PC Těsně před smrtí

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Aktebis
Level 1.5
Level 1.5
Příspěvky: 117
Registrován: srpen 06
Pohlaví: Nespecifikováno

PC Těsně před smrtí

Příspěvekod Aktebis » 20 říj 2020 13:14

Zdravím,mohu někoho poprosit o kontrolu logu a poradit, zda PC se ještě dá dát do použitelného stavu?
Zapnutí PC trvá cca 45 minut,občas se musí při startu restartovat a tak pak zapnutí PC je asi tak na 1,5 hodiny.Děkuj za pomoc a trpělivost

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 13:08:39, on 20.10.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19301)


Boot mode: Normal

Running processes:
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\ProgramData\MEGAsync\MEGAsync.exe
C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\totalcmd\TOTALCMD.EXE
C:\Users\Asus\Desktop\oprava\HijackThis (2).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.amazon.com/gp/bit/amazonser ... _CZ_ie_sp_
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ru.redirect.wrapper.services.ala ... e=en&pid=1
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: The Amazon Assistant for Internet Explorer - {0ddcea2a-7b00-4349-8acb-af7ba6da251f} - mscoree.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [Codec Settings UAC Manager] "C:\Windows\system32\Codecs\CodecUACManager.exe"
O4 - HKLM\..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Intel Driver & Support Assistant] C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O4 - HKCU\..\Run: [Opera Browser Assistant] C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Codec Pack Update Checker] "C:\Windows\system32\Codecs\UpdateChecker.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Codec Pack Update Checker] "C:\Windows\system32\Codecs\UpdateChecker.exe" (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: MEGAsync.lnk = C:\ProgramData\MEGAsync\MEGAsync.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Amazon Assistant Service - Unknown owner - C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Driver & Support Assistant (DSAService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service: Intel(R) Driver & Support Assistant Updater (DSAUpdateService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\elevation_service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) - Intel Corporation - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: KARAT Client Updater - KARAT Software a.s - C:\Program Files\KARAT Software\Karat Client\ISKarat.Loader.Proxy.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: McAfee WebAdvisor - McAfee, LLC - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
O23 - Service: Wondershare Driver Install Service (WsDrvInst) - Wondershare - C:\Program Files (x86)\Wondershare\Wondershare MobileTrans\DriverInstall.exe

--
End of file - 13749 bytes



Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: PC Těsně před smrtí

Příspěvekod jaro3 » 20 říj 2020 16:50

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

O4 - Global Startup: FancyStart daemon.lnk = ?

Odinstaluj:
McAfee Security Scan Plus

Stáhni si ATF Cleaner
https://www.majorgeeks.com/mg/getmirror ... ner,2.html
Poklepej na ATF Cleaner.exe, klikni na select all, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.adlice.com/downloadprogress/
pro majitele win7 stáhni zde:
https://filehippo.com/download_adwcleaner/ ( nedávej aktualizaci!)

Ulož si ho na svojí plochu . Klikni na „Souhlasím“ k povrzení podmínek.
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Skenování“
Po skenu se objeví log , který se otevře. ( jinak je uložen systémovem disku jako C:\AdwCleaner [C?].txt ), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
https://www.malwarebytes.com/mwb-download/thankyou/

na plochu , nainstaluj a spusť ho
-Pokud není program aktuální , klikni na možnost „Aktualizovat nyní“ či „Opravit nyní“.
- bude nalezena aktualizace a nainstaluje se.
- poté klikni na Spustit skenování
- po proběhnutí skenu se ti objeví hláška vpravo dole, tak klikni na Zobrazit zprávu a vyber Export a vyber Kopírovat do schránky a vlož sem celý log. Nebo klikni na „Textový soubor ( .txt)“ a log si ulož.
-jinak se log nachází v programu po kliknutí na „Zprávy“ , nebo je uložen zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Dokončit, a program zavři křížkem vpravo nahoře.
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Aktebis
Level 1.5
Level 1.5
Příspěvky: 117
Registrován: srpen 06
Pohlaví: Nespecifikováno

Re: PC Těsně před smrtí

Příspěvekod Aktebis » 20 říj 2020 20:09

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 20:03:48, on 20.10.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19301)


Boot mode: Normal

Running processes:
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\ProgramData\MEGAsync\MEGAsync.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
C:\Users\Asus\Desktop\oprava\HijackThis (2).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.amazon.com/gp/bit/amazonser ... _CZ_ie_sp_
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ru.redirect.wrapper.services.ala ... e=en&pid=1
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: The Amazon Assistant for Internet Explorer - {0ddcea2a-7b00-4349-8acb-af7ba6da251f} - mscoree.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [Codec Settings UAC Manager] "C:\Windows\system32\Codecs\CodecUACManager.exe"
O4 - HKLM\..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Intel Driver & Support Assistant] C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O4 - HKCU\..\Run: [Opera Browser Assistant] C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Codec Pack Update Checker] "C:\Windows\system32\Codecs\UpdateChecker.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Codec Pack Update Checker] "C:\Windows\system32\Codecs\UpdateChecker.exe" (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: MEGAsync.lnk = C:\ProgramData\MEGAsync\MEGAsync.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Amazon Assistant Service - Unknown owner - C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Driver & Support Assistant (DSAService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service: Intel(R) Driver & Support Assistant Updater (DSAUpdateService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\elevation_service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) - Intel Corporation - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: KARAT Client Updater - KARAT Software a.s - C:\Program Files\KARAT Software\Karat Client\ISKarat.Loader.Proxy.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: McAfee WebAdvisor - McAfee, LLC - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
O23 - Service: Wondershare Driver Install Service (WsDrvInst) - Wondershare - C:\Program Files (x86)\Wondershare\Wondershare MobileTrans\DriverInstall.exe

--
End of file - 13518 bytes

-------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-20-2020
# Duration: 00:02:33
# OS: Windows 7 Home Premium
# Scanned: 31837
# Detected: 69


***** [ Services ] *****

PUP.Optional.Assistant Amazon Assistant Service

***** [ Folders ] *****

PUP.Optional.AmazonAssistant C:\Program Files (x86)\Amazon\Amazon Assistant
PUP.Optional.Seznam.cz C:\Program Files (x86)\Seznam.cz
PUP.Optional.Seznam.cz C:\Users\Asus\AppData\Roaming\Seznam.cz

***** [ Files ] *****

PUP.Optional.Assistant C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AmazonAssistant.lnk
PUP.Optional.Assistant C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AmazonAssistant.lnk

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.AmazonAssistant HKCU\Software\AppDataLow\Software\Amazon\AmazonAssistant
PUP.Optional.AmazonAssistant HKLM\SOFTWARE\Classes\AppID\AmazonAppIE.dll
PUP.Optional.AmazonAssistant HKLM\Software\Classes\AppID\{F18AE3C4-D2AD-42AC-9282-509DCF035D06}
PUP.Optional.AmazonAssistant HKLM\Software\Classes\CLSID\{7B28BD81-CC45-4ADB-A043-12E35A15C402}
PUP.Optional.AmazonAssistant HKLM\Software\Classes\Interface\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}
PUP.Optional.AmazonAssistant HKLM\Software\Classes\Interface\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}
PUP.Optional.AmazonAssistant HKLM\Software\Classes\TypeLib\{55B621F9-BAE8-4CF7-9D76-1DB25CD95850}
PUP.Optional.AmazonAssistant HKLM\Software\Classes\TypeLib\{E6AB05A4-A387-4083-91A5-E89A8DCEEBC0}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\Amazon\AmazonAssistant
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\AppDataLow\Software\Amazon\AmazonAssistant
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\AppID\AmazonAppIE.dll
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\AppID\{F18AE3C4-D2AD-42AC-9282-509DCF035D06}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\CLSID\{7B28BD81-CC45-4ADB-A043-12E35A15C402}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\Interface\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\Interface\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\Interface\{6B7479D5-C493-40F0-99B6-BFC901980034}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\Interface\{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\TypeLib\{55B621F9-BAE8-4CF7-9D76-1DB25CD95850}
PUP.Optional.AmazonAssistant HKLM\Software\Wow6432Node\\Classes\TypeLib\{E6AB05A4-A387-4083-91A5-E89A8DCEEBC0}
PUP.Optional.AmazonAssistant HKU\.DEFAULT\Software\AppDataLow\Software\Amazon\AmazonAssistant
PUP.Optional.AmazonAssistant HKU\S-1-5-18\Software\AppDataLow\Software\Amazon\AmazonAssistant
PUP.Optional.AmazonAssistant HKU\S-1-5-19\Software\AppDataLow\Software\Amazon\AmazonAssistant
PUP.Optional.AmazonAssistant HKU\S-1-5-20\Software\AppDataLow\Software\Amazon\AmazonAssistant
PUP.Optional.Assistant HKLM\Software\Classes\CLSID\{0ddcea2a-7b00-4349-8acb-af7ba6da251f}
PUP.Optional.Assistant HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0ddcea2a-7b00-4349-8acb-af7ba6da251f}
PUP.Optional.Assistant HKLM\Software\Wow6432Node\\Classes\CLSID\{0ddcea2a-7b00-4349-8acb-af7ba6da251f}
PUP.Optional.Assistant HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0ddcea2a-7b00-4349-8acb-af7ba6da251f}
PUP.Optional.Assistant HKLM\System\CurrentControlSet\Services\EventLog\Application\Amazon Assistant Service
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\amazonbrowserapp.com
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\analytics.app.amazonbrowserapp.com
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\DOMStorage\titan.service.amazonbrowserapp.com
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending
PUP.Optional.Legacy HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|Codec Settings UAC Manager
PUP.Optional.Seznam.cz HKCU\Software\Seznam.cz
Trojan.Agent.BHO HKLM\Software\Classes\CLSID\{9517FB66-3DCF-44eb-8CE5-1A0F8A058D12}
Trojan.Agent.BHO HKLM\Software\Wow6432Node\\Classes\CLSID\{9517FB66-3DCF-44eb-8CE5-1A0F8A058D12}

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Seznam.cz Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
PUP.Optional.Seznam.cz Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.ASUSControlDeck Folder C:\Program Files (x86)\ASUS\CONTROLDECK
Preinstalled.ASUSControlDeck Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6F2A695-B4C7-4A2F-AA85-AF0AF014A6B0}
Preinstalled.ASUSControlDeck Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUSControlDeck
Preinstalled.ASUSControlDeck Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{5B65EF64-1DFA-414A-8C94-7BB726158E21}
Preinstalled.ASUSControlDeck Task C:\Windows\System32\Tasks\ASUSCONTROLDECK
Preinstalled.ASUSFancyStart Folder C:\ASUS.DAT
Preinstalled.ASUSFancyStart Folder C:\Program Files (x86)\ASUS\FANCYSTART
Preinstalled.ASUSGames Folder C:\Program Files (x86)\ASUS\GAME PARK\GAMECONSOLE
Preinstalled.ASUSLiveUpdate Folder C:\Program Files (x86)\ASUS\ASUS LIVE UPDATE
Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C79B57E-0906-42FD-97EE-A6B1E7CF8249}
Preinstalled.ASUSLiveUpdate Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASUS Live Update
Preinstalled.ASUSLiveUpdate Task C:\Windows\System32\Tasks\ASUS LIVE UPDATE
Preinstalled.ASUSSplendid Folder C:\Program Files (x86)\ASUS\SPLENDID
Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E7086AD8-A041-49A6-91E0-F6A176FBA450}
Preinstalled.ASUSSplendid Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACMON
Preinstalled.ASUSSplendid Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0969AF05-4FF6-4C00-9406-43599238DE0D}
Preinstalled.ASUSSplendid Task C:\Windows\System32\Tasks\ACMON
Preinstalled.ASUSVirtualCamera Folder C:\Program Files (x86)\ASUS\VIRTUALCAMERA
Preinstalled.ASUSVirtualCamera Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
Preinstalled.ASUSWebStorage Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|ASUS WebStorage
Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 20.10.20
Čas skenování: 19:24
Logovací soubor: 2a001a7c-12f9-11eb-a7c9-00ff5cbe2fcc.json

-Informace o softwaru-
Verze: 4.2.1.89
Verze komponentů: 1.0.1070
Aktualizovat verzi balíku komponent: 1.0.31686
Licence: Zkušební

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: System

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Plánovač
Výsledek: Dokončeno
Skenované objekty: 249993
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 25 min, 41 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: PC Těsně před smrtí

Příspěvekod jaro3 » 20 říj 2020 21:10

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce
klikni na „Skenování“ , po prohledání klikni na „ do karantény

Program provede opravu, po automatickém restartu klikni na „Log soubor“ a pak poklepej na odpovídají log, (C:\AdwCleaner [C?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.


Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/files/details ... _tool.html
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY
64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

další odkazy:
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Aktebis
Level 1.5
Level 1.5
Příspěvky: 117
Registrován: srpen 06
Pohlaví: Nespecifikováno

Re: PC Těsně před smrtí

Příspěvekod Aktebis » 21 říj 2020 17:58

# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-09-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-21-2020
# Duration: 00:00:10
# OS: Windows 7 Home Premium
# Cleaned: 29
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Users\Asus\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\amazonbrowserapp.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\analytics.app.amazonbrowserapp.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\titan.service.amazonbrowserapp.com
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\SOFTWARE\Classes\AppID\AmazonAppIE.dll
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced
Deleted HKLM\Software\Classes\AppID\{F18AE3C4-D2AD-42AC-9282-509DCF035D06}
Deleted HKLM\Software\Classes\CLSID\{9517FB66-3DCF-44eb-8CE5-1A0F8A058D12}
Deleted HKLM\Software\Classes\Interface\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}
Deleted HKLM\Software\Classes\Interface\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0ddcea2a-7b00-4349-8acb-af7ba6da251f}
Deleted HKLM\Software\Wow6432Node\\AppDataLow\Software\Amazon\AmazonAssistant
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\AmazonAppIE.dll
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{F18AE3C4-D2AD-42AC-9282-509DCF035D06}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{9517FB66-3DCF-44eb-8CE5-1A0F8A058D12}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{E4ADC61E-D06A-4E0E-8582-78C809CC8450}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3268A00F-D329-42E1-ABF0-E78D5656BA2A}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{571139B2-8D93-4B29-9AA9-496EF27D6AF8}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{6B7479D5-C493-40F0-99B6-BFC901980034}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BFF94CF8-2D3B-4B2F-BB83-3600280AFEBA}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0ddcea2a-7b00-4349-8acb-af7ba6da251f}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|Codec Settings UAC Manager
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\Amazon Assistant Service

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig
Deleted Seznam doplněk - Esko - olfeabkoenfaoljndfecamgilllcpiak

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [8625 octets] - [20/10/2020 19:07:58]
AdwCleaner[S01].txt - [6931 octets] - [21/10/2020 12:18:27]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Home Premium x64
Ran by Asus (Administrator) on st 21.10.2020 at 13:06:38,73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 3

Failed to delete: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\olfeabkoenfaoljndfecamgilllcpiak (Folder)
Successfully deleted: C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bgjpfhpjcgdppjbgnpnjllokbmcdllig (Folder)
Successfully deleted: C:\Users\Asus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\facebook.lnk (Shortcut)

Deleted the following from C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493\prefs.js
user_pref(extensions.toolbar.mindspark._iwMembers_.BUTTON_STRUCTURE, [{\b\:231968576,\c\:\mindspark.magnify\,\p\:\L.0\},{\b\:231968577,\c\:\mindspark.enterse
user_pref(extensions.toolbar.mindspark._iwMembers_.installation.toolbarDataSource, [\COOKIE\,\LOCAL_STORAGE\]);
user_pref(extensions.toolbar.mindspark._iwMembers_.lssState, {\previousLocales\:[\cs\,\en-US\,\en\],\supportedLocales\:[\de\,\es\,\pt\,\ja\,\en\],\defa
user_pref(extensions.toolbar.mindspark._iwMembers_.uninstallTasks, {\prefBranchesToDelete\:[\extensions.toolbar.mindspark._iwMembers_.\],\filesToDelete\:[\C:\\\\User



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on st 21.10.2020 at 13:12:45,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


RogueKiller Anti-Malware V14.7.3.0 (x64) [Sep 15 2020] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
Started in : Normal mode
User : Asus [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20201021_093136, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2020/10/21 15:52:07 (Duration : 01:57:06)
Switches : -minimize

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[Suspicious.Path (Potentially Malicious)] \{155CC30D-392E-4DC7-B109-CFFBD9EA47A7} -- C:\Windows\system32\pcalua.exe [-a C:\Users\Asus\AppData\Local\Temp\7zS7771.tmp\MicroInstallerNative.exe -d C:\Users\Asus\AppData\Local\Temp\7zS7771.tmp] -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> O3 - Toolbar
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked -- 0 -> Found
[Suspicious.Path (Potentially Malicious)] (X86) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked -- 0 -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_USERS\S-1-5-21-4024037404-3744449615-2801496536-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar|Locked -- 0 -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_USERS\S-1-5-21-4024037404-3744449615-2801496536-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|ITBar7Height -- 0 -> Found
>>>>>> XX - System Policies
[PUM.Policies (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin -- 0 -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Aktebis
Level 1.5
Level 1.5
Příspěvky: 117
Registrován: srpen 06
Pohlaví: Nespecifikováno

Re: PC Těsně před smrtí

Příspěvekod Aktebis » 21 říj 2020 17:59

2020-10-21 11:20:45.656 Sophos Virus Removal Tool version 2.7.0
2020-10-21 11:20:45.656 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2020-10-21 11:20:45.656 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-10-21 11:20:45.656 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2020-10-21 11:20:45.656 Checking for updates...
2020-10-21 11:20:45.843 Update progress: proxy server not available
2020-10-21 11:21:00.647 Downloading updates...
2020-10-21 11:21:00.647 Update progress: [I96736] sdds.svrt_v1.18: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2020-10-21 11:21:00.647 Update progress: [I95020] sdds.svrt_v1.18: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-10-21 11:21:00.647 Update progress: [I22529] sdds.svrt_v1.18: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-10-21 11:21:00.647 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2020-10-21 11:21:00.647 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2020-10-21 11:21:00.647 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2020-10-21 11:21:00.647 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 125 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c2ab8ac5baf9a86ff760a13daa8f9e6x000.xml: 4250 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c2ab8ac5baf9a86ff760a13daa8f9e6x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5575eec8b9af6eb1f1946273d4c3f7d5x000.xml: 8673 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5575eec8b9af6eb1f1946273d4c3f7d5x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE581/863aaca57299dcad4348f6a76dfde534x000.xml: 590 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE581/863aaca57299dcad4348f6a76dfde534x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE579/26a1a097a14b8e0bbd28be53a2aafb1ex000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE579/26a1a097a14b8e0bbd28be53a2aafb1ex000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE570/c4215464d25d3865903108d821935879x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE570/c4215464d25d3865903108d821935879x000.xml: 46 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 46 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 46 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE578/fd09277a9cc316c7820beadc29555583x000.xml: 601 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE578/fd09277a9cc316c7820beadc29555583x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE580/7eb0aa978347f3a1f818735cddc07c42x000.xml: 15812 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE580/7eb0aa978347f3a1f818735cddc07c42x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f97b3d1b53b325576e29229d2487ecb4x000.xml: 615 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f97b3d1b53b325576e29229d2487ecb4x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 12f16b5cc5ba33623e83eb35201f64aex000.xml: 320 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 12f16b5cc5ba33623e83eb35201f64aex000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 63 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 62 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 62 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76f3567164278171cca28fc8121461d1x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76f3567164278171cca28fc8121461d1x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f68284d0c844770e160f65625b572b5ex000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f68284d0c844770e160f65625b572b5ex000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b6237eb64a0908d40c9415a7c7ba3843x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b6237eb64a0908d40c9415a7c7ba3843x000.xml: 47 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 78 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85126464fb11fca22421b7a21742a6adx000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85126464fb11fca22421b7a21742a6adx000.xml: 328 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d48b68b7041bde7c1484c5cb94897672x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d48b68b7041bde7c1484c5cb94897672x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28bb8eb241a254452f85129686b027e5x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28bb8eb241a254452f85129686b027e5x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2302ad75630d4b58cca278062b8b5de4x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2302ad75630d4b58cca278062b8b5de4x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 985d7fdf3a8062434d72516f5baed879x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 985d7fdf3a8062434d72516f5baed879x000.xml: 63 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa703f2a2b1a92c90674ad451a16034cx000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa703f2a2b1a92c90674ad451a16034cx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9bb8aeca1b234665832ec72c609610cex000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9bb8aeca1b234665832ec72c609610cex000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa6f963652fadc6cdeff28b207423ccbx000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa6f963652fadc6cdeff28b207423ccbx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2604e1b742f72c5b2358230ceb552befx000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2604e1b742f72c5b2358230ceb552befx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 87666e9540b89546868b55d119c7b029x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 87666e9540b89546868b55d119c7b029x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 332f16f3f32467ddbe44773d18577bccx000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 332f16f3f32467ddbe44773d18577bccx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d237963bb731cbdbc601999032c52b9fx000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d237963bb731cbdbc601999032c52b9fx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f69ad668e95e36fbcf54a28cc37044bax000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f69ad668e95e36fbcf54a28cc37044bax000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f22440c76fa98b33be36804ffa922b99x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f22440c76fa98b33be36804ffa922b99x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a13db9de3890166bfd908f854b655c37x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a13db9de3890166bfd908f854b655c37x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7009c81b29e1d232da816176e143ae49x000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7009c81b29e1d232da816176e143ae49x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ff82765819ae95b2d888a3384d7f2c2cx000.xml: 1027 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ff82765819ae95b2d888a3384d7f2c2cx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d9a77a07892e11509435eeb503ebcbafx000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d9a77a07892e11509435eeb503ebcbafx000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5a66ebeafc223103b912c5bedd146c37x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5a66ebeafc223103b912c5bedd146c37x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e7942cf5d210a55c7afb02dac26d1792x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e7942cf5d210a55c7afb02dac26d1792x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ee3cdeed7848bca01aaa01193532c6abx000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ee3cdeed7848bca01aaa01193532c6abx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ad027e8152c5201a5ad5c537d1eb1c0fx000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ad027e8152c5201a5ad5c537d1eb1c0fx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9c863ae6a7fa90e1e0a81d45de7c0e0fx000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9c863ae6a7fa90e1e0a81d45de7c0e0fx000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ae44cfbc02ba473cba5f902943443d76x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ae44cfbc02ba473cba5f902943443d76x000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d2ec2eef48d93c869cca494a9f805659x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d2ec2eef48d93c869cca494a9f805659x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7fcb9c389009ac39181bbb47d0e38fe9x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7fcb9c389009ac39181bbb47d0e38fe9x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b47e2741f1fde2ea3f37feb8c6ee6ab7x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b47e2741f1fde2ea3f37feb8c6ee6ab7x000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1504d835981bff8d5f7bdca5429c4d45x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1504d835981bff8d5f7bdca5429c4d45x000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7f7d2a747b50337c7813a452bfd48e88x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7f7d2a747b50337c7813a452bfd48e88x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fb109a5f2c19f531cd831359578de1c1x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fb109a5f2c19f531cd831359578de1c1x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: af658b3d2620c401184342660a833545x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: af658b3d2620c401184342660a833545x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 55c413cffd34df7258b8a3e96532e73ex000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 55c413cffd34df7258b8a3e96532e73ex000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c3efaf18a118725b04ff11067860d737x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c3efaf18a118725b04ff11067860d737x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 09a02712ce71397a6139e133768339c7x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 09a02712ce71397a6139e133768339c7x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 332a5f87d6f69dad6c87961a9308ae1fx000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 332a5f87d6f69dad6c87961a9308ae1fx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 91615e7a4f8f15abd2875f7a8ab5f963x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 91615e7a4f8f15abd2875f7a8ab5f963x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f917080627e290cce7da45b6731d0acax000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f917080627e290cce7da45b6731d0acax000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 14ff4bc9484d9998a326b5132236fa28x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 14ff4bc9484d9998a326b5132236fa28x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e76d179a86c977ed8198541f4022d78cx000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e76d179a86c977ed8198541f4022d78cx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7baa2d5b7b20c648927b2a8fbb4f4564x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7baa2d5b7b20c648927b2a8fbb4f4564x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 818e068905c4cf8293d4aa0cc906db68x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 818e068905c4cf8293d4aa0cc906db68x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e81338b3b0e4e4d9ce516e34274062afx000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e81338b3b0e4e4d9ce516e34274062afx000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a7eefd3b405201141f1771a7b7fdbf7bx000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a7eefd3b405201141f1771a7b7fdbf7bx000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aff533256f2130368f388d80b3671245x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aff533256f2130368f388d80b3671245x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 025feb915e49a7c27b27a12d10bb8435x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 025feb915e49a7c27b27a12d10bb8435x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 70bc83242516a82fd01b26a403f89d8bx000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 70bc83242516a82fd01b26a403f89d8bx000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5f99e590731276dda65fef601647eab2x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5f99e590731276dda65fef601647eab2x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1beaa6ac933ed4d97c5091b5d125e5b1x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1beaa6ac933ed4d97c5091b5d125e5b1x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e5cb8e63e5dee306dbc8e3978c07b5a7x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e5cb8e63e5dee306dbc8e3978c07b5a7x000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3bc32781978fe2b7291c8746d344d9b2x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3bc32781978fe2b7291c8746d344d9b2x000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4643f6ab1ff99a4e39e02b4597c7f3f5x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4643f6ab1ff99a4e39e02b4597c7f3f5x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c8446930b302834ba41825cacfe4561ax000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c8446930b302834ba41825cacfe4561ax000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 51cf4a4f7e885541e786ff28fdf541eex000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 51cf4a4f7e885541e786ff28fdf541eex000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 04b2b3525b4eef177b3d7e7006c227e4x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 04b2b3525b4eef177b3d7e7006c227e4x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f877060a6aca533dd9d2456dd0ac6461x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f877060a6aca533dd9d2456dd0ac6461x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: beb9614ac1a9b3b21e7ab95042d2691ex000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: beb9614ac1a9b3b21e7ab95042d2691ex000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0d78f6d31d05649dcf8d8e201e58ae46x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0d78f6d31d05649dcf8d8e201e58ae46x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 05a0cca98ecdf50ef2b3c2b14899d7e4x000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 05a0cca98ecdf50ef2b3c2b14899d7e4x000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9a7f3020c36165fec755b36a5d959044x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9a7f3020c36165fec755b36a5d959044x000.xml: 16 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 82eca047175760bdb15ce35d773b79afx000.xml: 336 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 82eca047175760bdb15ce35d773b79afx000.xml: 15 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9adb07c2c63a26304daa1a8b9ebc5e7ax000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9adb07c2c63a26304daa1a8b9ebc5e7ax000.xml: 31 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6b0381d848b38346d06350da07c46b70x000.xml: 338 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6b0381d848b38346d06350da07c46b70x000.xml: 32 ms
2020-10-21 11:21:00.647 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 757d82159ab8d39a47293468f64017f5x000.xml: 877 bytes
2020-10-21 11:21:00.647 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 757d82159ab8d39a47293468f64017f5x000.xml: 15 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c01624938bee38f76d347042c032ef50x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c01624938bee38f76d347042c032ef50x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 83a3b8cd5629f75d1f7651d8ad452415x000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 83a3b8cd5629f75d1f7651d8ad452415x000.xml: 32 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9a49e63721f940b9918da93ada434c96x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9a49e63721f940b9918da93ada434c96x000.xml: 15 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4bcde6b0b96a7dadb1f38b19adb1888cx000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4bcde6b0b96a7dadb1f38b19adb1888cx000.xml: 15 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 083028aa3926fad5f98af77893d4b6d1x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 083028aa3926fad5f98af77893d4b6d1x000.xml: 32 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 31808182d924da43de2b1fec12c392e5x000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 31808182d924da43de2b1fec12c392e5x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 31128c51ed628fbcb9a86492ed36b8ecx000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 31128c51ed628fbcb9a86492ed36b8ecx000.xml: 15 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb8f7fe95cc9e5f37625fe136943ee40x000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb8f7fe95cc9e5f37625fe136943ee40x000.xml: 16 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 388a349106b33e50284f66b1091baab6x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 388a349106b33e50284f66b1091baab6x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 24097eec72a1fedd3ed4c05fb22e5ddcx000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 24097eec72a1fedd3ed4c05fb22e5ddcx000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c01e09c6c34e8aa072cc1b4b1ea0cc29x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c01e09c6c34e8aa072cc1b4b1ea0cc29x000.xml: 16 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 35a59f9c72425569d84d828c88fdc58cx000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 35a59f9c72425569d84d828c88fdc58cx000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0f60f1d8884a261cf574147b70948dc4x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0f60f1d8884a261cf574147b70948dc4x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4ea3b7ab2bb8df0b4b4100217be782b5x000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4ea3b7ab2bb8df0b4b4100217be782b5x000.xml: 16 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f90210389496653798cb529327b69b58x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f90210389496653798cb529327b69b58x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f28565e466de18691b788176f7480cd9x000.xml: 877 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f28565e466de18691b788176f7480cd9x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fd3e886682c632ca21edb38bd16df2c9x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fd3e886682c632ca21edb38bd16df2c9x000.xml: 16 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ac9dc63e0ded48c41575de426734046ex000.xml: 1027 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ac9dc63e0ded48c41575de426734046ex000.xml: 16 ms
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9760992abd16b75ae1ba5057a4fba128x000.xml: 338 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9760992abd16b75ae1ba5057a4fba128x000.xml: 31 ms
2020-10-21 11:21:00.663 Update progress: [I49502] sdds.data0910.xml: found supplement IDE577 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2020-10-21 11:21:00.663 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE577 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE577 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I49502] sdds.data0910.xml: found supplement IDE578 LATEST path= baseVersion= [included from product IDE577 LATEST path=]
2020-10-21 11:21:00.663 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE578 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE578 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I49502] sdds.data0910.xml: found supplement IDE579 LATEST path= baseVersion= [included from product IDE578 LATEST path=]
2020-10-21 11:21:00.663 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE579 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE579 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I49502] sdds.data0910.xml: found supplement IDE580 LATEST path= baseVersion= [included from product IDE579 LATEST path=]
2020-10-21 11:21:00.663 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE580 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE580 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I49502] sdds.data0910.xml: found supplement IDE581 LATEST path= baseVersion= [included from product IDE580 LATEST path=]
2020-10-21 11:21:00.663 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE581 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE581 LATEST path=
2020-10-21 11:21:00.663 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-10-21 11:21:00.663 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 66576692d59fc6bca90a40009920c658x000.xml: 57194 bytes
2020-10-21 11:21:00.663 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 66576692d59fc6bca90a40009920c658x000.xml: 78 ms
2020-10-21 11:21:00.663 Update progress: [I19463] Product download size 172271185 bytes
2020-10-21 11:21:18.587 Option all = no
2020-10-21 11:21:18.587 Option recurse = yes
2020-10-21 11:21:18.587 Option archive = no
2020-10-21 11:21:18.587 Option service = yes
2020-10-21 11:21:18.587 Option confirm = yes
2020-10-21 11:21:18.587 Option sxl = yes
2020-10-21 11:21:18.587 Option max-data-age = 35
2020-10-21 11:21:18.587 Option vdl-logging = yes
2020-10-21 11:21:18.619 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-10-21 11:21:18.619 Machine ID: 65e592a4d4f148149711d008d6c8ce2d
2020-10-21 11:21:18.634 Component SVRTcli.exe version 2.7.0
2020-10-21 11:21:18.634 Component control.dll version 2.7.0
2020-10-21 11:21:18.634 Component SVRTservice.exe version 2.7.0
2020-10-21 11:21:18.634 Component engine\osdp.dll version 1.44.1.2420
2020-10-21 11:21:18.634 Component engine\veex.dll version 3.73.0.2420
2020-10-21 11:21:18.634 Component engine\savi.dll version 9.0.11.2420
2020-10-21 11:21:18.634 Component rkdisk.dll version 1.5.33.1
2020-10-21 11:21:18.634 Version info: Product version 2.7.0
2020-10-21 11:21:18.634 Version info: Detection engine 3.73.0
2020-10-21 11:21:18.634 Version info: Detection data 5.55
2020-10-21 11:21:18.634 Version info: Build date 18.9.2018
2020-10-21 11:21:18.634 Version info: Data files added 173
2020-10-21 11:21:18.634 Version info: Last successful update (not yet updated)
2020-10-21 11:21:26.840 Update progress: [I19463] Syncing product IDE577 LATEST path=
2020-10-21 11:21:26.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 41318 bytes
2020-10-21 11:21:26.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 47 ms
2020-10-21 11:21:26.840 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 470335297ee7454ae093d3d41b727f14x000.xml: 397 bytes
2020-10-21 11:21:26.840 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 470335297ee7454ae093d3d41b727f14x000.xml: 31 ms
2020-10-21 11:21:26.840 Update progress: [I19463] Product download size 2067711 bytes
2020-10-21 11:21:37.167 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 48815019426c6250b2485845f3b884e7x000.xml: 7521 bytes
2020-10-21 11:21:37.167 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 48815019426c6250b2485845f3b884e7x000.xml: 31 ms
2020-10-21 11:21:37.292 Update progress: [I19463] Syncing product IDE578 LATEST path=
2020-10-21 11:21:37.292 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 53ede96593c6fe9b57cb2f2fb6037c70x000.xml: 34159 bytes
2020-10-21 11:21:37.292 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 53ede96593c6fe9b57cb2f2fb6037c70x000.xml: 47 ms
2020-10-21 11:21:37.292 Update progress: [I19463] Product download size 2069154 bytes
2020-10-21 11:21:46.621 Update progress: [I19463] Syncing product IDE579 LATEST path=
2020-10-21 11:21:46.621 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4c2bcd4c718673e16f63e09efff1a8ex000.xml: 38198 bytes
2020-10-21 11:21:46.621 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4c2bcd4c718673e16f63e09efff1a8ex000.xml: 47 ms
2020-10-21 11:21:46.621 Update progress: [I19463] Product download size 3361965 bytes
2020-10-21 11:22:14.435 Update progress: [I19463] Syncing product IDE580 LATEST path=
2020-10-21 11:22:14.435 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a9a6ea6d13760ff1c4aa21b98f2c3047x000.xml: 27465 bytes
2020-10-21 11:22:14.435 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a9a6ea6d13760ff1c4aa21b98f2c3047x000.xml: 47 ms
2020-10-21 11:22:14.435 Update progress: [I19463] Product download size 1740670 bytes
2020-10-21 11:22:20.005 Update progress: [I19463] Syncing product IDE581 LATEST path=
2020-10-21 11:22:20.005 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2020-10-21 11:22:20.005 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 31 ms
2020-10-21 11:22:20.051 Installing updates...
2020-10-21 11:22:21.268 Error level 1
2020-10-21 11:22:44.887 Update successful
2020-10-21 11:23:14.714 Option all = no
2020-10-21 11:23:14.714 Option recurse = yes
2020-10-21 11:23:14.714 Option archive = no
2020-10-21 11:23:14.714 Option service = yes
2020-10-21 11:23:14.714 Option confirm = yes
2020-10-21 11:23:14.714 Option sxl = yes
2020-10-21 11:23:14.730 Option max-data-age = 35
2020-10-21 11:23:14.730 Option vdl-logging = yes
2020-10-21 11:23:14.730 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-10-21 11:23:14.730 Machine ID: 65e592a4d4f148149711d008d6c8ce2d
2020-10-21 11:23:14.730 Component SVRTcli.exe version 2.7.0
2020-10-21 11:23:14.730 Component control.dll version 2.7.0
2020-10-21 11:23:14.730 Component SVRTservice.exe version 2.7.0
2020-10-21 11:23:14.730 Component engine\osdp.dll version 1.44.1.2490
2020-10-21 11:23:14.745 Component engine\veex.dll version 3.79.0.2490
2020-10-21 11:23:14.745 Component engine\savi.dll version 9.0.20.2490
2020-10-21 11:23:14.745 Component rkdisk.dll version 1.5.33.1
2020-10-21 11:23:14.745 Version info: Product version 2.7.0
2020-10-21 11:23:14.745 Version info: Detection engine 3.79.0
2020-10-21 11:23:14.745 Version info: Detection data 5.76
2020-10-21 11:23:14.745 Version info: Build date 23.6.2020
2020-10-21 11:23:14.745 Version info: Data files added 566
2020-10-21 11:23:14.745 Version info: Last successful update 21.10.2020 13:22:44

2020-10-21 11:26:14.504 Warning: rootkit scan failed to open volume "\\?\Volume{280560c3-5907-11e4-af5c-1c4bd61cfab7}" (5)
2020-10-21 11:43:38.427 Could not open C:\Boot\BCD
2020-10-21 11:43:40.346 Could not open C:\hiberfil.sys
2020-10-21 11:43:40.392 Could not open C:\pagefile.sys
2020-10-21 11:52:50.964 Password protected file C:\Program Files (x86)\Passware\Passware Kit 2016 Demo\Samples\excel.xls
2020-10-21 11:52:50.995 Password protected file C:\Program Files (x86)\Passware\Passware Kit 2016 Demo\Samples\powerpoint.ppt
2020-10-21 12:12:57.814 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2020-10-21 12:12:57.814 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2020-10-21 12:13:06.253 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2020-10-21 12:13:06.284 Could not open C:\Windows\System32\config\RegBack\SAM
2020-10-21 12:13:06.284 Could not open C:\Windows\System32\config\RegBack\SECURITY
2020-10-21 12:13:06.284 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2020-10-21 12:13:06.284 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2020-10-21 13:06:42.136 Could not open LOGICAL:0004:00000000
2020-10-21 13:06:42.168 Could not open E:\
2020-10-21 13:06:42.168 Could not open LOGICAL:0010:00000000
2020-10-21 13:06:42.168 Could not open Q:\
2020-10-21 13:06:43.540 Error level 0

2020-10-21 13:12:45.539 Scan completed.
2020-10-21 13:12:45.539

------------------------------------------------------------

2020-10-21 13:44:45.388 Sophos Virus Removal Tool version 2.7.0
2020-10-21 13:44:45.388 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2020-10-21 13:44:45.388 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-10-21 13:44:45.388 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2020-10-21 13:44:45.388 Checking for updates...
2020-10-21 13:44:45.482 Update progress: proxy server not available
2020-10-21 13:45:29.427 Downloading updates...
2020-10-21 13:45:29.459 Update progress: [I96736] sdds.svrt_v1.18: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2020-10-21 13:45:29.459 Update progress: [I95020] sdds.svrt_v1.18: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-10-21 13:45:29.459 Update progress: [I22529] sdds.svrt_v1.18: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-10-21 13:45:29.459 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2020-10-21 13:45:29.459 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2020-10-21 13:45:29.459 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2020-10-21 13:45:29.459 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2020-10-21 13:45:29.459 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2020-10-21 13:45:29.459 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 63 ms
2020-10-21 13:45:29.459 Update progress: [I49502] sdds.data0910.xml: found supplement IDE577 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2020-10-21 13:45:29.459 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE577 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE577 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I49502] sdds.data0910.xml: found supplement IDE578 LATEST path= baseVersion= [included from product IDE577 LATEST path=]
2020-10-21 13:45:29.459 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE578 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE578 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I49502] sdds.data0910.xml: found supplement IDE579 LATEST path= baseVersion= [included from product IDE578 LATEST path=]
2020-10-21 13:45:29.459 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE579 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE579 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I49502] sdds.data0910.xml: found supplement IDE580 LATEST path= baseVersion= [included from product IDE579 LATEST path=]
2020-10-21 13:45:29.459 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE580 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE580 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I49502] sdds.data0910.xml: found supplement IDE581 LATEST path= baseVersion= [included from product IDE580 LATEST path=]
2020-10-21 13:45:29.459 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE581 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE581 LATEST path=
2020-10-21 13:45:29.459 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-10-21 13:45:29.630 Update progress: [I19463] Syncing product IDE577 LATEST path=
2020-10-21 13:45:29.927 Update progress: [I19463] Syncing product IDE578 LATEST path=
2020-10-21 13:45:30.051 Update progress: [I19463] Syncing product IDE579 LATEST path=
2020-10-21 13:45:30.145 Update progress: [I19463] Syncing product IDE580 LATEST path=
2020-10-21 13:45:30.161 Update progress: [I19463] Syncing product IDE581 LATEST path=
2020-10-21 13:45:30.317 Installing updates...
2020-10-21 13:45:38.772 Option all = no
2020-10-21 13:45:39.801 Option recurse = yes
2020-10-21 13:45:39.801 Option archive = no
2020-10-21 13:45:39.801 Option service = yes
2020-10-21 13:45:39.801 Option confirm = yes
2020-10-21 13:45:39.801 Option sxl = yes
2020-10-21 13:45:39.801 Option max-data-age = 35
2020-10-21 13:45:39.801 Option vdl-logging = yes
2020-10-21 13:45:39.801 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-10-21 13:45:39.801 Machine ID: 65e592a4d4f148149711d008d6c8ce2d
2020-10-21 13:45:39.801 Component SVRTcli.exe version 2.7.0
2020-10-21 13:45:39.801 Component control.dll version 2.7.0
2020-10-21 13:45:39.801 Component SVRTservice.exe version 2.7.0
2020-10-21 13:45:39.801 Component engine\osdp.dll version 1.44.1.2490
2020-10-21 13:45:39.801 Component engine\veex.dll version 3.79.0.2490
2020-10-21 13:45:39.801 Component engine\savi.dll version 9.0.20.2490
2020-10-21 13:45:39.801 Component rkdisk.dll version 1.5.33.1
2020-10-21 13:45:39.801 Version info: Product version 2.7.0
2020-10-21 13:45:39.801 Version info: Detection engine 3.79.0
2020-10-21 13:45:39.801 Version info: Detection data 5.76
2020-10-21 13:45:39.801 Version info: Build date 23.6.2020
2020-10-21 13:45:39.801 Version info: Data files added 566
2020-10-21 13:45:39.801 Version info: Last successful update 21.10.2020 13:22:44
2020-10-21 13:45:39.801 Error level 1
2020-10-21 13:45:42.516 Update successful
2020-10-21 13:46:22.187 Option all = no
2020-10-21 13:46:22.187 Option recurse = yes
2020-10-21 13:46:22.187 Option archive = no
2020-10-21 13:46:22.187 Option service = yes
2020-10-21 13:46:22.187 Option confirm = yes
2020-10-21 13:46:22.187 Option sxl = yes
2020-10-21 13:46:22.187 Option max-data-age = 35
2020-10-21 13:46:22.187 Option vdl-logging = yes
2020-10-21 13:46:22.202 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-10-21 13:46:22.202 Machine ID: 65e592a4d4f148149711d008d6c8ce2d
2020-10-21 13:46:22.202 Component SVRTcli.exe version 2.7.0
2020-10-21 13:46:22.202 Component control.dll version 2.7.0
2020-10-21 13:46:22.202 Component SVRTservice.exe version 2.7.0
2020-10-21 13:46:22.202 Component engine\osdp.dll version 1.44.1.2490
2020-10-21 13:46:22.202 Component engine\veex.dll version 3.79.0.2490
2020-10-21 13:46:22.202 Component engine\savi.dll version 9.0.20.2490
2020-10-21 13:46:22.202 Component rkdisk.dll version 1.5.33.1
2020-10-21 13:46:22.202 Version info: Product version 2.7.0
2020-10-21 13:46:22.202 Version info: Detection engine 3.79.0
2020-10-21 13:46:22.202 Version info: Detection data 5.76
2020-10-21 13:46:22.202 Version info: Build date 23.6.2020
2020-10-21 13:46:22.202 Version info: Data files added 566
2020-10-21 13:46:22.202 Version info: Last successful update 21.10.2020 15:45:42

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: PC Těsně před smrtí

Příspěvekod jaro3 » 21 říj 2020 21:00

Vypni antivir i firewall.
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe

Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.


Vlož nový log z HJT + informuj o problémech
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Aktebis
Level 1.5
Level 1.5
Příspěvky: 117
Registrován: srpen 06
Pohlaví: Nespecifikováno

Re: PC Těsně před smrtí

Příspěvekod Aktebis » 22 říj 2020 17:22

Zdravím , co se týče PC, tak je asi tak o 300% lepí než bylo.
Při zapnutí naběhne tak do 5 min a pak běží tak jak má( jen přeci je to už děda)
Chtěl bych touto cestou poděkovat za super pomoc.Děkuji a přeji mnoho zdaru.
Děkuji


Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Asus on źt 22.10.2020 at 7:52:27,59.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Asus\Desktop\oprava\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

22.10.2020 7:57:32 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Lavasoft deleted successfully
C:\Program Files\McAfee Security Scan deleted successfully
C:\PROGRA~3\GoBoingo deleted successfully
C:\Users\Asus\AppData\Roaming\TP deleted successfully
C:\Users\Asus\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Asus\AppData\Local\EmieSiteList deleted successfully
C:\Users\Asus\AppData\Local\EmieUserList deleted successfully
C:\Users\Asus\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-4024037404-3744449615-2801496536-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-4024037404-3744449615-2801496536-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-4024037404-3744449615-2801496536-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_USERS\S-1-5-21-4024037404-3744449615-2801496536-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493\prefs.js:
user_pref("browser.search.selectedEngine", "Google");
user_pref("keyword.URL", "https://www.google.com/search?q={searchTerms}");

Added to C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493

user.js not found
---- Lines mindspark removed from prefs.js ----
user_pref("extensions.toolbar.mindspark._iwMembers_.BUTTON_STRUCTURE", "[{\"b\":231968576,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":231968577,
user_pref("extensions.toolbar.mindspark._iwMembers_.installation.toolbarDataSource", "[\"COOKIE\",\"LOCAL_STORAGE\"]");
user_pref("extensions.toolbar.mindspark._iwMembers_.lssState", "{\"previousLocales\":[\"cs\",\"en-US\",\"en\"],\"supportedLocales\":[\"de\",\"es\",\"p
user_pref("extensions.toolbar.mindspark._iwMembers_.uninstallTasks", "{\"prefBranchesToDelete\":[\"extensions.toolbar.mindspark._iwMembers_.\"],\"file
---- Lines searchengine removed from prefs.js ----
user_pref("browser.pageActions.persistedActions", "{\"version\":1,\"ids\":[\"bookmark\",\"bookmarkSeparator\",\"copyURL\",\"emailLink\",\"sendToDevice
---- FireFox user.js and prefs.js backups ----

prefs_22.10.2020_0837_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Lavasoft not found
C:\windows\SysNative\Tasks\BlueStacksHelper deleted
C:\Users\Asus\.android deleted
C:\found.000 deleted
C:\Users\Asus\AppData\Roaming\Wondershare deleted
C:\PROGRA~3\OberonGameConsole deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493\AllInOneDocs_iw deleted
"C:\Windows\Installer\6a3aa0.msi" deleted
"C:\PROGRA~2\Wondershare\WAF\2.4.3.237\Newtonsoft.Json.dll" deleted
"C:\PROGRA~2\Wondershare\WAF\2.4.3.237\WsAppCollect.dll" deleted
"C:\PROGRA~2\Wondershare\WAF\2.4.3.237\WsAppCommon.dll" not deleted
"C:\PROGRA~2\Wondershare\WAF\2.4.3.237\WsAppService.exe" not deleted
"C:\PROGRA~2\Wondershare" not deleted
"C:\PROGRA~2\Wondershare\WAF" not deleted
"C:\PROGRA~2\Wondershare\WAF\2.4.3.237" not deleted

==== Orphaned Tasks deleted from Registry ======================

BlueStacksHelper deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

==== Firefox Plugins ======================

Profilepath: C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493
124FA95972259D35F25B6133DD4DC425 - c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll - Silverlight Plug-In
29D9DD280A871C15C8517D30969A65D5 - c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrlui.dll - Microsoft® Silverlight


==== Chromium Look ======================

Google Chrome Version: 86.0.4240.111
Opera Browser Version: 39.0.2256.71
Opera Browser Version: 41.0.2353.56


Chrome Media Router - Asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Rich Hints Agent - Asus\Appdata\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk

==== Chromium Fix ======================

C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.milfsavenue.com_0.localstorage deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.milfsavenue.com_0.localstorage-journal deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adserver.adtech.de_0.localstorage deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adserver.adtech.de_0.localstorage-journal deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_advert.uloz.to_0.localstorage deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_advert.uloz.to_0.localstorage-journal deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_c.betrad.com_0.localstorage-journal deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage deleted successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.amazon.com/gp/bit/amazonserp/ref=bit_bds-p17_serp_ie_us_display?ie=UTF8&tagbase=bds-p17&tbrId=v1_abb-channel-17_d0d82a56_1201_1403_20160507_CZ_ie_sp_"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://ru.redirect.wrapper.services.alawar.com/startpage.php?lang=en&wspv=2.0&locale=en&pid=1"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://ru.redirect.wrapper.services.alawar.com/startpage.php?lang=en&wspv=2.0&locale=en&pid=1"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="https://www.amazon.com/gp/bit/amazonserp/ref=bit_bds-p17_serp_ie_us_display?ie=UTF8&tagbase=bds-p17&tbrId=v1_abb-channel-17_d0d82a56_1201_1403_20160507_CZ_ie_sp_"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
HKLM\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox
HKLM\Wow6432Node\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} - http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
HKLM\Wow6432Node\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
HKCU\SearchScopes\{B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} - https://www.amazon.com/gp/bit/amazonser ... -20&query={searchTerms}

==== Reset Google Chrome ======================

C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Asus\Appdata\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Asus\Appdata\Roaming\Opera Software\Opera Stable\Preferences.backup was reset successfully
C:\Users\Asus\Appdata\Roaming\Opera Software\Opera Stable\Secure Preferences was reset successfully
C:\Users\Asus\Appdata\Roaming\Opera Software\Opera Stable\Secure Preferences.backup was reset successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Asus\Appdata\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
C:\Users\Asus\Appdata\Roaming\Opera Software\Opera Stable\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC06200 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\D2A425F405350054677A7A857BC06200 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Asus\AppData\Local\Mozilla\Firefox\Profiles\m6lz57jk.default-1514050601493\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Asus\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\Asus\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=1778 folders=181 255741228 bytes)

==== Empty Temp Folders ======================

C:\Users\Asus\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Asus\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\Wondershare\WAF\2.4.3.237\WsAppCommon.dll" not found
"C:\PROGRA~2\Wondershare\WAF\2.4.3.237\WsAppService.exe" not found
"C:\PROGRA~2\Wondershare" not found

==== EOF on źt 22.10.2020 at 9:07:53,74 ======================


Scan Information
Product Name : Zemana AntiMalware
Scan Status : Completed
Scan Date : 22.10.2020 16:45:38
Scan Type : Smart Scan
Scan Duration : 00:02:24
Scanned Objects : 1333
Detected Objects : 1
Excluded Objects : 0
Auto Upload : True
OS : Windows 7 x64
Processor : 2X Intel(R) Pentium(R) CPU P6100 @ 2.00GHz
BIOS Mode : Legacy
Domain Info : WORKGROUP,False,NetSetupWorkgroupName
CUID : 1201D274F161F592917BF8


Detections
MD5 :
Status : Scanned
Object : c:\programdata\microsoft\windows\start menu\programs\google chrome\uninstall google chrome.lnk
Publisher :
Size : 0
Detection : Hijack:Browser/Fake Chrome Shortcut
Action : Delete
-----------------------------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:16:14, on 22.10.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19301)


Boot mode: Normal

Running processes:
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Asus\Desktop\oprava\HijackThis (2).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.amazon.com/gp/bit/amazonser ... _CZ_ie_sp_
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Intel Driver & Support Assistant] C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
O4 - HKCU\..\Run: [Opera Browser Assistant] C:\Users\Asus\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Codec Pack Update Checker] "C:\Windows\system32\Codecs\UpdateChecker.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Codec Pack Update Checker] "C:\Windows\system32\Codecs\UpdateChecker.exe" (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: MEGAsync.lnk = C:\ProgramData\MEGAsync\MEGAsync.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Driver & Support Assistant (DSAService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
O23 - Service: Intel(R) Driver & Support Assistant Updater (DSAUpdateService) - Intel - C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.111\elevation_service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) - Intel Corporation - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: KARAT Client Updater - KARAT Software a.s - C:\Program Files\KARAT Software\Karat Client\ISKarat.Loader.Proxy.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: McAfee WebAdvisor - Unknown owner - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.11.334\McCHSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RogueKiller RTP (rkrtservice) - Unknown owner - C:\Program Files\RogueKiller\RogueKillerSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe (file missing)
O23 - Service: Wondershare Driver Install Service (WsDrvInst) - Unknown owner - C:\Program Files (x86)\Wondershare\Wondershare MobileTrans\DriverInstall.exe (file missing)

--
End of file - 12771 bytes

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: PC Těsně před smrtí

Příspěvekod jaro3 » 22 říj 2020 19:51

Nemáš zač!

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')


Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Aktebis
Level 1.5
Level 1.5
Příspěvky: 117
Registrován: srpen 06
Pohlaví: Nespecifikováno

Re: PC Těsně před smrtí

Příspěvekod Aktebis » 03 lis 2020 20:41

Omlouvám se za pozdní info a txt z Deldixu,ale byl jsem na dovolené:)
PC jede lépe než dříve.Už to asi nebude dobre jako když bylo nové,ale jsem moc spokojen a ještě jednou moc děkuji
DelFix v1.013 - Logfile created 03/11/2020 at 20:21:47
# Updated 17/04/2016 by Xplode
# Username : Asus - ASUS-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Asus\Desktop\adwcleaner_8.0.7.exe
Deleted : C:\Users\Asus\Desktop\JRT (1).exe
Deleted : C:\Users\Public\Desktop\RogueKiller.lnk
Deleted : C:\Users\Asus\Downloads\AdwCleaner.exe
Deleted : C:\Users\Asus\Downloads\adwcleaner_5.032.exe
Deleted : C:\Users\Asus\Downloads\adwcleaner_8.0.7.exe
Deleted : C:\Users\Asus\Downloads\Avengers 2 - Věk Ultrona - Age of Ultron (2015) 1080p CZ dabing.mkv
Deleted : C:\Users\Asus\Downloads\Avengers 2 - Věk Ultrona [Age of Ultron] (2015) HD 720p CZ dabing.avi
Deleted : C:\Users\Asus\Downloads\JRT (1).exe
Deleted : C:\Users\Asus\Downloads\JRT.exe
Deleted : C:\Users\Asus\Downloads\HijackThis (1).exe
Deleted : C:\Users\Asus\Downloads\HijackThis.exe
Deleted : C:\Users\Asus\Downloads\hijackthis.log
Deleted : C:\Users\Asus\Downloads\RogueKillerX64.exe
Deleted : C:\Users\Asus\Downloads\RogueKiller_portable64.exe
Deleted : C:\Users\Asus\Downloads\TFC (1).exe
Deleted : C:\Users\Asus\Downloads\TFC (2).exe
Deleted : C:\Users\Asus\Downloads\TFC.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #2 [zoek.exe restore point | 10/22/2020 05:57:06]
Deleted : RP #3 [Windows Update | 10/22/2020 14:58:02]
Deleted : RP #4 [Windows Update | 10/25/2020 19:00:58]
Deleted : RP #5 [Windows Update | 11/01/2020 18:17:16]

New restore point created !

########## - EOF - ##########

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: PC Těsně před smrtí

Příspěvekod jaro3 » 03 lis 2020 21:06

OK. Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 2 hosti