Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Průzkumník - prosím preventivku

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Průzkumník - prosím preventivku

#1 Příspěvek od ultrakb »

Dobrý den,můžu poprosit o kontrolu tohoto zařízení. Průzkumní windows nelze otevřít, vyskakuje hláška, že přestal pracovat.
Moc děkuji - odměna samozřejmost :thumbsup:

Logfile of random's system information tool 1.10 (written by random/random)
Run by ELEFANT 1-NTB at 2018-05-12 17:37:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 78 GB (41%) free of 191 GB
Total RAM: 3873 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:37:43, on 12.5.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19003)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Word Explorer\Launch.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\trend micro\ELEFANT 1-NTB.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [MFP Manager] "C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe" -CheckAutoRun
O4 - HKCU\..\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: Word Explorer Launcher.lnk = C:\Program Files (x86)\Word Explorer\Launch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Word Explorer starten - C:\Program Files (x86)\Word Explorer\cnie5.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Spustit WORD EXPLORER - {26231800-6CE9-43d8-9357-5B4DC8CF4561} - C:\Program Files (x86)\Word Explorer\cnie5.htm
O9 - Extra 'Tools' menuitem: Spustit WORD EXPLORER - {26231800-6CE9-43d8-9357-5B4DC8CF4561} - C:\Program Files (x86)\Word Explorer\cnie5.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12524 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 2108
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\syncables\syncables desktop\syncables.exe"
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Word Explorer\Launch.exe"
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe" -Xms56m -Xmx112m -classpath .;syncables.jar migoDesktop.migoDesktopMain sid=S-1-5-21-4233113243-3106577537-698532162-1000
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe" -CheckAutoRun
"C:\Windows\AsScrPro.exe"
C:\Windows\system32\ServoApp.exe
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
explorer.exe

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\ELEFANT 1-NTB\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c

=========Mozilla firefox=========

ProfilePath - C:\Users\ELEFANT 1-NTB\AppData\Roaming\Mozilla\Firefox\Profiles\2bfsloh3.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.130 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.5.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.130 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-26 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01 51872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-26 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-12 2589992]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-01-25 1483264]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-06-01 926880]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-06-01 792736]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1353680]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-29 442328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Syncables"=C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [2010-07-19 370480]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-04-12 18334528]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-11-19 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-03 103720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox]
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-01-25 16781312]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-09-24 1601536]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"MFP Manager"=C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe [2010-01-22 884736]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
Word Explorer Launcher.lnk - C:\Program Files (x86)\Word Explorer\Launch.exe

C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=16

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-05-12 17:37:36 ----D---- C:\rsit
2018-05-12 17:15:16 ----D---- C:\Users\ELEFANT 1-NTB\AppData\Roaming\FastCopy
2018-05-12 17:15:14 ----D---- C:\Program Files\FastCopy
2018-05-10 19:09:53 ----SHD---- C:\Config.Msi
2018-05-10 17:53:29 ----A---- C:\Windows\system32\mshtml.dll
2018-05-10 17:53:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-05-10 17:53:26 ----A---- C:\Windows\system32\ieframe.dll
2018-05-10 17:53:24 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-05-10 17:53:24 ----A---- C:\Windows\system32\jscript9.dll
2018-05-10 17:53:22 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-05-10 17:53:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-05-10 17:53:21 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-05-10 17:53:21 ----A---- C:\Windows\system32\wininet.dll
2018-05-10 17:53:21 ----A---- C:\Windows\system32\win32k.sys
2018-05-10 17:53:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-05-10 17:53:20 ----A---- C:\Windows\system32\urlmon.dll
2018-05-10 17:53:20 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-05-10 17:53:20 ----A---- C:\Windows\system32\iertutil.dll
2018-05-10 17:53:19 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-05-10 17:53:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-05-10 17:53:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-05-10 17:53:19 ----A---- C:\Windows\system32\msfeeds.dll
2018-05-10 17:53:19 ----A---- C:\Windows\system32\jscript.dll
2018-05-10 17:53:19 ----A---- C:\Windows\system32\drivers\srv.sys
2018-05-10 17:53:18 ----A---- C:\Windows\system32\winload.exe
2018-05-10 17:53:18 ----A---- C:\Windows\system32\oleaut32.dll
2018-05-10 17:53:18 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-05-10 17:53:18 ----A---- C:\Windows\system32\comsvcs.dll
2018-05-10 17:53:17 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2018-05-10 17:53:17 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2018-05-10 17:53:17 ----A---- C:\Windows\system32\vbscript.dll
2018-05-10 17:53:17 ----A---- C:\Windows\system32\rpcss.dll
2018-05-10 17:53:17 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-05-10 17:53:17 ----A---- C:\Windows\system32\clfs.sys
2018-05-10 17:53:16 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-05-10 17:53:16 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-05-10 17:53:16 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-05-10 17:53:16 ----A---- C:\Windows\system32\TSpkg.dll
2018-05-10 17:53:16 ----A---- C:\Windows\system32\srvsvc.dll
2018-05-10 17:53:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-10 17:53:16 ----A---- C:\Windows\system32\catsrvut.dll
2018-05-10 17:53:15 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-05-10 17:53:15 ----A---- C:\Windows\system32\itss.dll
2018-05-10 17:53:15 ----A---- C:\Windows\system32\iedkcs32.dll
2018-05-10 17:53:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-05-10 17:53:14 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-05-10 17:53:14 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2018-05-10 17:53:14 ----A---- C:\Windows\system32\webcheck.dll
2018-05-10 17:53:14 ----A---- C:\Windows\system32\ntdll.dll
2018-05-10 17:53:14 ----A---- C:\Windows\system32\jscript9diag.dll
2018-05-10 17:53:14 ----A---- C:\Windows\system32\itircl.dll
2018-05-10 17:53:14 ----A---- C:\Windows\system32\hal.dll
2018-05-10 17:53:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-05-10 17:53:14 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-05-10 17:53:13 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-05-10 17:53:13 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-05-10 17:53:13 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-05-10 17:53:13 ----A---- C:\Windows\system32\msrating.dll
2018-05-10 17:53:13 ----A---- C:\Windows\system32\hhsetup.dll
2018-05-10 17:53:13 ----A---- C:\Windows\system32\dxtmsft.dll
2018-05-10 17:53:13 ----A---- C:\Windows\system32\certcli.dll
2018-05-10 17:53:12 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-05-10 17:53:12 ----A---- C:\Windows\SYSWOW64\hhsetup.dll
2018-05-10 17:53:12 ----A---- C:\Windows\SYSWOW64\hh.exe
2018-05-10 17:53:12 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-05-10 17:53:12 ----A---- C:\Windows\system32\ole32.dll
2018-05-10 17:53:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-05-10 17:53:12 ----A---- C:\Windows\system32\dxtrans.dll
2018-05-10 17:53:12 ----A---- C:\Windows\hh.exe
2018-05-10 17:53:11 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-05-10 17:53:11 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-05-10 17:53:11 ----A---- C:\Windows\system32\ieui.dll
2018-05-10 17:53:10 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-05-10 17:53:10 ----A---- C:\Windows\system32\mshtmled.dll
2018-05-10 17:53:10 ----A---- C:\Windows\system32\iesetup.dll
2018-05-10 17:53:10 ----A---- C:\Windows\system32\ie4uinit.exe
2018-05-10 17:53:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-05-10 17:53:09 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-05-10 17:53:08 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-05-10 17:53:08 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-05-10 17:53:08 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-05-10 17:53:08 ----A---- C:\Windows\system32\sscore.dll
2018-05-10 17:53:08 ----A---- C:\Windows\system32\occache.dll
2018-05-10 17:53:08 ----A---- C:\Windows\system32\inseng.dll
2018-05-10 17:53:08 ----A---- C:\Windows\system32\ieUnatt.exe
2018-05-10 17:53:08 ----A---- C:\Windows\system32\iernonce.dll
2018-05-10 17:53:07 ----A---- C:\Windows\SYSWOW64\sscore.dll
2018-05-10 17:53:07 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-05-10 17:53:07 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-05-10 17:53:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-05-10 17:53:07 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-10 17:53:06 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-05-10 17:53:06 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-05-10 17:53:06 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-05-10 17:53:06 ----A---- C:\Windows\system32\jsproxy.dll
2018-05-10 17:53:06 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-05-10 17:53:05 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-05-10 17:53:05 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-05-10 17:53:05 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-05-10 17:53:05 ----A---- C:\Windows\system32\rpcrt4.dll
2018-05-10 17:53:05 ----A---- C:\Windows\system32\lsasrv.dll
2018-05-10 17:53:05 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-05-10 17:53:05 ----A---- C:\Windows\system32\ieapfltr.dll
2018-05-10 17:53:05 ----A---- C:\Windows\system32\comcat.dll
2018-05-10 17:53:04 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-05-10 17:53:04 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-05-10 17:53:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-05-10 17:53:04 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\wow64win.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\winsrv.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\smss.exe
2018-05-10 17:53:04 ----A---- C:\Windows\system32\schannel.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\ncrypt.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\msv1_0.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\KernelBase.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\kernel32.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\kerberos.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-05-10 17:53:04 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-05-10 17:53:04 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-05-10 17:53:04 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-05-10 17:53:04 ----A---- C:\Windows\system32\advapi32.dll
2018-05-10 17:53:03 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-05-10 17:53:03 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-05-10 17:53:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-05-10 17:53:03 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-05-10 17:53:03 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\wow64.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\wdigest.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\sspicli.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\srcore.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\rpchttp.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\lsass.exe
2018-05-10 17:53:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-05-10 17:53:03 ----A---- C:\Windows\system32\csrsrv.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\cryptbase.dll
2018-05-10 17:53:03 ----A---- C:\Windows\system32\conhost.exe
2018-05-10 17:53:03 ----A---- C:\Windows\system32\bcrypt.dll
2018-05-10 17:53:02 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-05-10 17:53:02 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-05-10 17:53:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-05-10 17:53:02 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-05-10 17:53:02 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\wow64cpu.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\sspisrv.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\srclient.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\secur32.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\rstrui.exe
2018-05-10 17:53:02 ----A---- C:\Windows\system32\ntvdm64.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\drivers\appid.sys
2018-05-10 17:53:02 ----A---- C:\Windows\system32\credssp.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\appidsvc.dll
2018-05-10 17:53:02 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-05-10 17:53:02 ----A---- C:\Windows\system32\appidapi.dll
2018-05-10 17:53:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-05-10 17:53:01 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-05-10 17:53:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-05-10 17:53:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-05-10 17:53:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-05-10 17:53:01 ----A---- C:\Windows\system32\oleres.dll
2018-05-10 17:53:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-10 17:53:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-10 17:53:00 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-10 17:53:00 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-10 17:53:00 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-10 17:53:00 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-05-10 17:53:00 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-05-10 17:53:00 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-05-10 17:53:00 ----A---- C:\Windows\system32\auditpol.exe
2018-05-10 17:53:00 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-10 17:52:59 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-10 17:52:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-10 17:52:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-10 17:52:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-10 17:52:58 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-10 17:52:58 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-10 17:52:58 ----A---- C:\Windows\SYSWOW64\user.exe
2018-05-10 17:52:58 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-05-10 17:52:58 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-05-10 17:52:58 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-05-10 17:52:58 ----A---- C:\Windows\system32\apisetschema.dll
2018-05-10 17:52:57 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-05-10 17:52:57 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-05-10 17:52:57 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-05-10 17:52:57 ----A---- C:\Windows\system32\msobjs.dll
2018-05-10 17:52:57 ----A---- C:\Windows\system32\msaudite.dll
2018-05-10 17:52:57 ----A---- C:\Windows\system32\adtschema.dll
2018-04-29 18:03:44 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2018-04-29 18:03:44 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2018-04-29 18:03:44 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wuwebv.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wups2.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wups.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wudriver.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wucltux.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wuaueng.dll
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wuauclt.exe
2018-04-29 18:03:44 ----A---- C:\Windows\system32\wuapi.dll
2018-04-29 18:03:43 ----A---- C:\Windows\SYSWOW64\wups.dll
2018-04-29 18:03:43 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2018-04-29 18:03:43 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-04-29 18:03:43 ----A---- C:\Windows\system32\wuapp.exe
2018-04-29 18:03:43 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-04-29 18:03:43 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-04-29 18:03:43 ----A---- C:\Windows\system32\tzres.dll
2018-04-15 18:04:26 ----A---- C:\Windows\system32\MSVidCtl.dll
2018-04-15 18:04:25 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2018-04-15 18:04:24 ----A---- C:\Windows\SYSWOW64\msi.dll
2018-04-15 18:04:24 ----A---- C:\Windows\system32\msi.dll
2018-04-15 18:04:23 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2018-04-15 18:04:23 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-04-15 18:04:23 ----A---- C:\Windows\system32\ucrtbase.dll
2018-04-15 18:04:23 ----A---- C:\Windows\system32\authui.dll
2018-04-15 18:04:22 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2018-04-15 18:04:22 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2018-04-15 18:04:22 ----A---- C:\Windows\system32\zipfldr.dll
2018-04-15 18:04:22 ----A---- C:\Windows\system32\WinSCard.dll
2018-04-15 18:04:22 ----A---- C:\Windows\system32\msra.exe
2018-04-15 18:04:22 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-04-15 18:04:21 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-04-15 18:04:21 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-04-15 18:04:21 ----A---- C:\Windows\SYSWOW64\scksp.dll
2018-04-15 18:04:21 ----A---- C:\Windows\SYSWOW64\msexcl40.dll
2018-04-15 18:04:21 ----A---- C:\Windows\SYSWOW64\basecsp.dll
2018-04-15 18:04:21 ----A---- C:\Windows\system32\t2embed.dll
2018-04-15 18:04:21 ----A---- C:\Windows\system32\scksp.dll
2018-04-15 18:04:21 ----A---- C:\Windows\system32\msihnd.dll
2018-04-15 18:04:21 ----A---- C:\Windows\system32\msiexec.exe
2018-04-15 18:04:21 ----A---- C:\Windows\system32\fontsub.dll
2018-04-15 18:04:21 ----A---- C:\Windows\system32\drivers\volmgr.sys
2018-04-15 18:04:21 ----A---- C:\Windows\system32\drivers\termdd.sys
2018-04-15 18:04:21 ----A---- C:\Windows\system32\drivers\pci.sys
2018-04-15 18:04:21 ----A---- C:\Windows\system32\drivers\msisadrv.sys
2018-04-15 18:04:21 ----A---- C:\Windows\system32\drivers\acpi.sys
2018-04-15 18:04:21 ----A---- C:\Windows\system32\consent.exe
2018-04-15 18:04:21 ----A---- C:\Windows\system32\basecsp.dll
2018-04-15 18:04:21 ----A---- C:\Windows\system32\appinfo.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\streamci.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\vdrvroot.sys
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\swenum.sys
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\mssmbios.sys
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\isapnp.sys
2018-04-15 18:04:20 ----A---- C:\Windows\system32\drivers\AGP440.sys
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-15 18:04:20 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\atmfd.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-15 18:04:19 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-15 18:04:17 ----A---- C:\Windows\SYSWOW64\wsnmp32.dll
2018-04-15 18:04:17 ----A---- C:\Windows\SYSWOW64\sdchange.exe
2018-04-15 18:04:17 ----A---- C:\Windows\SYSWOW64\racpldlg.dll
2018-04-15 18:04:17 ----A---- C:\Windows\SYSWOW64\msra.exe
2018-04-15 18:04:17 ----A---- C:\Windows\system32\wsnmp32.dll
2018-04-15 18:04:17 ----A---- C:\Windows\system32\sdchange.exe
2018-04-15 18:04:17 ----A---- C:\Windows\system32\racpldlg.dll
2018-04-15 18:04:17 ----A---- C:\Windows\system32\msrahc.dll
2018-04-15 18:04:17 ----A---- C:\Windows\system32\drivers\wmiacpi.sys
2018-04-15 18:04:17 ----A---- C:\Windows\system32\drivers\errdev.sys
2018-04-15 18:04:15 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2018-04-15 18:04:15 ----A---- C:\Windows\system32\msimsg.dll
2018-04-15 18:04:15 ----A---- C:\Windows\system32\lpk.dll
2018-04-15 18:04:15 ----A---- C:\Windows\system32\dciman32.dll
2018-04-15 18:04:14 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-04-15 18:04:14 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-04-15 18:04:13 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-04-15 18:04:13 ----A---- C:\Windows\system32\atmlib.dll
2018-04-15 17:40:03 ----A---- C:\Windows\system32\generaltel.dll
2018-04-15 17:40:03 ----A---- C:\Windows\system32\devinv.dll
2018-04-15 17:40:03 ----A---- C:\Windows\system32\appraiser.dll
2018-04-15 17:40:03 ----A---- C:\Windows\system32\aeinv.dll
2018-04-15 17:40:03 ----A---- C:\Windows\system32\acmigration.dll
2018-04-15 17:40:02 ----A---- C:\Windows\system32\invagent.dll
2018-04-15 17:40:02 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-04-15 17:40:02 ----A---- C:\Windows\system32\centel.dll
2018-04-15 17:40:02 ----A---- C:\Windows\system32\aitstatic.exe
2018-04-15 17:40:02 ----A---- C:\Windows\system32\aepic.dll

======List of files/folders modified in the last 1 month======

2018-05-12 17:37:41 ----D---- C:\Program Files\trend micro
2018-05-12 17:37:33 ----D---- C:\Windows\Temp
2018-05-12 17:36:29 ----D---- C:\Windows\system32\config
2018-05-12 17:15:14 ----RD---- C:\Program Files
2018-05-12 16:38:02 ----D---- C:\Windows\inf
2018-05-12 16:37:55 ----D---- C:\Windows\debug
2018-05-12 16:37:54 ----AD---- C:\Windows
2018-05-12 16:32:41 ----D---- C:\Windows\system32\Tasks
2018-05-12 16:27:27 ----HD---- C:\ASUS.DAT
2018-05-12 16:23:06 ----A---- C:\Windows\SYSWOW64\log.txt
2018-05-12 16:09:39 ----D---- C:\AdwCleaner
2018-05-12 12:45:03 ----D---- C:\Windows\Prefetch
2018-05-11 23:54:53 ----D---- C:\Windows\rescache
2018-05-11 23:21:53 ----D---- C:\Windows\Microsoft.NET
2018-05-11 23:19:00 ----RSD---- C:\Windows\assembly
2018-05-11 21:20:50 ----D---- C:\Windows\System32
2018-05-11 21:20:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-05-11 21:15:26 ----D---- C:\Windows\winsxs
2018-05-11 21:08:59 ----D---- C:\Program Files\Internet Explorer
2018-05-11 21:08:58 ----D---- C:\Program Files (x86)\Internet Explorer
2018-05-11 21:08:57 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-05-11 21:08:56 ----D---- C:\Windows\SYSWOW64\en-US
2018-05-11 21:08:56 ----D---- C:\Windows\SysWOW64
2018-05-11 21:08:51 ----D---- C:\Windows\system32\drivers\en-US
2018-05-11 21:08:51 ----D---- C:\Windows\system32\drivers
2018-05-11 21:08:51 ----D---- C:\Windows\system32\cs-CZ
2018-05-11 21:08:50 ----D---- C:\Windows\system32\en-US
2018-05-11 21:08:43 ----D---- C:\Windows\AppPatch
2018-05-11 21:08:41 ----D---- C:\Windows\system32\Boot
2018-05-10 19:24:45 ----SHD---- C:\Windows\Installer
2018-05-10 19:16:27 ----D---- C:\Windows\system32\MRT
2018-05-10 19:16:09 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-05-10 19:15:44 ----AC---- C:\Windows\system32\MRT.exe
2018-05-10 19:10:50 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-05-10 19:08:20 ----SHD---- C:\System Volume Information
2018-05-10 17:22:00 ----D---- C:\Windows\system32\catroot2
2018-05-06 08:51:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-06 08:51:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-04-29 18:30:35 ----D---- C:\Program Files (x86)\Dropbox
2018-04-28 20:25:00 ----D---- C:\Users\ELEFANT 1-NTB\AppData\Roaming\vlc
2018-04-19 17:56:04 ----D---- C:\Users\ELEFANT 1-NTB\AppData\Roaming\uTorrent
2018-04-17 16:39:41 ----D---- C:\Windows\system32\appraiser
2018-04-17 16:39:38 ----D---- C:\Windows\system32\DriverStore
2018-04-15 19:46:05 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-26 17536]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ALIWEHCD;MFP Server Enhanced Controller; C:\Windows\System32\Drivers\mfpec.sys [2009-12-15 39552]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-06-01 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-12 142632]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-01-25 5596160]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 MpKsl4ea60438;MpKsl4ea60438; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F939253A-CA08-40FE-9899-D84E43741EA4}\MpKsl4ea60438.sys []
S1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 74840]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys []
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys []
S3 andnetndis;LGE AndroidNet NDIS Ethernet Adapter; C:\Windows\system32\DRIVERS\lgandnetndis64.sys []
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-06-01 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-06-01 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-06-01 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-06-01 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-06-01 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-06-01 280992]
S3 BTATH_VDP;Bluetooth VDP Driver; C:\Windows\system32\drivers\btath_vdp.sys [2011-06-01 420896]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-06-01 491168]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2014-03-31 58056]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2014-06-16 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 wdm_usb;wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [2016-03-10 151184]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;YunOS USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-06-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-06-01 97952]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 119864]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 361816]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-14 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-27 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-16 272384]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-14 143144]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-04-22 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-05-02 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-04-11 160448]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-31 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#3 Příspěvek od ultrakb »

# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-05-11.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-14-2018
# Duration: 00:00:01
# OS: Windows 7 Home Premium
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST podla tohto navodu (FRST.txt a Addition.txt): https://forum.viry.cz/viewtopic.php?f=13&t=152707

:arrow: V pripade, ze sa FRSTLauncher nebude dat stiahnut alebo spustit, pouzi iba samotny FRST.

:arrow: Ak sa logy nezmestia do jedneho prispevku, zabal ich do archivu RAR alebo ZIP a posli ako prilohu.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#5 Příspěvek od ultrakb »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12.05.2018
Ran by ELEFANT 1-NTB (administrator) on ELEFANT-NTB (16-05-2018 08:50:40)
Running from C:\Users\ELEFANT 1-NTB\Desktop
Loaded Profiles: ELEFANT 1-NTB (Available Profiles: ELEFANT 1-NTB)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(syncables, LLC) C:\Program Files (x86)\syncables\syncables desktop\syncables.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe
() C:\Program Files (x86)\Word Explorer\Launch.exe
(ASUS) C:\Windows\AsScrPro.exe
() C:\Windows\System32\ServoApp.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-12] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [926880 2011-06-01] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [792736 2011-06-01] (Atheros Commnucations)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-18] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-08] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] ()
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [MFP Manager] => C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe [884736 2010-01-22] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\Run: [Syncables] => C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [370480 2010-07-19] (syncables, LLC)
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\Run: [Zoner Photo Studio Service 16] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe [27648 2014-06-16] ()
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [833024 2014-06-16] (ZONER software)
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {1a2b0e0b-826e-11e4-88c8-0008ca270b54} - G:\LG_PC_Programs.exe
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {700adf75-e6a9-11e6-a491-0008ca270b54} - F:\Lenovo_Suite.exe
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {9be02b1c-6082-11e1-b957-0008ca270b54} - F:\SISetup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2012-01-31]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe (ASUSTeK Computer Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2011-11-19]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Word Explorer Launcher.lnk [2016-03-01]
ShortcutTarget: Word Explorer Launcher.lnk -> C:\Program Files (x86)\Word Explorer\Launch.exe ()
Startup: C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-09-17]
ShortcutTarget: Dropbox.lnk -> C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (No File)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{FDA6D165-CE08-4EF6-B712-118FA5D61D9D}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ASUT
SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-26] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01] (Atheros Commnucations)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-26] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\ELEFANT 1-NTB\AppData\Roaming\Mozilla\Firefox\Profiles\2bfsloh3.default [2018-05-16]
FF Homepage: Mozilla\Firefox\Profiles\2bfsloh3.default -> hxxp://www.seznam.cz/
FF Extension: (AdBlock) - C:\Users\ELEFANT 1-NTB\AppData\Roaming\Mozilla\Firefox\Profiles\2bfsloh3.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2018-05-10]
FF Extension: (Greasemonkey) - C:\Users\ELEFANT 1-NTB\AppData\Roaming\Mozilla\Firefox\Profiles\2bfsloh3.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2018-03-18]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-16] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-12] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4233113243-3106577537-698532162-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ELEFANT 1-NTB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default [2018-05-16]
CHR Extension: (Prezentace) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-14]
CHR Extension: (YouTube) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-14]
CHR Extension: (Tampermonkey) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-02-11]
CHR Extension: (Adobe Acrobat) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-10-09]
CHR Extension: (Tabulky) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-11]
CHR Extension: (Gmail) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\ELEFANT 1-NTB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-29]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-06-01] (Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [97952 2011-06-01] (Atheros Commnucations) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-14] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-14] (Dropbox, Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [28552 2016-04-26] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ALIWEHCD; C:\Windows\System32\Drivers\mfpec.sys [39552 2009-12-15] (None)
S3 BTATH_VDP; C:\Windows\System32\drivers\btath_vdp.sys [420896 2011-06-01] (Atheros)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [151184 2016-03-10] (MBB)
R3 WUSBVBus; C:\Windows\System32\DRIVERS\mfpvbus.sys [12416 2009-12-15] (None)
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-05-16 08:50 - 2018-05-16 08:54 - 000019089 _____ C:\Users\ELEFANT 1-NTB\Desktop\FRST.txt
2018-05-16 08:50 - 2018-05-16 08:50 - 000000000 ____D C:\FRST
2018-05-16 08:47 - 2018-05-16 08:47 - 000000000 _____ C:\Users\ELEFANT 1-NTB\Desktop\FRSTLauncher.exe
2018-05-16 08:46 - 2018-05-16 08:46 - 002404864 _____ (Farbar) C:\Users\ELEFANT 1-NTB\Desktop\FRST64.exe
2018-05-15 11:50 - 2018-05-15 11:50 - 000003180 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2018-05-15 11:50 - 2018-05-15 11:50 - 000003168 _____ C:\Windows\System32\Tasks\RTKCPL
2018-05-14 07:49 - 2018-05-14 07:51 - 000000000 ____D C:\AdwCleaner
2018-05-14 07:49 - 2018-05-14 07:49 - 007271632 _____ (Malwarebytes) C:\Users\ELEFANT 1-NTB\Downloads\adwcleaner_7.1.1.exe
2018-05-12 17:37 - 2018-05-12 17:37 - 001222144 _____ C:\Users\ELEFANT 1-NTB\Downloads\RSITx64.exe
2018-05-12 17:37 - 2018-05-12 17:37 - 000000000 ____D C:\rsit
2018-05-12 17:28 - 2018-05-14 20:42 - 000000053 _____ C:\Users\ELEFANT 1-NTB\Desktop\recently-used
2018-05-12 17:28 - 2018-05-14 20:42 - 000000028 _____ C:\Users\ELEFANT 1-NTB\Desktop\settings
2018-05-12 17:28 - 2018-05-14 20:42 - 000000000 _____ C:\Users\ELEFANT 1-NTB\Desktop\bookmarks
2018-05-12 17:17 - 2018-05-12 17:17 - 000000000 ____D C:\Users\ELEFANT 1-NTB\Desktop\snowbird70
2018-05-12 17:17 - 2009-02-14 20:18 - 000479232 _____ (L. Madhavan) C:\Users\ELEFANT 1-NTB\Desktop\Snowbird.exe
2018-05-12 17:15 - 2018-05-12 17:15 - 000000997 _____ C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FastCopy.lnk
2018-05-12 17:15 - 2018-05-12 17:15 - 000000000 ____D C:\Users\ELEFANT 1-NTB\AppData\Roaming\FastCopy
2018-05-12 17:15 - 2018-05-12 17:15 - 000000000 ____D C:\Program Files\FastCopy
2018-05-12 17:13 - 2018-01-28 00:57 - 000267264 ____N C:\Users\ELEFANT 1-NTB\Desktop\setup.exe
2018-05-12 17:13 - 2017-01-05 08:47 - 000001314 ____N C:\Users\ELEFANT 1-NTB\Desktop\xxhash-LICENSE.txt
2018-05-10 17:53 - 2018-04-23 20:57 - 000396960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-05-10 17:53 - 2018-04-23 20:02 - 000348832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-05-10 17:53 - 2018-04-23 02:35 - 005583552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-05-10 17:53 - 2018-04-23 02:35 - 000708288 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-05-10 17:53 - 2018-04-23 02:35 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-05-10 17:53 - 2018-04-23 02:35 - 000154816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-05-10 17:53 - 2018-04-23 02:35 - 000095424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-05-10 17:53 - 2018-04-23 02:12 - 004047040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-05-10 17:53 - 2018-04-23 02:12 - 003958464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-05-10 17:53 - 2018-04-23 02:10 - 000631640 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-05-10 17:53 - 2018-04-23 02:07 - 001665336 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 002066432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 001461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000876032 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000512512 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-10 17:53 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-10 17:53 - 2018-04-23 01:44 - 001314064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-05-10 17:53 - 2018-04-23 01:41 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000582144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-10 17:53 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-10 17:53 - 2018-04-23 01:32 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-05-10 17:53 - 2018-04-23 01:32 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-05-10 17:53 - 2018-04-23 01:32 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-05-10 17:53 - 2018-04-23 01:31 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-05-10 17:53 - 2018-04-23 01:28 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-05-10 17:53 - 2018-04-23 01:28 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-05-10 17:53 - 2018-04-23 01:27 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-05-10 17:53 - 2018-04-23 01:25 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-05-10 17:53 - 2018-04-23 01:24 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-05-10 17:53 - 2018-04-23 01:24 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-05-10 17:53 - 2018-04-23 01:24 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2018-05-10 17:53 - 2018-04-23 01:23 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-05-10 17:53 - 2018-04-23 01:23 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-05-10 17:53 - 2018-04-23 01:22 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-05-10 17:53 - 2018-04-23 01:19 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-05-10 17:53 - 2018-04-23 01:18 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-05-10 17:53 - 2018-04-22 10:04 - 025744896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-05-10 17:53 - 2018-04-22 09:53 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-05-10 17:53 - 2018-04-22 09:53 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-05-10 17:53 - 2018-04-22 09:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-05-10 17:53 - 2018-04-22 09:39 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-05-10 17:53 - 2018-04-22 09:38 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-05-10 17:53 - 2018-04-22 09:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-05-10 17:53 - 2018-04-22 09:38 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-05-10 17:53 - 2018-04-22 09:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-05-10 17:53 - 2018-04-22 09:32 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-05-10 17:53 - 2018-04-22 09:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-05-10 17:53 - 2018-04-22 09:30 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-05-10 17:53 - 2018-04-22 09:27 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-05-10 17:53 - 2018-04-22 09:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-05-10 17:53 - 2018-04-22 09:26 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-05-10 17:53 - 2018-04-22 09:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-05-10 17:53 - 2018-04-22 09:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-05-10 17:53 - 2018-04-22 09:24 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-05-10 17:53 - 2018-04-22 09:18 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-10 17:53 - 2018-04-22 09:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-05-10 17:53 - 2018-04-22 09:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-05-10 17:53 - 2018-04-22 09:08 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-05-10 17:53 - 2018-04-22 09:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-10 17:53 - 2018-04-22 09:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-05-10 17:53 - 2018-04-22 09:04 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-05-10 17:53 - 2018-04-22 09:04 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-05-10 17:53 - 2018-04-22 09:04 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-05-10 17:53 - 2018-04-22 09:04 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-05-10 17:53 - 2018-04-22 09:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-05-10 17:53 - 2018-04-22 09:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-05-10 17:53 - 2018-04-22 09:02 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-05-10 17:53 - 2018-04-22 09:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-05-10 17:53 - 2018-04-22 09:00 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-05-10 17:53 - 2018-04-22 09:00 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-05-10 17:53 - 2018-04-22 08:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-05-10 17:53 - 2018-04-22 08:56 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-05-10 17:53 - 2018-04-22 08:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-05-10 17:53 - 2018-04-22 08:54 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-05-10 17:53 - 2018-04-22 08:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-05-10 17:53 - 2018-04-22 08:53 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-05-10 17:53 - 2018-04-22 08:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-05-10 17:53 - 2018-04-22 08:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-05-10 17:53 - 2018-04-22 08:49 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-05-10 17:53 - 2018-04-22 08:48 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-05-10 17:53 - 2018-04-22 08:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-05-10 17:53 - 2018-04-22 08:46 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-05-10 17:53 - 2018-04-22 08:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-05-10 17:53 - 2018-04-22 08:40 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-05-10 17:53 - 2018-04-22 08:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-05-10 17:53 - 2018-04-22 08:39 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-05-10 17:53 - 2018-04-22 08:37 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-05-10 17:53 - 2018-04-22 08:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-05-10 17:53 - 2018-04-22 08:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-05-10 17:53 - 2018-04-22 08:34 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-05-10 17:53 - 2018-04-22 08:33 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-05-10 17:53 - 2018-04-22 08:31 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-05-10 17:53 - 2018-04-22 08:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-05-10 17:53 - 2018-04-22 08:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-05-10 17:53 - 2018-04-22 08:26 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-05-10 17:53 - 2018-04-22 08:26 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-05-10 17:53 - 2018-04-22 08:26 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-05-10 17:53 - 2018-04-22 08:22 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-05-10 17:53 - 2018-04-22 08:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-05-10 17:53 - 2018-04-22 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-05-10 17:53 - 2018-04-22 08:04 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-05-10 17:53 - 2018-04-22 08:03 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-05-10 17:53 - 2018-04-18 18:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-10 17:53 - 2018-04-18 18:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2018-05-10 17:53 - 2018-04-18 17:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-10 17:53 - 2018-04-18 17:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2018-05-10 17:53 - 2018-04-18 17:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2018-05-10 17:53 - 2018-04-18 17:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2018-05-10 17:53 - 2018-04-11 18:38 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-10 17:53 - 2018-04-11 18:38 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-10 17:53 - 2018-04-11 18:36 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-10 17:53 - 2018-04-11 18:36 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-10 17:53 - 2018-04-10 21:45 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-05-10 17:53 - 2018-04-10 18:36 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2018-05-10 17:53 - 2018-04-10 18:36 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2018-05-10 17:53 - 2018-04-10 18:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-10 17:53 - 2018-04-10 18:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-10 17:53 - 2018-04-10 18:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-10 17:53 - 2018-04-10 18:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-10 17:53 - 2018-04-10 18:00 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2018-05-10 17:53 - 2018-04-10 17:54 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-10 17:53 - 2018-04-10 17:48 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-05-10 17:53 - 2018-04-10 17:47 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-10 17:53 - 2018-04-10 17:47 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-05-10 17:53 - 2018-04-07 18:41 - 000371392 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2018-05-10 17:52 - 2018-04-23 02:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 02:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:19 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-05-10 17:52 - 2018-04-23 01:19 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-05-10 17:52 - 2018-04-23 01:19 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-05-10 17:52 - 2018-04-23 01:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-10 17:52 - 2018-04-23 01:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-04-29 18:22 - 2018-04-29 18:22 - 007256272 _____ (Malwarebytes) C:\Users\ELEFANT 1-NTB\Downloads\adwcleaner_7.1.0.0.exe
2018-04-29 18:03 - 2018-03-19 00:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2018-04-29 18:03 - 2018-03-19 00:11 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2018-04-29 18:03 - 2018-03-14 19:16 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2018-04-29 18:03 - 2018-03-14 19:12 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-04-29 18:03 - 2018-03-14 19:12 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-04-29 18:03 - 2018-03-14 19:12 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-04-29 18:03 - 2018-03-14 19:07 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2018-04-29 18:03 - 2018-03-14 18:57 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-04-29 18:03 - 2018-03-14 18:57 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-04-29 18:03 - 2018-03-14 18:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-04-29 18:03 - 2018-03-14 18:57 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2018-04-29 18:03 - 2018-03-14 18:53 - 002651648 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-04-29 18:03 - 2018-03-14 18:53 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-04-29 18:03 - 2018-03-14 18:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-04-29 18:03 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-04-29 18:03 - 2018-03-14 18:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-04-29 18:03 - 2018-03-14 18:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-04-29 18:03 - 2018-03-14 18:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-04-28 08:20 - 2018-04-28 08:30 - 000000000 ____D C:\Users\ELEFANT 1-NTB\Desktop\foto julian

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-05-16 08:54 - 2009-07-14 06:45 - 000018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-05-16 08:54 - 2009-07-14 06:45 - 000018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-05-16 08:48 - 2016-11-19 07:46 - 000000000 ____D C:\Users\ELEFANT 1-NTB\AppData\LocalLow\Mozilla
2018-05-16 08:42 - 2012-01-31 08:08 - 000000000 ___HD C:\ASUS.DAT
2018-05-16 08:41 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-05-15 20:59 - 2017-08-15 18:03 - 000000000 ____D C:\Users\ELEFANT 1-NTB\AppData\Roaming\vlc
2018-05-15 12:05 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-05-15 11:49 - 2017-02-28 12:29 - 000000000 ____D C:\Windows\system32\DAX3
2018-05-15 11:49 - 2017-02-28 12:29 - 000000000 ____D C:\Windows\system32\DAX2
2018-05-15 11:48 - 2011-11-19 22:15 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2018-05-15 11:48 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-05-14 20:49 - 2016-03-29 22:42 - 000000000 ____D C:\Users\ELEFANT 1-NTB\Desktop\iliadis
2018-05-14 20:47 - 2014-08-11 09:53 - 000000000 ____D C:\Program Files (x86)\Labels
2018-05-14 20:40 - 2018-02-11 21:48 - 000000000 ____D C:\Users\ELEFANT 1-NTB\Desktop\daně 2018
2018-05-14 20:40 - 2016-10-25 08:48 - 000000000 ____D C:\Users\ELEFANT 1-NTB\Desktop\datovka
2018-05-12 17:37 - 2016-02-27 13:39 - 000000000 ____D C:\Program Files\trend micro
2018-05-12 16:32 - 2017-12-12 10:26 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-05-12 16:32 - 2013-12-03 11:20 - 000000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-05-11 23:54 - 2016-07-15 04:07 - 000000000 ____D C:\Windows\rescache
2018-05-11 21:20 - 2011-02-19 07:36 - 000680996 _____ C:\Windows\system32\perfh005.dat
2018-05-11 21:20 - 2011-02-19 07:36 - 000145706 _____ C:\Windows\system32\perfc005.dat
2018-05-11 21:20 - 2009-07-14 07:13 - 001617002 _____ C:\Windows\system32\PerfStringBackup.INI
2018-05-11 21:14 - 2009-07-14 07:08 - 000032602 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-05-11 21:14 - 2009-07-14 06:45 - 000337592 _____ C:\Windows\system32\FNTCACHE.DAT
2018-05-10 19:20 - 2013-08-02 09:26 - 000000000 ____D C:\Windows\system32\MRT
2018-05-10 19:16 - 2017-10-11 13:53 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-05-10 19:15 - 2012-01-31 08:13 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-05-10 19:10 - 2012-01-31 14:44 - 001592652 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-05-07 19:15 - 2013-05-23 12:35 - 000000000 ____D C:\Users\ELEFANT 1-NTB\AppData\Local\CrashDumps
2018-05-06 08:51 - 2016-11-18 22:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-05-06 08:51 - 2013-10-29 11:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-04-29 18:30 - 2016-08-14 17:08 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-04-29 18:11 - 2012-01-31 04:17 - 001672780 ____H C:\Users\ELEFANT 1-NTB\AppData\Local\IconCache.db.backup
2018-04-28 19:19 - 2013-12-03 11:21 - 000002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-04-28 19:19 - 2013-12-03 11:21 - 000002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-04-19 17:56 - 2016-04-05 22:25 - 000000000 ____D C:\Users\ELEFANT 1-NTB\AppData\Roaming\uTorrent
2018-04-17 16:39 - 2014-12-11 10:36 - 000000000 ____D C:\Windows\system32\appraiser

==================== Files in the root of some directories =======

2015-10-08 13:32 - 2015-10-29 12:56 - 000005120 _____ () C:\Users\ELEFANT 1-NTB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-10 18:28

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12.05.2018
Ran by ELEFANT 1-NTB (16-05-2018 08:55:05)
Running from C:\Users\ELEFANT 1-NTB\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-01-31 06:07:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4233113243-3106577537-698532162-500 - Administrator - Disabled)
ELEFANT 1-NTB (S-1-5-21-4233113243-3106577537-698532162-1000 - Administrator - Enabled) => C:\Users\ELEFANT 1-NTB
Guest (S-1-5-21-4233113243-3106577537-698532162-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4233113243-3106577537-698532162-1004 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (HKLM-x32\...\{0821D14F-A0CF-470D-88ED-E255B4535D34}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
„Windows Live Mail“ (HKLM-x32\...\{ACE75A49-60B1-4FEE-AE3D-6865F565DF6D}) (Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (HKLM-x32\...\{DC0B6883-E059-44F8-8D82-E8904670EC3F}) (Version: 16.4.3528.0331 - „Microsoft Corporation“) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
AirLive MFP Server Utilities (HKLM-x32\...\{94AEAB3C-36E5-4CB7-BEE3-2B7C3C78E9E6}) (Version: 2.0.5.16 - OvisLink Corp.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Alcor Micro USB Card Reader (HKLM-x32\...\{4555BB9E-E715-4260-A178-E8EFD2B653E3}) (Version: 1.2.0117.08443 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.2.0117.08443 - Alcor Micro Corp.)
Ashampoo Burning Studio 6 FREE v.6.80 (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.0 - ashampoo GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.1.0 - ASUSTeK Computer Inc.)
ASUS Power4Gear Hybrid (HKLM\...\{33B98264-A889-4913-A0CA-C364A75032B3}) (Version: 1.1.45 - ASUS)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.84.161 - eCareme Technologies, Inc.)
AsusScr_K3 Series_ENG (HKLM-x32\...\AsusScr_K3 Series_ENG) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.9.157 - ASUSTEK)
Atheros Driver Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0010 - ASUS)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.40 - Atheros Communications)
Bookworm Deluxe (HKLM-x32\...\Bookworm Deluxe) (Version: - Oberon Media Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.68.1077 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
Cooking Dash (HKLM-x32\...\Cooking Dash) (Version: - Oberon Media Inc.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
ETDWare PS/2-X64 8.0.5.3_WHQL (HKLM\...\Elantech) (Version: 8.0.5.3 - ELAN Microelectronic Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Fotoattēlu galerija (HKLM-x32\...\{FFF8279A-9FFE-4A3B-A7CD-14143B3D67AC}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogaléria (HKLM-x32\...\{5B87607E-E781-49C5-9891-80990E45BCA1}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerii (HKLM-x32\...\{3F597A24-BC7C-49AC-B96A-F30934C1AC3F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foto-galerija (HKLM-x32\...\{4A45C9C7-5EB4-4C25-A0CB-8AD08D642F0A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (HKLM-x32\...\{5D5B5672-1A0F-4412-B6A0-3A16706DE82D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (HKLM-x32\...\{78D9B622-3BB0-4A44-B7BF-3FECCA0CC63D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (HKLM-x32\...\{6F19A9AE-85C6-4EBB-BADC-CC1B8B9F3F91}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (HKLM-x32\...\{77655DF6-A143-4A25-A5F8-127C8CE63EDA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (HKLM-x32\...\{429BEB2D-4EB8-49E6-A135-823FCB2AAAC5}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (HKLM-x32\...\{343C0612-37DC-4914-95A7-0845EE0C8F04}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1) (Version: 6.2.1.1 - Oberon Media, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.139 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Governor of Poker (HKLM-x32\...\Governor of Poker) (Version: - Oberon Media Inc.)
Hotel Dash Suite Success (HKLM-x32\...\Hotel Dash Suite Success) (Version: - Oberon Media Inc.)
HP Support Solutions Framework (HKLM-x32\...\{579A990C-3855-4838-AF23-354CE2264BC0}) (Version: 12.4.18.7 - HP)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{0A0C9DBA-5AB2-43F1-9932-A60DAA6EBEFC}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{0CD05078-D4F3-4006-8726-B01E10A89B28}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{1FA9CD0B-A51B-405F-9F25-D83D36F89404}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3777096E-85F8-426B-A4C7-0935B22D3F99}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{57430A7B-EB42-41ED-88F8-ACB2DEDB8416}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{97B23646-3F2F-4E3F-AE0A-763BA2ECB8A2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{A27180D0-17BB-498B-89FF-A72656B85978}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{AC20CAEC-CC13-4877-A7DC-30BC97936645}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DAE8CC57-EBF5-4D46-8572-9A0C769D6F16}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD3880DF-4CA8-4523-A354-7F8F5A4EB3DC}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{FDF7A21E-3AEF-46AB-AC22-2BDFF8C9B553}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 59.0.3.6691 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
OKI Color Swatch Utility (HKLM-x32\...\{A344F95E-E51A-450C-8F84-C940BF61903E}) (Version: 2.1.10 - Okidata)
OKI Network Extension (HKLM-x32\...\{38ADB9A6-798C-11D6-A855-00105A80791C}) (Version: 1.00.000 - Okidata)
OpenOffice.org 3.3 (HKLM-x32\...\{10B43A43-FF73-47FD-83E8-A503E84F9ED6}) (Version: 3.3.9567 - OpenOffice.org)
paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC)
Poczta usługi Windows Live (HKLM-x32\...\{45FF54A4-ECD4-455D-89A2-D209737AD726}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (HKLM-x32\...\{8FFD72FC-4FFA-472D-9F76-AEC85F602F9D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pošta Windows Live (HKLM-x32\...\{125D677D-7C65-4660-8E1C-68EF9F32F291}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version: - )
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Software602 Form Filler (HKLM-x32\...\{04703FE3-1A8B-4467-88E6-3D6A1A0FA65A}) (Version: 4.70 - Software602 a.s.)
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.00.0000 - Virage Logic, Corp.)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
Unity Web Player (HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\UnityWebPlayer) (Version: 5.3.8f2 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.5.1 - VideoLAN)
Vypínač na dobrou noc verze 2.0 (HKLM-x32\...\Vypínač na dobrou noc_is1) (Version: - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)
Word Explorer (HKLM-x32\...\{656B3DB0-A0FC-4B62-8D88-898D52889ED3}) (Version: 2.00.0000 - Jourist Gmbh) Hidden
Word Explorer (HKLM-x32\...\InstallShield_{656B3DB0-A0FC-4B62-8D88-898D52889ED3}) (Version: 2.00.0000 - Jourist Gmbh)
World of Goo (HKLM-x32\...\World of Goo) (Version: - Oberon Media Inc.)
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_EN_is1) (Version: 16.0.1.7 - ZONER software)
Фотогалерия (HKLM-x32\...\{3AAB928E-40E9-4DC5-A9CC-FB979E1B2C03}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4233113243-3106577537-698532162-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4233113243-3106577537-698532162-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4233113243-3106577537-698532162-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4233113243-3106577537-698532162-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4233113243-3106577537-698532162-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2011-06-01] (Atheros Commnucations)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2011-06-01] (Atheros Commnucations)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2013-08-06] (Piriform Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-29] (Intel Corporation)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2013-08-06] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {221304D0-3740-4B85-8200-2669F47854C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {2558A67B-37B8-4247-8E93-3CAFC0844709} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2011-06-01] (ASUS)
Task: {2D50B8BE-0256-4590-9ABE-0BE377693357} - System32\Tasks\ESTsoft RunAsStdUser 12430924Task => C:\Program Files (x86)\ESTsoft\ALZip\ALZip.exe
Task: {2F16A6A6-7F82-4489-8F13-8EAE59E1B200} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-16] (Adobe Systems Incorporated)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {507F065F-2F1A-42E6-8C26-D5CC350CFD4D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {5D299F9F-CBBD-42B6-83CA-7E02CBA724DB} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {62A82050-FB1C-4A7B-8A1E-02298FB14508} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {68BA8533-563A-4C7D-A25F-B329FDFD0693} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {6A400367-9119-4691-9BD8-8A6395642A97} - System32\Tasks\{451BFF25-0398-4789-BD19-0C75AFEDA912} => C:\Windows\system32\pcalua.exe -a "D:\filmy\hra o trůny s07\s07e04\Hra o trůny Game of Thrones S07E04 - The Spoils of War [WebRip][720p]\vlc-media-player-seznam-listicka.exe" -d "D:\filmy\hra o trůny s07\s07e04\Hra o trůny Game of Thrones S07E04 - The Spoils of War [WebRip][720p]"
Task: {6E358667-FCC7-4870-95E7-0209AE93CE84} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {71FC0286-E2FC-4242-8E47-DA617E5C62FC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-14] (Dropbox, Inc.)
Task: {77E44DEA-D440-4F36-9FF3-86020E0D25AC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {7C5A679E-09B6-4493-BD8A-F6CB60455395} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e9205fdf88fb => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {7D7E71EC-B379-45A9-A297-49ED17F68D6B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor)
Task: {83B3EB3A-BC97-4F83-908D-6D01ED449505} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {83DE16DA-121B-4747-B28C-CE4219F71C19} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-14] (Dropbox, Inc.)
Task: {88EB0F3B-FA08-4634-91F6-45BFA01F53C7} - System32\Tasks\{6C7EC676-060E-413F-A9C7-785C5A2B841F} => C:\Windows\system32\pcalua.exe -a "C:\Users\ELEFANT 1-NTB\Downloads\RegCleaner.exe" -d "C:\Users\ELEFANT 1-NTB\Downloads"
Task: {95F078C2-2749-4247-BDFA-3DA4A87D1A04} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18] (ASUS)
Task: {9A2AC2D6-BF0D-4961-AA43-4EB8E8523532} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {BA540AB7-DDBB-4698-AC66-D96FC751E66E} - System32\Tasks\{29ABDCEF-0FD2-4AD7-89C0-09E7185FBA6B} => C:\Windows\system32\pcalua.exe -a F:\SISetup.exe -d F:\
Task: {C5372121-6228-4566-914C-FC897FAA0E40} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4233113243-3106577537-698532162-1000
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {CF9996A6-5E2C-4422-952C-485629B974CC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E5535227-9652-4305-85DB-9DA2F40D7E4E} - System32\Tasks\GoogleUpdateTaskMachineUA1d33db29eea1767 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {EE068CD8-EC57-48F7-AA50-D582EFB3F5BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-04-06] (Hewlett-Packard)
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2016-02-29 01:13 - 2012-09-29 14:25 - 000409088 _____ () C:\Windows\System32\HPM1210LM.DLL
2016-02-29 01:13 - 2012-09-29 14:25 - 000074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HPM1210PP.dll
2011-07-06 14:51 - 2011-05-24 02:16 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2010-09-24 02:53 - 2010-09-24 02:53 - 001601536 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
2012-02-25 13:35 - 2010-01-22 16:28 - 000884736 _____ () C:\Program Files (x86)\AirLive MFP Server Utilities\MFPAgent.exe
2008-10-30 11:46 - 2008-10-30 11:46 - 000057344 _____ () C:\Program Files (x86)\Word Explorer\Launch.exe
2012-02-25 13:35 - 2009-12-15 16:22 - 000627712 _____ () C:\Windows\system32\ServoApp.exe
2012-02-25 13:35 - 2009-12-15 16:22 - 000325632 _____ () C:\Windows\system32\ddschk.dll
2018-04-12 22:15 - 2018-04-12 22:15 - 000083784 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2005-08-16 13:57 - 2005-08-16 13:57 - 000061440 _____ () C:\Program Files (x86)\Word Explorer\XStr32.Dll
2005-08-29 13:01 - 2005-08-29 13:01 - 000065536 _____ () C:\Program Files (x86)\Word Explorer\Supp32.Dll
2005-08-16 13:57 - 2005-08-16 13:57 - 000049152 _____ () C:\Program Files (x86)\Word Explorer\XFile32.Dll
2006-02-13 13:13 - 2006-02-13 13:13 - 000036864 _____ () C:\Program Files (x86)\Word Explorer\CWHOOK32.dll
2009-11-03 00:20 - 2009-11-03 00:20 - 000619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-03 00:23 - 2009-11-03 00:23 - 000013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\ProgramData\Temp:81F83028 [294]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4233113243-3106577537-698532162-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FF0E14E4-C858-4882-BB0F-5B5456352724}] => (Allow) LPort=5353
FirewallRules: [{4664F37F-1F3E-4729-9525-81A1AED2C27C}] => (Allow) LPort=8182
FirewallRules: [TCP Query User{66C982F6-4F51-4E90-8E8B-0A25DEB3C1FF}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [UDP Query User{F72CBBAF-00BC-40F4-9266-FDCEBA533F43}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [{23D7467B-7CEE-4BD3-8FC5-F03D9C8A941F}] => (Allow) LPort=14135
FirewallRules: [{C4376C5F-959C-42A0-B385-111703ED041A}] => (Allow) LPort=14135
FirewallRules: [{43549C2A-F555-49D2-B9E3-E9BA122B7B62}] => (Allow) LPort=13621
FirewallRules: [{A1DD9827-224F-4174-B536-9B0BE12A4D8A}] => (Allow) LPort=13878
FirewallRules: [{AE4574A7-543D-4DCD-B33B-73B12CCF64AF}] => (Allow) LPort=13364
FirewallRules: [{7784BACB-7449-43EA-B899-9F5C7745BD44}] => (Allow) LPort=69
FirewallRules: [TCP Query User{F0A33A6A-0F5C-400C-9968-A82FF2B1F996}C:\program files (x86)\airlive mfp server utilities\mfpagent.exe] => (Allow) C:\program files (x86)\airlive mfp server utilities\mfpagent.exe
FirewallRules: [UDP Query User{D9B70A28-FC45-4B28-B667-1D33EA2A7464}C:\program files (x86)\airlive mfp server utilities\mfpagent.exe] => (Allow) C:\program files (x86)\airlive mfp server utilities\mfpagent.exe
FirewallRules: [{EF899AB9-7BA6-4871-87E5-E1BC8DE38ACC}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{6EA09447-840E-4949-B66F-5A857572CDFD}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{E6F7EEEC-8BDE-4BBC-851A-909D6DD48105}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A7D31CE7-4678-4701-A9A3-0F0D581A62C9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{9F9535D8-359E-4BC1-A5C4-ABCE26AD2F98}] => (Allow) C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{A28087AD-80C8-4D00-BAB6-E001445248CC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2B932FA0-D02C-4B5C-9AF4-8EDEC8BA8963}] => (Allow) LPort=2869
FirewallRules: [{F9614556-5EDC-4F00-BF75-E487B813026E}] => (Allow) LPort=1900
FirewallRules: [{FBCEDE14-62B7-4B9B-AE8E-352E4DF6CA86}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8DE901FF-C3C5-451F-9504-9923DE247744}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{906AB58B-63D4-4EC4-ABDE-04735665905E}C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{BA7DD74E-BAEE-4758-8AF9-AB5523B1E1A7}C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{37E6C584-7972-4CCB-9B99-41467CAF9FDA}C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{217228AC-B2BB-4CC6-9629-255035C3C4D9}C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\elefant 1-ntb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{069FF9CA-D5A4-4444-82C6-20837CBF46FB}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Block) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [UDP Query User{B67978E1-C0EA-4D9A-B5F5-84825A647521}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Block) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe
FirewallRules: [{D3DE6B3F-688A-47B8-B250-12613E9E5EA2}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{7465AC69-A07C-4726-BC5B-7F2DDABAA08F}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe
FirewallRules: [{42D6F1C8-042B-4E39-912B-29AC0EC55951}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

28-04-2018 19:24:43 Windows Update
29-04-2018 18:04:15 Windows Update
02-05-2018 18:30:56 Windows Update
06-05-2018 08:57:49 Windows Update
10-05-2018 17:13:46 Windows Update
10-05-2018 19:07:58 Windows Update
14-05-2018 07:06:42 Windows Update
15-05-2018 11:46:07 Windows Update

==================== Faulty Device Manager Devices =============

Name: Bluetooth Module
Description: Bluetooth Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/16/2018 08:54:22 AM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhost (3528) Pokus o otevření souboru C:\Users\ELEFANT 1-NTB\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (05/15/2018 09:00:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ASUSWSShellExt64.dll, verze: 1.1.0.27, časové razítko: 0x4c7f631d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000051da
ID chybujícího procesu: 0x5e0
Čas spuštění chybující aplikace: 0x01d3ec7e9eb6d4b9
Cesta k chybující aplikaci: C:\Windows\explorer.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll
ID zprávy: 34495f4d-5872-11e8-be70-5404a636084d

Error: (05/15/2018 08:57:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ASUSWSShellExt64.dll, verze: 1.1.0.27, časové razítko: 0x4c7f631d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000051da
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3

Error: (05/15/2018 08:57:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24117, časové razítko: 0x5add228d
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002a1c5
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3

Error: (05/15/2018 08:44:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ASUSWSShellExt64.dll, verze: 1.1.0.27, časové razítko: 0x4c7f631d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000051da
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3

Error: (05/15/2018 08:31:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24117, časové razítko: 0x5add228d
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000002a1c5
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3

Error: (05/14/2018 08:48:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24117, časové razítko: 0x5add228d
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001f022
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3

Error: (05/14/2018 08:47:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.23537, časové razítko: 0x57c44efe
Název chybujícího modulu: ASUSWSShellExt64.dll, verze: 1.1.0.27, časové razítko: 0x4c7f631d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000051da
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3


System errors:
=============
Error: (05/16/2018 08:48:08 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (05/16/2018 08:44:32 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (05/16/2018 08:43:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Dropbox Update Service (dbupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (05/16/2018 08:43:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Dropbox Update Service (dbupdate) bylo dosaženo časového limitu (30000 ms).

Error: (05/16/2018 08:43:15 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/16/2018 08:43:15 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535

Error: (05/16/2018 08:43:15 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Seskupování v sítích peer-to-peer závisí na službě Protokol PNRP (Peer Name Resolution Protocol), která neuspěla při spuštění v důsledku následující chyby:
%%-2140993535

Error: (05/16/2018 08:43:15 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Protokol PNRP (Peer Name Resolution Protocol) byla ukončena s následující chybou:
%%-2140993535


CodeIntegrity:
===================================

Date: 2014-08-18 14:45:31.623
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:45:31.432
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:35:19.363
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:35:19.203
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:28:21.125
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:28:20.938
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:23:17.159
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-08-18 14:23:16.988
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mvusbews.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU B940 @ 2.00GHz
Percentage of memory in use: 63%
Total physical RAM: 3873.14 MB
Available physical RAM: 1432.82 MB
Total Virtual: 7744.45 MB
Available Virtual: 5589.19 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:77.89 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:254.46 GB) (Free:49.12 GB) NTFS
Drive e: (tan_show_17_skup) (CDROM) (Total:4.27 GB) (Free:0 GB) UDF


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 496B9619)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=186.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=254.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#6 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {1a2b0e0b-826e-11e4-88c8-0008ca270b54} - G:\LG_PC_Programs.exe
    HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {700adf75-e6a9-11e6-a491-0008ca270b54} - F:\Lenovo_Suite.exe
    HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {9be02b1c-6082-11e1-b957-0008ca270b54} - F:\SISetup.exe
    Startup: C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-09-17]
    CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
    SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
    S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
    S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
    Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
    Task: {62A82050-FB1C-4A7B-8A1E-02298FB14508} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
    Task: {6A400367-9119-4691-9BD8-8A6395642A97} - System32\Tasks\{451BFF25-0398-4789-BD19-0C75AFEDA912} => C:\Windows\system32\pcalua.exe -a "D:\filmy\hra o trůny s07\s07e04\Hra o trůny  Game of Thrones S07E04 - The Spoils of War [WebRip][720p]\vlc-media-player-seznam-listicka.exe" -d "D:\filmy\hra o trůny s07\s07e04\Hra o trůny  Game of Thrones S07E04 - The Spoils of War [WebRip][720p]"
    Task: {83B3EB3A-BC97-4F83-908D-6D01ED449505} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
    Task: {88EB0F3B-FA08-4634-91F6-45BFA01F53C7} - System32\Tasks\{6C7EC676-060E-413F-A9C7-785C5A2B841F} => C:\Windows\system32\pcalua.exe -a "C:\Users\ELEFANT 1-NTB\Downloads\RegCleaner.exe" -d "C:\Users\ELEFANT 1-NTB\Downloads"
    Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
    Task: {BA540AB7-DDBB-4698-AC66-D96FC751E66E} - System32\Tasks\{29ABDCEF-0FD2-4AD7-89C0-09E7185FBA6B} => C:\Windows\system32\pcalua.exe -a F:\SISetup.exe -d F:\
    Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
    Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
    AlternateDataStreams: C:\Windows:nlsPreferences [386]
    AlternateDataStreams: C:\ProgramData\Temp:81F83028 [294]
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#7 Příspěvek od ultrakb »

Fix result of Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Ran by ELEFANT 1-NTB (18-05-2018 09:20:32) Run:1
Running from C:\Users\ELEFANT 1-NTB\Desktop
Loaded Profiles: ELEFANT 1-NTB (Available Profiles: ELEFANT 1-NTB)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {1a2b0e0b-826e-11e4-88c8-0008ca270b54} - G:\LG_PC_Programs.exe
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {700adf75-e6a9-11e6-a491-0008ca270b54} - F:\Lenovo_Suite.exe
HKU\S-1-5-21-4233113243-3106577537-698532162-1000\...\MountPoints2: {9be02b1c-6082-11e1-b957-0008ca270b54} - F:\SISetup.exe
Startup: C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-09-17]
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4233113243-3106577537-698532162-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {62A82050-FB1C-4A7B-8A1E-02298FB14508} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {6A400367-9119-4691-9BD8-8A6395642A97} - System32\Tasks\{451BFF25-0398-4789-BD19-0C75AFEDA912} => C:\Windows\system32\pcalua.exe -a "D:\filmy\hra o tr�ny s07\s07e04\Hra o tr�ny Game of Thrones S07E04 - The Spoils of War [WebRip][720p]\vlc-media-player-seznam-listicka.exe" -d "D:\filmy\hra o tr�ny s07\s07e04\Hra o tr�ny Game of Thrones S07E04 - The Spoils of War [WebRip][720p]"
Task: {83B3EB3A-BC97-4F83-908D-6D01ED449505} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {88EB0F3B-FA08-4634-91F6-45BFA01F53C7} - System32\Tasks\{6C7EC676-060E-413F-A9C7-785C5A2B841F} => C:\Windows\system32\pcalua.exe -a "C:\Users\ELEFANT 1-NTB\Downloads\RegCleaner.exe" -d "C:\Users\ELEFANT 1-NTB\Downloads"
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {BA540AB7-DDBB-4698-AC66-D96FC751E66E} - System32\Tasks\{29ABDCEF-0FD2-4AD7-89C0-09E7185FBA6B} => C:\Windows\system32\pcalua.exe -a F:\SISetup.exe -d F:\
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\ProgramData\Temp:81F83028 [294]

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"HKU\S-1-5-21-4233113243-3106577537-698532162-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a2b0e0b-826e-11e4-88c8-0008ca270b54}" => removed successfully
HKLM\Software\Classes\CLSID\{1a2b0e0b-826e-11e4-88c8-0008ca270b54} => not found
"HKU\S-1-5-21-4233113243-3106577537-698532162-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{700adf75-e6a9-11e6-a491-0008ca270b54}" => removed successfully
HKLM\Software\Classes\CLSID\{700adf75-e6a9-11e6-a491-0008ca270b54} => not found
"HKU\S-1-5-21-4233113243-3106577537-698532162-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9be02b1c-6082-11e1-b957-0008ca270b54}" => removed successfully
HKLM\Software\Classes\CLSID\{9be02b1c-6082-11e1-b957-0008ca270b54} => not found
C:\Users\ELEFANT 1-NTB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk => moved successfully
"HKLM\SOFTWARE\Policies\Google" => removed successfully
"HKU\S-1-5-21-4233113243-3106577537-698532162-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-4233113243-3106577537-698532162-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKU\S-1-5-21-4233113243-3106577537-698532162-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => removed successfully
HKLM\Software\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => not found
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
"HKLM\System\CurrentControlSet\Services\AndNetDiag" => removed successfully
AndNetDiag => service removed successfully
"HKLM\System\CurrentControlSet\Services\ANDNetModem" => removed successfully
ANDNetModem => service removed successfully
"HKLM\System\CurrentControlSet\Services\andnetndis" => removed successfully
andnetndis => service removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsBackup\ConfigNotification" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{62A82050-FB1C-4A7B-8A1E-02298FB14508}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62A82050-FB1C-4A7B-8A1E-02298FB14508}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTask" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A400367-9119-4691-9BD8-8A6395642A97}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A400367-9119-4691-9BD8-8A6395642A97}" => removed successfully
C:\Windows\System32\Tasks\{451BFF25-0398-4789-BD19-0C75AFEDA912} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{451BFF25-0398-4789-BD19-0C75AFEDA912}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{83B3EB3A-BC97-4F83-908D-6D01ED449505}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83B3EB3A-BC97-4F83-908D-6D01ED449505}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{88EB0F3B-FA08-4634-91F6-45BFA01F53C7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88EB0F3B-FA08-4634-91F6-45BFA01F53C7}" => removed successfully
C:\Windows\System32\Tasks\{6C7EC676-060E-413F-A9C7-785C5A2B841F} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6C7EC676-060E-413F-A9C7-785C5A2B841F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC4E5ACF-89F7-4220-BA21-81EE183975E2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC4E5ACF-89F7-4220-BA21-81EE183975E2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\AitAgent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA540AB7-DDBB-4698-AC66-D96FC751E66E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA540AB7-DDBB-4698-AC66-D96FC751E66E}" => removed successfully
C:\Windows\System32\Tasks\{29ABDCEF-0FD2-4AD7-89C0-09E7185FBA6B} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{29ABDCEF-0FD2-4AD7-89C0-09E7185FBA6B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\CorruptionDetector" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector" => removed successfully
C:\Windows => ":nlsPreferences" ADS removed successfully
C:\ProgramData\Temp => ":81F83028" ADS removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15565492 B
Java, Flash, Steam htmlcache => 3094 B
Windows/system/drivers => 440933439 B
Edge => 0 B
Chrome => 205463451 B
Firefox => 240008438 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 6924 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33186 B
systemprofile32 => 33618 B
LocalService => 0 B
NetworkService => 155488370 B
ELEFANT 1-NTB => 9085728 B

RecycleBin => 97132410 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:23:52 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#8 Příspěvek od Conder »

:arrow: Spusti kontrolu integrity systemovych suborov:
  • Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
  • Skopiruj a spusti prikaz:

    Kód: Vybrat vše

    DISM.exe /Online /Cleanup-image /Restorehealth
  • Po dokonceni skopiruj a spusti druhy prikaz:

    Kód: Vybrat vše

    sfc /scannow
  • Po dokonceni obidvoch prikazov skopiruj a spusti tento prikaz:

    Kód: Vybrat vše

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt" && copy %windir%\logs\dism\dism.log %userprofile%\desktop\dism.txt
  • Na ploche sa vytvoria subory sfcdetails.txt a dism.txt, tieto subory zabal ho do archivu RAR alebo ZIP a posli ako prilohu k dalsiemu prispevku
  • Restartuj PC a napis ako sa chova PC
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#9 Příspěvek od ultrakb »

první a poslední příkaz nelze spustit :-(

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#10 Příspěvek od Conder »

:arrow: Pardon, na Win 7 ide spustit iba prikaz "sfc /scannow". Ak si ho uz spustil, nastala nejaka zmena?
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#11 Příspěvek od ultrakb »

Průzkumník se stále restartuje. Asi bude nutné přeinstalovat komplet.

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#12 Příspěvek od Conder »

:arrow: Otvor prikazovy riadok ako spravca a spusti tento prikaz:
  • Kód: Vybrat vše

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
    Na ploche sa vytvori subor sfcdetails.txt, posli ho ako prilohu k dalsiemu prispevku
:arrow: Mas nainstalovane vsetky dolezite aktualizacie - Windows Update?
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#13 Příspěvek od ultrakb »

aktualizace mám

2018-05-21 06:49:52, Info CSI 00000009 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:49:52, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2018-05-21 06:49:54, Info CSI 0000000c [SR] Verify complete
2018-05-21 06:49:55, Info CSI 0000000d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:49:55, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2018-05-21 06:49:57, Info CSI 00000010 [SR] Verify complete
2018-05-21 06:49:58, Info CSI 00000011 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:49:58, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2018-05-21 06:49:59, Info CSI 00000014 [SR] Verify complete
2018-05-21 06:50:00, Info CSI 00000015 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:00, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:03, Info CSI 00000018 [SR] Verify complete
2018-05-21 06:50:04, Info CSI 00000019 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:04, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:05, Info CSI 0000001c [SR] Verify complete
2018-05-21 06:50:06, Info CSI 0000001d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:06, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:08, Info CSI 00000020 [SR] Verify complete
2018-05-21 06:50:09, Info CSI 00000021 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:09, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:10, Info CSI 00000024 [SR] Verify complete
2018-05-21 06:50:11, Info CSI 00000025 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:11, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:13, Info CSI 00000028 [SR] Verify complete
2018-05-21 06:50:14, Info CSI 00000029 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:14, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:16, Info CSI 0000002c [SR] Verify complete
2018-05-21 06:50:16, Info CSI 0000002d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:16, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:18, Info CSI 00000030 [SR] Verify complete
2018-05-21 06:50:19, Info CSI 00000031 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:19, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:20, Info CSI 00000034 [SR] Verify complete
2018-05-21 06:50:21, Info CSI 00000035 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:21, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:22, Info CSI 00000038 [SR] Verify complete
2018-05-21 06:50:23, Info CSI 00000039 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:23, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:25, Info CSI 0000003c [SR] Verify complete
2018-05-21 06:50:25, Info CSI 0000003d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:25, Info CSI 0000003e [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:27, Info CSI 00000040 [SR] Verify complete
2018-05-21 06:50:28, Info CSI 00000041 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:28, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:30, Info CSI 00000044 [SR] Verify complete
2018-05-21 06:50:30, Info CSI 00000045 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:30, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:32, Info CSI 00000048 [SR] Verify complete
2018-05-21 06:50:33, Info CSI 00000049 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:33, Info CSI 0000004a [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:35, Info CSI 0000004c [SR] Verify complete
2018-05-21 06:50:35, Info CSI 0000004d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:35, Info CSI 0000004e [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:38, Info CSI 00000050 [SR] Verify complete
2018-05-21 06:50:39, Info CSI 00000051 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:39, Info CSI 00000052 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:41, Info CSI 00000054 [SR] Verify complete
2018-05-21 06:50:42, Info CSI 00000055 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:42, Info CSI 00000056 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:44, Info CSI 00000058 [SR] Verify complete
2018-05-21 06:50:45, Info CSI 00000059 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:45, Info CSI 0000005a [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:46, Info CSI 0000005c [SR] Verify complete
2018-05-21 06:50:47, Info CSI 0000005d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:47, Info CSI 0000005e [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:49, Info CSI 00000060 [SR] Verify complete
2018-05-21 06:50:49, Info CSI 00000061 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:49, Info CSI 00000062 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:51, Info CSI 00000064 [SR] Verify complete
2018-05-21 06:50:52, Info CSI 00000065 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:52, Info CSI 00000066 [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:54, Info CSI 00000068 [SR] Verify complete
2018-05-21 06:50:54, Info CSI 00000069 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:54, Info CSI 0000006a [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:56, Info CSI 0000006c [SR] Verify complete
2018-05-21 06:50:57, Info CSI 0000006d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:57, Info CSI 0000006e [SR] Beginning Verify and Repair transaction
2018-05-21 06:50:58, Info CSI 00000070 [SR] Verify complete
2018-05-21 06:50:59, Info CSI 00000071 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:50:59, Info CSI 00000072 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:00, Info CSI 00000074 [SR] Verify complete
2018-05-21 06:51:01, Info CSI 00000075 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:01, Info CSI 00000076 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:02, Info CSI 00000078 [SR] Verify complete
2018-05-21 06:51:03, Info CSI 00000079 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:03, Info CSI 0000007a [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:05, Info CSI 0000007c [SR] Verify complete
2018-05-21 06:51:05, Info CSI 0000007d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:05, Info CSI 0000007e [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:07, Info CSI 00000080 [SR] Verify complete
2018-05-21 06:51:08, Info CSI 00000081 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:08, Info CSI 00000082 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:09, Info CSI 00000084 [SR] Verify complete
2018-05-21 06:51:10, Info CSI 00000085 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:10, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:11, Info CSI 00000088 [SR] Verify complete
2018-05-21 06:51:12, Info CSI 00000089 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:12, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:13, Info CSI 0000008c [SR] Verify complete
2018-05-21 06:51:14, Info CSI 0000008d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:14, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:16, Info CSI 00000090 [SR] Verify complete
2018-05-21 06:51:16, Info CSI 00000091 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:16, Info CSI 00000092 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:20, Info CSI 00000094 [SR] Verify complete
2018-05-21 06:51:20, Info CSI 00000095 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:20, Info CSI 00000096 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:22, Info CSI 00000098 [SR] Verify complete
2018-05-21 06:51:23, Info CSI 00000099 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:23, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:24, Info CSI 0000009c [SR] Verify complete
2018-05-21 06:51:25, Info CSI 0000009d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:25, Info CSI 0000009e [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:28, Info CSI 000000a0 [SR] Verify complete
2018-05-21 06:51:28, Info CSI 000000a1 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:28, Info CSI 000000a2 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:30, Info CSI 000000a4 [SR] Verify complete
2018-05-21 06:51:31, Info CSI 000000a5 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:31, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:32, Info CSI 000000a8 [SR] Verify complete
2018-05-21 06:51:33, Info CSI 000000a9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:33, Info CSI 000000aa [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:34, Info CSI 000000ac [SR] Verify complete
2018-05-21 06:51:35, Info CSI 000000ad [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:35, Info CSI 000000ae [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:37, Info CSI 000000b0 [SR] Verify complete
2018-05-21 06:51:38, Info CSI 000000b1 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:38, Info CSI 000000b2 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:39, Info CSI 000000b4 [SR] Verify complete
2018-05-21 06:51:40, Info CSI 000000b5 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:40, Info CSI 000000b6 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:41, Info CSI 000000b8 [SR] Verify complete
2018-05-21 06:51:42, Info CSI 000000b9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:42, Info CSI 000000ba [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:44, Info CSI 000000bc [SR] Verify complete
2018-05-21 06:51:45, Info CSI 000000bd [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:45, Info CSI 000000be [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:46, Info CSI 000000c0 [SR] Verify complete
2018-05-21 06:51:47, Info CSI 000000c1 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:47, Info CSI 000000c2 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:48, Info CSI 000000c4 [SR] Verify complete
2018-05-21 06:51:49, Info CSI 000000c5 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:49, Info CSI 000000c6 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:51, Info CSI 000000c8 [SR] Verify complete
2018-05-21 06:51:52, Info CSI 000000c9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:52, Info CSI 000000ca [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:53, Info CSI 000000cc [SR] Verify complete
2018-05-21 06:51:54, Info CSI 000000cd [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:54, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:55, Info CSI 000000d0 [SR] Verify complete
2018-05-21 06:51:56, Info CSI 000000d1 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:56, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2018-05-21 06:51:58, Info CSI 000000d4 [SR] Verify complete
2018-05-21 06:51:59, Info CSI 000000d5 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:51:59, Info CSI 000000d6 [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:03, Info CSI 000000d8 [SR] Verify complete
2018-05-21 06:52:04, Info CSI 000000d9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:04, Info CSI 000000da [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:06, Info CSI 000000dc [SR] Verify complete
2018-05-21 06:52:07, Info CSI 000000dd [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:07, Info CSI 000000de [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:09, Info CSI 000000e0 [SR] Verify complete
2018-05-21 06:52:10, Info CSI 000000e1 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:10, Info CSI 000000e2 [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:18, Info CSI 000000e5 [SR] Verify complete
2018-05-21 06:52:18, Info CSI 000000e6 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:18, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:27, Info CSI 000000ea [SR] Verify complete
2018-05-21 06:52:27, Info CSI 000000eb [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:27, Info CSI 000000ec [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:32, Info CSI 000000ef [SR] Verify complete
2018-05-21 06:52:32, Info CSI 000000f0 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:32, Info CSI 000000f1 [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:37, Info CSI 000000f5 [SR] Verify complete
2018-05-21 06:52:38, Info CSI 000000f6 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:38, Info CSI 000000f7 [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:44, Info CSI 000000f9 [SR] Verify complete
2018-05-21 06:52:44, Info CSI 000000fa [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:44, Info CSI 000000fb [SR] Beginning Verify and Repair transaction
2018-05-21 06:52:54, Info CSI 0000011d [SR] Verify complete
2018-05-21 06:52:54, Info CSI 0000011e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:52:54, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:02, Info CSI 00000124 [SR] Verify complete
2018-05-21 06:53:03, Info CSI 00000125 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:03, Info CSI 00000126 [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:09, Info CSI 00000128 [SR] Verify complete
2018-05-21 06:53:09, Info CSI 00000129 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:09, Info CSI 0000012a [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:14, Info CSI 0000012c [SR] Verify complete
2018-05-21 06:53:15, Info CSI 0000012d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:15, Info CSI 0000012e [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:21, Info CSI 00000130 [SR] Verify complete
2018-05-21 06:53:21, Info CSI 00000131 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:21, Info CSI 00000132 [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:26, Info CSI 00000134 [SR] Verify complete
2018-05-21 06:53:27, Info CSI 00000135 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:27, Info CSI 00000136 [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:36, Info CSI 0000013a [SR] Verify complete
2018-05-21 06:53:37, Info CSI 0000013b [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:37, Info CSI 0000013c [SR] Beginning Verify and Repair transaction
2018-05-21 06:53:46, Info CSI 0000015d [SR] Verify complete
2018-05-21 06:53:47, Info CSI 0000015e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:53:47, Info CSI 0000015f [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:11, Info CSI 00000161 [SR] Verify complete
2018-05-21 06:54:12, Info CSI 00000162 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:12, Info CSI 00000163 [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:31, Info CSI 00000167 [SR] Verify complete
2018-05-21 06:54:32, Info CSI 00000168 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:32, Info CSI 00000169 [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:35, Info CSI 0000016b [SR] Verify complete
2018-05-21 06:54:36, Info CSI 0000016c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:36, Info CSI 0000016d [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:38, Info CSI 0000016f [SR] Verify complete
2018-05-21 06:54:39, Info CSI 00000170 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:39, Info CSI 00000171 [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:42, Info CSI 00000173 [SR] Verify complete
2018-05-21 06:54:42, Info CSI 00000174 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:42, Info CSI 00000175 [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:53, Info CSI 00000188 [SR] Verify complete
2018-05-21 06:54:53, Info CSI 00000189 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:53, Info CSI 0000018a [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:57, Info CSI 0000018c [SR] Verify complete
2018-05-21 06:54:57, Info CSI 0000018d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:57, Info CSI 0000018e [SR] Beginning Verify and Repair transaction
2018-05-21 06:54:59, Info CSI 00000190 [SR] Verify complete
2018-05-21 06:54:59, Info CSI 00000191 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:54:59, Info CSI 00000192 [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:00, Info CSI 00000194 [SR] Cannot repair member file [l:22{11}]"PINTLGB.IMD" of Microsoft-Windows-IME-Simplified-Chinese-Core, Version = 6.1.7601.23572, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2018-05-21 06:55:04, Info CSI 00000196 [SR] Cannot repair member file [l:22{11}]"PINTLGB.IMD" of Microsoft-Windows-IME-Simplified-Chinese-Core, Version = 6.1.7601.23572, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2018-05-21 06:55:04, Info CSI 00000197 [SR] This component was referenced by [l:164{82}]"Package_577_for_KB4103718~31bf3856ad364e35~amd64~~6.1.1.4.4103718-1993_neutral_LDR"
2018-05-21 06:55:04, Info CSI 00000198 [SR] This component was referenced by [l:162{81}]"Package_164_for_KB4103718~31bf3856ad364e35~amd64~~6.1.1.4.4103718-526_neutral_LDR"
2018-05-21 06:55:04, Info CSI 0000019b [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\IME\IMESC5\DICTS"\[l:22{11}]"PINTLGB.IMD"; source file in store is also corrupted
2018-05-21 06:55:05, Info CSI 0000019d [SR] Verify complete
2018-05-21 06:55:05, Info CSI 0000019e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:05, Info CSI 0000019f [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:12, Info CSI 000001a1 [SR] Verify complete
2018-05-21 06:55:12, Info CSI 000001a2 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:12, Info CSI 000001a3 [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:24, Info CSI 000001a6 [SR] Verify complete
2018-05-21 06:55:24, Info CSI 000001a7 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:24, Info CSI 000001a8 [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:37, Info CSI 000001ab [SR] Verify complete
2018-05-21 06:55:38, Info CSI 000001ac [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:38, Info CSI 000001ad [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:40, Info CSI 000001af [SR] Verify complete
2018-05-21 06:55:41, Info CSI 000001b0 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:41, Info CSI 000001b1 [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:43, Info CSI 000001b3 [SR] Verify complete
2018-05-21 06:55:44, Info CSI 000001b4 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:44, Info CSI 000001b5 [SR] Beginning Verify and Repair transaction
2018-05-21 06:55:54, Info CSI 000001b7 [SR] Verify complete
2018-05-21 06:55:54, Info CSI 000001b8 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:55:54, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2018-05-21 06:56:02, Info CSI 000001bb [SR] Verify complete
2018-05-21 06:56:02, Info CSI 000001bc [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:56:02, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2018-05-21 06:56:12, Info CSI 000001bf [SR] Verify complete
2018-05-21 06:56:13, Info CSI 000001c0 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:56:13, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2018-05-21 06:56:27, Info CSI 000001d9 [SR] Verify complete
2018-05-21 06:56:28, Info CSI 000001da [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:56:28, Info CSI 000001db [SR] Beginning Verify and Repair transaction
2018-05-21 06:56:35, Info CSI 000001dd [SR] Verify complete
2018-05-21 06:56:36, Info CSI 000001de [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:56:36, Info CSI 000001df [SR] Beginning Verify and Repair transaction
2018-05-21 06:56:55, Info CSI 000001e1 [SR] Verify complete
2018-05-21 06:56:55, Info CSI 000001e2 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:56:55, Info CSI 000001e3 [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:09, Info CSI 000001e5 [SR] Verify complete
2018-05-21 06:57:10, Info CSI 000001e6 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:10, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:19, Info CSI 000001e9 [SR] Verify complete
2018-05-21 06:57:19, Info CSI 000001ea [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:19, Info CSI 000001eb [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:25, Info CSI 000001ee [SR] Verify complete
2018-05-21 06:57:26, Info CSI 000001ef [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:26, Info CSI 000001f0 [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:33, Info CSI 000001f2 [SR] Verify complete
2018-05-21 06:57:33, Info CSI 000001f3 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:33, Info CSI 000001f4 [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:39, Info CSI 000001f8 [SR] Verify complete
2018-05-21 06:57:40, Info CSI 000001f9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:40, Info CSI 000001fa [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:47, Info CSI 000001fc [SR] Verify complete
2018-05-21 06:57:47, Info CSI 000001fd [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:47, Info CSI 000001fe [SR] Beginning Verify and Repair transaction
2018-05-21 06:57:58, Info CSI 00000200 [SR] Verify complete
2018-05-21 06:57:59, Info CSI 00000201 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:57:59, Info CSI 00000202 [SR] Beginning Verify and Repair transaction
2018-05-21 06:58:18, Info CSI 00000205 [SR] Verify complete
2018-05-21 06:58:19, Info CSI 00000206 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:58:19, Info CSI 00000207 [SR] Beginning Verify and Repair transaction
2018-05-21 06:58:31, Info CSI 0000020a [SR] Verify complete
2018-05-21 06:58:32, Info CSI 0000020b [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:58:32, Info CSI 0000020c [SR] Beginning Verify and Repair transaction
2018-05-21 06:58:40, Info CSI 0000020e [SR] Verify complete
2018-05-21 06:58:41, Info CSI 0000020f [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:58:41, Info CSI 00000210 [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:02, Info CSI 00000213 [SR] Verify complete
2018-05-21 06:59:03, Info CSI 00000214 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:03, Info CSI 00000215 [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:10, Info CSI 00000217 [SR] Verify complete
2018-05-21 06:59:11, Info CSI 00000218 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:11, Info CSI 00000219 [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:17, Info CSI 0000021b [SR] Verify complete
2018-05-21 06:59:18, Info CSI 0000021c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:18, Info CSI 0000021d [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:25, Info CSI 0000021f [SR] Verify complete
2018-05-21 06:59:26, Info CSI 00000220 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:26, Info CSI 00000221 [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:37, Info CSI 00000224 [SR] Verify complete
2018-05-21 06:59:38, Info CSI 00000225 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:38, Info CSI 00000226 [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:46, Info CSI 00000229 [SR] Verify complete
2018-05-21 06:59:46, Info CSI 0000022a [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:46, Info CSI 0000022b [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:52, Info CSI 0000022d [SR] Verify complete
2018-05-21 06:59:52, Info CSI 0000022e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 06:59:52, Info CSI 0000022f [SR] Beginning Verify and Repair transaction
2018-05-21 06:59:59, Info CSI 00000232 [SR] Verify complete
2018-05-21 07:00:00, Info CSI 00000233 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:00:00, Info CSI 00000234 [SR] Beginning Verify and Repair transaction
2018-05-21 07:00:10, Info CSI 00000238 [SR] Verify complete
2018-05-21 07:00:10, Info CSI 00000239 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:00:10, Info CSI 0000023a [SR] Beginning Verify and Repair transaction
2018-05-21 07:00:28, Info CSI 0000023c [SR] Verify complete
2018-05-21 07:00:29, Info CSI 0000023d [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:00:29, Info CSI 0000023e [SR] Beginning Verify and Repair transaction
2018-05-21 07:00:47, Info CSI 00000241 [SR] Verify complete
2018-05-21 07:00:48, Info CSI 00000242 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:00:48, Info CSI 00000243 [SR] Beginning Verify and Repair transaction
2018-05-21 07:01:02, Info CSI 00000245 [SR] Verify complete
2018-05-21 07:01:02, Info CSI 00000246 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:01:02, Info CSI 00000247 [SR] Beginning Verify and Repair transaction
2018-05-21 07:01:07, Info CSI 00000249 [SR] Verify complete
2018-05-21 07:01:07, Info CSI 0000024a [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:01:07, Info CSI 0000024b [SR] Beginning Verify and Repair transaction
2018-05-21 07:01:17, Info CSI 0000024d [SR] Verify complete
2018-05-21 07:01:18, Info CSI 0000024e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:01:18, Info CSI 0000024f [SR] Beginning Verify and Repair transaction
2018-05-21 07:01:29, Info CSI 00000251 [SR] Verify complete
2018-05-21 07:01:29, Info CSI 00000252 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:01:29, Info CSI 00000253 [SR] Beginning Verify and Repair transaction
2018-05-21 07:01:43, Info CSI 00000255 [SR] Verify complete
2018-05-21 07:01:43, Info CSI 00000256 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:01:43, Info CSI 00000257 [SR] Beginning Verify and Repair transaction
2018-05-21 07:01:56, Info CSI 00000259 [SR] Verify complete
2018-05-21 07:01:57, Info CSI 0000025a [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:01:57, Info CSI 0000025b [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:06, Info CSI 0000025d [SR] Verify complete
2018-05-21 07:02:06, Info CSI 0000025e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:06, Info CSI 0000025f [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:18, Info CSI 00000261 [SR] Verify complete
2018-05-21 07:02:18, Info CSI 00000262 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:18, Info CSI 00000263 [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:37, Info CSI 00000265 [SR] Verify complete
2018-05-21 07:02:37, Info CSI 00000266 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:37, Info CSI 00000267 [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:43, Info CSI 00000269 [SR] Verify complete
2018-05-21 07:02:43, Info CSI 0000026a [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:43, Info CSI 0000026b [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:49, Info CSI 0000026d [SR] Verify complete
2018-05-21 07:02:49, Info CSI 0000026e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:49, Info CSI 0000026f [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:52, Info CSI 00000271 [SR] Verify complete
2018-05-21 07:02:52, Info CSI 00000272 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:52, Info CSI 00000273 [SR] Beginning Verify and Repair transaction
2018-05-21 07:02:59, Info CSI 00000275 [SR] Verify complete
2018-05-21 07:02:59, Info CSI 00000276 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:02:59, Info CSI 00000277 [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:05, Info CSI 00000279 [SR] Verify complete
2018-05-21 07:03:05, Info CSI 0000027a [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:05, Info CSI 0000027b [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:09, Info CSI 0000027d [SR] Verify complete
2018-05-21 07:03:09, Info CSI 0000027e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:09, Info CSI 0000027f [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:11, Info CSI 00000281 [SR] Verify complete
2018-05-21 07:03:11, Info CSI 00000282 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:11, Info CSI 00000283 [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:17, Info CSI 0000028b [SR] Verify complete
2018-05-21 07:03:17, Info CSI 0000028c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:17, Info CSI 0000028d [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:22, Info CSI 0000028f [SR] Verify complete
2018-05-21 07:03:22, Info CSI 00000290 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:22, Info CSI 00000291 [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:27, Info CSI 00000293 [SR] Verify complete
2018-05-21 07:03:27, Info CSI 00000294 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:27, Info CSI 00000295 [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:34, Info CSI 00000297 [SR] Verify complete
2018-05-21 07:03:35, Info CSI 00000298 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:35, Info CSI 00000299 [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:45, Info CSI 0000029b [SR] Verify complete
2018-05-21 07:03:45, Info CSI 0000029c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:45, Info CSI 0000029d [SR] Beginning Verify and Repair transaction
2018-05-21 07:03:56, Info CSI 000002a0 [SR] Verify complete
2018-05-21 07:03:56, Info CSI 000002a1 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:03:56, Info CSI 000002a2 [SR] Beginning Verify and Repair transaction
2018-05-21 07:04:03, Info CSI 000002a4 [SR] Verify complete
2018-05-21 07:04:03, Info CSI 000002a5 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:04:03, Info CSI 000002a6 [SR] Beginning Verify and Repair transaction
2018-05-21 07:04:06, Info CSI 000002a8 [SR] Verify complete
2018-05-21 07:04:07, Info CSI 000002a9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:04:07, Info CSI 000002aa [SR] Beginning Verify and Repair transaction
2018-05-21 07:04:20, Info CSI 000002ac [SR] Verify complete
2018-05-21 07:04:20, Info CSI 000002ad [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:04:20, Info CSI 000002ae [SR] Beginning Verify and Repair transaction
2018-05-21 07:04:40, Info CSI 000002b3 [SR] Verify complete
2018-05-21 07:04:41, Info CSI 000002b4 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:04:41, Info CSI 000002b5 [SR] Beginning Verify and Repair transaction
2018-05-21 07:04:53, Info CSI 000002b9 [SR] Verify complete
2018-05-21 07:04:53, Info CSI 000002ba [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:04:53, Info CSI 000002bb [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:02, Info CSI 000002c1 [SR] Verify complete
2018-05-21 07:05:03, Info CSI 000002c2 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:03, Info CSI 000002c3 [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:15, Info CSI 000002ce [SR] Verify complete
2018-05-21 07:05:15, Info CSI 000002cf [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:15, Info CSI 000002d0 [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:24, Info CSI 000002d5 [SR] Verify complete
2018-05-21 07:05:24, Info CSI 000002d6 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:24, Info CSI 000002d7 [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:30, Info CSI 000002d9 [SR] Verify complete
2018-05-21 07:05:30, Info CSI 000002da [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:30, Info CSI 000002db [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:35, Info CSI 000002df [SR] Verify complete
2018-05-21 07:05:36, Info CSI 000002e0 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:36, Info CSI 000002e1 [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:44, Info CSI 000002f8 [SR] Verify complete
2018-05-21 07:05:44, Info CSI 000002f9 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:44, Info CSI 000002fa [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:50, Info CSI 0000030a [SR] Verify complete
2018-05-21 07:05:51, Info CSI 0000030b [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:51, Info CSI 0000030c [SR] Beginning Verify and Repair transaction
2018-05-21 07:05:57, Info CSI 0000030e [SR] Verify complete
2018-05-21 07:05:58, Info CSI 0000030f [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:05:58, Info CSI 00000310 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:04, Info CSI 00000312 [SR] Verify complete
2018-05-21 07:06:04, Info CSI 00000313 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:04, Info CSI 00000314 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:09, Info CSI 00000316 [SR] Verify complete
2018-05-21 07:06:09, Info CSI 00000317 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:09, Info CSI 00000318 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:15, Info CSI 00000326 [SR] Verify complete
2018-05-21 07:06:16, Info CSI 00000327 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:16, Info CSI 00000328 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:27, Info CSI 0000032b [SR] Verify complete
2018-05-21 07:06:27, Info CSI 0000032c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:27, Info CSI 0000032d [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:35, Info CSI 0000033a [SR] Verify complete
2018-05-21 07:06:36, Info CSI 0000033b [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:36, Info CSI 0000033c [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:39, Info CSI 0000033e [SR] Verify complete
2018-05-21 07:06:40, Info CSI 0000033f [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:40, Info CSI 00000340 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:48, Info CSI 00000343 [SR] Verify complete
2018-05-21 07:06:48, Info CSI 00000344 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:48, Info CSI 00000345 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:53, Info CSI 00000347 [SR] Verify complete
2018-05-21 07:06:54, Info CSI 00000348 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:54, Info CSI 00000349 [SR] Beginning Verify and Repair transaction
2018-05-21 07:06:56, Info CSI 0000034b [SR] Verify complete
2018-05-21 07:06:56, Info CSI 0000034c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:06:56, Info CSI 0000034d [SR] Beginning Verify and Repair transaction
2018-05-21 07:07:05, Info CSI 0000034f [SR] Verify complete
2018-05-21 07:07:05, Info CSI 00000350 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:07:05, Info CSI 00000351 [SR] Beginning Verify and Repair transaction
2018-05-21 07:07:12, Info CSI 00000353 [SR] Verify complete
2018-05-21 07:07:12, Info CSI 00000354 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:07:12, Info CSI 00000355 [SR] Beginning Verify and Repair transaction
2018-05-21 07:07:23, Info CSI 00000368 [SR] Verify complete
2018-05-21 07:07:24, Info CSI 00000369 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:07:24, Info CSI 0000036a [SR] Beginning Verify and Repair transaction
2018-05-21 07:07:32, Info CSI 00000373 [SR] Verify complete
2018-05-21 07:07:33, Info CSI 00000374 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:07:33, Info CSI 00000375 [SR] Beginning Verify and Repair transaction
2018-05-21 07:07:49, Info CSI 00000377 [SR] Verify complete
2018-05-21 07:07:49, Info CSI 00000378 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:07:49, Info CSI 00000379 [SR] Beginning Verify and Repair transaction
2018-05-21 07:08:14, Info CSI 0000037b [SR] Verify complete
2018-05-21 07:08:14, Info CSI 0000037c [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:08:14, Info CSI 0000037d [SR] Beginning Verify and Repair transaction
2018-05-21 07:08:24, Info CSI 00000380 [SR] Verify complete
2018-05-21 07:08:25, Info CSI 00000381 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:08:25, Info CSI 00000382 [SR] Beginning Verify and Repair transaction
2018-05-21 07:08:33, Info CSI 00000385 [SR] Verify complete
2018-05-21 07:08:34, Info CSI 00000386 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:08:34, Info CSI 00000387 [SR] Beginning Verify and Repair transaction
2018-05-21 07:08:41, Info CSI 00000389 [SR] Verify complete
2018-05-21 07:08:42, Info CSI 0000038a [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:08:42, Info CSI 0000038b [SR] Beginning Verify and Repair transaction
2018-05-21 07:08:57, Info CSI 0000038d [SR] Verify complete
2018-05-21 07:08:57, Info CSI 0000038e [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:08:57, Info CSI 0000038f [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:03, Info CSI 00000392 [SR] Verify complete
2018-05-21 07:09:04, Info CSI 00000393 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:04, Info CSI 00000394 [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:10, Info CSI 00000396 [SR] Verify complete
2018-05-21 07:09:10, Info CSI 00000397 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:10, Info CSI 00000398 [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:15, Info CSI 0000039a [SR] Verify complete
2018-05-21 07:09:16, Info CSI 0000039b [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:16, Info CSI 0000039c [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:25, Info CSI 0000039e [SR] Verify complete
2018-05-21 07:09:26, Info CSI 0000039f [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:26, Info CSI 000003a0 [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:36, Info CSI 000003a3 [SR] Verify complete
2018-05-21 07:09:37, Info CSI 000003a4 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:37, Info CSI 000003a5 [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:42, Info CSI 000003a7 [SR] Verify complete
2018-05-21 07:09:43, Info CSI 000003a8 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:43, Info CSI 000003a9 [SR] Beginning Verify and Repair transaction
2018-05-21 07:09:54, Info CSI 000003ab [SR] Verify complete
2018-05-21 07:09:55, Info CSI 000003ac [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:09:55, Info CSI 000003ad [SR] Beginning Verify and Repair transaction
2018-05-21 07:10:03, Info CSI 000003af [SR] Verify complete
2018-05-21 07:10:03, Info CSI 000003b0 [SR] Verifying 100 (0x0000000000000064) components
2018-05-21 07:10:03, Info CSI 000003b1 [SR] Beginning Verify and Repair transaction
2018-05-21 07:10:14, Info CSI 000003b3 [SR] Verify complete
2018-05-21 07:10:14, Info CSI 000003b4 [SR] Verifying 44 (0x000000000000002c) components
2018-05-21 07:10:14, Info CSI 000003b5 [SR] Beginning Verify and Repair transaction
2018-05-21 07:10:18, Info CSI 000003b7 [SR] Verify complete
2018-05-21 07:10:18, Info CSI 000003b8 [SR] Repairing 1 components
2018-05-21 07:10:18, Info CSI 000003b9 [SR] Beginning Verify and Repair transaction
2018-05-21 07:10:18, Info CSI 000003bb [SR] Cannot repair member file [l:22{11}]"PINTLGB.IMD" of Microsoft-Windows-IME-Simplified-Chinese-Core, Version = 6.1.7601.23572, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2018-05-21 07:10:20, Info CSI 000003bd [SR] Cannot repair member file [l:22{11}]"PINTLGB.IMD" of Microsoft-Windows-IME-Simplified-Chinese-Core, Version = 6.1.7601.23572, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2018-05-21 07:10:20, Info CSI 000003be [SR] This component was referenced by [l:164{82}]"Package_577_for_KB4103718~31bf3856ad364e35~amd64~~6.1.1.4.4103718-1993_neutral_LDR"
2018-05-21 07:10:20, Info CSI 000003bf [SR] This component was referenced by [l:162{81}]"Package_164_for_KB4103718~31bf3856ad364e35~amd64~~6.1.1.4.4103718-526_neutral_LDR"
2018-05-21 07:10:20, Info CSI 000003c2 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\IME\IMESC5\DICTS"\[l:22{11}]"PINTLGB.IMD"; source file in store is also corrupted
2018-05-21 07:10:20, Info CSI 000003c4 [SR] Repair complete
2018-05-21 07:10:20, Info CSI 000003c5 [SR] Committing transaction
2018-05-21 07:10:21, Info CSI 000003c9 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Průzkumník - prosím preventivku

#14 Příspěvek od Conder »

:arrow: Spusti este raz prikaz "sfc /scannow", po skonceni sem skopiruj vysledok, ktory sa vypise v prikazovom riadku.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

ultrakb
Návštěvník
Návštěvník
Příspěvky: 172
Registrován: 22 srp 2009 12:53
Bydliště: nedaleko od Ostravy

Re: Průzkumník - prosím preventivku

#15 Příspěvek od ultrakb »


Odpovědět