014-03-11 16:05 - 05777288 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-03-11 08:56 - 2014-03-11 18:08 - 00002702 _____ () C:\Users\Dell\Documents\leitor óptico..txt
2014-03-10 08:06 - 2014-03-12 12:32 - 00022241 _____ () C:\Users\Dell\Documents\Curas.odt
2014-03-09 21:43 - 2014-03-09 21:43 - 00000000 ____D () C:\ProgramData\Razer
2014-03-08 16:57 - 2014-03-16 07:27 - 00000000 ____D () C:\unistall30263u
2014-03-08 08:46 - 2014-03-08 08:47 - 00013170 _____ () C:\Users\Dell\Downloads\hijackthis.log
2014-03-07 19:40 - 2014-03-07 19:40 - 00000000 ____D () C:\Users\Dell\AppData\Local\Skype
2014-03-07 19:39 - 2014-03-07 19:39 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-07 19:39 - 2014-03-07 19:39 - 00002699 _____ () C:\ProgramData\Desktop\Skype.lnk
2014-03-07 13:35 - 2014-03-07 13:35 - 72937472 _____ () C:\Windows\system32\config\PuranRegCSoft.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 26193920 _____ () C:\Windows\system32\config\PuranRegCCOM.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 24363008 _____ () C:\Windows\system32\config\PuranRegCSys.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 06623232 _____ () C:\Windows\system32\config\PuranRegCUser.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 06529024 _____ () C:\Windows\system32\config\PuranRegCUserClass.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00380928 _____ () C:\Windows\system32\config\PuranRegCDefault.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00327680 _____ () C:\Windows\system32\config\PuranRegCNetwork.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00253952 _____ () C:\Windows\system32\config\PuranRegCLocal.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00053248 _____ () C:\Windows\system32\config\PuranRegCSam.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00040960 _____ () C:\Windows\system32\config\PuranRegCBCD.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00036864 _____ () C:\Windows\system32\config\PuranRegBCD.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00000008 _____ () C:\Windows\system32\config\PuranBackupTime.pur
2014-03-07 11:32 - 2014-03-07 11:32 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Colasoft Capsa 7 - Free Edition
2014-03-07 11:09 - 2014-03-07 11:32 - 00000000 ____D () C:\ProgramData\Colasoft Capsa 7 Free
2014-03-07 11:09 - 2014-03-07 11:09 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Colasoft MAC Scanner
2014-03-05 12:54 - 2014-03-25 16:22 - 00738472 _____ (COMODO) C:\Windows\system32\Drivers\cmdguard.sys
2014-03-05 12:54 - 2014-03-25 16:22 - 00105552 _____ (COMODO) C:\Windows\system32\Drivers\inspect.sys
2014-03-05 12:54 - 2014-03-25 16:22 - 00048360 _____ (COMODO) C:\Windows\system32\Drivers\cmdhlp.sys
2014-03-05 12:54 - 2014-03-25 16:22 - 00023168 _____ (COMODO) C:\Windows\system32\Drivers\cmderd.sys
2014-03-05 12:53 - 2014-03-25 16:22 - 00453680 _____ (COMODO) C:\Windows\system32\guard64.dll
2014-03-05 12:53 - 2014-03-25 16:22 - 00363504 _____ (COMODO) C:\Windows\SysWOW64\guard32.dll
2014-03-05 12:53 - 2014-03-25 16:22 - 00352984 _____ (COMODO) C:\Windows\system32\cmdvrt64.dll
2014-03-05 12:53 - 2014-03-25 16:22 - 00284888 _____ (COMODO) C:\Windows\SysWOW64\cmdvrt32.dll
2014-03-05 12:53 - 2014-03-25 16:22 - 00045784 _____ (COMODO) C:\Windows\system32\cmdkbd64.dll
2014-03-05 12:53 - 2014-03-25 16:22 - 00043216 _____ (COMODO) C:\Windows\system32\cmdcsr.dll
2014-03-05 12:53 - 2014-03-25 16:22 - 00040664 _____ (COMODO) C:\Windows\SysWOW64\cmdkbd32.dll
2014-03-05 12:53 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\Windows\system32\upd91.tmp
2014-03-05 12:53 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\Windows\SysWOW64\upd90.tmp
2014-03-05 12:53 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\Windows\system32\upd92.tmp
2014-03-05 12:51 - 2014-03-05 12:51 - 00000362 _____ () C:\Users\Dell\Documents\Arquivos ocultos window - visualizar.txt
2014-03-05 06:59 - 2014-03-07 13:39 - 00327680 _____ () C:\Windows\system32\config\BPuranRegNetwork.pur
2014-03-05 06:59 - 2014-03-07 13:39 - 00253952 _____ () C:\Windows\system32\config\BPuranRegLocal.pur
2014-03-05 06:59 - 2014-03-07 13:38 - 06623232 _____ () C:\Windows\system32\config\BPuranRegUser.pur
2014-03-05 06:59 - 2014-03-07 13:38 - 06529024 _____ () C:\Windows\system32\config\BPuranRegUserClass.pur
2014-03-05 00:35 - 2013-09-12 14:26 - 00000866 _____ () C:\Users\Dell\Desktop\Downloads.lnk
 
==================== One Month Modified Files and Folders =======
 
2014-04-04 10:13 - 2014-04-04 10:10 - 00035265 _____ () C:\Users\Dell\Desktop\FRST.txt
2014-04-04 10:13 - 2013-03-05 19:11 - 01474832 _____ () C:\Windows\system32\Drivers\sfi.dat
2014-04-04 10:10 - 2013-07-29 13:08 - 00000000 ____D () C:\FRST
2014-04-04 10:07 - 2014-04-04 10:08 - 02157056 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2014-04-04 10:07 - 2014-04-04 10:07 - 02157056 _____ (Farbar) C:\Users\Dell\Downloads\FRST64.exe
2014-04-04 10:05 - 2013-10-15 12:19 - 00000902 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-04 10:03 - 2013-04-01 20:19 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Skype
2014-04-04 09:57 - 2014-04-03 13:02 - 00025227 _____ () C:\Windows\WindowsUpdate.log
2014-04-04 09:43 - 2013-04-10 23:23 - 00000029 _____ () C:\Windows\SysWOW64\TempWmicBatchFile.bat
2014-04-04 09:16 - 2013-07-11 18:05 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-03 22:28 - 2009-07-14 01:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-03 22:28 - 2009-07-14 01:45 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-03 19:46 - 2013-07-11 18:05 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-03 17:54 - 2014-04-02 13:31 - 00005297 _____ () C:\Users\Dell\Documents\Sal grosso.txt
2014-04-03 13:33 - 2013-04-02 21:26 - 01104852 _____ () C:\Windows\system32\Drivers\fvstore.dat
2014-04-03 13:15 - 2014-03-26 12:19 - 00001985 _____ () C:\Users\Public\Desktop\COMODO Internet Security.lnk
2014-04-03 13:15 - 2014-03-26 12:19 - 00001985 _____ () C:\ProgramData\Desktop\COMODO Internet Security.lnk
2014-04-03 13:08 - 2013-12-01 13:17 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Wise Care 365
2014-04-03 12:59 - 2014-04-03 12:59 - 00000334 _____ () C:\Windows\PFRO.log
2014-04-03 12:59 - 2014-04-03 12:59 - 00000056 _____ () C:\Windows\setupact.log
2014-04-03 12:59 - 2014-04-03 12:59 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-03 12:59 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-03 08:15 - 2013-07-09 18:10 - 00000000 ____D () C:\Windows\erdnt
2014-04-03 08:00 - 2014-03-30 18:39 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-04-03 07:58 - 2014-04-03 07:58 - 00000085 _____ () C:\Windows\wininit.ini
2014-04-03 07:58 - 2014-03-30 18:39 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-03 07:26 - 2013-02-22 09:47 - 00000000 ____D () C:\Users\Dell
2014-04-03 07:25 - 2014-04-03 07:25 - 00003560 ____N () C:\bootsqm.dat
2014-04-03 00:27 - 2014-04-03 00:23 - 00000000 ____D () C:\Windows\system32\config\RRBackups
2014-04-03 00:04 - 2014-04-03 00:04 - 00184745 _____ () C:\Users\Dell\Documents\GMER log complete.log
2014-04-02 21:53 - 2014-04-02 21:52 - 00087360 _____ () C:\Users\Dell\Downloads\gmer.wmv
2014-04-02 16:31 - 2014-02-09 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-04-02 15:49 - 2013-12-19 06:30 - 00000000 ____D () C:\ProgramData\RegRun
2014-04-02 15:42 - 2013-11-05 18:48 - 00000000 ____D () C:\Users\Public\Documents\regruninfo
2014-04-02 15:42 - 2013-11-05 18:48 - 00000000 ____D () C:\ProgramData\Documents\regruninfo
2014-04-02 15:33 - 2014-03-13 17:24 - 00000328 _____ () C:\Windows\SysWOW64\Partizan.RRI
2014-04-02 15:33 - 2013-08-06 01:05 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-02 15:32 - 2014-03-13 17:24 - 00000000 ____D () C:\@RestoreQuarantine
2014-04-02 14:28 - 2014-04-02 14:27 - 01472131 _____ () C:\Users\Dell\Downloads\vba32arkit.zip
2014-04-02 13:20 - 2013-12-06 08:47 - 00000000 ____D () C:\Users\Dell\AppData\Local\CrashDumps
2014-04-02 12:37 - 2014-04-02 12:37 - 00006759 _____ () C:\Users\Dell\Downloads\gmer.log
2014-04-02 12:05 - 2014-04-02 12:05 - 11424368 _____ (Bitdefender LLC) C:\Users\Dell\Downloads\BootkitRemoval_x64.exe
2014-04-02 10:29 - 2014-04-02 10:29 - 00119000 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-02 10:25 - 2014-02-09 11:42 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-02 10:22 - 2014-04-02 10:22 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Dell\Downloads\mbar-1.07.0.1009.exe
2014-04-02 09:01 - 2014-04-02 09:01 - 18517048 _____ (SUPERAntiSpyware) C:\Users\Dell\Downloads\SUPERAntiSpywarePro.exe
2014-04-02 08:26 - 2014-04-02 08:24 - 134103416 _____ () C:\Users\Dell\Downloads\setup_11.0.1.1245.x01_2014_04_02_13_56.exe
2014-04-02 07:16 - 2014-04-02 07:16 - 72081408 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2014-04-02 07:16 - 2014-04-02 07:16 - 00364544 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2014-04-02 07:16 - 2014-04-02 07:16 - 00053248 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2014-04-02 07:16 - 2014-04-02 07:16 - 00032768 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2014-04-02 07:15 - 2009-07-13 23:34 - 72089600 _____ () C:\Windows\system32\config\SOFTWARE.bls.bak
2014-04-02 07:15 - 2009-07-13 23:34 - 25427968 _____ () C:\Windows\system32\config\SYSTEM.bls.bak
2014-04-02 07:15 - 2009-07-13 23:34 - 00032768 _____ () C:\Windows\system32\config\SECURITY.bls.bak
2014-04-02 06:55 - 2009-07-13 23:34 - 00364544 _____ () C:\Windows\system32\config\DEFAULT.bls.bak
2014-04-02 06:18 - 2014-03-30 21:12 - 00000000 ____D () C:\ProgramData\RegistryReviver.exe
2014-04-02 00:39 - 2014-04-02 00:39 - 10971424 _____ (SurfRight B.V.) C:\Users\Dell\Downloads\HitmanPro_x64.exe
2014-04-02 00:39 - 2014-04-02 00:37 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-01 23:54 - 2014-04-01 23:53 - 10094400 _____ (SurfRight B.V.) C:\Users\Dell\Downloads\HitmanPro.exe
2014-04-01 21:56 - 2009-07-13 23:34 - 00053248 _____ () C:\Windows\system32\config\SAM.bls.bak
2014-04-01 19:47 - 2014-03-12 09:02 - 00025222 _____ () C:\Users\Dell\Documents\Preço serviços - Be.ods
2014-04-01 18:36 - 2014-04-01 18:36 - 00002205 _____ () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\360 Browser.lnk
2014-04-01 18:36 - 2014-04-01 18:36 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Browser
2014-04-01 18:36 - 2014-04-01 18:34 - 00000000 ____D () C:\Users\Dell\AppData\Local\360Browser
2014-04-01 16:44 - 2014-02-16 23:16 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\uTorrent
2014-04-01 13:16 - 2014-04-01 13:16 - 02926184 _____ (Emsisoft GmbH ) C:\Users\Dell\Downloads\EmsisoftHiJackFreeSetup.exe
2014-04-01 08:25 - 2013-05-25 20:37 - 00000000 ____D () C:\ProgramData\GAS Tecnologia
2014-04-01 03:54 - 2014-04-02 07:34 - 00460888 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\12778157.sys
2014-04-01 03:54 - 2014-03-31 21:45 - 00460888 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\52972590.sys
2014-03-31 21:44 - 2014-03-31 21:40 - 133978288 _____ () C:\Users\Dell\Downloads\setup_11.0.1.1245.x01_2014_04_01_03_55.exe
2014-03-31 21:36 - 2013-11-30 00:06 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\DiskDefrag
2014-03-31 20:18 - 2013-03-05 09:43 - 00000000 ____D () C:\Users\Dell\AppData\Local\Apps\2.0
2014-03-31 20:17 - 2014-03-31 20:17 - 00044407 _____ () C:\ComboFix.txt
2014-03-31 20:15 - 2009-07-13 23:34 - 00000215 _____ () C:\Windows\system.ini
2014-03-31 19:40 - 2013-09-13 17:59 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-31 10:53 - 2014-03-31 14:10 - 01038974 _____ (Thisisu) C:\Users\Dell\Desktop\JRT.exe
2014-03-31 10:52 - 2014-03-31 10:52 - 05192353 _____ (Swearware) C:\Users\Dell\Downloads\ComboFix.exe
2014-03-31 10:50 - 2014-03-31 10:50 - 00850067 _____ (www.isoopener.com ) C:\Users\Dell\Downloads\Abrir Iso isoopener_setup.exe
2014-03-31 09:42 - 2014-03-31 09:42 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Dell\Downloads\rkill.exe
2014-03-31 09:34 - 2014-03-31 08:09 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Wise Registry Cleaner
2014-03-31 08:09 - 2013-12-01 13:16 - 00000000 ____D () C:\Program Files (x86)\Wise
2014-03-31 07:40 - 2014-03-31 07:39 - 03224200 _____ (WiseCleaner.com ) C:\Users\Dell\Downloads\WRCFree.exe
2014-03-30 21:10 - 2013-08-04 14:32 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-03-30 20:28 - 2014-03-30 20:28 - 00001022 _____ () C:\Users\Public\Desktop\Registry Reviver.lnk
2014-03-30 20:28 - 2014-03-30 20:28 - 00001022 _____ () C:\ProgramData\Desktop\Registry Reviver.lnk
2014-03-30 20:28 - 2014-03-30 20:28 - 00000000 ____D () C:\ProgramData\ReviverSoft
2014-03-30 20:28 - 2014-03-30 20:28 - 00000000 ____D () C:\Program Files\ReviverSoft
2014-03-30 18:55 - 2014-03-30 18:55 - 00000000 ____D () C:\Users\Dell\Downloads\ParetoLogic PC Health Advisor v3.1.3 Including Crack + Key [h33t][iahq76]
2014-03-30 18:52 - 2014-03-30 18:52 - 00000000 ____D () C:\Users\Dell\Downloads\Registry.Reviver.3.0.1.142
2014-03-30 18:52 - 2014-03-30 18:50 - 00000000 ____D () C:\Users\Dell\Downloads\Systweak RegClean Pro v6.21.65.2364 With Key [h33t][iahq76]
2014-03-30 18:40 - 2014-03-30 18:40 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-03-30 18:36 - 2014-03-30 18:35 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Dell\Downloads\spybot-2.2.exe
2014-03-30 18:31 - 2014-03-30 18:31 - 00102960 _____ () C:\Users\Dell\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-30 18:03 - 2014-03-30 18:03 - 00391432 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-30 16:12 - 2013-11-09 11:47 - 00000000 ____D () C:\ProgramData\Auslogics
2014-03-30 16:11 - 2013-03-05 19:20 - 00000000 ____D () C:\Program Files (x86)\Auslogics
2014-03-30 14:46 - 2013-09-16 19:41 - 00000000 ____D () C:\Windows\system32\config\RCCBakup
2014-03-30 14:46 - 2013-04-02 19:29 - 00000000 ____D () C:\Windows\pss
2014-03-30 14:00 - 2013-12-01 13:19 - 00000400 _____ () C:\Windows\Tasks\Wise Turbo Checker.job
2014-03-30 13:54 - 2014-03-30 13:54 - 07195272 _____ (Goversoft LLC) C:\Users\Dell\Downloads\privazer_free.exe
2014-03-30 09:23 - 2014-03-30 09:23 - 00001073 _____ () C:\Users\Dell\Desktop\DllSuite.lnk
2014-03-30 09:23 - 2014-03-30 09:23 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dll Suite 2014
2014-03-30 09:23 - 2014-03-30 09:23 - 00000000 ____D () C:\Program Files (x86)\DLLSuite
2014-03-30 03:29 - 2014-01-14 18:43 - 00000000 ____D () C:\ProgramData\Licenses
2014-03-30 02:56 - 2014-03-20 17:38 - 00000000 ____D () C:\uninstall
2014-03-30 02:56 - 2014-03-18 22:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 20:29 - 2013-11-29 08:34 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 4
2014-03-29 16:09 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-29 10:32 - 2014-03-28 06:59 - 00003036 _____ () C:\Windows\System32\Tasks\AnVir Task Manager
2014-03-29 09:37 - 2013-09-09 11:59 - 00000000 ____D () C:\ProgramData\ProductData
2014-03-28 21:50 - 2014-03-28 06:59 - 00000000 ____D () C:\Program Files (x86)\AnVir Task Manager Pro
2014-03-28 20:35 - 2014-01-26 22:53 - 00002884 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator
2014-03-28 20:35 - 2014-01-26 21:59 - 00003092 _____ () C:\Windows\System32\Tasks\ASC7_PerformanceMonitor
2014-03-28 20:35 - 2013-11-09 20:47 - 00002848 _____ () C:\Windows\System32\Tasks\ASC7_SkipUac_Dell
2014-03-28 20:27 - 2014-03-25 15:02 - 00000000 ____D () C:\Users\Dell\AppData\Local\AnVir
2014-03-28 16:56 - 2014-03-28 16:55 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Dell\Downloads\mb3-setup-1878.1878-3.5.1.2522.exe
2014-03-28 06:59 - 2014-03-28 06:59 - 00001077 _____ () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\AnVir Task Manager Pro.lnk
2014-03-28 06:59 - 2014-03-28 06:59 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnVir Task Manager Pro
2014-03-27 09:27 - 2014-03-27 09:27 - 05933233 _____ () C:\Users\Dell\Downloads\AnVir Task Manager Crack Pro 7.5.2.rar
2014-03-26 17:13 - 2014-03-26 17:13 - 00000000 ____D () C:\Users\Dell\Downloads\ESET Smart Security 7.0.302.26+Keymaker~~
2014-03-26 13:21 - 2013-03-05 19:10 - 00000000 ____D () C:\Program Files\COMODO
2014-03-26 12:19 - 2014-03-26 12:17 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-03-26 12:19 - 2013-03-05 19:11 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-03-26 12:17 - 2013-03-05 17:47 - 00000000 ____D () C:\ProgramData\Comodo
2014-03-26 12:16 - 2014-03-26 12:16 - 00057096 _____ (COMODO CA Limited) C:\Windows\system32\certsentry.dll
2014-03-26 12:16 - 2014-03-26 12:16 - 00048392 _____ (COMODO CA Limited) C:\Windows\SysWOW64\certsentry.dll
2014-03-26 12:16 - 2014-03-26 12:16 - 00000000 ____D () C:\Users\Dell\AppData\Local\Comodo
2014-03-26 12:16 - 2013-03-15 10:32 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-03-26 12:02 - 2014-03-26 12:02 - 00000000 ____D () C:\ProgramData\Weskysoft
2014-03-26 11:52 - 2014-03-26 11:50 - 16578402 _____ ( ) C:\Users\Dell\Downloads\DLLSuite_Setup_2013.exe
2014-03-26 11:38 - 2013-09-15 00:24 - 00000000 ____D () C:\Program Files (x86)\Everything
2014-03-26 06:28 - 2013-08-04 14:32 - 00000000 ____D () C:\ProgramData\IObit
2014-03-26 06:28 - 2013-08-03 23:45 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\TeraCopy
2014-03-26 06:28 - 2013-06-18 10:13 - 00000000 ____D () C:\Program Files\Unlocker
2014-03-26 06:28 - 2013-05-21 08:44 - 00000000 ____D () C:\Windows\ERUNT
2014-03-26 06:28 - 2013-04-27 13:45 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-26 06:27 - 2014-03-25 12:31 - 00000000 ____D () C:\Users\Dell\Downloads\DLL Suite 2013.0.0.2067 ML+Key-Vovan
2014-03-26 06:27 - 2014-01-26 22:53 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\ProductData
2014-03-26 06:27 - 2013-07-19 20:49 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster
2014-03-26 06:27 - 2013-05-25 19:26 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\QFX Software
2014-03-26 06:27 - 2013-05-25 19:26 - 00000000 ____D () C:\ProgramData\QFX Software
2014-03-26 06:27 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\registration
2014-03-26 06:24 - 2013-05-25 20:37 - 00000000 ____D () C:\Users\Dell\AppData\Local\GAS Tecnologia
2014-03-26 06:24 - 2013-05-06 06:13 - 00000000 ___HD () C:\VTRoot
2014-03-26 06:23 - 2013-10-08 19:24 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-03-26 06:22 - 2013-04-01 20:19 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-26 01:28 - 2013-03-05 23:53 - 00000000 ____D () C:\ProgramData\GbPlugin
2014-03-25 23:26 - 2014-03-25 19:55 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-03-25 23:05 - 2014-03-25 23:05 - 00000385 _____ () C:\Users\Dell\AppData\Roaminguser_gensett.xml
2014-03-25 22:37 - 2014-03-25 22:37 - 00229839 _____ () C:\Users\Dell\Downloads\AllsoftwareKeyGenerator2013.rar
2014-03-25 20:54 - 2014-03-25 20:54 - 00000000 ____D () C:\ProgramData\BDLogging
2014-03-25 19:34 - 2014-03-25 19:34 - 00397475 _____ () C:\Users\Dell\Downloads\DLL Suite 2013 - Free download and errors Clade Brandalise .odt
2014-03-25 19:34 - 2014-03-25 19:34 - 00219555 _____ () C:\Users\Dell\Downloads\DLL Suite 2013 - trying  correct errors Clade Brandalise.odt
2014-03-25 19:29 - 2014-03-25 19:29 - 00641594 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - errors Clade Brandalise 6.odt
2014-03-25 19:28 - 2014-03-25 19:28 - 00227759 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - errors Clade Brandalise 5.odt
2014-03-25 19:27 - 2014-03-25 19:27 - 00227616 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - errors Clade Brandalise 4.odt
2014-03-25 19:27 - 2014-03-25 19:26 - 00219555 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - trying  correct errors Clade Brandalise.odt
2014-03-25 19:25 - 2014-03-25 19:25 - 00228083 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - errors Clade Brandalise 3.odt
2014-03-25 19:24 - 2014-03-25 19:24 - 00397475 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - Free download and errors Clade Brandalise .odt
2014-03-25 19:23 - 2014-03-25 19:23 - 00454118 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - erros Clade Brandalise 2.odt
2014-03-25 19:01 - 2014-03-25 18:35 - 01453024 _____ () C:\Users\Dell\Documents\Dll Suite 2013 - erros Clade Brandalise 1.odt
2014-03-25 18:35 - 2014-03-25 17:24 - 01024390 _____ () C:\Users\Dell\Documents\DLL Suite 2013 - errors Clade Brandalise 2.odt
2014-03-25 17:00 - 2014-03-25 16:54 - 02421392 _____ () C:\Users\Dell\Documents\DLL errors Clade Brandalise.odt
2014-03-25 16:22 - 2014-03-05 12:54 - 00738472 _____ (COMODO) C:\Windows\system32\Drivers\cmdguard.sys
2014-03-25 16:22 - 2014-03-05 12:54 - 00105552 _____ (COMODO) C:\Windows\system32\Drivers\inspect.sys
2014-03-25 16:22 - 2014-03-05 12:54 - 00048360 _____ (COMODO) C:\Windows\system32\Drivers\cmdhlp.sys
2014-03-25 16:22 - 2014-03-05 12:54 - 00023168 _____ (COMODO) C:\Windows\system32\Drivers\cmderd.sys
2014-03-25 16:22 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\Windows\system32\guard64.dll
2014-03-25 16:22 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\Windows\SysWOW64\guard32.dll
2014-03-25 16:22 - 2014-03-05 12:53 - 00352984 _____ (COMODO) C:\Windows\system32\cmdvrt64.dll
2014-03-25 16:22 - 2014-03-05 12:53 - 00284888 _____ (COMODO) C:\Windows\SysWOW64\cmdvrt32.dll
2014-03-25 16:22 - 2014-03-05 12:53 - 00045784 _____ (COMODO) C:\Windows\system32\cmdkbd64.dll
2014-03-25 16:22 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\Windows\system32\cmdcsr.dll
2014-03-25 16:22 - 2014-03-05 12:53 - 00040664 _____ (COMODO) C:\Windows\SysWOW64\cmdkbd32.dll
2014-03-25 14:50 - 2014-03-25 14:50 - 11493480 _____ (OPSWAT, Inc.) C:\Users\Dell\Downloads\AppRemover.exe
2014-03-25 14:45 - 2014-03-25 14:45 - 00000052 _____ () C:\Users\Dell\Documents\Comandos Zoek.txt
2014-03-25 09:36 - 2014-03-25 09:36 - 00001041 _____ () C:\Users\Dell\Documents\SO Clade Brandalise.txt
2014-03-23 10:54 - 2014-03-23 10:54 - 00000052 _____ () C:\Users\Dell\Documents\Suite 2013 DLL - chave de ativação.txt
2014-03-22 02:14 - 2014-03-22 02:14 - 00000000 ____D () C:\Program Files\Java
2014-03-21 16:58 - 2014-03-21 16:57 - 638477812 _____ () C:\Users\Dell\Downloads\W-X-P.rar
2014-03-21 16:44 - 2014-03-21 16:44 - 00320036 _____ () C:\Users\Dell\Downloads\LcvsdWXP.rar
2014-03-21 16:28 - 2014-03-21 16:22 - 34082966 _____ () C:\Users\Dell\Downloads\Novicorp WinToFlash 0.8.0009 beta Portable.zip
2014-03-21 16:25 - 2013-02-22 05:39 - 00707498 _____ () C:\Windows\system32\prfh0416.dat
2014-03-21 16:25 - 2013-02-22 05:39 - 00148578 _____ () C:\Windows\system32\prfc0416.dat
2014-03-21 16:25 - 2009-07-14 02:13 - 01640864 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-20 15:33 - 2013-12-03 17:15 - 00000328 _____ () C:\Windows\Tasks\GlaryInitialize 4.job
2014-03-20 15:31 - 2013-06-18 01:18 - 00003084 _____ () C:\Users\Dell\Documents\AZ América - configurações e depósito conta .txt
2014-03-20 15:25 - 2013-12-03 17:15 - 00002622 _____ () C:\Windows\System32\Tasks\GlaryInitialize 4
2014-03-20 12:42 - 2013-05-12 09:51 - 00000000 ____D () C:\Program Files\Recuva
2014-03-19 16:34 - 2014-03-19 16:34 - 00000000 ____D () C:\Program Files\AdTrustMedia
2014-03-19 12:54 - 2014-03-19 12:54 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Everything
2014-03-19 12:54 - 2013-09-15 13:45 - 00000000 ____D () C:\Program Files\Everything
2014-03-19 11:57 - 2014-03-19 11:53 - 133989312 _____ () C:\Users\Dell\Downloads\setup_11.0.1.1245.x01_2014_03_19_17_27.exe
2014-03-18 18:39 - 2014-03-17 12:40 - 00002359 _____ () C:\Users\Dell\Desktop\Facebook.txt
2014-03-18 13:41 - 2014-02-26 08:20 - 00000000 ____D () C:\Users\Dell\Downloads\Hirens Boot DVD 15.2 Restored Edition 1.1 (January 2013) [WwW.LoKoTorrents.CoM]
2014-03-18 09:15 - 2014-03-18 09:15 - 00002588 _____ () C:\Users\Dell\Downloads\ninja.txt
2014-03-17 22:04 - 2014-03-17 22:04 - 00764416 ____N (Nuno Brito) C:\Users\Dell\Downloads\ninja.exe
2014-03-17 17:54 - 2014-03-17 17:53 - 32084536 _____ () C:\Users\Dell\Downloads\atualizarf98 (1).bin
2014-03-17 16:25 - 2014-03-17 16:25 - 00063088 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2014-03-17 15:40 - 2014-03-17 15:40 - 00050800 _____ (VMware, Inc.) C:\Windows\system32\vmhgfs.dll
2014-03-17 15:40 - 2014-03-17 15:40 - 00034416 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLibJava.dll
2014-03-17 15:28 - 2014-03-17 09:51 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2014-03-17 15:28 - 2014-03-17 09:51 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2014-03-17 15:28 - 2011-10-05 10:19 - 00063088 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2014-03-17 14:37 - 2014-03-17 14:37 - 00029232 _____ (VMware, Inc.) C:\Users\Dell\Downloads\vmaudio.sys
2014-03-17 13:08 - 2014-03-17 13:08 - 00003026 _____ () C:\Windows\System32\Tasks\DLL-Files.Com Fixer_Updates
2014-03-17 13:08 - 2014-03-17 13:08 - 00003012 _____ () C:\Windows\System32\Tasks\DLL-Files.Com Fixer_MONTHLY
2014-03-17 12:54 - 2014-03-17 12:54 - 00053360 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLib.dll
2014-03-17 11:30 - 2014-03-17 11:30 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-03-17 11:29 - 2014-03-17 11:29 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2014-03-17 10:04 - 2014-03-17 10:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-03-17 09:54 - 2014-03-17 09:54 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2014-03-17 09:54 - 2014-03-17 09:54 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2014-03-17 09:54 - 2014-03-17 09:53 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2014-03-17 09:54 - 2014-03-17 09:50 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2014-03-17 09:53 - 2014-03-17 09:53 - 01047552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2014-03-17 09:53 - 2014-03-17 09:50 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2014-03-17 09:53 - 2014-03-17 09:50 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2014-03-17 09:53 - 2014-03-17 09:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2014-03-17 09:53 - 2014-03-17 09:50 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2014-03-17 09:53 - 2014-03-17 09:50 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2014-03-17 09:53 - 2014-03-17 09:49 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2014-03-17 03:22 - 2013-11-30 00:07 - 00118048 _____ (Glarysoft Ltd) C:\Windows\system32\BootDefrag.exe
2014-03-17 03:07 - 2014-03-19 12:45 - 00017600 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\BootDefragDriver.sys
2014-03-16 15:40 - 2013-03-08 23:46 - 00000000 ____D () C:\Program Files\Free Opener
2014-03-16 14:10 - 2014-03-16 07:28 - 00000000 ____D () C:\g
2014-03-16 07:35 - 2014-03-16 07:35 - 00000000 ____D () C:\g8101g
2014-03-16 07:27 - 2014-03-08 16:57 - 00000000 ____D () C:\unistall30263u
2014-03-15 18:57 - 2014-03-15 18:57 - 00003042 _____ () C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Dell)
2014-03-15 18:54 - 2014-03-15 18:54 - 00000000 ____D () C:\ProgramData\SlimWare Utilities Inc
2014-03-15 18:53 - 2013-03-05 19:52 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-03-15 18:53 - 2013-03-05 19:52 - 00000000 ____D () C:\ProgramData\Documents\Downloaded Installers
2014-03-14 17:10 - 2013-11-06 12:59 - 00003322 _____ () C:\Windows\System32\Tasks\UnHackMe Task Scheduler
2014-03-14 14:45 - 2014-02-12 17:30 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Synei
2014-03-14 14:44 - 2014-02-07 17:45 - 00000000 ____D () C:\ProgramData\Amigabit
2014-03-14 14:39 - 2013-08-18 17:27 - 00000286 __RSH () C:\Users\Dell\ntuser.pol
2014-03-13 19:04 - 2014-03-13 19:04 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-13 17:24 - 2014-03-13 17:24 - 00040720 _____ (Greatis Software) C:\Windows\system32\Partizan.exe
2014-03-13 17:24 - 2013-11-05 18:49 - 00000000 ____D () C:\Users\Dell\Documents\RegRun2
2014-03-13 17:19 - 2014-03-12 07:44 - 00035816 _____ (Greatis Software) C:\Windows\SysWOW64\Drivers\Partizan.sys
2014-03-13 17:18 - 2013-11-05 18:48 - 00000974 _____ () C:\Users\Dell\Desktop\UnHackMe.lnk
2014-03-13 17:18 - 2013-11-05 18:48 - 00000000 ____D () C:\Program Files (x86)\UnHackMe
2014-03-13 11:58 - 2014-03-13 11:58 - 00001024 _____ () C:\Users\Dell\Documents\Custo serviços estética - base de dados.txt
2014-03-13 08:33 - 2013-04-09 20:28 - 00000332 _____ () C:\Users\Dell\Documents\Cesar Serpa - dados conta.txt
2014-03-12 13:29 - 2013-03-14 07:16 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-12 13:29 - 2013-03-14 07:16 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-12 13:10 - 2013-07-17 10:44 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-12 13:01 - 2013-03-05 17:29 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-12 12:58 - 2014-03-12 10:07 - 00017381 _____ () C:\Users\Dell\Documents\Plantas e doenças.ods
2014-03-12 12:32 - 2014-03-10 08:06 - 00022241 _____ () C:\Users\Dell\Documents\Curas.odt
2014-03-12 07:44 - 2014-03-12 07:44 - 00000046 _____ () C:\Users\Dell\Documents\Unackme 7.1 chave.txt
2014-03-12 07:43 - 2013-11-05 18:49 - 00000002 RSHOT () C:\Windows\winstart.bat
2014-03-12 07:43 - 2013-11-05 18:49 - 00000002 RSHOT () C:\Windows\SysWOW64\CONFIG.NT
2014-03-12 07:43 - 2013-11-05 18:49 - 00000002 RSHOT () C:\Windows\SysWOW64\AUTOEXEC.NT
2014-03-11 18:08 - 2014-03-11 08:56 - 00002702 _____ () C:\Users\Dell\Documents\leitor óptico..txt
2014-03-11 16:05 - 2014-03-11 16:05 - 05777288 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-03-11 16:05 - 2013-12-11 11:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-11 16:05 - 2013-10-15 12:19 - 00003840 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-11 16:05 - 2013-03-05 23:45 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-11 08:33 - 2013-10-19 02:07 - 00000576 _____ () C:\Users\Dell\Documents\Erro Timed up.txt
2014-03-09 21:43 - 2014-03-09 21:43 - 00000000 ____D () C:\ProgramData\Razer
2014-03-08 16:27 - 2013-02-22 09:47 - 00000000 __SHD () C:\Users\Todos os Usuários
2014-03-08 16:27 - 2012-07-17 13:58 - 00000000 ____D () C:\Users\NeroMediaHomeUser.4
2014-03-08 13:59 - 2013-06-25 11:35 - 00000000 ____D () C:\Users\Dell\Doctor Web
2014-03-08 08:47 - 2014-03-08 08:46 - 00013170 _____ () C:\Users\Dell\Downloads\hijackthis.log
2014-03-07 19:40 - 2014-03-07 19:40 - 00000000 ____D () C:\Users\Dell\AppData\Local\Skype
2014-03-07 19:40 - 2013-04-01 20:19 - 00000000 ____D () C:\ProgramData\Skype
2014-03-07 19:39 - 2014-03-07 19:39 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-07 19:39 - 2014-03-07 19:39 - 00002699 _____ () C:\ProgramData\Desktop\Skype.lnk
2014-03-07 13:39 - 2014-03-05 06:59 - 00327680 _____ () C:\Windows\system32\config\BPuranRegNetwork.pur
2014-03-07 13:39 - 2014-03-05 06:59 - 00253952 _____ () C:\Windows\system32\config\BPuranRegLocal.pur
2014-03-07 13:39 - 2009-07-13 23:34 - 72937472 _____ () C:\Windows\system32\config\BPuranRegSoft.pur
2014-03-07 13:39 - 2009-07-13 23:34 - 24379392 _____ () C:\Windows\system32\config\BPuranRegSys.pur
2014-03-07 13:39 - 2009-07-13 23:34 - 00380928 _____ () C:\Windows\system32\config\BPuranRegDefault.pur
2014-03-07 13:39 - 2009-07-13 23:34 - 00053248 _____ () C:\Windows\system32\config\BPuranRegSam.pur
2014-03-07 13:38 - 2014-03-05 06:59 - 06623232 _____ () C:\Windows\system32\config\BPuranRegUser.pur
2014-03-07 13:38 - 2014-03-05 06:59 - 06529024 _____ () C:\Windows\system32\config\BPuranRegUserClass.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 72937472 _____ () C:\Windows\system32\config\PuranRegCSoft.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 26193920 _____ () C:\Windows\system32\config\PuranRegCCOM.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 24363008 _____ () C:\Windows\system32\config\PuranRegCSys.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 06623232 _____ () C:\Windows\system32\config\PuranRegCUser.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 06529024 _____ () C:\Windows\system32\config\PuranRegCUserClass.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00380928 _____ () C:\Windows\system32\config\PuranRegCDefault.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00327680 _____ () C:\Windows\system32\config\PuranRegCNetwork.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00253952 _____ () C:\Windows\system32\config\PuranRegCLocal.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00053248 _____ () C:\Windows\system32\config\PuranRegCSam.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00040960 _____ () C:\Windows\system32\config\PuranRegCBCD.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00036864 _____ () C:\Windows\system32\config\PuranRegBCD.pur
2014-03-07 13:35 - 2014-03-07 13:35 - 00000008 _____ () C:\Windows\system32\config\PuranBackupTime.pur
2014-03-07 12:13 - 2013-03-26 08:26 - 00000000 ____D () C:\Program Files (x86)\EaseUS
2014-03-07 11:32 - 2014-03-07 11:32 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Colasoft Capsa 7 - Free Edition
2014-03-07 11:32 - 2014-03-07 11:09 - 00000000 ____D () C:\ProgramData\Colasoft Capsa 7 Free
2014-03-07 11:09 - 2014-03-07 11:09 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\Colasoft MAC Scanner
2014-03-07 09:01 - 2014-02-23 23:42 - 26193920 _____ () C:\Windows\system32\config\BPuranRegCOM.pur
2014-03-06 22:21 - 2014-02-17 20:58 - 00000000 ____D () C:\Users\Dell\AppData\Roaming\ImgBurn
2014-03-06 17:14 - 2013-08-04 13:56 - 00000366 _____ () C:\Users\Dell\AppData\Roaming\burnaware.ini
2014-03-05 12:53 - 2014-03-05 12:53 - 00453680 _____ (COMODO) C:\Windows\system32\upd91.tmp
2014-03-05 12:53 - 2014-03-05 12:53 - 00363504 _____ (COMODO) C:\Windows\SysWOW64\upd90.tmp
2014-03-05 12:53 - 2014-03-05 12:53 - 00043216 _____ (COMODO) C:\Windows\system32\upd92.tmp
2014-03-05 12:51 - 2014-03-05 12:51 - 00000362 _____ () C:\Users\Dell\Documents\Arquivos ocultos window - visualizar.txt
 
Files to move or delete:
====================
C:\ProgramData\RegistryReviver.exe
 
 
Some content of TEMP:
====================
C:\Users\Dell\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Dell\AppData\Local\Temp\GLB1A2B.EXE
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2013-03-05 10:38
 
==================== End Of Log ============================
 
2. Addition:
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Dell at 2014-04-04 10:15:21
Running from C:\Users\Dell\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Emsisoft Anti-Malware (Disabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: COMODO Antivirus (Enabled - Up to date) {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Disabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
AS: COMODO Antivirus (Enabled - Up to date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
 
==================== Installed Programs ======================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30586 - BitTorrent Inc.)
360 Browser (HKCU\...\360Browser) (Version: 7.5.1.116 - 360 Security Center)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A Bíblia Sagrada Versão Digital 6.7 Freeware (HKLM-x32\...\A Bíblia Sagrada Versão Digital 6.7 Freeware_is1) (Version:  - Por Marcelo Ribeiro de Oliveira - 20/05/2010)
ACR38/100/122 PC/SC Driver 1.1.2.0 (HKLM\...\{155796AE-16D0-45D2-8939-6AE3AD67147B}) (Version: 1.1.2 - Advanced Card Systems Ltd.)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Advanced SystemCare 7 (HKLM-x32\...\Advanced SystemCare 7_is1) (Version: 7.2.1 - IObit)
Aimersoft PDF Converter Pro (Build 3.1.1) (HKLM-x32\...\{C28729BF-059E-4A2B-BCD6-08CD91FE06E1}_is1) (Version: 3.1.1 - Aimersoft Software)
AnVir Task Manager Pro (HKLM-x32\...\AnVir Task Manager Pro) (Version:  - AnVir Software)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4272 - DsNET Corp)
Auslogics BoostSpeed (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 6.3.0.0 - Auslogics Labs Pty Ltd)
Auslogics Registry Cleaner (HKLM-x32\...\{8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1) (Version: 3.5.2.0 - Auslogics Labs Pty Ltd)
AutoCAD 2013 – Português – Brasil (Brazilian Portuguese) (HKLM\...\AutoCAD 2013 – Português – Brasil (Brazilian Portuguese)) (Version: 19.0.55.0 - Autodesk)
AutoCAD 2013 – Português – Brasil (Brazilian Portuguese) (Version: 19.0.55.0 - Autodesk) Hidden
AutoCAD 2013 Language Pack – Português – Brasil (Brazilian Portuguese) (Version: 19.0.55.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Plug-in Autodesk Inventor Fusion for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.8.2.30489 - BitTorrent Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
BurnAware Free 6.4 (HKLM-x32\...\BurnAware Free_is1) (Version:  - Burnaware)
Caesium versão 1.4.1 (HKLM-x32\...\{88B0F0DE-6937-440D-B5CA-6E69003E55F7}_is1) (Version: 1.4.1 - Matteo Paonessa)
CCleaner (HKLM\...\CCleaner) (Version: 3.27 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 31.1.0.0 - COMODO)
COMODO Internet Security Premium (HKLM\...\{8899F0F2-03D8-4DDE-ADCA-4F0A7CE18A74}) (Version: 7.0.51350.4115 - COMODO Security Solutions Inc.)
CrystalDiskInfo 5.6.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.6.2 - Crystal Dew World)
D110 (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.67 - Dell Inc.)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 4.1.2.11 - Dell)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1207.101.225 - ALPS ELECTRIC CO., LTD.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DiskMax 4.71 (HKLM\...\DiskMax) (Version: 4.71 - KoshyJohn.com)
DLL Suite 2013 (HKLM-x32\...\{885843E7-6CAC-4791-B7BF-1CD516017954}_is1) (Version:  - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.2 - IObit)
EaseUS Partition Master 9.2.2 (HKLM-x32\...\EaseUS Partition Master_is1) (Version:  - EaseUS)
EaseUS Todo Backup Free 6.5 (HKLM-x32\...\EaseUS Todo Backup Free 6.5_is1) (Version: 6.5 - CHENGDU YIWO Tech Development Co., Ltd)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Everything 1.2.1.371 (HKLM-x32\...\Everything) (Version:  - )
Everything 1.3.3.658 (x64) (HKLM\...\Everything) (Version:  - )
FastStone Photo Resizer 3.1 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.1 - FastStone Soft.)
FormatFactory 2.20 (HKLM-x32\...\FormatFactory) (Version: 2.20 - Free Time)
Fotosizer 2.08 (HKLM-x32\...\Fotosizer) (Version: 2.08.0.545 - Fotosizer.com)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.0.2.413 - Foxit Corporation)
Free Opener (HKLM\...\{A1F2C608-32D6-467D-B035-BBEF509042BA}_is1) (Version: 1.4 - EZ Freeware)
Glary Utilities PRO 4.8 (HKLM-x32\...\Glary Utilities 4) (Version: 4.8.0.97 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{EB38C3E0-4863-3123-9114-5BE86EC8E5C7}) (Version: 4.5.3.14917 - Google)
Google Update Helper (x32 Version: 1.3.21.153 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HP Deskjet 3510 series Ajuda (HKLM-x32\...\{949C49A5-91B7-40D2-AF9A-15681454074A}) (Version: 28.0.0 - Hewlett Packard)
HP Deskjet 3510 series Estudo de aprimoramento de produtos (HKLM\...\{34B5B8D3-4106-4713-AAE1-DAE898EEB21C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3510 series Software básico do dispositivo (HKLM\...\{B332BF47-16DD-476D-AE00-31DC6DE5B87A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Officejet Pro 8600 Ajuda (HKLM-x32\...\{4795BA34-DD3D-448A-A602-AD221F9B281B}) (Version: 28.0.0 - Hewlett Packard)
HP Officejet Pro 8600 Software básico do dispositivo (HKLM\...\{B7218FC4-74AB-46B0-9D44-FFDCEE3535E2}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Unified IO (Version: 2.0.0.434 - HP) Hidden
HP Unified IO (x32 Version: 2.0.0.434 - HP) Hidden
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6341.0 - IDT)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.10.1300 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.26.242.3 - Intel Corporation) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.1.8.2434 - IObit)
iPrint (HKLM-x32\...\iPrint_is1) (Version: 6.1 - Inzone Software Limited)
IRPF2013 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva do País (HKLM-x32\...\IRPF2013) (Version: 1.1 - Receita Federal do Brasil)
JetClean (HKLM-x32\...\BlueSprig_JetClean_is1) (Version: 1.5.0 - BlueSprig)
KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.3.0.0 - QFX Software Corporation)
LastPass (uninstall only) (HKCU\...\LastPass) (Version:  - LastPass)
LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}) (Version: 3.8.1 - LG Electronics)
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 5.2 - Paramount Software (UK) Ltd.)
Macrium Reflect Free Edition (Version: 5.2.6354 - Paramount Software (UK) Ltd.) Hidden
Malwarebytes Anti-Malware versão 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Megacubo 10 (HKLM-x32\...\Megacubo_is1) (Version:  - www.megacubo.net)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Português do Brasil) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1046) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (PTB) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office com Clique para Executar 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office com Clique para Executar 2010 (Version: 14.0.6122.5000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Módulo Adicional de Segurança CAIXA (HKLM-x32\...\{5d01f486-f32d-462e-8830-cc1d116e8ece}_is1) (Version: Módulo Adicional de Segurança CAIXA - )
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC)
Mozilla Firefox 28.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 pt-BR)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 3.15.2.307259 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia PC Suite (x32 Version: 7.1.180.94 - Nokia) Hidden
Nokia Software Updater (HKLM-x32\...\{7130468A-F53F-4698-8C09-A339EA3B05E6}) (Version: 3.0.655 - Nokia Corporation)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
OpenOffice 4.0.1 (HKLM-x32\...\{50FA6B86-D3C4-4961-A58F-1A061B2DCE04}) (Version: 4.01.9714 - Apache Software Foundation)
Pacote de Driver do Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (12/06/2010 4.0.0000.00000) (HKLM\...\199F2EB9DED8BE53A482B8F28B6149674948BDA9) (Version: 12/06/2010 4.0.0000.00000 - Google, Inc.)
Pacote de Driver do Windows - Nokia Modem  (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Pacote de Driver do Windows - Nokia Modem  (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Pacote de Driver do Windows - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Pacote de idioma do plug-in Autodesk Inventor Fusion para AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Photomizer Scan 2 (HKLM-x32\...\{CCE60D92-F3EC-4EF7-0001-C8949A33B608}) (Version: 2.0.14.113 - Engelmann Media GmbH)
PhrozenSoft VirusTotal Uploader version 3.1 (HKCU\...\PhrozenSoft VirusTotal Uploader_is1) (Version: 3.1 - Phrozen Software™ Solutions © 2013)
Plug-in Autodesk Inventor Fusion for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
PrimoPDF -- brought to you by Nitro PDF Software (HKLM-x32\...\PrimoPDF) (Version: 5 - Nitro PDF Software)
PS_AIO_07_D110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.09.25 - Dell Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.47 - Piriform)
Registry Reviver (HKLM\...\Registry Reviver) (Version: 3.0.1.142 - ReviverSoft LLC)
Registry Trash Keys Finder (Freeware) (HKLM-x32\...\Registry Trash Keys Finder) (Version: 3.9.2.1 - SNC)
ResScan (HKLM-x32\...\{F19702FA-6D54-41E1-98E2-156460C87FF2}) (Version: 3.16 - ResMed Pty Ltd)
Revo Uninstaller Pro 3.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.7 - VS Revo Group, Ltd.)
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.0.14735.1561 - Microsoft Corporation)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
SpyHunter (HKLM-x32\...\{4FC9DA9D-F608-454E-8191-D7EFFDCC5726}) (Version: 4.1.11 - Enigma Software Group USA, LLC)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.8.62 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
TeraCopy 2.27 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.6.0.87 - KMP Media co., Ltd)
Time Stopper (HKLM-x32\...\Time Stopper2.00) (Version: 2.00 - DilSoft)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
TuneUp Utilities 2014 (en-US) (x32 Version: 14.0.1000.88 - TuneUp Software) Hidden
UnHackMe 7.10 release (HKLM-x32\...\UnHackMe_is1) (Version:  - Greatis Software, LLC.)
UniPDF 1.0.4 (HKLM-x32\...\UniPDF) (Version: 1.0.4 - UniPDF.com)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vit Registry Fix 12.5 (remove only) (HKLM\...\Vit Registry Fix) (Version:  - VITSOFT)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
Wild Media Server (UPnP, DLNA, HTTP) (HKLM-x32\...\WMS) (Version: 1.08.2 - Evgeny Lachinov)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wise Care 365 version 2.94 (HKLM-x32\...\{E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1) (Version: 2.94 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 8.03 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.03 - WiseCleaner.com, Inc.)
 
==================== Restore Points  =========================
 
03-04-2014 11:16:50 ComboFix created restore point
03-04-2014 11:18:03 Pos chkdsk sfc
03-04-2014 11:33:53 Removed Microsoft Fix it Center
03-04-2014 13:44:45 Registry Reviver Restore Point (04/03/14)
 
==================== Hosts content: ==========================
 
2009-07-13 23:34 - 2014-03-31 20:15 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {038A1695-66A7-42B2-A5E8-0886E1FE6280} - System32\Tasks\ASC7_SkipUac_Dell => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2014-03-10] (IObit)
Task: {14DBDDE3-59C3-41CE-9694-B8F2A20587A8} - \Clean System Memory No Task File
Task: {17EC4B61-922E-4351-9C12-9FAAE4462E84} - System32\Tasks\Pointstone\System Cleaner\Run at Windows Startup => C:\Program Files (x86)\Pointstone\System Cleaner 7\Integrator.exe
Task: {1B0C4538-F5E9-4594-A2F6-C7B100A77D2E} - System32\Tasks\Auslogics\BoostSpeed\Scan and Repair => Rundll32.exe TaskSchedulerHelper.dll,RunTask "BoostSpeed.exe" "-UseTray -Schedule"
Task: {27E7E8EC-97DE-4B74-B0C9-5FB649E36821} - System32\Tasks\JetCleanLoginCheckUpdate => C:\Program Files (x86)\BlueSprig\JetClean\AutoUpdate.exe [2013-05-14] (BlueSprig)
Task: {2A0AC395-28E3-452C-A7D5-84B097CE56C4} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {314E5AA8-1245-429D-9DBB-0152A06DDC70} - \ParetoLogic Update Version3 No Task File
Task: {31AC1703-76A8-4622-9CF8-FF14971C92D7} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {3449AD23-5E0E-4ACA-A7FF-C4F6CDC64BC8} - \GoogleUpdateTaskMachineCore No Task File
Task: {3503D173-391C-44AF-98F0-A666C0446CD8} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-03-31] (COMODO)
Task: {3B33577B-C042-4782-AD4E-8F782AAA6048} - \Java Update Scheduler No Task File
Task: {3BD74C54-887D-47F6-9DA0-9C446F866508} - \{C108BC42-96BC-4227-AA1B-08592984E455} No Task File
Task: {4583D338-9DDC-45F9-A677-FC3E2349007E} - \PC Health Advisor No Task File
Task: {4A156437-4A51-4952-B6A4-52CC88D9B96E} - \{4CC3807B-53EA-4832-8512-2616D6195558} No Task File
Task: {4A9FEDEA-1554-4417-988D-A1F7A63EE5E4} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [2014-02-11] (IObit)
Task: {4BA2FC6F-1FD8-47BC-A85F-57CBFDE90ED6} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-03-31] (COMODO)
Task: {4BC2AB7A-3B4B-46E3-A9B1-53FA0F14671C} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {4F25BE16-33FC-4289-99AD-36F352DB720D} - \{6047C86F-39F7-4FA3-879C-F07B64E19688} No Task File
Task: {56526920-1A3B-490F-AECE-65A9F75FAF5D} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-01-10] (IObit)
Task: {5C8F1947-4A24-4A9F-9946-AEC40B175C10} - \JetBoost_AutoUpdate No Task File
Task: {6AB2196A-14D0-4D07-B97F-EA1608B7169C} - System32\Tasks\GlaryInitialize 4 => C:\Program Files (x86)\Glary Utilities 4\Initialize.exe [2014-03-17] (Glarysoft Ltd)
Task: {810A3BD6-8916-44BC-A21A-5253D40FBBFA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)
Task: {8116F8C9-21DD-4072-B824-43027FACD2D2} - System32\Tasks\AnVir Task Manager => C:\Program Files (x86)\AnVir Task Manager Pro\anvir.exe [2024-10-25] (AnVir Software)
Task: {85F83F1D-87E5-4988-BC28-E9347FDBFE07} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [2014-03-10] (Greatis Software)
Task: {865ACE18-F9AA-4391-970F-83AF11A1C7DB} - \ParetoLogic Registration3 No Task File
Task: {879EF476-D4B0-45AB-A9D6-43CF8905D677} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-03-31] (COMODO)
Task: {8837EDA6-7F18-4995-9B0E-BA81003AA8FA} - \{4670A716-E330-464F-A4C5-ACA3E2FD2275} No Task File
Task: {8BDE846F-42BA-4488-A3B9-2E8940BB8F0C} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {987CD0B8-0F9C-416D-9774-A9FE585AF84E} - \Driver Booster Update No Task File
Task: {9FA56E5B-AE4F-4893-A78D-E0DC38AB74CA} - \CCleanerSkipUAC No Task File
Task: {A18ADF0E-DC66-423B-ACD8-5DB18D691099} - System32\Tasks\SyneiStart => C:\Program Files (x86)\Synei\SystemUtilities\SystemUtilities.exe
Task: {A21FE9DD-2B6C-4713-82AC-70EC3B685764} - \GoogleUpdateTaskMachineUA No Task File
Task: {A7CEAEC9-5F10-4213-B53F-2A57C218FEF8} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2014-01-21] (WiseCleaner.COM)
Task: {B0C139FA-1A87-48BB-B832-2E34761F2E92} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {B0F234C9-1CE4-4762-9804-82E0B8AF41F0} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Dell) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {CBEE43D4-15AE-4942-8A0C-1DDD82580018} - \{34630F2C-9302-4543-ABBD-68F094CEC50A} No Task File
Task: {CFC6519B-7044-4E8D-BACC-1DCE8034663E} - \{A3DE7F2C-4721-4B85-A208-EF28536D8996} No Task File
Task: {D12C145C-CEBA-4F5E-8C41-CD35C07399ED} - \PC Health Advisor Defrag No Task File
Task: {D1C5FAD4-464F-43A6-91A5-34D891A987A5} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-02-13] (IObit)
Task: {D1EC5BC5-92FE-419A-998D-8231DC137E55} - \{80458243-75DD-4B5D-89C8-C4016ABD86D3} No Task File
Task: {D68BD592-87F7-418F-9021-E234A3040A4D} - System32\Tasks\Abelssoft\CheckDriveBackgroundGuard => C:\Program Files (x86)\CheckDrive\CheckDriveBackgroundGuard.exe
Task: {DD6DD884-CA94-4BF6-9AF8-976A14A34470} - \TuneUpUtilities_Task_BkGndMaintenance2013 No Task File
Task: {E1B06D5F-B2B5-41FD-A744-1513589377DA} - \launchspotflux No Task File
Task: {E3E59514-6D8E-4324-AF46-CDA40904054E} - \CleanMem Mini Monitor No Task File
Task: {E545DE99-D441-489A-9996-2217191E6DA2} - \{06848492-DEA4-43F0-A7DA-D8D8D3FA242A} No Task File
Task: {E7288E2D-FC14-48E5-9680-7E97169EE8D9} - System32\Tasks\GlaryUpdate 4 => C:\Program Files (x86)\Glary Utilities 4\CheckUpdate.exe [2014-03-17] (Glarysoft Ltd)
Task: {EAA93DA6-03C7-421F-B1D7-5C018D051259} - System32\Tasks\HPCustParticipation HP Deskjet 3510 series => C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {EEE581CE-866F-4B13-ACFA-C9E13D93ED14} - \SolutoTask_284ce29d-409b-4792-b5ac-3f723c183961 No Task File
Task: {F128CD73-2669-408D-9313-24C73549DB34} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-03-31] (COMODO)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize 4.job => C:\Program Files (x86)\Glary Utilities 4\Initialize.exe
Task: C:\Windows\Tasks\GlaryUpdate 4.job => C:\Program Files (x86)\Glary Utilities 4\CheckUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-04-30 17:28 - 2011-02-28 19:37 - 00095008 _____ () C:\Windows\System32\Primomonnt.dll
2014-01-28 11:35 - 2014-01-28 11:35 - 02135232 _____ () C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
2010-07-15 01:44 - 2010-07-15 01:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2013-08-03 23:45 - 2011-10-26 17:41 - 00318976 _____ () C:\Program Files\TeraCopy\TeraCopyExt64.dll
2013-08-03 23:45 - 2011-10-26 17:41 - 00126464 _____ () C:\Program Files\TeraCopy\TeraCopy64.dll
2013-04-15 17:39 - 2013-04-15 17:39 - 00073424 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2013-11-09 20:47 - 2013-10-25 12:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\sqlite3.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00098888 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2014-02-25 16:31 - 2013-11-14 14:59 - 00031304 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckTool.dll
2014-02-25 16:31 - 2008-11-25 17:18 - 01291264 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2014-02-25 16:31 - 2004-10-05 03:08 - 00055808 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00029768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00050248 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
2014-02-25 16:30 - 2014-01-13 18:06 - 00105544 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00030280 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00293960 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExchBackupSize.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00578632 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00468040 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExchBackupSizeEx.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00192072 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2014-02-25 16:30 - 2013-12-23 11:01 - 00281672 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00068680 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00069192 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2014-02-25 16:30 - 2013-09-04 11:19 - 00022600 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00115784 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00192584 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00135752 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2014-02-25 16:30 - 2013-10-22 17:31 - 00037960 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00135240 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2014-02-25 16:30 - 2013-12-24 17:42 - 00017992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00096840 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBFireWall.dll
2013-10-31 12:05 - 2013-10-31 12:05 - 00172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2013-03-06 00:30 - 1999-12-31 21:00 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2013-11-09 20:47 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl
2013-11-09 20:47 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl
2013-11-09 20:47 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl
2013-11-09 20:47 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll
2014-03-27 19:12 - 2014-03-14 21:50 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2014-03-27 19:12 - 2014-03-14 21:50 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-27 19:12 - 2014-03-14 21:50 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-27 19:12 - 2014-03-14 21:50 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2014-03-27 19:12 - 2014-03-14 21:50 - 13637448 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
2013-08-02 18:31 - 2013-08-02 18:31 - 04591616 _____ () C:\Users\Dell\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0\libglesv2.dll
2013-08-02 18:31 - 2013-08-02 18:31 - 00112128 _____ () C:\Users\Dell\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0\libegl.dll
2014-02-25 16:31 - 2013-09-04 11:19 - 00098888 _____ () C:\PROGRAM FILES (X86)\EASEUS\TODO BACKUP\BIN\CodeLog.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: C:\Windows\System32:DAB301F3_Bb.gbp
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRkrn => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRSVC => ""="Service"
 
==================== Disabled items from MSCONFIG ==============
 
MSCONFIG\Services: AdobeARMservice => 3
MSCONFIG\Services: AESTFilters => 3
MSCONFIG\Services: DragonUpdater => 3
MSCONFIG\Services: Guard Agent => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 3
MSCONFIG\Services: ICCS => 3
MSCONFIG\Services: IceDragonUpdater => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: SkypeUpdate => 3
MSCONFIG\Services: SophosVirusRemovalTool => 3
MSCONFIG\Services: STacSV => 3
MSCONFIG\Services: UNS => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => 
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Advanced SystemCare 6 => 
MSCONFIG\startupreg: Ashampoo WinOptimizer Live-Tuner => 
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} => 
MSCONFIG\startupreg: DellSystemDetect => C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
MSCONFIG\startupreg: DivXMediaServer => 
MSCONFIG\startupreg: DivXUpdate => 
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe
MSCONFIG\startupreg: EaseUs TB Tray Agent => "C:\Program Files (x86)\EaseUS\TrayPopup\TrayTipAgent.exe"
MSCONFIG\startupreg: EaseUs Tray => c:\program files (x86)\easeus\todo backup\bin\traynotify.exe
MSCONFIG\startupreg: EaseUs Watch => c:\program files (x86)\easeus\todo backup\bin\euwatch.exe
MSCONFIG\startupreg: Everything => "c:\program files (x86)\everything\everything.exe" -startup
MSCONFIG\startupreg: GUDelayStartup => C:\Program Files (x86)\Glary Utilities 4\StartupManager.exe -delayrun
MSCONFIG\startupreg: HotKeysCmds => "C:\Windows\system32\hkcmd.exe"
MSCONFIG\startupreg: HP Officejet Pro 8600 (NET) => "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN35FBWG6N05KC:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: IgfxTray => "C:\Windows\system32\igfxtray.exe"
MSCONFIG\startupreg: Megacubo => "C:\Program Files (x86)\Megacubo\megacubo.exe" -load:update -type:startup
MSCONFIG\startupreg: Nero MediaHome 4 => 
MSCONFIG\startupreg: PC Suite Tray => "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"
MSCONFIG\startupreg: SandboxieControl => 
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => 
MSCONFIG\startupreg: SynTPEnh => 
MSCONFIG\startupreg: SysTrayApp => c:\program files\idt\wdm\sttray64.exe
MSCONFIG\startupreg: Vit Registry Optimizer => C:\Program Files (x86)\VITSOFT\Vit Registry Fix\Vit Registry Optimizer.exe -message
MSCONFIG\startupreg: WinPatrol => 
MSCONFIG\startupreg: {1606DC18-9578-4cbd-8312-8E9868F06A1D} => 
 
==================== Faulty Device Manager Devices =============
 
Name: Officejet Pro 8600
Description: Officejet Pro 8600
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Officejet Pro 8600
Description: Officejet Pro 8600
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Officejet Pro 8600
Description: Officejet Pro 8600
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (04/03/2014 01:01:11 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/03/2014 08:02:12 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/03/2014 07:27:56 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/03/2014 00:27:01 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
.
 
Error: (04/03/2014 00:21:51 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
.
 
Error: (04/02/2014 03:44:50 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
.
 
Error: (04/02/2014 03:23:29 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..
 
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
.
 
Error: (04/02/2014 01:20:01 PM) (Source: Application Error) (User: )
Description: Nome de aplicativo com falha: hx2ge1h1.exe, versão: 2.1.19357.0, carimbo de hora: 0x52e7ea83
Nome do módulo de falhas: hx2ge1h1.exe, versão: 2.1.19357.0, carimbo de hora: 0x52e7ea83
Código de exceção: 0xc0000005
Deslocamento com falha: 0x00088c46
Identificação do processo com falha: 0xc6c
Hora de início do aplicativo com falha: 0xhx2ge1h1.exe0
Caminho do aplicativo com falha: hx2ge1h1.exe1
FCaminho do módulo de falhas: hx2ge1h1.exe2
Identificação do Relatório: hx2ge1h1.exe3
 
Error: (04/02/2014 08:38:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/02/2014 07:17:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (04/04/2014 10:13:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 10:03:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 09:53:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 09:43:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 09:33:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 09:23:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 09:13:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 09:03:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 08:53:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
Error: (04/04/2014 08:43:01 AM) (Source: DCOM) (User: AUTORIDADE NT)
Description: Específico do aplicativoLocalIniciar{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORIDADE NTSISTEMAS-1-5-18LocalHost (Usando LRPC)
 
 
Microsoft Office Sessions:
=========================
Error: (04/03/2014 01:01:11 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/03/2014 08:02:12 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/03/2014 07:27:56 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/03/2014 00:27:01 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
 
Error: (04/03/2014 00:21:51 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
 
Error: (04/02/2014 03:44:50 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
 
Error: (04/02/2014 03:23:29 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary 7882506drv.
 
System Error:
O sistema não pode encontrar o arquivo especificado.
 
Error: (04/02/2014 01:20:01 PM) (Source: Application Error)(User: )
Description: hx2ge1h1.exe2.1.19357.052e7ea83hx2ge1h1.exe2.1.19357.052e7ea83c000000500088c46c6c01cf4e873cdbf320C:\Users\Dell\Downloads\hx2ge1h1.exeC:\Users\Dell\Downloads\hx2ge1h1.exea3888b62-ba82-11e3-9a7b-08edb90f8d58
 
Error: (04/02/2014 08:38:54 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/02/2014 07:17:34 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-03-31 20:14:38.487
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-31 20:14:38.456
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-26 01:03:02.786
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\gato\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-26 01:03:02.739
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\gato\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-21 12:28:44.296
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-21 12:28:44.249
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-18 13:43:09.091
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Dell\Downloads\Hitman Pro 3.7.7 Build 205\HitmanPro.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-18 13:43:01.664
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Dell\Downloads\Hitman Pro 3.7.7 Build 205\HitmanPro.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-03-16 08:29:00.890
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\combofix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-03-16 08:29:00.766
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\combofix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 


#5 nasdaq

nasdaq

  • Malware Response Team
  • 38,925 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:43 AM

Posted 04 April 2014 - 12:55 PM


We wonder why the Hijackthis is not considered with our OS. For which OS it is indicated or what situations?

It's not ready for the 64bit Operating systems.
It does not report any Firefox or Chrome extensions installed.
===

I leave it to you if you want to keep this extension.
http://www.systemlookup.com/FF_Extensions/1295.html

If you want to keep it delete the line
FF Extension: Fasterfox Lite - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\FasterFox_Lite@BigRedBrent [2013-06-17] from the coded box below.

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.

start

SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.9.0.22\trustedads.dll (AdTrustMedia)
FF Extension: Fasterfox Lite - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\FasterFox_Lite@BigRedBrent [2013-06-17]
FF Extension: PrivDog - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-03-19]
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
CHR Plugin: (Java Platform SE 7 U45) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
C:\Users\Dell\AppData\Local\Temp\GLB1A2B.EXE
AlternateDataStreams: C:\Windows\System32:DAB301F3_Bb.gbp

end

Save the files as fixlist.txt in to the same folder as FRST
Run FRST and click Fix only once and wait
The tool will create a log (Fixlog.txt) please post it to your reply.
===


Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

#6 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 04 April 2014 - 01:39 PM

 
The FRST64 is located in C: Computer> System C> 
 
The Fixlist.txt was tested on 
 
1. C.. . 
 
2. FRST within the folder, along with the folders: Hives, log and quarantine. . . 
 
3. Inside the Hives folder. 
 
In all the above lists have the following message: 
 
"In Fixlist.txt found. 
 
The Fixlist.txt Should be in the same folder / direcotory the tool is located. "
 
 
Where could he be missing?
 
I can send printscreen of all attempts made.


#7 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 05 April 2014 - 03:41 AM

We researched what we could be doing wrong. . . Fixlist.txt and should be placed in the same location frst.exe, ie, where it was saved on the desktop. From the desktop, run and operated. . . 
 
1. Fixlog:
 
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Dell at 2014-04-05 05:12:57 Run:1
Running from C:\Users\Dell\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start 
 
SearchScopes : HKLM -  DefaultScope value is missing . 
SearchScopes : HKCU -  { 0633EE93 - D776 - 472f - A0FF - E1416B8B2E3A } URL = 
BHO :  PrivDog  Extension  -  { FB16E5C3 - A9E2 - 47A2 - 8EFC - 319E775E62CC }  - C : \Program Files \AdTrustMedia\PrivDog\1 . 9.0 . 22 \trustedads . dll ( AdTrustMedia ) 
FF Extension :  Fasterfox  Lite  - C : \Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum . default \Extensions\FasterFox_Lite@BigRedBrent [ 2013 - 06 - 17 ] 
FF Extension :  PrivDog  - C : \Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum . default \Extensions\ PrivDog@AdTrustMedia . com . xpi  [ 2014 - 03 - 19 ] 
CHR Plugin :  ( Widevine  Content  Decryption  Module )  - C : \Users\Dell\AppData\Local\Google\Chrome\User Data \WidevineCDM\1 . 4.1 . 376 \_platform_specific\win_x86\widevinecdmadapter . dll No  File 
CHR Plugin :  ( Java  Deployment  Toolkit  7.0 . 450.18 )  - C : \Program Files  ( x86 ) \Java\jre7\b in \dtplugin\npDeployJava1 . dll No  File 
CHR Plugin :  ( Java  Platform SE 7 U45 )  - C : \Program Files  ( x86 ) \Java\jre7\b in \plugin2\npjp2 . dll No  File 
CHR Plugin :  ( Silverlight  Plug - In )  - C : \Program Files  ( x86 ) \Microsoft Silverlight \5 . 1.20913 . 0 \npctrl . dll No  File 
CHR HKLM\SOFTWARE\Policies\Google :  Policy restriction <======= ATTENTION 
C : \Users\Dell\AppData\Local\Temp\GLB1A2B . EXE
 AlternateDataStreams : C : \Windows\System32 : DAB301F3_Bb . gbp 
 
end
*****************
 
 
==== End of Fixlog ====
 
2. Security Check log;
 
 Results of screen317's Security Check version 0.99.81  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Emsisoft Anti-Malware   
COMODO Antivirus        
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 SpywareBlaster 5.0    
 SpyHunter     
 Wise Registry Cleaner 8.03  
 Auslogics Registry Cleaner   
 Adobe Flash Player 12.0.0.77  
 Mozilla Firefox (28.0) 
 Google Chrome 33.0.1750.146  
 Google Chrome 33.0.1750.154  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Comodo Firewall cmdagent.exe 
 Malwarebytes' Anti-Malware mbamscheduler.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: = 
````````````````````End of Log`````````````````````` 
 
 
 

OBS: Please inquire: why two versions of Chrome, since Chrome updated as applicable, as well as other browsers, firefox and IE?

 

Versions Chrome: 33.0.1750.154 m.

 



 



#8 nasdaq

nasdaq

  • Malware Response Team
  • 38,925 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:43 AM

Posted 05 April 2014 - 09:43 AM

Try this
Right click on the Desktop and create a new folder, name it Farbar_Tool

Drag the FRST64.exe file to that new folder.
Drag Fixlist.txt also.

Run the FRST64.exe. How is it now?
===

Google Chrome 33.0.1750.154 m is the latest version, which I have.
I do see two Chrome update often on logs. I leave them alone. Nothing to worry about.

#9 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 05 April 2014 - 05:13 PM

Proceed as you suggest and it worked. 
 
Log: Fixlog
 
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Dell at 2014-04-05 19:07:41 Run:3
Running from C:\Users\Dell\Desktop\Farbar_Tool
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
 
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.9.0.22\trustedads.dll (AdTrustMedia)
FF Extension: Fasterfox Lite - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\FasterFox_Lite@BigRedBrent [2013-06-17]
FF Extension: PrivDog - C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-03-19]
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll No File
CHR Plugin: (Java Platform SE 7 U45) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
C:\Users\Dell\AppData\Local\Temp\GLB1A2B.EXE
AlternateDataStreams: C:\Windows\System32:DAB301F3_Bb.gbp
 
end
*****************
 
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key deleted successfully.
HKCR\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} => Key deleted successfully.
C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\FasterFox_Lite@BigRedBrent => Moved successfully.
C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\9v3k2eum.default\Extensions\PrivDog@AdTrustMedia.com.xpi => Moved successfully.
C:\Users\Dell\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.376\_platform_specific\win_x86\widevinecdmadapter.dll not found.
C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll not found.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll not found.
C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll not found.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
"C:\Users\Dell\AppData\Local\Temp\GLB1A2B.EXE" => File/Directory not found.
C:\Windows\System32 => ":DAB301F3_Bb.gbp" ADS removed successfully.
 
==== End of Fixlog ====


#10 nasdaq

nasdaq

  • Malware Response Team
  • 38,925 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:43 AM

Posted 06 April 2014 - 08:27 AM

How is the computer's performance?

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

#11 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 06 April 2014 - 08:38 AM

 Nasdaq 
 
Think about running this software after Fixlist.txt but await your guidance. . . 
The Security. . . have placed the link that has the message: "This webpage is not available". We downloaded directly from Bleeping. 
 
Log Checkup.txt:
 
 Results of screen317's Security Check version 0.99.81  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Emsisoft Anti-Malware   
COMODO Antivirus        
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 SpywareBlaster 5.0    
 SpyHunter     
 Wise Registry Cleaner 8.03  
 Auslogics Registry Cleaner   
 Adobe Flash Player 12.0.0.77  
 Mozilla Firefox (28.0) 
 Google Chrome 33.0.1750.146  
 Google Chrome 33.0.1750.154  
````````Process Check: objlist.exe by Laurent````````  
 WinPatrol winpatrol.exe 
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Comodo Firewall cmdagent.exe 
 BillP Studios WinPatrol WinPatrol.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log`````````````````````` 


#12 nasdaq

nasdaq

  • Malware Response Team
  • 38,925 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:43 AM

Posted 06 April 2014 - 12:22 PM

Looking good.

If all is well:

Please consider using these ideas to help secure your computer. While there is no way to guarantee safety when you use a computer, these steps will make it much less likely that you will need to endure another infection. While we really like to help people, we would rather help you protect yourself so that you won't need that help in the future.

Please either enable Automatic Updates under Start -> Control Panel -> Automatic Updates or get into the habit of checking Windows Update regularly. They usually have security updates every month. You can set Windows to notify you of Updates so that you can choose, but only do this if you believe you are able to understand which ones are needed. This is a crucial security measure.

Having an effective antivirus is a must for everyone.
In addition to many excellent commercial products there are plenty of good free antivirus programs available. I can recommend:

If you are satisfied with your current protection programs you can ignore the instructions on Antivirus or Firewall listed below.In addition to an antivirus I recommend using a firewall. A software firewall is a software program that helps screen out hackers, viruses, and worms that try to reach your computer over the Internet. I can recommend one of the following free products:Please note: Many installer offer third-party downloads that are installed automatically when you do not uncheck certain checkboxes. While most of the time not being malicious you usually do not want these on your computer. Be careful during the installation process and you will avoid seeing tons of new unwanted toolbars in your favorite web browser.

Please consider installing and running some of the following programs; they are either free or have free versions of commercial programs:

Malwarebytes Anti-Malware (MBAM)
The free version of MBAM can be used to scan the system for traces of malware. Scanning your system regularly will make it harder for malware to reside on your system.
A tutorial on using MBAM can be found here.
Please Note: Only the paid for version has real time capabilities.

SpywareBlaster
A tutorial on using SpywareBlaster to prevent malware from ever installing on your computer may be found here.

Please keep these programs up-to-date and run them whenever you suspect a problem to prevent malware problems. A number of programs have resident protection and it is a good idea to run the resident protection of one of each type of program to maintain protection. However, it is important to run only one resident program of each type since they can conflict and become less effective. That means only one antivirus, firewall and scanning anti-spyware program at a time. Passive protectors, like SpywareBlaster can be run with any of them.

Note that there are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you can find out if it is a rogue here:A similar category of programs is now called "scareware." Scareware programs are active infections that will pop-up on your computer and tell you that you are infected. If you look closely, it will usually have a name that looks like it might be legitimate, but it is NOT one of the programs you installed. It tells you to click and install it right away. If you click on any part of it, including the 'X' to close it, you may actually help it infect your computer further. Keeping protection updated and running resident protection can help prevent these infections. If it happens anyway, get offline as quickly as you can. Pull the internet connection cable or shut down the computer if you have to. Contact someone to help by using another computer if possible. These programs are also sometimes called 'rogues', but they are different than the older version of rogues mentioned above.

Please keep your programs up to date. This applies to Java, Adobe Flashplayer, Adobe Reader and your Internet Browsers in particular. Vulnerabilities in these programs are often exploited in order to install malware on your PC. Visiting a prepared web page suffices to infect your system.

In general Firefox, Opera and Google Chrome are considered to be more secure than Internet Explorer. In addition there are many useful add-ons that can protect you from possible risks:
  • WOT will warn you when you try to visit sites with poor reputation. The reputation is based on user ratings and is usually very accurate.
  • Script Blocker can help blocking many attempts to infect your system via malicious websites by only allowing scripts at sites you trust.
  • NoScript is a popular Firefox addon,
  • ScriptNo a popular Google Chrome addon.
For much more useful information, please also read Tony Klein's excellent article: How did I get infected in the first place

Hopefully these steps will help to keep you error free. If you run into more difficulty, we will certainly do what we can to help.
===

#13 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 06 April 2014 - 04:32 PM

Dear Nasdaq !
 
The notebook from the beginning of our posting is fast. . .
 
Before closing this topic , we use the software JRT and he continues to present the same difficulties pointed out earlier in this topic , ultimately not complete the scan , may be concluded before terminating the process .
 
We take also to use the SFC / scannow and got the following message :
 
The Windows Resource Protection found corrupt files but could not fix some of Them
Details included in the log CBS.log . . .
 
Should be interesting to understand , we can post the log , as it is on the desktop.


#14 nasdaq

nasdaq

  • Malware Response Team
  • 38,925 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:43 AM

Posted 07 April 2014 - 08:17 AM

Go to this Microsoft page.
http://support.microsoft.com/kb/928228

Execute this. It should run in Windows 7.

From the run box Execute cmd in the Programs list, and then click Run as administrator.

findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >sfcdetails.txt

Post the log for my review.

#15 Clade

Clade
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:43 AM

Posted 07 April 2014 - 08:28 AM

The log was already at hand

Log SFC / scannow:

2014-04-06 13:35:40, Info CSI 00000009 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:35:40, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2014-04-06 13:35:50, Info CSI 0000000c [SR] Verify complete
2014-04-06 13:35:52, Info CSI 0000000d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:35:52, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2014-04-06 13:35:56, Info CSI 00000010 [SR] Verify complete
2014-04-06 13:35:58, Info CSI 00000011 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:35:58, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:03, Info CSI 00000014 [SR] Verify complete
2014-04-06 13:36:04, Info CSI 00000015 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:04, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:07, Info CSI 00000018 [SR] Verify complete
2014-04-06 13:36:08, Info CSI 00000019 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:08, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:19, Info CSI 0000001c [SR] Verify complete
2014-04-06 13:36:20, Info CSI 0000001d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:20, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:30, Info CSI 00000020 [SR] Verify complete
2014-04-06 13:36:31, Info CSI 00000021 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:31, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:41, Info CSI 00000024 [SR] Verify complete
2014-04-06 13:36:41, Info CSI 00000025 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:41, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:46, Info CSI 00000028 [SR] Verify complete
2014-04-06 13:36:46, Info CSI 00000029 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:46, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2014-04-06 13:36:58, Info CSI 0000002c [SR] Verify complete
2014-04-06 13:36:58, Info CSI 0000002d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:36:58, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2014-04-06 13:37:06, Info CSI 00000030 [SR] Verify complete
2014-04-06 13:37:07, Info CSI 00000031 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:37:07, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2014-04-06 13:37:12, Info CSI 00000034 [SR] Verify complete
2014-04-06 13:37:13, Info CSI 00000035 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:37:13, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2014-04-06 13:37:21, Info CSI 00000039 [SR] Verify complete
2014-04-06 13:37:21, Info CSI 0000003a [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:37:21, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2014-04-06 13:37:37, Info CSI 0000003e [SR] Verify complete
2014-04-06 13:37:39, Info CSI 0000003f [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:37:39, Info CSI 00000040 [SR] Beginning Verify and Repair transaction
2014-04-06 13:37:54, Info CSI 00000043 [SR] Verify complete
2014-04-06 13:37:55, Info CSI 00000044 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:37:55, Info CSI 00000045 [SR] Beginning Verify and Repair transaction
2014-04-06 13:38:06, Info CSI 00000048 [SR] Verify complete
2014-04-06 13:38:08, Info CSI 00000049 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:38:08, Info CSI 0000004a [SR] Beginning Verify and Repair transaction
2014-04-06 13:38:18, Info CSI 0000004c [SR] Verify complete
2014-04-06 13:38:19, Info CSI 0000004d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:38:19, Info CSI 0000004e [SR] Beginning Verify and Repair transaction
2014-04-06 13:38:34, Info CSI 00000070 [SR] Verify complete
2014-04-06 13:38:35, Info CSI 00000071 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:38:35, Info CSI 00000072 [SR] Beginning Verify and Repair transaction
2014-04-06 13:38:51, Info CSI 00000077 [SR] Verify complete
2014-04-06 13:38:52, Info CSI 00000078 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:38:52, Info CSI 00000079 [SR] Beginning Verify and Repair transaction
2014-04-06 13:39:05, Info CSI 0000007b [SR] Verify complete
2014-04-06 13:39:05, Info CSI 0000007c [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:39:05, Info CSI 0000007d [SR] Beginning Verify and Repair transaction
2014-04-06 13:39:19, Info CSI 0000007f [SR] Verify complete
2014-04-06 13:39:19, Info CSI 00000080 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:39:19, Info CSI 00000081 [SR] Beginning Verify and Repair transaction
2014-04-06 13:39:33, Info CSI 00000083 [SR] Verify complete
2014-04-06 13:39:33, Info CSI 00000084 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:39:33, Info CSI 00000085 [SR] Beginning Verify and Repair transaction
2014-04-06 13:39:42, Info CSI 00000087 [SR] Verify complete
2014-04-06 13:39:42, Info CSI 00000088 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:39:42, Info CSI 00000089 [SR] Beginning Verify and Repair transaction
2014-04-06 13:40:00, Info CSI 000000ac [SR] Verify complete
2014-04-06 13:40:00, Info CSI 000000ad [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:40:00, Info CSI 000000ae [SR] Beginning Verify and Repair transaction
2014-04-06 13:40:19, Info CSI 000000b0 [SR] Verify complete
2014-04-06 13:40:20, Info CSI 000000b1 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:40:20, Info CSI 000000b2 [SR] Beginning Verify and Repair transaction
2014-04-06 13:40:44, Info CSI 000000b6 [SR] Verify complete
2014-04-06 13:40:44, Info CSI 000000b7 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:40:44, Info CSI 000000b8 [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:02, Info CSI 000000ba [SR] Verify complete
2014-04-06 13:41:02, Info CSI 000000bb [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:02, Info CSI 000000bc [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:11, Info CSI 000000be [SR] Verify complete
2014-04-06 13:41:12, Info CSI 000000bf [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:12, Info CSI 000000c0 [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:20, Info CSI 000000c2 [SR] Verify complete
2014-04-06 13:41:20, Info CSI 000000c3 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:20, Info CSI 000000c4 [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:35, Info CSI 000000d7 [SR] Verify complete
2014-04-06 13:41:35, Info CSI 000000d8 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:35, Info CSI 000000d9 [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:43, Info CSI 000000db [SR] Verify complete
2014-04-06 13:41:43, Info CSI 000000dc [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:43, Info CSI 000000dd [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:49, Info CSI 000000df [SR] Verify complete
2014-04-06 13:41:50, Info CSI 000000e0 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:50, Info CSI 000000e1 [SR] Beginning Verify and Repair transaction
2014-04-06 13:41:56, Info CSI 000000e3 [SR] Verify complete
2014-04-06 13:41:57, Info CSI 000000e4 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:41:57, Info CSI 000000e5 [SR] Beginning Verify and Repair transaction
2014-04-06 13:42:07, Info CSI 000000e7 [SR] Verify complete
2014-04-06 13:42:07, Info CSI 000000e8 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:42:07, Info CSI 000000e9 [SR] Beginning Verify and Repair transaction
2014-04-06 13:42:23, Info CSI 000000ec [SR] Verify complete
2014-04-06 13:42:23, Info CSI 000000ed [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:42:23, Info CSI 000000ee [SR] Beginning Verify and Repair transaction
2014-04-06 13:42:35, Info CSI 000000f1 [SR] Verify complete
2014-04-06 13:42:36, Info CSI 000000f2 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:42:36, Info CSI 000000f3 [SR] Beginning Verify and Repair transaction
2014-04-06 13:42:41, Info CSI 000000f5 [SR] Verify complete
2014-04-06 13:42:41, Info CSI 000000f6 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:42:41, Info CSI 000000f7 [SR] Beginning Verify and Repair transaction
2014-04-06 13:42:48, Info CSI 000000f9 [SR] Verify complete
2014-04-06 13:42:48, Info CSI 000000fa [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:42:48, Info CSI 000000fb [SR] Beginning Verify and Repair transaction
2014-04-06 13:43:05, Info CSI 000000fd [SR] Verify complete
2014-04-06 13:43:06, Info CSI 000000fe [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:43:06, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2014-04-06 13:43:15, Info CSI 00000101 [SR] Verify complete
2014-04-06 13:43:15, Info CSI 00000102 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:43:15, Info CSI 00000103 [SR] Beginning Verify and Repair transaction
2014-04-06 13:43:32, Info CSI 00000110 [SR] Verify complete
2014-04-06 13:43:33, Info CSI 00000111 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:43:33, Info CSI 00000112 [SR] Beginning Verify and Repair transaction
2014-04-06 13:43:44, Info CSI 0000011f [SR] Verify complete
2014-04-06 13:43:44, Info CSI 00000120 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:43:44, Info CSI 00000121 [SR] Beginning Verify and Repair transaction
2014-04-06 13:43:45, Info CSI 00000122 [SR] Cannot repair member file [l:22{11}]"Kalimba.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:43:45, Info CSI 00000123 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:43:45, Info CSI 00000124 [SR] Cannot repair member file [l:58{29}]"Maid with the Flaxen Hair.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:43:45, Info CSI 00000125 [SR] Cannot repair member file [l:28{14}]"Sleep Away.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:44:11, Info CSI 00000126 [SR] Cannot repair member file [l:22{11}]"Kalimba.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:44:11, Info CSI 00000127 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:44:11, Info CSI 00000128 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:44:11, Info CSI 00000129 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:44:11, Info CSI 0000012a [SR] Cannot repair member file [l:58{29}]"Maid with the Flaxen Hair.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:44:11, Info CSI 0000012b [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:44:11, Info CSI 0000012c [SR] Cannot repair member file [l:28{14}]"Sleep Away.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:44:11, Info CSI 0000012d [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:44:25, Info CSI 0000012f [SR] Verify complete
2014-04-06 13:44:26, Info CSI 00000130 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:44:26, Info CSI 00000131 [SR] Beginning Verify and Repair transaction
2014-04-06 13:44:38, Info CSI 00000133 [SR] Verify complete
2014-04-06 13:44:38, Info CSI 00000134 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:44:38, Info CSI 00000135 [SR] Beginning Verify and Repair transaction
2014-04-06 13:44:49, Info CSI 00000137 [SR] Verify complete
2014-04-06 13:44:49, Info CSI 00000138 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:44:49, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2014-04-06 13:45:03, Info CSI 0000013b [SR] Verify complete
2014-04-06 13:45:03, Info CSI 0000013c [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:45:03, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2014-04-06 13:45:06, Info CSI 0000013e [SR] Cannot repair member file [l:18{9}]"Koala.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 0000013f [SR] Cannot repair member file [l:26{13}]"Jellyfish.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000140 [SR] Cannot repair member file [l:26{13}]"SampleRes.dll" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000141 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000142 [SR] Cannot repair member file [l:20{10}]"Desert.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000143 [SR] Cannot repair member file [l:28{14}]"Lighthouse.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000144 [SR] Cannot repair member file [l:20{10}]"Tulips.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000145 [SR] Cannot repair member file [l:34{17}]"Chrysanthemum.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000146 [SR] Cannot repair member file [l:28{14}]"Hydrangeas.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:06, Info CSI 00000147 [SR] Cannot repair member file [l:24{12}]"Penguins.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000148 [SR] Cannot repair member file [l:18{9}]"Koala.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000149 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 0000014a [SR] Cannot repair member file [l:26{13}]"Jellyfish.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 0000014b [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 0000014c [SR] Cannot repair member file [l:26{13}]"SampleRes.dll" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 0000014d [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 0000014e [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 0000014f [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 00000150 [SR] Cannot repair member file [l:20{10}]"Desert.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000151 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 00000152 [SR] Cannot repair member file [l:28{14}]"Lighthouse.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000153 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 00000154 [SR] Cannot repair member file [l:20{10}]"Tulips.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000155 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 00000156 [SR] Cannot repair member file [l:34{17}]"Chrysanthemum.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000157 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 00000158 [SR] Cannot repair member file [l:28{14}]"Hydrangeas.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 00000159 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 0000015a [SR] Cannot repair member file [l:24{12}]"Penguins.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:45:12, Info CSI 0000015b [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 13:45:12, Info CSI 0000015d [SR] Verify complete
2014-04-06 13:45:13, Info CSI 0000015e [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:45:13, Info CSI 0000015f [SR] Beginning Verify and Repair transaction
2014-04-06 13:45:20, Info CSI 00000161 [SR] Verify complete
2014-04-06 13:45:20, Info CSI 00000162 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:45:20, Info CSI 00000163 [SR] Beginning Verify and Repair transaction
2014-04-06 13:45:29, Info CSI 00000167 [SR] Verify complete
2014-04-06 13:45:30, Info CSI 00000168 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:45:30, Info CSI 00000169 [SR] Beginning Verify and Repair transaction
2014-04-06 13:45:41, Info CSI 0000016b [SR] Verify complete
2014-04-06 13:45:41, Info CSI 0000016c [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:45:41, Info CSI 0000016d [SR] Beginning Verify and Repair transaction
2014-04-06 13:45:53, Info CSI 00000170 [SR] Verify complete
2014-04-06 13:45:54, Info CSI 00000171 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:45:54, Info CSI 00000172 [SR] Beginning Verify and Repair transaction
2014-04-06 13:46:02, Info CSI 00000175 [SR] Verify complete
2014-04-06 13:46:03, Info CSI 00000176 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:46:03, Info CSI 00000177 [SR] Beginning Verify and Repair transaction
2014-04-06 13:46:17, Info CSI 00000179 [SR] Verify complete
2014-04-06 13:46:17, Info CSI 0000017a [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:46:17, Info CSI 0000017b [SR] Beginning Verify and Repair transaction
2014-04-06 13:46:33, Info CSI 0000017e [SR] Verify complete
2014-04-06 13:46:33, Info CSI 0000017f [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:46:33, Info CSI 00000180 [SR] Beginning Verify and Repair transaction
2014-04-06 13:46:42, Info CSI 00000182 [SR] Verify complete
2014-04-06 13:46:42, Info CSI 00000183 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:46:42, Info CSI 00000184 [SR] Beginning Verify and Repair transaction
2014-04-06 13:46:52, Info CSI 00000186 [SR] Verify complete
2014-04-06 13:46:52, Info CSI 00000187 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:46:52, Info CSI 00000188 [SR] Beginning Verify and Repair transaction
2014-04-06 13:47:01, Info CSI 0000018b [SR] Verify complete
2014-04-06 13:47:01, Info CSI 0000018c [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:47:01, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2014-04-06 13:47:08, Info CSI 0000018f [SR] Verify complete
2014-04-06 13:47:08, Info CSI 00000190 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:47:08, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2014-04-06 13:47:15, Info CSI 00000193 [SR] Verify complete
2014-04-06 13:47:15, Info CSI 00000194 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:47:15, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2014-04-06 13:47:16, Info CSI 00000196 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:16, Info CSI 00000197 [SR] Cannot repair member file [l:24{12}]"Wildlife.wmv" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:24, Info CSI 00000199 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:24, Info CSI 0000019a [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:24, Info CSI 0000019b [SR] Cannot repair member file [l:24{12}]"Wildlife.wmv" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:24, Info CSI 0000019c [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:25, Info CSI 0000019e [SR] Verify complete
2014-04-06 13:47:25, Info CSI 0000019f [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:47:25, Info CSI 000001a0 [SR] Beginning Verify and Repair transaction
2014-04-06 13:47:36, Info CSI 000001a4 [SR] Verify complete
2014-04-06 13:47:39, Info CSI 000001a5 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:47:39, Info CSI 000001a6 [SR] Beginning Verify and Repair transaction
2014-04-06 13:47:47, Info CSI 000001a7 [SR] Cannot repair member file [l:58{29}]"Clip_1080_5sec_VC1_15mbps.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001a8 [SR] Cannot repair member file [l:56{28}]"Clip_480_5sec_6mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001a9 [SR] Cannot repair member file [l:20{10}]"winsat.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001aa [SR] Cannot repair member file [l:68{34}]"Clip_1080_5sec_MPEG2_HD_15mbps.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001ab [SR] Cannot repair member file [l:60{30}]"Clip_1080_5sec_10mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001ac [SR] Cannot repair member file [l:32{16}]"winsatencode.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001ad [SR] Cannot repair member file [l:56{28}]"Clip_480i_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:47, Info CSI 000001ae [SR] Cannot repair member file [l:56{28}]"Clip_480p_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001af [SR] Cannot repair member file [l:58{29}]"Clip_1080_5sec_VC1_15mbps.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001b0 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001b1 [SR] Cannot repair member file [l:56{28}]"Clip_480_5sec_6mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001b2 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001b3 [SR] Cannot repair member file [l:20{10}]"winsat.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001b4 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001b5 [SR] Cannot repair member file [l:68{34}]"Clip_1080_5sec_MPEG2_HD_15mbps.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001b6 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001b7 [SR] Cannot repair member file [l:60{30}]"Clip_1080_5sec_10mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001b8 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001b9 [SR] Cannot repair member file [l:32{16}]"winsatencode.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001ba [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001bb [SR] Cannot repair member file [l:56{28}]"Clip_480i_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001bc [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:51, Info CSI 000001bd [SR] Cannot repair member file [l:56{28}]"Clip_480p_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 13:47:51, Info CSI 000001be [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 13:47:52, Info CSI 000001c0 [SR] Verify complete
2014-04-06 13:47:52, Info CSI 000001c1 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:47:52, Info CSI 000001c2 [SR] Beginning Verify and Repair transaction
2014-04-06 13:48:06, Info CSI 000001c5 [SR] Verify complete
2014-04-06 13:48:07, Info CSI 000001c6 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:48:07, Info CSI 000001c7 [SR] Beginning Verify and Repair transaction
2014-04-06 13:48:18, Info CSI 000001c9 [SR] Verify complete
2014-04-06 13:48:19, Info CSI 000001ca [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:48:19, Info CSI 000001cb [SR] Beginning Verify and Repair transaction
2014-04-06 13:48:23, Info CSI 000001cd [SR] Verify complete
2014-04-06 13:48:23, Info CSI 000001ce [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:48:23, Info CSI 000001cf [SR] Beginning Verify and Repair transaction
2014-04-06 13:48:30, Info CSI 000001d1 [SR] Verify complete
2014-04-06 13:48:30, Info CSI 000001d2 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:48:30, Info CSI 000001d3 [SR] Beginning Verify and Repair transaction
2014-04-06 13:48:39, Info CSI 000001d5 [SR] Verify complete
2014-04-06 13:48:39, Info CSI 000001d6 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:48:39, Info CSI 000001d7 [SR] Beginning Verify and Repair transaction
2014-04-06 13:48:50, Info CSI 000001d9 [SR] Verify complete
2014-04-06 13:48:50, Info CSI 000001da [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:48:50, Info CSI 000001db [SR] Beginning Verify and Repair transaction
2014-04-06 13:49:00, Info CSI 000001dd [SR] Verify complete
2014-04-06 13:49:01, Info CSI 000001de [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:49:01, Info CSI 000001df [SR] Beginning Verify and Repair transaction
2014-04-06 13:49:12, Info CSI 000001e1 [SR] Verify complete
2014-04-06 13:49:13, Info CSI 000001e2 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:49:13, Info CSI 000001e3 [SR] Beginning Verify and Repair transaction
2014-04-06 13:50:00, Info CSI 000001e5 [SR] Verify complete
2014-04-06 13:50:00, Info CSI 000001e6 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:50:00, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2014-04-06 13:50:51, Info CSI 000001e9 [SR] Verify complete
2014-04-06 13:50:52, Info CSI 000001ea [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:50:52, Info CSI 000001eb [SR] Beginning Verify and Repair transaction
2014-04-06 13:51:10, Info CSI 000001ed [SR] Verify complete
2014-04-06 13:51:10, Info CSI 000001ee [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:51:10, Info CSI 000001ef [SR] Beginning Verify and Repair transaction
2014-04-06 13:51:22, Info CSI 000001f1 [SR] Verify complete
2014-04-06 13:51:22, Info CSI 000001f2 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:51:22, Info CSI 000001f3 [SR] Beginning Verify and Repair transaction
2014-04-06 13:51:27, Info CSI 000001f5 [SR] Verify complete
2014-04-06 13:51:27, Info CSI 000001f6 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:51:27, Info CSI 000001f7 [SR] Beginning Verify and Repair transaction
2014-04-06 13:51:35, Info CSI 000001f9 [SR] Verify complete
2014-04-06 13:51:36, Info CSI 000001fa [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:51:36, Info CSI 000001fb [SR] Beginning Verify and Repair transaction
2014-04-06 13:51:57, Info CSI 000001fd [SR] Verify complete
2014-04-06 13:51:58, Info CSI 000001fe [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:51:58, Info CSI 000001ff [SR] Beginning Verify and Repair transaction
2014-04-06 13:52:04, Info CSI 00000201 [SR] Verify complete
2014-04-06 13:52:05, Info CSI 00000202 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:52:05, Info CSI 00000203 [SR] Beginning Verify and Repair transaction
2014-04-06 13:52:07, Info CSI 00000205 [SR] Verify complete
2014-04-06 13:52:08, Info CSI 00000206 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:52:08, Info CSI 00000207 [SR] Beginning Verify and Repair transaction
2014-04-06 13:52:16, Info CSI 0000020f [SR] Verify complete
2014-04-06 13:52:17, Info CSI 00000210 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:52:17, Info CSI 00000211 [SR] Beginning Verify and Repair transaction
2014-04-06 13:52:29, Info CSI 00000213 [SR] Verify complete
2014-04-06 13:52:29, Info CSI 00000214 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:52:29, Info CSI 00000215 [SR] Beginning Verify and Repair transaction
2014-04-06 13:52:49, Info CSI 00000217 [SR] Verify complete
2014-04-06 13:52:49, Info CSI 00000218 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:52:49, Info CSI 00000219 [SR] Beginning Verify and Repair transaction
2014-04-06 13:53:09, Info CSI 0000021b [SR] Verify complete
2014-04-06 13:53:10, Info CSI 0000021c [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:53:10, Info CSI 0000021d [SR] Beginning Verify and Repair transaction
2014-04-06 13:53:28, Info CSI 0000021f [SR] Verify complete
2014-04-06 13:53:29, Info CSI 00000220 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:53:29, Info CSI 00000221 [SR] Beginning Verify and Repair transaction
2014-04-06 13:53:49, Info CSI 00000224 [SR] Verify complete
2014-04-06 13:53:50, Info CSI 00000225 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:53:50, Info CSI 00000226 [SR] Beginning Verify and Repair transaction
2014-04-06 13:54:03, Info CSI 00000228 [SR] Verify complete
2014-04-06 13:54:03, Info CSI 00000229 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:54:03, Info CSI 0000022a [SR] Beginning Verify and Repair transaction
2014-04-06 13:54:16, Info CSI 0000022c [SR] Verify complete
2014-04-06 13:54:17, Info CSI 0000022d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:54:17, Info CSI 0000022e [SR] Beginning Verify and Repair transaction
2014-04-06 13:55:17, Info CSI 00000233 [SR] Verify complete
2014-04-06 13:55:18, Info CSI 00000234 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:55:18, Info CSI 00000235 [SR] Beginning Verify and Repair transaction
2014-04-06 13:56:01, Info CSI 0000023a [SR] Verify complete
2014-04-06 13:56:02, Info CSI 0000023b [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:56:02, Info CSI 0000023c [SR] Beginning Verify and Repair transaction
2014-04-06 13:56:22, Info CSI 0000023e [SR] Verify complete
2014-04-06 13:56:22, Info CSI 0000023f [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:56:22, Info CSI 00000240 [SR] Beginning Verify and Repair transaction
2014-04-06 13:56:47, Info CSI 0000024c [SR] Verify complete
2014-04-06 13:56:48, Info CSI 0000024d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:56:48, Info CSI 0000024e [SR] Beginning Verify and Repair transaction
2014-04-06 13:57:18, Info CSI 00000254 [SR] Verify complete
2014-04-06 13:57:18, Info CSI 00000255 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:57:18, Info CSI 00000256 [SR] Beginning Verify and Repair transaction
2014-04-06 13:57:37, Info CSI 00000258 [SR] Verify complete
2014-04-06 13:57:37, Info CSI 00000259 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:57:37, Info CSI 0000025a [SR] Beginning Verify and Repair transaction
2014-04-06 13:57:55, Info CSI 0000025e [SR] Verify complete
2014-04-06 13:57:55, Info CSI 0000025f [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:57:55, Info CSI 00000260 [SR] Beginning Verify and Repair transaction
2014-04-06 13:58:18, Info CSI 0000026d [SR] Verify complete
2014-04-06 13:58:19, Info CSI 0000026e [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:58:19, Info CSI 0000026f [SR] Beginning Verify and Repair transaction
2014-04-06 13:58:39, Info CSI 00000289 [SR] Verify complete
2014-04-06 13:58:40, Info CSI 0000028a [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:58:40, Info CSI 0000028b [SR] Beginning Verify and Repair transaction
2014-04-06 13:58:58, Info CSI 0000028d [SR] Verify complete
2014-04-06 13:58:59, Info CSI 0000028e [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:58:59, Info CSI 0000028f [SR] Beginning Verify and Repair transaction
2014-04-06 13:59:18, Info CSI 00000291 [SR] Verify complete
2014-04-06 13:59:18, Info CSI 00000292 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:59:18, Info CSI 00000293 [SR] Beginning Verify and Repair transaction
2014-04-06 13:59:29, Info CSI 00000295 [SR] Verify complete
2014-04-06 13:59:30, Info CSI 00000296 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:59:30, Info CSI 00000297 [SR] Beginning Verify and Repair transaction
2014-04-06 13:59:40, Info CSI 000002a5 [SR] Verify complete
2014-04-06 13:59:41, Info CSI 000002a6 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 13:59:41, Info CSI 000002a7 [SR] Beginning Verify and Repair transaction
2014-04-06 14:00:09, Info CSI 000002a9 [SR] Verify complete
2014-04-06 14:00:10, Info CSI 000002aa [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:00:10, Info CSI 000002ab [SR] Beginning Verify and Repair transaction
2014-04-06 14:00:31, Info CSI 000002b9 [SR] Verify complete
2014-04-06 14:00:32, Info CSI 000002ba [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:00:32, Info CSI 000002bb [SR] Beginning Verify and Repair transaction
2014-04-06 14:00:39, Info CSI 000002bd [SR] Verify complete
2014-04-06 14:00:40, Info CSI 000002be [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:00:40, Info CSI 000002bf [SR] Beginning Verify and Repair transaction
2014-04-06 14:01:05, Info CSI 000002c1 [SR] Verify complete
2014-04-06 14:01:06, Info CSI 000002c2 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:01:06, Info CSI 000002c3 [SR] Beginning Verify and Repair transaction
2014-04-06 14:01:34, Info CSI 000002c6 [SR] Verify complete
2014-04-06 14:01:34, Info CSI 000002c7 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:01:34, Info CSI 000002c8 [SR] Beginning Verify and Repair transaction
2014-04-06 14:01:44, Info CSI 000002ca [SR] Verify complete
2014-04-06 14:01:44, Info CSI 000002cb [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:01:44, Info CSI 000002cc [SR] Beginning Verify and Repair transaction
2014-04-06 14:02:09, Info CSI 000002ce [SR] Verify complete
2014-04-06 14:02:09, Info CSI 000002cf [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:02:09, Info CSI 000002d0 [SR] Beginning Verify and Repair transaction
2014-04-06 14:02:27, Info CSI 000002d2 [SR] Verify complete
2014-04-06 14:02:28, Info CSI 000002d3 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:02:28, Info CSI 000002d4 [SR] Beginning Verify and Repair transaction
2014-04-06 14:02:49, Info CSI 000002e0 [SR] Verify complete
2014-04-06 14:02:50, Info CSI 000002e1 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:02:50, Info CSI 000002e2 [SR] Beginning Verify and Repair transaction
2014-04-06 14:03:08, Info CSI 000002f2 [SR] Verify complete
2014-04-06 14:03:09, Info CSI 000002f3 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:03:09, Info CSI 000002f4 [SR] Beginning Verify and Repair transaction
2014-04-06 14:03:51, Info CSI 000002f6 [SR] Verify complete
2014-04-06 14:03:52, Info CSI 000002f7 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:03:52, Info CSI 000002f8 [SR] Beginning Verify and Repair transaction
2014-04-06 14:04:09, Info CSI 000002fa [SR] Verify complete
2014-04-06 14:04:09, Info CSI 000002fb [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:04:09, Info CSI 000002fc [SR] Beginning Verify and Repair transaction
2014-04-06 14:04:25, Info CSI 000002fe [SR] Verify complete
2014-04-06 14:04:25, Info CSI 000002ff [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:04:25, Info CSI 00000300 [SR] Beginning Verify and Repair transaction
2014-04-06 14:04:38, Info CSI 00000304 [SR] Verify complete
2014-04-06 14:04:39, Info CSI 00000305 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:04:39, Info CSI 00000306 [SR] Beginning Verify and Repair transaction
2014-04-06 14:04:57, Info CSI 00000308 [SR] Verify complete
2014-04-06 14:04:57, Info CSI 00000309 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:04:57, Info CSI 0000030a [SR] Beginning Verify and Repair transaction
2014-04-06 14:05:19, Info CSI 0000030c [SR] Verify complete
2014-04-06 14:05:20, Info CSI 0000030d [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:05:20, Info CSI 0000030e [SR] Beginning Verify and Repair transaction
2014-04-06 14:05:33, Info CSI 00000310 [SR] Verify complete
2014-04-06 14:05:33, Info CSI 00000311 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:05:33, Info CSI 00000312 [SR] Beginning Verify and Repair transaction
2014-04-06 14:06:10, Info CSI 00000315 [SR] Verify complete
2014-04-06 14:06:11, Info CSI 00000316 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:06:11, Info CSI 00000317 [SR] Beginning Verify and Repair transaction
2014-04-06 14:06:27, Info CSI 00000319 [SR] Verify complete
2014-04-06 14:06:27, Info CSI 0000031a [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:06:27, Info CSI 0000031b [SR] Beginning Verify and Repair transaction
2014-04-06 14:06:52, Info CSI 0000031d [SR] Verify complete
2014-04-06 14:06:57, Info CSI 0000031e [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:06:57, Info CSI 0000031f [SR] Beginning Verify and Repair transaction
2014-04-06 14:07:47, Info CSI 00000322 [SR] Verify complete
2014-04-06 14:07:49, Info CSI 00000323 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:07:49, Info CSI 00000324 [SR] Beginning Verify and Repair transaction
2014-04-06 14:08:12, Info CSI 00000326 [SR] Verify complete
2014-04-06 14:08:12, Info CSI 00000327 [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:08:12, Info CSI 00000328 [SR] Beginning Verify and Repair transaction
2014-04-06 14:08:27, Info CSI 0000032a [SR] Verify complete
2014-04-06 14:08:28, Info CSI 0000032b [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:08:28, Info CSI 0000032c [SR] Beginning Verify and Repair transaction
2014-04-06 14:08:41, Info CSI 0000032e [SR] Verify complete
2014-04-06 14:08:42, Info CSI 0000032f [SR] Verifying 100 (0x0000000000000064) components
2014-04-06 14:08:42, Info CSI 00000330 [SR] Beginning Verify and Repair transaction
2014-04-06 14:08:55, Info CSI 00000332 [SR] Verify complete
2014-04-06 14:08:55, Info CSI 00000333 [SR] Verifying 66 (0x0000000000000042) components
2014-04-06 14:08:55, Info CSI 00000334 [SR] Beginning Verify and Repair transaction
2014-04-06 14:09:02, Info CSI 00000336 [SR] Verify complete
2014-04-06 14:09:02, Info CSI 00000337 [SR] Repairing 4 components
2014-04-06 14:09:02, Info CSI 00000338 [SR] Beginning Verify and Repair transaction
2014-04-06 14:09:02, Info CSI 00000339 [SR] Cannot repair member file [l:22{11}]"Kalimba.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000033a [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000033b [SR] Cannot repair member file [l:58{29}]"Maid with the Flaxen Hair.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000033c [SR] Cannot repair member file [l:28{14}]"Sleep Away.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000033d [SR] Cannot repair member file [l:18{9}]"Koala.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000033e [SR] Cannot repair member file [l:26{13}]"Jellyfish.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000033f [SR] Cannot repair member file [l:26{13}]"SampleRes.dll" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000340 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000341 [SR] Cannot repair member file [l:20{10}]"Desert.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000342 [SR] Cannot repair member file [l:28{14}]"Lighthouse.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000343 [SR] Cannot repair member file [l:20{10}]"Tulips.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000344 [SR] Cannot repair member file [l:34{17}]"Chrysanthemum.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000345 [SR] Cannot repair member file [l:28{14}]"Hydrangeas.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000346 [SR] Cannot repair member file [l:24{12}]"Penguins.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000347 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000348 [SR] Cannot repair member file [l:24{12}]"Wildlife.wmv" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000349 [SR] Cannot repair member file [l:58{29}]"Clip_1080_5sec_VC1_15mbps.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000034a [SR] Cannot repair member file [l:56{28}]"Clip_480_5sec_6mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000034b [SR] Cannot repair member file [l:20{10}]"winsat.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000034c [SR] Cannot repair member file [l:68{34}]"Clip_1080_5sec_MPEG2_HD_15mbps.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000034d [SR] Cannot repair member file [l:60{30}]"Clip_1080_5sec_10mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000034e [SR] Cannot repair member file [l:32{16}]"winsatencode.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000034f [SR] Cannot repair member file [l:56{28}]"Clip_480i_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000350 [SR] Cannot repair member file [l:56{28}]"Clip_480p_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000351 [SR] Cannot repair member file [l:58{29}]"Clip_1080_5sec_VC1_15mbps.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000352 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 00000353 [SR] Cannot repair member file [l:56{28}]"Clip_480_5sec_6mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000354 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 00000355 [SR] Cannot repair member file [l:20{10}]"winsat.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000356 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 00000357 [SR] Cannot repair member file [l:68{34}]"Clip_1080_5sec_MPEG2_HD_15mbps.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000358 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 00000359 [SR] Cannot repair member file [l:60{30}]"Clip_1080_5sec_10mbps_h264.mp4" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000035a [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 0000035b [SR] Cannot repair member file [l:32{16}]"winsatencode.wmv" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000035c [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 0000035d [SR] Cannot repair member file [l:56{28}]"Clip_480i_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 0000035e [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:02, Info CSI 0000035f [SR] Cannot repair member file [l:56{28}]"Clip_480p_5sec_6mbps_new.mpg" of Microsoft-Windows-WinSATMediaSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:02, Info CSI 00000360 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:03, Info CSI 00000361 [SR] Cannot repair member file [l:22{11}]"Kalimba.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000362 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:03, Info CSI 00000363 [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000364 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:03, Info CSI 00000365 [SR] Cannot repair member file [l:58{29}]"Maid with the Flaxen Hair.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000366 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:03, Info CSI 00000367 [SR] Cannot repair member file [l:28{14}]"Sleep Away.mp3" of Microsoft-Windows-MusicSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000368 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:03, Info CSI 00000369 [SR] Cannot repair member file [l:18{9}]"Koala.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 0000036a [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 0000036b [SR] Cannot repair member file [l:26{13}]"Jellyfish.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 0000036c [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 0000036d [SR] Cannot repair member file [l:26{13}]"SampleRes.dll" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 0000036e [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 0000036f [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000370 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 00000371 [SR] Cannot repair member file [l:20{10}]"Desert.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000372 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 00000373 [SR] Cannot repair member file [l:28{14}]"Lighthouse.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000374 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 00000375 [SR] Cannot repair member file [l:20{10}]"Tulips.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000376 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 00000377 [SR] Cannot repair member file [l:34{17}]"Chrysanthemum.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 00000378 [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 00000379 [SR] Cannot repair member file [l:28{14}]"Hydrangeas.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 0000037a [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:03, Info CSI 0000037b [SR] Cannot repair member file [l:24{12}]"Penguins.jpg" of Microsoft-Windows-PhotoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:03, Info CSI 0000037c [SR] This component was referenced by [l:242{121}]"Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.Microsoft-Windows-Client-Features-Update"
2014-04-06 14:09:04, Info CSI 0000037d [SR] Cannot repair member file [l:22{11}]"desktop.ini" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:04, Info CSI 0000037e [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:04, Info CSI 0000037f [SR] Cannot repair member file [l:24{12}]"Wildlife.wmv" of Microsoft-Windows-VideoSamples, Version = 6.1.7600.16385, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2014-04-06 14:09:04, Info CSI 00000380 [SR] This component was referenced by [l:194{97}]"Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.1.7601.17514.MusicSamples"
2014-04-06 14:09:04, Info CSI 00000382 [SR] Repair complete
2014-04-06 14:09:04, Info CSI 00000383 [SR] Committing transaction
2014-04-06 14:09:04, Info CSI 00000387 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users