Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

windows 7 free space keeps shrinking


  • Please log in to reply

#16
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

alright .. thank you :)

 

so here is the FRST Report

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2018
Ran by NEW LAP (administrator) on NEWLAP-PC (26-03-2018 22:33:12)
Running from C:\Users\NEW LAP\Desktop
Loaded Profiles: NEW LAP (Available Profiles: NEW LAP)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
( ) C:\Windows\System32\lmabcoms.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
( ) C:\Program Files\Lexmark\ErrorApp\lmab1err.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Software 2000 Limited) C:\Windows\System32\spool\drivers\x64\3\HP1006MC.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Seifert) C:\Program Files (x86)\WinDirStat\windirstat.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2480936 2010-12-17] (Synaptics Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-06] (AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [286272 2016-01-27] (RealNetworks, Inc.)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [590400 2015-05-16] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [HPUsageTracking] => C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe "C:\Program Files (x86)\HP\HP UT\"
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\RunOnce: [SBrowserCheck] => C:\ProgramData\Avast Software\Avast\SecureBrowser\avast_browser_setup_checker.exe [2482128 2018-03-01] ()
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\...\Run: [LMab1err] => C:\Program Files\Lexmark\ErrorApp\LMab1err.exe [582312 2010-03-26] ( )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2016-01-27]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{19CB2762-27D3-4551-8997-E7E0190F0B3D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4046C0C9-D98E-480D-9230-5B3B65EFD33F}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-09-28] (Internet Download Manager, Tonec Inc.)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2018-01-06] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-01-06] (AVAST Software)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2018-01-06] (Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-09-28] (Internet Download Manager, Tonec Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-01-19] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-01-06] (AVAST Software)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default [2018-03-26]
FF Extension: (Flash Video Downloader) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\[email protected] [2018-03-26]
FF Extension: (YouTube Video and Audio Downloader) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\[email protected] [2016-08-20] [Legacy]
FF Extension: (Avast SafePrice) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\[email protected] [2018-03-25]
FF Extension: (Avast Online Security) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\[email protected] [2018-01-06]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\[email protected] [2018-03-23]
FF Extension: (Video DownloadHelper) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-03-24]
FF Extension: (آدبلوك بلس) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-03-24]
FF Extension: (Block site) - C:\Users\NEW LAP\AppData\Roaming\Mozilla\Firefox\Profiles\ylqbpwkw.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}.xpi [2018-03-24]
FF HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2015-11-09] [Legacy]
FF HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Users\NEW LAP\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\NEW LAP\AppData\Roaming\IDM\idmmzcc5 [2018-03-23] [Legacy] [not signed]
FF HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\...\SeaMonkey\Extensions: [[email protected]] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2018-01-06] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2018-01-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2018-01-06] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2018-01-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1231201.dll [2017-11-02] (Adobe Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.0.0.112 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2016-01-27] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.0.0.112 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-01-27] (RealTimes)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-11] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-12] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: homtherckersopyzaqige
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-11-09]
CHR HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-11-09]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-06] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-06] (AVAST Software)
R2 lmab_device; C:\Windows\system32\LMabcoms.exe [1048576 2012-09-28] ( ) [File not signed]
R2 lmab_device; C:\Windows\SysWOW64\LMabcoms.exe [593920 2012-09-28] ( ) [File not signed]
R2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1115224 2016-01-27] (RealNetworks, Inc.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2012-01-19] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2018-01-06] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2018-01-06] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2018-01-06] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2018-01-06] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2018-01-06] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2018-01-06] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-01-06] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-10] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2018-01-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2018-01-06] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2018-01-06] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-10] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2018-01-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2018-01-06] (AVAST Software)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2018-01-10] (Enigma Software Group USA, LLC.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-08-28] (REALiX™)
S3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [520192 2010-12-14] (IDT, Inc.) [File not signed]
S1 MpKslb4bb97b5; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F09347C3-6881-4727-A1C9-D6E757F57DB1}\MpKslb4bb97b5.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-26 14:52 - 2018-03-26 14:52 - 000000000 ___SD C:\ComboFix
2018-03-25 21:53 - 2018-03-25 21:53 - 000001035 _____ C:\Users\NEW LAP\Desktop\WinDirStat.lnk
2018-03-25 21:53 - 2018-03-25 21:53 - 000000000 ____D C:\Users\NEW LAP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2018-03-25 21:53 - 2018-03-25 21:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2018-03-25 21:53 - 2018-03-25 21:53 - 000000000 ____D C:\Program Files (x86)\WinDirStat
2018-03-23 04:21 - 2018-03-23 04:21 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-03-23 04:17 - 2018-03-23 04:18 - 000006518 _____ C:\Users\NEW LAP\Desktop\Fixlog.txt
2018-03-23 04:13 - 2018-03-23 04:13 - 000017405 _____ C:\ComboFix.txt
2018-03-23 03:47 - 2018-03-23 03:47 - 000000000 ____D C:\$AV_ASW
2018-03-20 22:44 - 2018-03-20 22:47 - 000030818 _____ C:\Users\NEW LAP\Desktop\Addition.txt
2018-03-20 22:43 - 2018-03-26 22:33 - 000015722 _____ C:\Users\NEW LAP\Desktop\FRST.txt
2018-03-20 22:41 - 2018-03-26 22:33 - 000000000 ____D C:\FRST
2018-03-20 22:41 - 2018-03-20 22:41 - 000000182 _____ C:\Users\NEW LAP\Desktop\turkish.txt
2018-03-20 22:09 - 2018-03-20 22:10 - 002403328 _____ (Farbar) C:\Users\NEW LAP\Desktop\FRST64.exe
2018-03-19 03:02 - 2018-03-19 03:02 - 000003143 _____ C:\Users\NEW LAP\Desktop\ZHPFixReport.txt
2018-03-19 03:01 - 2018-03-19 03:01 - 000003257 _____ C:\Users\NEW LAP\Desktop\fix 2.txt
2018-03-19 02:20 - 2018-03-19 02:21 - 000090218 _____ C:\Users\NEW LAP\Desktop\ZHPDiag.txt
2018-03-19 01:18 - 2018-03-26 14:52 - 000000000 ____D C:\Qoobox
2018-03-19 01:17 - 2018-03-26 14:52 - 000000000 ____D C:\Windows\erdnt
2018-03-18 13:10 - 2018-03-18 13:10 - 000001002 _____ C:\Users\Public\Desktop\MBRCheck.lnk
2018-03-18 13:10 - 2018-03-18 13:10 - 000000995 _____ C:\Users\Public\Desktop\ZHPDiag.lnk
2018-03-18 13:10 - 2018-03-18 13:10 - 000000990 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2018-03-18 12:56 - 2018-03-18 12:56 - 000346130 _____ C:\Users\NEW LAP\Desktop\zhp
2018-03-18 12:42 - 2018-03-18 12:42 - 000020832 _____ C:\Users\NEW LAP\Desktop\ZHPCleaner.html
2018-03-18 12:42 - 2018-03-18 12:42 - 000003343 _____ C:\Users\NEW LAP\Desktop\ZHPCleaner.txt
2018-03-15 00:41 - 2018-03-19 01:44 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2018-03-15 00:40 - 2018-03-18 12:42 - 000000000 ____D C:\Users\NEW LAP\AppData\Roaming\ZHP
2018-03-15 00:40 - 2018-03-15 00:40 - 000000000 ____D C:\Users\NEW LAP\AppData\Local\ZHP
2018-03-15 00:39 - 2018-03-18 12:32 - 000000000 ____D C:\ProgramData\RogueKiller
2018-03-04 22:41 - 2018-03-12 00:25 - 000000000 ____D C:\Users\NEW LAP\Desktop\Coloring Materials

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-26 22:31 - 2017-04-05 21:38 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-03-26 22:28 - 2009-07-14 07:13 - 000781298 _____ C:\Windows\system32\PerfStringBackup.INI
2018-03-26 22:28 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-03-26 18:31 - 2018-01-08 23:41 - 000000463 _____ C:\Users\NEW LAP\Desktop\MOVIES SAVE.txt
2018-03-26 14:52 - 2016-01-27 17:23 - 000000000 ____D C:\Users\NEW LAP\AppData\Roaming\DMCache
2018-03-25 00:24 - 2016-01-27 17:26 - 000001945 _____ C:\Windows\epplauncher.mif
2018-03-24 23:51 - 2016-01-30 08:21 - 000000000 ____D C:\Users\NEW LAP\AppData\Local\CrashDumps
2018-03-23 04:29 - 2009-07-14 06:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-03-23 04:29 - 2009-07-14 06:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-03-23 04:23 - 2018-02-09 20:20 - 000000000 ____D C:\Users\NEW LAP\AppData\LocalLow\Mozilla
2018-03-23 04:21 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-03-23 04:18 - 2016-02-05 01:37 - 000000000 ____D C:\Users\NEW LAP\AppData\LocalLow\Temp
2018-03-23 04:00 - 2009-07-14 04:34 - 000000215 _____ C:\Windows\system.ini
2018-03-23 03:39 - 2016-01-27 17:13 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-23 03:39 - 2016-01-27 17:13 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-03-19 13:03 - 2016-01-27 17:23 - 000000000 ____D C:\Users\NEW LAP\AppData\Roaming\IDM
2018-03-19 03:09 - 2018-01-06 17:52 - 000000000 ____D C:\Program Files (x86)\UnHackMe
2018-03-19 03:03 - 2018-01-06 21:46 - 000000246 _____ C:\Windows\SysWOW64\PARTIZAN.TXT
2018-03-19 03:02 - 2018-01-10 23:54 - 000000000 ____D C:\ZHP
2018-03-19 02:21 - 2018-01-10 23:54 - 000000000 ____D C:\Program Files (x86)\ZHPDiag
2018-03-18 13:10 - 2018-01-10 23:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2018-03-15 00:14 - 2016-01-27 17:23 - 000000000 ____D C:\Users\NEW LAP\Downloads\Compressed
2018-03-10 01:41 - 2018-01-06 17:53 - 000000000 ____D C:\Users\NEW LAP\Documents\RegRun2
2018-02-28 17:29 - 2017-06-23 01:16 - 000000000 ____D C:\Users\NEW LAP\Desktop\Print
2018-02-28 15:50 - 2016-06-18 00:33 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-28 15:49 - 2016-06-18 00:34 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-19 01:03

==================== End of FRST.txt ============================


  • 0

Advertisements


#17
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

& here is the addition report

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by NEW LAP (26-03-2018 22:34:16)
Running from C:\Users\NEW LAP\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-01-24 19:48:37)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3427846102-3826013632-1412583081-500 - Administrator - Disabled)
Guest (S-1-5-21-3427846102-3826013632-1412583081-501 - Limited - Disabled)
NEW LAP (S-1-5-21-3427846102-3826013632-1412583081-1000 - Administrator - Enabled) => C:\Users\NEW LAP

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 28 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 28.0.0.126 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.120 - Atheros)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.9.2322 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 4.13 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
COWON Media Center - jetAudio Basic VX (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.0.17 - COWON)
FormatFactory 3.7.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.0.0 - Format Factory)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.6.5260 - Gretech Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3377.1 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
HP LaserJet P1000 series (HKLM-x32\...\HP LaserJet P1000 series) (Version:  - )
hppMSRedist (HKLM-x32\...\{58ECE031-9AAD-4011-B34A-BC78E77527E2}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
hppusgP1000 (HKLM-x32\...\{F1AC923B-2A52-4C5D-8011-5FC83CD58CF4}) (Version: 1.1.0.1 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6315.0 - IDT)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2253 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
K-Lite Mega Codec Pack 11.3.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.3.0 - )
Lexmark Software Uninstall (HKLM\...\Lexmark_HostCD) (Version:  - Lexmark International, Inc.)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft DirectX SDK (August 2009) (HKLM-x32\...\Microsoft DirectX SDK (August 2009)) (Version: 9.27.1734.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mozilla Firefox 58.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 58.0.1 (x64 en-US)) (Version: 58.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.1 - Mozilla)
Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - )
RealDownloader (HKLM-x32\...\{12FA7D28-CF8C-498B-BC4A-E654B44546EF}) (Version: 18.0.0.113 - RealNetworks) Hidden
RealDownloader (HKLM-x32\...\{e1f55556-ee3b-4059-961f-390ab7191c03}) (Version: 18.0.0.113 - RealNetworks) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM-x32\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM\...\{21E47F47-C9A7-4454-BA48-388327B0EA00}) (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM-x32\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.26.902.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7600.69 - Realtek Semiconductor Corp.)
RealTimes (RealPlayer) (HKLM-x32\...\RealPlayer 18.0) (Version: 18.0.0 - RealNetworks)
RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.4.4 - Synaptics Incorporated)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.6.0.87 - KMP Media co., Ltd)
VEGAS Pro 13.0 (64-bit) (HKLM\...\{01584040-68BC-11E6-A59F-BB95F5A309BD}) (Version: 13.0.543 - VEGAS)
VLC media player 2.0.6 (HKLM-x32\...\VLC media player) (Version: 2.0.6 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.64  - Nullsoft, Inc)
WinDirStat 1.1.2 (HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\...\WinDirStat) (Version:  - )
WinRAR 5.00 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.3 - win.rar GmbH)
ZHPDiag 1.34 (HKLM-x32\...\ZHPDiag_is1) (Version: 1.34 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [   IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-06] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-06] (AVAST Software)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2012-01-19] (Atheros Commnucations)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-06] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-05-09] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-05-09] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-06] (AVAST Software)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2012-01-19] (Atheros Commnucations)
ContextMenuHandlers3: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2011-06-15] (JetAudio)
ContextMenuHandlers3-x32: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcontextmenu.dll [2016-01-27] (RealNetworks, Inc.)
ContextMenuHandlers4: [Convert] -> {9f95ca1a-e80e-4c0f-acd1-4c9b7900b982} => C:\Program Files (x86)\Microsoft DirectX SDK (August 2009)\Utilities\bin\x64\TxView.dll [2009-09-05] (Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2010-12-08] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-01-06] (AVAST Software)
ContextMenuHandlers6: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2011-06-15] (JetAudio)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-05-09] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-05-09] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {47BBEB44-4B90-47FB-BC47-7625351B7D4A} - System32\Tasks\SafeZone scheduled Autoupdate 1463152479 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {4C39EC17-183F-44C2-8821-DAA4731E19E5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-27] (Google Inc.)
Task: {60739CBC-30E6-41FE-A11B-852B11744E5B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-06] (Adobe Systems Incorporated)
Task: {77224D93-F7C0-4487-9402-55E540100B54} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-01-06] (AVAST Software)
Task: {8211591F-4ED4-4219-ABB4-19E2643AAB32} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-04-17] (Piriform Ltd)
Task: {8929F8DF-38C1-4619-8382-ECE7F9B06531} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-01-09] (AVAST Software)
Task: {97C451C9-48F6-46F0-A64B-CC6E3C3202D5} - System32\Tasks\{89AA9D28-A72E-4D1D-A03B-436CD87CB3ED} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Real\RealPlayer\Update\r1puninst.exe" -c RealNetworks|RealPlayer|18.0
Task: {E1ABB20E-3E6F-4F80-B25E-41CB2035BE77} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\NEW LAP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\92d2f8b051c7ee8f\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=homtherckersopyzaqige

==================== Loaded Modules (Whitelisted) ==============

2018-01-06 22:24 - 2018-01-06 22:24 - 000067920 _____ () c:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000067984 _____ () C:\Program Files\AVAST Software\Avast\x64\dll_loader.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000236840 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000902824 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000349568 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000337096 _____ () C:\Program Files\AVAST Software\Avast\x64\tasks_core.dll
2014-06-06 01:46 - 2010-12-08 20:55 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000058016 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000057504 _____ () C:\Program Files\AVAST Software\Avast\dll_loader.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000206152 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000289272 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000196248 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll
2018-03-23 03:14 - 2018-03-23 03:14 - 005803152 _____ () C:\Program Files\AVAST Software\Avast\defs\18032206\algo.dll
2018-01-06 22:24 - 2018-01-06 22:24 - 000745408 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000148936 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000293944 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-03-26 14:47 - 2018-03-26 14:47 - 005807760 _____ () C:\Program Files\AVAST Software\Avast\defs\18032600\algo.dll
2017-07-09 19:57 - 2017-07-09 19:57 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-01-06 22:23 - 2018-01-06 22:23 - 000282560 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2016-01-24 21:59 - 2016-01-24 21:59 - 000169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\b7e68f030ebaf8e1ace1bed4b7d5dfec\IsdiInterop.ni.dll
2016-01-24 21:59 - 2010-09-14 04:28 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-03-19 03:09 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3427846102-3826013632-1412583081-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\NEW LAP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{3F604C8E-3239-48C9-8AFE-BF3A2EF0F262}C:\program files (x86)\formatfactory\ffmodules\package\pfinstonline.exe] => (Block) C:\program files (x86)\formatfactory\ffmodules\package\pfinstonline.exe
FirewallRules: [UDP Query User{044BE900-55F6-47FA-B975-4F66463A606E}C:\program files (x86)\formatfactory\ffmodules\package\pfinstonline.exe] => (Block) C:\program files (x86)\formatfactory\ffmodules\package\pfinstonline.exe
FirewallRules: [TCP Query User{535D1762-B121-4513-98DC-108DFBEA919A}C:\program files (x86)\microsoft directx sdk (august 2009)\utilities\bin\x86\audconsole3.exe] => (Block) C:\program files (x86)\microsoft directx sdk (august 2009)\utilities\bin\x86\audconsole3.exe
FirewallRules: [UDP Query User{675A573B-8AA0-4818-B339-4F463EC5AF97}C:\program files (x86)\microsoft directx sdk (august 2009)\utilities\bin\x86\audconsole3.exe] => (Block) C:\program files (x86)\microsoft directx sdk (august 2009)\utilities\bin\x86\audconsole3.exe
FirewallRules: [{BE0C1881-E71B-494C-B71B-B45E623FFEA2}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{8FBC27DC-ECA6-4F88-8AD4-3BBD642CA58D}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{63806B1E-53D0-4DA3-900C-FCDBADC30757}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5399F211-2837-43A3-958D-B6D216B6BC32}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{45549BEC-17CE-4FFD-B4D7-57E0D23EF7CC}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{94403E39-2B61-4F2E-A7D1-B0CFCE7CC132}] => (Allow) C:\Windows\system32\lmabcoms.exe
FirewallRules: [{93B9A143-3823-4D0D-8826-8192D48EE24B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

26-03-2018 15:26:06 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

Name: MpKslb4bb97b5
Description: MpKslb4bb97b5
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKslb4bb97b5
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/26/2018 03:21:02 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "c:\program files (x86)\formatfactory\ffmodules\Package\Ask\AskPIP_FF_.exe".Error in manifest or policy file "" on line .
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (03/24/2018 11:51:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: swscale-ics-3.dll, version: 3.1.101.0, time stamp: 0x05000005
Exception code: 0xc0000005
Fault offset: 0x000000000005532b
Faulting process id: 0xb2c
Faulting application start time: 0x01d3c3ba37cacd0c
Faulting application path: C:\Windows\system32\DllHost.exe
Faulting module path: C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\swscale-ics-3.dll
Report Id: 779fc62f-2fad-11e8-83f2-74de2b186151

Error: (03/24/2018 03:03:29 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (03/24/2018 03:03:28 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (03/23/2018 09:13:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: swscale-ics-3.dll, version: 3.1.101.0, time stamp: 0x05000005
Exception code: 0xc0000005
Fault offset: 0x000000000005532b
Faulting process id: 0x194c
Faulting application start time: 0x01d3c2db14d71606
Faulting application path: C:\Windows\system32\DllHost.exe
Faulting module path: C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\swscale-ics-3.dll
Report Id: 55d1a354-2ece-11e8-83f2-74de2b186151

Error: (03/23/2018 09:08:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: swscale-ics-3.dll, version: 3.1.101.0, time stamp: 0x05000005
Exception code: 0xc0000005
Fault offset: 0x000000000005532b
Faulting process id: 0x10fc
Faulting application start time: 0x01d3c2da45784f89
Faulting application path: C:\Windows\system32\DllHost.exe
Faulting module path: C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\swscale-ics-3.dll
Report Id: 85deda29-2ecd-11e8-83f2-74de2b186151

Error: (03/23/2018 09:07:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: swscale-ics-3.dll, version: 3.1.101.0, time stamp: 0x05000005
Exception code: 0xc0000005
Fault offset: 0x000000000005532b
Faulting process id: 0x12f8
Faulting application start time: 0x01d3c2da25488d95
Faulting application path: C:\Windows\system32\DllHost.exe
Faulting module path: C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\swscale-ics-3.dll
Report Id: 690bb104-2ecd-11e8-83f2-74de2b186151

Error: (03/23/2018 06:46:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: swscale-ics-3.dll, version: 3.1.101.0, time stamp: 0x05000005
Exception code: 0xc0000005
Fault offset: 0x000000000005532b
Faulting process id: 0x18c0
Faulting application start time: 0x01d3c2c6800baf05
Faulting application path: C:\Windows\system32\DllHost.exe
Faulting module path: C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\swscale-ics-3.dll
Report Id: c1eca4c8-2eb9-11e8-83f2-74de2b186151


System errors:
=============
Error: (03/26/2018 10:24:53 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (03/26/2018 05:46:15 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (03/26/2018 04:46:14 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (03/26/2018 03:46:12 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (03/26/2018 02:46:10 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (03/25/2018 10:47:51 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (03/25/2018 10:41:04 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (03/25/2018 10:38:02 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.


CodeIntegrity:
===================================

Date: 2018-03-19 03:02:13.958
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.958
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.895
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.895
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.536
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.536
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.474
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-03-19 03:02:13.474
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\NEWLAP~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel® Core™ i3 CPU M 370 @ 2.40GHz
Percentage of memory in use: 66%
Total physical RAM: 3893.86 MB
Available physical RAM: 1304.62 MB
Total Virtual: 7785.9 MB
Available Virtual: 4176.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:37.01 GB) (Free:0.76 GB) NTFS
Drive d: () (Fixed) (Total:260.98 GB) (Free:25.28 GB) NTFS

\\?\Volume{6a69713c-c2d2-11e5-8efc-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 61FF3A35)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=37 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=261 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


  • 0

#18
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
Hello,

Sorry for delay

Lets check the System files

To do that
  • Open an elevated command prompt by right clicking on the command prompt and choosing Run as administrator.
  • In the elevated command prompt, type sfc /scannow and press Enter. Please note the space between sfc /
  • This may take a little bit of time to finish so your patience will be needed.
  • If there are no problems found System File Checker will say,
    "Windows resource protection did not find any integrity violations"

    If System file checker fails or can't fix a file reboot and run it again do this 3 times. If it continues to fail or can't fix a file follow the instructions below:

    When the scan is complete, open another elevated command prompt and copy and paste the following command, then press Enter.
    findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfcdetails.txt"

    This will place a sfcdetails.txt file on your desktop with only the SFC scan result details from the CBS.LOG in it.
    Please copy and paste the results in your next reply.

  • 0

#19
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

2018-03-28 18:11:35, Info                  CSI    00000009 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:11:35, Info                  CSI    0000000a [SR] Beginning Verify and Repair transaction
2018-03-28 18:11:40, Info                  CSI    0000000c [SR] Verify complete
2018-03-28 18:11:41, Info                  CSI    0000000d [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:11:41, Info                  CSI    0000000e [SR] Beginning Verify and Repair transaction
2018-03-28 18:11:47, Info                  CSI    00000010 [SR] Verify complete
2018-03-28 18:11:48, Info                  CSI    00000011 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:11:48, Info                  CSI    00000012 [SR] Beginning Verify and Repair transaction
2018-03-28 18:11:57, Info                  CSI    00000014 [SR] Verify complete
2018-03-28 18:11:57, Info                  CSI    00000015 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:11:57, Info                  CSI    00000016 [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:03, Info                  CSI    00000018 [SR] Verify complete
2018-03-28 18:12:03, Info                  CSI    00000019 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:03, Info                  CSI    0000001a [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:08, Info                  CSI    0000001c [SR] Verify complete
2018-03-28 18:12:08, Info                  CSI    0000001d [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:08, Info                  CSI    0000001e [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:12, Info                  CSI    00000020 [SR] Verify complete
2018-03-28 18:12:13, Info                  CSI    00000021 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:13, Info                  CSI    00000022 [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:19, Info                  CSI    00000025 [SR] Verify complete
2018-03-28 18:12:20, Info                  CSI    00000026 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:20, Info                  CSI    00000027 [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:27, Info                  CSI    0000002b [SR] Verify complete
2018-03-28 18:12:28, Info                  CSI    0000002c [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:28, Info                  CSI    0000002d [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:33, Info                  CSI    00000031 [SR] Verify complete
2018-03-28 18:12:33, Info                  CSI    00000032 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:33, Info                  CSI    00000033 [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:38, Info                  CSI    00000035 [SR] Verify complete
2018-03-28 18:12:38, Info                  CSI    00000036 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:38, Info                  CSI    00000037 [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:45, Info                  CSI    00000041 [SR] Verify complete
2018-03-28 18:12:46, Info                  CSI    00000042 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:46, Info                  CSI    00000043 [SR] Beginning Verify and Repair transaction
2018-03-28 18:12:55, Info                  CSI    00000060 [SR] Verify complete
2018-03-28 18:12:55, Info                  CSI    00000061 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:12:55, Info                  CSI    00000062 [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:02, Info                  CSI    00000064 [SR] Verify complete
2018-03-28 18:13:02, Info                  CSI    00000065 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:02, Info                  CSI    00000066 [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:08, Info                  CSI    00000068 [SR] Verify complete
2018-03-28 18:13:08, Info                  CSI    00000069 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:08, Info                  CSI    0000006a [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:14, Info                  CSI    0000006c [SR] Verify complete
2018-03-28 18:13:15, Info                  CSI    0000006d [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:15, Info                  CSI    0000006e [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:20, Info                  CSI    00000070 [SR] Verify complete
2018-03-28 18:13:21, Info                  CSI    00000071 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:21, Info                  CSI    00000072 [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:30, Info                  CSI    00000074 [SR] Verify complete
2018-03-28 18:13:30, Info                  CSI    00000075 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:30, Info                  CSI    00000076 [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:41, Info                  CSI    00000099 [SR] Verify complete
2018-03-28 18:13:41, Info                  CSI    0000009a [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:41, Info                  CSI    0000009b [SR] Beginning Verify and Repair transaction
2018-03-28 18:13:50, Info                  CSI    0000009d [SR] Verify complete
2018-03-28 18:13:50, Info                  CSI    0000009e [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:13:50, Info                  CSI    0000009f [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:03, Info                  CSI    000000a1 [SR] Verify complete
2018-03-28 18:14:03, Info                  CSI    000000a2 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:03, Info                  CSI    000000a3 [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:12, Info                  CSI    000000a7 [SR] Verify complete
2018-03-28 18:14:12, Info                  CSI    000000a8 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:12, Info                  CSI    000000a9 [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:15, Info                  CSI    000000ab [SR] Verify complete
2018-03-28 18:14:15, Info                  CSI    000000ac [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:15, Info                  CSI    000000ad [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:18, Info                  CSI    000000af [SR] Verify complete
2018-03-28 18:14:18, Info                  CSI    000000b0 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:18, Info                  CSI    000000b1 [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:21, Info                  CSI    000000b3 [SR] Verify complete
2018-03-28 18:14:21, Info                  CSI    000000b4 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:21, Info                  CSI    000000b5 [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:33, Info                  CSI    000000c8 [SR] Verify complete
2018-03-28 18:14:34, Info                  CSI    000000c9 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:34, Info                  CSI    000000ca [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:36, Info                  CSI    000000cc [SR] Verify complete
2018-03-28 18:14:37, Info                  CSI    000000cd [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:37, Info                  CSI    000000ce [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:39, Info                  CSI    000000d0 [SR] Verify complete
2018-03-28 18:14:40, Info                  CSI    000000d1 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:40, Info                  CSI    000000d2 [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:44, Info                  CSI    000000d4 [SR] Verify complete
2018-03-28 18:14:44, Info                  CSI    000000d5 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:44, Info                  CSI    000000d6 [SR] Beginning Verify and Repair transaction
2018-03-28 18:14:50, Info                  CSI    000000d9 [SR] Verify complete
2018-03-28 18:14:50, Info                  CSI    000000da [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:14:50, Info                  CSI    000000db [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:01, Info                  CSI    000000dd [SR] Verify complete
2018-03-28 18:15:01, Info                  CSI    000000de [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:01, Info                  CSI    000000df [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:04, Info                  CSI    000000e1 [SR] Verify complete
2018-03-28 18:15:05, Info                  CSI    000000e2 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:05, Info                  CSI    000000e3 [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:08, Info                  CSI    000000e5 [SR] Verify complete
2018-03-28 18:15:08, Info                  CSI    000000e6 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:08, Info                  CSI    000000e7 [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:16, Info                  CSI    000000e9 [SR] Verify complete
2018-03-28 18:15:16, Info                  CSI    000000ea [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:16, Info                  CSI    000000eb [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:22, Info                  CSI    000000ed [SR] Verify complete
2018-03-28 18:15:23, Info                  CSI    000000ee [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:23, Info                  CSI    000000ef [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:28, Info                  CSI    000000f1 [SR] Verify complete
2018-03-28 18:15:29, Info                  CSI    000000f2 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:29, Info                  CSI    000000f3 [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:42, Info                  CSI    00000105 [SR] Verify complete
2018-03-28 18:15:42, Info                  CSI    00000106 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:42, Info                  CSI    00000107 [SR] Beginning Verify and Repair transaction
2018-03-28 18:15:50, Info                  CSI    0000010f [SR] Verify complete
2018-03-28 18:15:50, Info                  CSI    00000110 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:15:50, Info                  CSI    00000111 [SR] Beginning Verify and Repair transaction
2018-03-28 18:16:12, Info                  CSI    00000113 [SR] Verify complete
2018-03-28 18:16:13, Info                  CSI    00000114 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:16:13, Info                  CSI    00000115 [SR] Beginning Verify and Repair transaction
2018-03-28 18:16:20, Info                  CSI    00000117 [SR] Verify complete
2018-03-28 18:16:20, Info                  CSI    00000118 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:16:20, Info                  CSI    00000119 [SR] Beginning Verify and Repair transaction
2018-03-28 18:16:35, Info                  CSI    0000011c [SR] Verify complete
2018-03-28 18:16:36, Info                  CSI    0000011d [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:16:36, Info                  CSI    0000011e [SR] Beginning Verify and Repair transaction
2018-03-28 18:16:44, Info                  CSI    00000120 [SR] Verify complete
2018-03-28 18:16:44, Info                  CSI    00000121 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:16:44, Info                  CSI    00000122 [SR] Beginning Verify and Repair transaction
2018-03-28 18:16:50, Info                  CSI    00000124 [SR] Verify complete
2018-03-28 18:16:50, Info                  CSI    00000125 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:16:50, Info                  CSI    00000126 [SR] Beginning Verify and Repair transaction
2018-03-28 18:16:57, Info                  CSI    00000128 [SR] Verify complete
2018-03-28 18:16:57, Info                  CSI    00000129 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:16:57, Info                  CSI    0000012a [SR] Beginning Verify and Repair transaction
2018-03-28 18:17:02, Info                  CSI    0000012e [SR] Verify complete
2018-03-28 18:17:02, Info                  CSI    0000012f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:17:02, Info                  CSI    00000130 [SR] Beginning Verify and Repair transaction
2018-03-28 18:17:07, Info                  CSI    00000132 [SR] Verify complete
2018-03-28 18:17:08, Info                  CSI    00000133 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:17:08, Info                  CSI    00000134 [SR] Beginning Verify and Repair transaction
2018-03-28 18:17:26, Info                  CSI    00000136 [SR] Verify complete
2018-03-28 18:17:27, Info                  CSI    00000137 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:17:27, Info                  CSI    00000138 [SR] Beginning Verify and Repair transaction
2018-03-28 18:17:36, Info                  CSI    0000013b [SR] Verify complete
2018-03-28 18:17:37, Info                  CSI    0000013c [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:17:37, Info                  CSI    0000013d [SR] Beginning Verify and Repair transaction
2018-03-28 18:17:44, Info                  CSI    0000013f [SR] Verify complete
2018-03-28 18:17:44, Info                  CSI    00000140 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:17:44, Info                  CSI    00000141 [SR] Beginning Verify and Repair transaction
2018-03-28 18:17:50, Info                  CSI    00000144 [SR] Verify complete
2018-03-28 18:17:51, Info                  CSI    00000145 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:17:51, Info                  CSI    00000146 [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:02, Info                  CSI    00000149 [SR] Verify complete
2018-03-28 18:18:02, Info                  CSI    0000014a [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:02, Info                  CSI    0000014b [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:09, Info                  CSI    0000014d [SR] Verify complete
2018-03-28 18:18:09, Info                  CSI    0000014e [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:09, Info                  CSI    0000014f [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:15, Info                  CSI    00000151 [SR] Verify complete
2018-03-28 18:18:15, Info                  CSI    00000152 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:15, Info                  CSI    00000153 [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:22, Info                  CSI    00000155 [SR] Verify complete
2018-03-28 18:18:22, Info                  CSI    00000156 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:22, Info                  CSI    00000157 [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:28, Info                  CSI    0000015a [SR] Verify complete
2018-03-28 18:18:29, Info                  CSI    0000015b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:29, Info                  CSI    0000015c [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:36, Info                  CSI    0000015e [SR] Verify complete
2018-03-28 18:18:37, Info                  CSI    0000015f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:37, Info                  CSI    00000160 [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:42, Info                  CSI    00000162 [SR] Verify complete
2018-03-28 18:18:42, Info                  CSI    00000163 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:42, Info                  CSI    00000164 [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:49, Info                  CSI    00000167 [SR] Verify complete
2018-03-28 18:18:49, Info                  CSI    00000168 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:49, Info                  CSI    00000169 [SR] Beginning Verify and Repair transaction
2018-03-28 18:18:57, Info                  CSI    0000016c [SR] Verify complete
2018-03-28 18:18:57, Info                  CSI    0000016d [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:18:57, Info                  CSI    0000016e [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:03, Info                  CSI    00000171 [SR] Verify complete
2018-03-28 18:19:03, Info                  CSI    00000172 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:03, Info                  CSI    00000173 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:12, Info                  CSI    00000175 [SR] Verify complete
2018-03-28 18:19:13, Info                  CSI    00000176 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:13, Info                  CSI    00000177 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:20, Info                  CSI    0000017a [SR] Verify complete
2018-03-28 18:19:20, Info                  CSI    0000017b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:20, Info                  CSI    0000017c [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:24, Info                  CSI    0000017e [SR] Verify complete
2018-03-28 18:19:24, Info                  CSI    0000017f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:24, Info                  CSI    00000180 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:28, Info                  CSI    00000182 [SR] Verify complete
2018-03-28 18:19:28, Info                  CSI    00000183 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:28, Info                  CSI    00000184 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:34, Info                  CSI    00000186 [SR] Verify complete
2018-03-28 18:19:34, Info                  CSI    00000187 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:34, Info                  CSI    00000188 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:40, Info                  CSI    0000018a [SR] Verify complete
2018-03-28 18:19:41, Info                  CSI    0000018b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:41, Info                  CSI    0000018c [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:46, Info                  CSI    0000018e [SR] Verify complete
2018-03-28 18:19:47, Info                  CSI    0000018f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:47, Info                  CSI    00000190 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:50, Info                  CSI    00000192 [SR] Verify complete
2018-03-28 18:19:51, Info                  CSI    00000193 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:51, Info                  CSI    00000194 [SR] Beginning Verify and Repair transaction
2018-03-28 18:19:57, Info                  CSI    00000196 [SR] Verify complete
2018-03-28 18:19:58, Info                  CSI    00000197 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:19:58, Info                  CSI    00000198 [SR] Beginning Verify and Repair transaction
2018-03-28 18:20:17, Info                  CSI    0000019a [SR] Verify complete
2018-03-28 18:20:17, Info                  CSI    0000019b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:20:17, Info                  CSI    0000019c [SR] Beginning Verify and Repair transaction
2018-03-28 18:20:42, Info                  CSI    0000019e [SR] Verify complete
2018-03-28 18:20:42, Info                  CSI    0000019f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:20:42, Info                  CSI    000001a0 [SR] Beginning Verify and Repair transaction
2018-03-28 18:20:51, Info                  CSI    000001a2 [SR] Verify complete
2018-03-28 18:20:52, Info                  CSI    000001a3 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:20:52, Info                  CSI    000001a4 [SR] Beginning Verify and Repair transaction
2018-03-28 18:20:56, Info                  CSI    000001a6 [SR] Verify complete
2018-03-28 18:20:56, Info                  CSI    000001a7 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:20:56, Info                  CSI    000001a8 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:00, Info                  CSI    000001aa [SR] Verify complete
2018-03-28 18:21:00, Info                  CSI    000001ab [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:00, Info                  CSI    000001ac [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:04, Info                  CSI    000001ae [SR] Verify complete
2018-03-28 18:21:05, Info                  CSI    000001af [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:05, Info                  CSI    000001b0 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:11, Info                  CSI    000001b2 [SR] Verify complete
2018-03-28 18:21:11, Info                  CSI    000001b3 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:11, Info                  CSI    000001b4 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:18, Info                  CSI    000001bc [SR] Verify complete
2018-03-28 18:21:19, Info                  CSI    000001bd [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:19, Info                  CSI    000001be [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:23, Info                  CSI    000001c0 [SR] Verify complete
2018-03-28 18:21:23, Info                  CSI    000001c1 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:23, Info                  CSI    000001c2 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:27, Info                  CSI    000001c4 [SR] Verify complete
2018-03-28 18:21:27, Info                  CSI    000001c5 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:27, Info                  CSI    000001c6 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:31, Info                  CSI    000001c8 [SR] Verify complete
2018-03-28 18:21:31, Info                  CSI    000001c9 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:31, Info                  CSI    000001ca [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:37, Info                  CSI    000001cc [SR] Verify complete
2018-03-28 18:21:37, Info                  CSI    000001cd [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:37, Info                  CSI    000001ce [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:46, Info                  CSI    000001d1 [SR] Verify complete
2018-03-28 18:21:46, Info                  CSI    000001d2 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:46, Info                  CSI    000001d3 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:50, Info                  CSI    000001d5 [SR] Verify complete
2018-03-28 18:21:50, Info                  CSI    000001d6 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:50, Info                  CSI    000001d7 [SR] Beginning Verify and Repair transaction
2018-03-28 18:21:53, Info                  CSI    000001d9 [SR] Verify complete
2018-03-28 18:21:53, Info                  CSI    000001da [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:21:53, Info                  CSI    000001db [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:05, Info                  CSI    000001e0 [SR] Verify complete
2018-03-28 18:22:05, Info                  CSI    000001e1 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:05, Info                  CSI    000001e2 [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:16, Info                  CSI    000001e5 [SR] Verify complete
2018-03-28 18:22:17, Info                  CSI    000001e6 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:17, Info                  CSI    000001e7 [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:23, Info                  CSI    000001eb [SR] Verify complete
2018-03-28 18:22:23, Info                  CSI    000001ec [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:23, Info                  CSI    000001ed [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:31, Info                  CSI    000001f8 [SR] Verify complete
2018-03-28 18:22:31, Info                  CSI    000001f9 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:31, Info                  CSI    000001fa [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:40, Info                  CSI    00000201 [SR] Verify complete
2018-03-28 18:22:41, Info                  CSI    00000202 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:41, Info                  CSI    00000203 [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:47, Info                  CSI    00000205 [SR] Verify complete
2018-03-28 18:22:47, Info                  CSI    00000206 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:47, Info                  CSI    00000207 [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:54, Info                  CSI    0000020b [SR] Verify complete
2018-03-28 18:22:54, Info                  CSI    0000020c [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:54, Info                  CSI    0000020d [SR] Beginning Verify and Repair transaction
2018-03-28 18:22:59, Info                  CSI    0000020f [SR] Verify complete
2018-03-28 18:22:59, Info                  CSI    00000210 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:22:59, Info                  CSI    00000211 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:06, Info                  CSI    00000236 [SR] Verify complete
2018-03-28 18:23:06, Info                  CSI    00000237 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:06, Info                  CSI    00000238 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:12, Info                  CSI    0000023a [SR] Verify complete
2018-03-28 18:23:12, Info                  CSI    0000023b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:12, Info                  CSI    0000023c [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:17, Info                  CSI    0000023e [SR] Verify complete
2018-03-28 18:23:17, Info                  CSI    0000023f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:17, Info                  CSI    00000240 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:23, Info                  CSI    00000242 [SR] Verify complete
2018-03-28 18:23:23, Info                  CSI    00000243 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:23, Info                  CSI    00000244 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:28, Info                  CSI    00000252 [SR] Verify complete
2018-03-28 18:23:28, Info                  CSI    00000253 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:28, Info                  CSI    00000254 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:38, Info                  CSI    00000256 [SR] Verify complete
2018-03-28 18:23:38, Info                  CSI    00000257 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:38, Info                  CSI    00000258 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:45, Info                  CSI    00000266 [SR] Verify complete
2018-03-28 18:23:45, Info                  CSI    00000267 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:45, Info                  CSI    00000268 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:48, Info                  CSI    0000026a [SR] Verify complete
2018-03-28 18:23:49, Info                  CSI    0000026b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:49, Info                  CSI    0000026c [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:53, Info                  CSI    0000026e [SR] Verify complete
2018-03-28 18:23:53, Info                  CSI    0000026f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:53, Info                  CSI    00000270 [SR] Beginning Verify and Repair transaction
2018-03-28 18:23:58, Info                  CSI    00000272 [SR] Verify complete
2018-03-28 18:23:58, Info                  CSI    00000273 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:23:58, Info                  CSI    00000274 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:00, Info                  CSI    00000276 [SR] Verify complete
2018-03-28 18:24:00, Info                  CSI    00000277 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:00, Info                  CSI    00000278 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:07, Info                  CSI    0000027a [SR] Verify complete
2018-03-28 18:24:08, Info                  CSI    0000027b [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:08, Info                  CSI    0000027c [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:13, Info                  CSI    0000027e [SR] Verify complete
2018-03-28 18:24:13, Info                  CSI    0000027f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:13, Info                  CSI    00000280 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:22, Info                  CSI    00000296 [SR] Verify complete
2018-03-28 18:24:22, Info                  CSI    00000297 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:22, Info                  CSI    00000298 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:28, Info                  CSI    0000029e [SR] Verify complete
2018-03-28 18:24:28, Info                  CSI    0000029f [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:28, Info                  CSI    000002a0 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:46, Info                  CSI    000002a2 [SR] Verify complete
2018-03-28 18:24:46, Info                  CSI    000002a3 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:46, Info                  CSI    000002a4 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:51, Info                  CSI    000002a6 [SR] Verify complete
2018-03-28 18:24:51, Info                  CSI    000002a7 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:51, Info                  CSI    000002a8 [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:55, Info                  CSI    000002ac [SR] Verify complete
2018-03-28 18:24:56, Info                  CSI    000002ad [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:56, Info                  CSI    000002ae [SR] Beginning Verify and Repair transaction
2018-03-28 18:24:58, Info                  CSI    000002b0 [SR] Verify complete
2018-03-28 18:24:59, Info                  CSI    000002b1 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:24:59, Info                  CSI    000002b2 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:04, Info                  CSI    000002b4 [SR] Verify complete
2018-03-28 18:25:04, Info                  CSI    000002b5 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:04, Info                  CSI    000002b6 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:09, Info                  CSI    000002b8 [SR] Verify complete
2018-03-28 18:25:09, Info                  CSI    000002b9 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:09, Info                  CSI    000002ba [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:13, Info                  CSI    000002bc [SR] Verify complete
2018-03-28 18:25:13, Info                  CSI    000002bd [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:13, Info                  CSI    000002be [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:18, Info                  CSI    000002c1 [SR] Verify complete
2018-03-28 18:25:18, Info                  CSI    000002c2 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:18, Info                  CSI    000002c3 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:23, Info                  CSI    000002c5 [SR] Verify complete
2018-03-28 18:25:23, Info                  CSI    000002c6 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:23, Info                  CSI    000002c7 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:29, Info                  CSI    000002c9 [SR] Verify complete
2018-03-28 18:25:29, Info                  CSI    000002ca [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:29, Info                  CSI    000002cb [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:34, Info                  CSI    000002cd [SR] Verify complete
2018-03-28 18:25:34, Info                  CSI    000002ce [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:34, Info                  CSI    000002cf [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:38, Info                  CSI    000002d2 [SR] Verify complete
2018-03-28 18:25:38, Info                  CSI    000002d3 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:38, Info                  CSI    000002d4 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:43, Info                  CSI    000002d6 [SR] Verify complete
2018-03-28 18:25:43, Info                  CSI    000002d7 [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:43, Info                  CSI    000002d8 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:47, Info                  CSI    000002da [SR] Verify complete
2018-03-28 18:25:47, Info                  CSI    000002db [SR] Verifying 100 (0x0000000000000064) components
2018-03-28 18:25:47, Info                  CSI    000002dc [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:52, Info                  CSI    000002de [SR] Verify complete
2018-03-28 18:25:52, Info                  CSI    000002df [SR] Verifying 50 (0x0000000000000032) components
2018-03-28 18:25:52, Info                  CSI    000002e0 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:54, Info                  CSI    000002e2 [SR] Verify complete
2018-03-28 18:25:54, Info                  CSI    000002e3 [SR] Repairing 0 components
2018-03-28 18:25:54, Info                  CSI    000002e4 [SR] Beginning Verify and Repair transaction
2018-03-28 18:25:54, Info                  CSI    000002e6 [SR] Repair complete
 


  • 0

#20
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
Hello,
can you run system file checker now without error ?

Thanks
Joe :)
  • 0

#21
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

I am sorry I don't understand

was there an error in system file checker ?? & How can i do it without it ??


  • 0

#22
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
Hello,

Run system file checker again and tell me what it says, if it does not find errors it will say "No integrity issues found"
  • Open an elevated command prompt by right clicking on the command prompt and choosing Run as administrator.
  • In the elevated command prompt, type sfc /scannow and press Enter. Please note the space between sfc /
Tell me what it says after you run it.

Going out for a while be back later.

Thanks
Joe :)
  • 0

#23
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

i did that again & it told me "No integrity issues found" :)


  • 0

#24
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
A few items to fix

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Open notepad (Start =>All Programs => Accessories => Notepad).
Copy/Paste the contents of the code box below into Notepad.
start
CloseProcesses:
CreateRestorePoint:
CMD: for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1"
Emptytemp:
  • Click Format and ensure Wordwrap is unchecked.
  • Save as Fixlist.txt to your Desktop (Must be in this location)
  • Run FRST/FRST64 and press the Fix button just once and wait.
  • If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
  • The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
Note: If the tool warns you about the version you're using being an outdated version please download and run the updated version.
  • 0

#25
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

Fix result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by NEW LAP (01-04-2018 01:05:04) Run:2
Running from C:\Users\NEW LAP\Desktop
Loaded Profiles: NEW LAP (Available Profiles: NEW LAP)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CloseProcesses:
CreateRestorePoint:
CMD: for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1"
Emptytemp:
*****************

Processes closed successfully.
Restore point was successfully created.

========= for /F "tokens=*" %1 in ('wevtutil.exe el') DO wevtutil.exe cl "%1" =========


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 29936970 B
Java, Flash, Steam htmlcache => 1066 B
Windows/system/drivers => 18546153 B
Edge => 0 B
Chrome => 0 B
Firefox => 233809734 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83458 B
systemprofile32 => 692 B
LocalService => 132244 B
NetworkService => 9178 B
NEW LAP => 19453644 B

RecycleBin => 3212180 B
EmptyTemp: => 299 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 01:06:11 ====


  • 0

Advertisements


#26
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
Hello,

Can you tell me how big the windows log folder is ?

To do that

Click on My Computer
Click on local disc (That's your "C" drive)
Look for the folder that says "Windows" Double click it, and look for a folder that says "logs"
Right click on logs folder and choose Properties.

Tell me how big it is_____________?
My folder on my computer is 32 Mb (MegaBytes) Just for reference.
  • 0

#27
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

It's     2.34 MB  


  • 0

#28
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
Hello,

That screen shot you posted a while back where it shows the files an folders and how much space there using, can you expand that window so I can see it a bit better.

Happy Easter!!!
  • 0

#29
mira19925

mira19925

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts

Happy Easter :)

Attached Thumbnails

  • 2-.GIF
  • 1-.GIF

  • 0

#30
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 8,087 posts
Hello,

Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 61FF3A35)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=37 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=261 GB) - (Type=07 NTFS)

Did you make partitions on the drive or someone else did ? Did someone work on it ? Tell me about the computer. Very odd looking.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP