Platba paypal Trojan:Script/Oneeva.A!ml

Sekce věnovaná virům a jiným škodlivým kódům, rovněž ale nástrojům, kterým se lze proti nim bránit…

Moderátoři: Mods_senior, Security team

Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 15 črc 2021 22:48

E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC7\Drivers\M_Outfit_Race_Suit_Block_AI.zip
2021-07-15 18:31:28.391 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC7\Drivers\M_Outfit_Race_Suit_Classic.zip
2021-07-15 18:31:28.393 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC7\Drivers\M_Outfit_Race_Suit_Classic_AI.zip
2021-07-15 18:31:28.404 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC8\Cinematic_Assets.zip
2021-07-15 18:31:28.416 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Cinematic_Assets.zip
2021-07-15 18:31:28.437 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\F_Accessory_Bunny_Ears.zip
2021-07-15 18:31:28.438 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\F_Accessory_Bunny_Ears_AI.zip
2021-07-15 18:31:28.439 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\F_Outfit_Easter_Bunny.zip
2021-07-15 18:31:28.440 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\F_Outfit_Easter_Bunny_AI.zip
2021-07-15 18:31:28.442 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\M_Accessory_Bunny_Ears.zip
2021-07-15 18:31:28.443 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\M_Accessory_Bunny_Ears_AI.zip
2021-07-15 18:31:28.444 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\M_Outfit_Easter_Bunny.zip
2021-07-15 18:31:28.445 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\MediaOverride\RC9\Drivers\M_Outfit_Easter_Bunny_AI.zip
2021-07-15 18:31:28.447 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC0.zip
2021-07-15 18:31:28.449 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC0HiRes.zip
2021-07-15 18:31:28.450 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC1.zip
2021-07-15 18:31:28.451 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC10.zip
2021-07-15 18:31:28.452 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC10HiRes.zip
2021-07-15 18:31:28.454 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC11.zip
2021-07-15 18:31:28.455 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC11HiRes.zip
2021-07-15 18:31:28.456 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC12.zip
2021-07-15 18:31:28.457 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC12HiRes.zip
2021-07-15 18:31:28.458 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC13.zip
2021-07-15 18:31:28.460 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC13HiRes.zip
2021-07-15 18:31:28.461 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC14.zip
2021-07-15 18:31:28.462 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC14HiRes.zip
2021-07-15 18:31:28.463 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC15.zip
2021-07-15 18:31:28.465 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC15HiRes.zip
2021-07-15 18:31:28.466 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC16.zip
2021-07-15 18:31:28.467 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC16HiRes.zip
2021-07-15 18:31:28.469 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC17.zip
2021-07-15 18:31:28.470 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC17HiRes.zip
2021-07-15 18:31:28.471 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC18.zip
2021-07-15 18:31:28.472 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC18HiRes.zip
2021-07-15 18:31:28.474 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC19.zip
2021-07-15 18:31:28.475 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC19HiRes.zip
2021-07-15 18:31:28.476 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC1HiRes.zip
2021-07-15 18:31:28.477 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC2.zip
2021-07-15 18:31:28.479 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC20.zip
2021-07-15 18:31:28.480 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC20HiRes.zip
2021-07-15 18:31:28.481 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC21.zip
2021-07-15 18:31:28.482 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC21HiRes.zip
2021-07-15 18:31:28.484 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC22.zip
2021-07-15 18:31:28.485 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC22HiRes.zip
2021-07-15 18:31:28.486 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC23.zip
2021-07-15 18:31:28.487 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC23HiRes.zip
2021-07-15 18:31:28.489 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC24.zip
2021-07-15 18:31:28.490 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC24HiRes.zip
2021-07-15 18:31:28.491 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC25.zip
2021-07-15 18:31:28.492 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC25HiRes.zip
2021-07-15 18:31:28.494 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC26.zip
2021-07-15 18:31:28.495 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC26HiRes.zip
2021-07-15 18:31:28.496 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC27.zip
2021-07-15 18:31:28.497 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC27HiRes.zip
2021-07-15 18:31:28.499 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC28.zip
2021-07-15 18:31:28.500 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC28HiRes.zip
2021-07-15 18:31:28.501 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC29.zip
2021-07-15 18:31:28.502 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC29HiRes.zip
2021-07-15 18:31:28.503 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC2HiRes.zip
2021-07-15 18:31:28.505 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC3.zip
2021-07-15 18:31:28.518 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC30.zip
2021-07-15 18:31:28.519 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC30HiRes.zip
2021-07-15 18:31:28.521 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC31.zip
2021-07-15 18:31:28.522 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC31HiRes.zip
2021-07-15 18:31:28.523 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC32.zip
2021-07-15 18:31:28.524 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC32HiRes.zip
2021-07-15 18:31:28.525 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC33.zip
2021-07-15 18:31:28.527 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC33HiRes.zip
2021-07-15 18:31:28.528 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC34.zip
2021-07-15 18:31:28.529 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC34HiRes.zip
2021-07-15 18:31:28.530 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC35.zip
2021-07-15 18:31:28.532 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC35HiRes.zip
2021-07-15 18:31:28.533 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC36.zip
2021-07-15 18:31:28.534 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC36HiRes.zip
2021-07-15 18:31:28.535 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC37.zip
2021-07-15 18:31:28.537 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC37HiRes.zip
2021-07-15 18:31:28.538 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC38.zip
2021-07-15 18:31:28.539 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC38HiRes.zip
2021-07-15 18:31:28.540 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC39.zip
2021-07-15 18:31:28.542 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC39HiRes.zip
2021-07-15 18:31:28.543 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC3HiRes.zip
2021-07-15 18:31:28.544 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC4.zip
2021-07-15 18:31:28.545 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC4HiRes.zip
2021-07-15 18:31:28.547 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC5.zip
2021-07-15 18:31:28.548 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC5HiRes.zip
2021-07-15 18:31:28.549 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC6.zip
2021-07-15 18:31:28.550 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC6HiRes.zip
2021-07-15 18:31:28.552 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC7.zip
2021-07-15 18:31:28.553 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC7HiRes.zip
2021-07-15 18:31:28.554 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC8.zip
2021-07-15 18:31:28.555 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC8HiRes.zip
2021-07-15 18:31:28.557 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC9.zip
2021-07-15 18:31:28.558 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\RC9HiRes.zip
2021-07-15 18:31:28.584 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\br.zip
2021-07-15 18:31:28.585 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\CHS.zip
2021-07-15 18:31:28.586 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\CHT.zip
2021-07-15 18:31:28.588 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\cz.zip
2021-07-15 18:31:28.589 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\DE.zip
2021-07-15 18:31:28.590 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\EN.zip
2021-07-15 18:31:28.604 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\ES.zip
2021-07-15 18:31:28.605 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\FR.zip
2021-07-15 18:31:28.607 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\GB.zip
2021-07-15 18:31:28.608 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\HU.zip
2021-07-15 18:31:28.609 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\IT.zip
2021-07-15 18:31:28.610 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\JP.zip
2021-07-15 18:31:28.612 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\KO.zip
2021-07-15 18:31:28.613 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\MX.zip
2021-07-15 18:31:28.614 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\PL.zip
2021-07-15 18:31:28.615 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\RU.zip
2021-07-15 18:31:28.617 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\StringTables\TR.zip
2021-07-15 18:31:28.618 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Stripped\TIDETables.zip
2021-07-15 18:31:28.621 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\TIDETables.zip
2021-07-15 18:31:28.702 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Tracks\Homespace02\bin.zip
2021-07-15 18:31:28.810 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Tracks\UK\bin.zip
2021-07-15 18:31:28.847 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Tracks\UK\grass.zip
2021-07-15 18:31:28.854 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Tracks\UK\NavMeshHGraph.zip
2021-07-15 18:31:29.527 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Effects.zip
2021-07-15 18:31:29.529 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Fonts.zip
2021-07-15 18:31:29.540 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Anthem.zip
2021-07-15 18:31:29.586 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\ActivityPanel.zip
2021-07-15 18:31:29.587 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\AddOn.zip
2021-07-15 18:31:29.588 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Aftermarket_Logos.zip
2021-07-15 18:31:29.590 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\AlbumArt.zip
2021-07-15 18:31:29.591 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Anthem.zip
2021-07-15 18:31:29.592 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\CharacterCustomisation.zip
2021-07-15 18:31:29.593 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Checkbox.zip
2021-07-15 18:31:29.595 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\ControllerIcons.zip
2021-07-15 18:31:29.596 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\CreativeHub.zip
2021-07-15 18:31:29.597 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Creator_Level.zip
2021-07-15 18:31:29.598 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\CU1.zip
2021-07-15 18:31:29.600 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Drivetrain_Icons.zip
2021-07-15 18:31:29.601 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\E3.zip
2021-07-15 18:31:29.602 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Eliminator.zip
2021-07-15 18:31:29.604 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\EventIcons.zip
2021-07-15 18:31:29.605 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Event_Blueprint.zip
2021-07-15 18:31:29.606 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Forzathon_WeeklyImages.zip
2021-07-15 18:31:29.607 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Forza_Events.zip
2021-07-15 18:31:29.628 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Horizon_Map.zip
2021-07-15 18:31:29.629 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\HUD.zip
2021-07-15 18:31:29.631 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\InfluenceThreads.zip
2021-07-15 18:31:29.632 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Infographics.zip
2021-07-15 18:31:29.633 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\KeyboardIcons.zip
2021-07-15 18:31:29.635 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\LaunchChunk.zip
2021-07-15 18:31:29.636 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\LeagueIcon.zip
2021-07-15 18:31:29.637 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\LiveryMaterials.zip
2021-07-15 18:31:29.638 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\LoadSaveRouteKeyArt.zip
2021-07-15 18:31:29.640 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_Expansion1.zip
2021-07-15 18:31:29.641 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_Expansion2_Autumn.zip
2021-07-15 18:31:29.642 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_Expansion2_Debug.zip
2021-07-15 18:31:29.643 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_Expansion2_Spring.zip
2021-07-15 18:31:29.645 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_Expansion2_Summer.zip
2021-07-15 18:31:29.646 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_Expansion2_Winter.zip
2021-07-15 18:31:29.648 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_UK.zip
2021-07-15 18:31:29.649 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_UK_Autumn.zip
2021-07-15 18:31:29.650 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_UK_Spring.zip
2021-07-15 18:31:29.652 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_UK_Summer.zip
2021-07-15 18:31:29.653 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Map_UK_Winter.zip
2021-07-15 18:31:29.654 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\MonthlyRivals.zip
2021-07-15 18:31:29.655 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Mountain.zip
2021-07-15 18:31:29.657 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\OnlineAdventurePreview.zip
2021-07-15 18:31:29.658 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\OnlineChampionships.zip
2021-07-15 18:31:29.659 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PDLC1.zip
2021-07-15 18:31:29.661 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PDLC1_Map_Sketches.zip
2021-07-15 18:31:29.662 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PDLC2.zip
2021-07-15 18:31:29.663 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Placeholder.zip
2021-07-15 18:31:29.664 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PlayerHouses.zip
2021-07-15 18:31:29.666 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PostRace.zip
2021-07-15 18:31:29.667 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PrestigeLevels.zip
2021-07-15 18:31:29.668 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Promo.zip
2021-07-15 18:31:29.670 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\PropPlacement.zip
2021-07-15 18:31:29.671 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\RaceType.zip
2021-07-15 18:31:29.672 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\RadioStations.zip
2021-07-15 18:31:29.693 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Rare_Car_Dealership.zip
2021-07-15 18:31:29.694 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Rebuilds.zip
2021-07-15 18:31:29.696 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Replay_Icons.zip
2021-07-15 18:31:29.697 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\ReturnToGame.zip
2021-07-15 18:31:29.704 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Season_Icons.zip
2021-07-15 18:31:29.705 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\SellSheet.zip
2021-07-15 18:31:29.707 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series10.zip
2021-07-15 18:31:29.708 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series11.zip
2021-07-15 18:31:29.709 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series12.zip
2021-07-15 18:31:29.710 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series13.zip
2021-07-15 18:31:29.712 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series14.zip
2021-07-15 18:31:29.713 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series15.zip
2021-07-15 18:31:29.714 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series16.zip
2021-07-15 18:31:29.716 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series17.zip
2021-07-15 18:31:29.717 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series18.zip
2021-07-15 18:31:29.718 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series19.zip
2021-07-15 18:31:29.720 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series20.zip
2021-07-15 18:31:29.721 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series21.zip
2021-07-15 18:31:29.722 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series22.zip
2021-07-15 18:31:29.723 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series23.zip
2021-07-15 18:31:29.725 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series24.zip
2021-07-15 18:31:29.726 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series25.zip
2021-07-15 18:31:29.727 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series26.zip
2021-07-15 18:31:29.729 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series27.zip
2021-07-15 18:31:29.730 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series28.zip
2021-07-15 18:31:29.731 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series29.zip
2021-07-15 18:31:29.733 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series3.zip
2021-07-15 18:31:29.734 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series30.zip
2021-07-15 18:31:29.735 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series31.zip
2021-07-15 18:31:29.736 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series32.zip
2021-07-15 18:31:29.738 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series33.zip
2021-07-15 18:31:29.739 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series34.zip
2021-07-15 18:31:29.740 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series35.zip
2021-07-15 18:31:29.758 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series36.zip
2021-07-15 18:31:29.759 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series37.zip
2021-07-15 18:31:29.760 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series6.zip
2021-07-15 18:31:29.762 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series7.zip
2021-07-15 18:31:29.763 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series8.zip
2021-07-15 18:31:29.764 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Series9.zip
2021-07-15 18:31:29.766 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\SeriesRewards.zip
2021-07-15 18:31:29.767 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Showcase_Flyer.zip
2021-07-15 18:31:29.768 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Spatial.zip
2021-07-15 18:31:29.769 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Speedo_Analogue.zip
2021-07-15 18:31:29.771 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Speedo_Digital.zip
2021-07-15 18:31:29.772 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\SuperChallenges.zip
2021-07-15 18:31:29.773 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Telemetry.zip
2021-07-15 18:31:29.774 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\The_Island.zip
2021-07-15 18:31:29.776 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\UI_Symbols.zip
2021-07-15 18:31:29.777 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Upgrade_Class.zip
2021-07-15 18:31:29.778 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\Upgrade_Parts.zip
2021-07-15 18:31:29.779 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\VideoTiles.zip
2021-07-15 18:31:29.781 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\WeatherTypes.zip
2021-07-15 18:31:29.782 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Data_Bound\WheelIcons.zip
2021-07-15 18:31:29.794 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Anthem.zip
2021-07-15 18:31:29.835 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\ActivityPanel.zip
2021-07-15 18:31:29.837 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\AlbumArt.zip
2021-07-15 18:31:29.838 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Anthem.zip
2021-07-15 18:31:29.839 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\CharacterCustomisation.zip
2021-07-15 18:31:29.841 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\ControllerIcons.zip
2021-07-15 18:31:29.842 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\CreativeHub.zip
2021-07-15 18:31:29.843 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Creator_Level.zip
2021-07-15 18:31:29.844 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\CU1.zip
2021-07-15 18:31:29.846 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Drivetrain_Icons.zip
2021-07-15 18:31:29.847 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Eliminator.zip
2021-07-15 18:31:29.848 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\EventIcons.zip
2021-07-15 18:31:29.849 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Event_Blueprint.zip
2021-07-15 18:31:29.851 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Forzathon_WeeklyImages.zip
2021-07-15 18:31:29.852 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Forza_Events.zip
2021-07-15 18:31:29.853 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Horizon_Map.zip
2021-07-15 18:31:29.854 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\HUD.zip
2021-07-15 18:31:29.856 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\InfluenceThreads.zip
2021-07-15 18:31:29.857 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Infographics.zip
2021-07-15 18:31:29.858 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\KeyboardIcons.zip
2021-07-15 18:31:29.860 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\LaunchChunk.zip
2021-07-15 18:31:29.861 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\LeagueIcon.zip
2021-07-15 18:31:29.862 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\LoadSaveRouteKeyArt.zip
2021-07-15 18:31:29.863 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\OnlineAdventurePreview.zip
2021-07-15 18:31:29.865 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\OnlineChampionships.zip
2021-07-15 18:31:29.866 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\PDLC1.zip
2021-07-15 18:31:29.867 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\PDLC1_Map_Sketches.zip
2021-07-15 18:31:29.868 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\PDLC2.zip
2021-07-15 18:31:29.870 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\PlayerHouses.zip
2021-07-15 18:31:29.871 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\PrestigeLevels.zip
2021-07-15 18:31:29.872 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Promo.zip
2021-07-15 18:31:29.874 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\PropPlacement.zip
2021-07-15 18:31:29.875 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\RaceType.zip
2021-07-15 18:31:29.876 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\RadioStations.zip
2021-07-15 18:31:29.877 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Rare_Car_Dealership.zip
2021-07-15 18:31:29.879 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Rebuilds.zip
2021-07-15 18:31:29.880 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Replay_Icons.zip
2021-07-15 18:31:29.881 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\ReturnToGame.zip
2021-07-15 18:31:29.883 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Season_Icons.zip
2021-07-15 18:31:29.884 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\SellSheet.zip
2021-07-15 18:31:29.885 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series10.zip
2021-07-15 18:31:29.886 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series11.zip
2021-07-15 18:31:29.888 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series12.zip
2021-07-15 18:31:29.889 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series13.zip
2021-07-15 18:31:29.890 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series14.zip
2021-07-15 18:31:29.892 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series15.zip
2021-07-15 18:31:29.893 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series16.zip
2021-07-15 18:31:29.894 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series17.zip
2021-07-15 18:31:29.895 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series18.zip
2021-07-15 18:31:29.897 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series19.zip
2021-07-15 18:31:29.898 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series20.zip
2021-07-15 18:31:29.899 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series21.zip
2021-07-15 18:31:29.900 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series22.zip
2021-07-15 18:31:29.902 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series23.zip
2021-07-15 18:31:29.903 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series24.zip
2021-07-15 18:31:29.904 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series25.zip
2021-07-15 18:31:29.905 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series26.zip
2021-07-15 18:31:29.907 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series27.zip
2021-07-15 18:31:29.908 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series28.zip
2021-07-15 18:31:29.915 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series29.zip
2021-07-15 18:31:29.916 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series3.zip
2021-07-15 18:31:29.917 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series30.zip
2021-07-15 18:31:29.919 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series31.zip
2021-07-15 18:31:29.940 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series32.zip
2021-07-15 18:31:29.942 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series33.zip
2021-07-15 18:31:29.943 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series34.zip
2021-07-15 18:31:29.944 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series35.zip
2021-07-15 18:31:29.946 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series36.zip
2021-07-15 18:31:29.947 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series37.zip
2021-07-15 18:31:29.948 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series6.zip
2021-07-15 18:31:29.949 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series7.zip
2021-07-15 18:31:29.951 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series8.zip
2021-07-15 18:31:29.952 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Series9.zip
2021-07-15 18:31:29.953 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\SeriesRewards.zip
2021-07-15 18:31:29.955 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Showcase_Flyer.zip
2021-07-15 18:31:29.956 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Spatial.zip
2021-07-15 18:31:29.957 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Speedo_Analogue.zip
2021-07-15 18:31:29.958 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Speedo_Digital.zip
2021-07-15 18:31:29.960 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\SuperChallenges.zip
2021-07-15 18:31:29.961 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Telemetry.zip
2021-07-15 18:31:29.962 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\ui_symbols.zip
2021-07-15 18:31:29.964 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Upgrade_Class.zip
2021-07-15 18:31:29.965 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\Upgrade_Parts.zip
2021-07-15 18:31:29.966 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\WeatherTypes.zip
2021-07-15 18:31:29.967 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\HiRes\Data_Bound\WheelIcons.zip
2021-07-15 18:31:29.969 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures\Localized.zip
2021-07-15 18:31:29.971 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI\Textures.zip
2021-07-15 18:31:30.075 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\UI.zip
2021-07-15 18:31:30.100 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\Water.zip
2021-07-15 18:31:30.128 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\wheeltunablesettingspc.zip
2021-07-15 18:31:30.139 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\Homespace.zip
2021-07-15 18:31:30.141 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\Materials.zip
2021-07-15 18:31:30.151 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\MaterialsPG\characters.zip
2021-07-15 18:31:30.152 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\MaterialsPG\objects.zip
2021-07-15 18:31:30.153 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\MaterialsPG\Particles.zip
2021-07-15 18:31:30.155 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\Shaders.zip
2021-07-15 18:31:30.165 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\ShadersPG\characters.zip
2021-07-15 18:31:30.166 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\ShadersPG\objects.zip
2021-07-15 18:31:30.167 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\ShadersPG\Particles.zip
2021-07-15 18:31:30.168 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\Textures.zip
2021-07-15 18:31:30.178 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\TexturesPG\characters.zip
2021-07-15 18:31:30.180 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\TexturesPG\objects.zip
2021-07-15 18:31:30.181 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Media\_library\TexturesPG\particles.zip
2021-07-15 18:31:30.239 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Microsoft.Xbox.Input.AdvancedGipWheel.dll
2021-07-15 18:31:30.240 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Microsoft.Xbox.Services.dll
2021-07-15 18:31:30.242 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\Party.dll
2021-07-15 18:31:30.243 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\PartyXboxLive.dll
2021-07-15 18:31:30.252 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\TargetHardwareProfiler.dll
2021-07-15 18:31:30.255 Could not open E:\WindowsApps\Microsoft.SunriseBaseGame_1.473.411.2_x64__8wekyb3d8bbwe\xrnm.dll
2021-07-15 18:51:50.785 The following items will be cleaned up:
2021-07-15 18:51:50.785 Mal/Generic-S

Reklama
Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 15 črc 2021 22:58

ROGUEKILLER

RogueKiller Anti-Malware V15.0.8.0 (x64) [Jul 13 2021] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19042) 64-bit
Started in : Normal mode
User : jurym [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20210713_121625, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2021/07/15 22:53:17 (Duration : 00:03:35)
Switches : -minimize

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> Chrome Addon
[PUP.Gen0 (Potentially Malicious)] Video Downloader professional (C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ELICPJ~1) -- elicpjhcidhpjomhibiffojpinpmmpil -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod jaro3 » 15 črc 2021 23:27

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“,
po jeho skončení - vše zatrhni (dej zatržítka vlevo od nálezů , do bílých políček)
- pak klikni na "Remove Selected"
- Počkej, dokud Status box nezobrazí " Removal finished, please review result "
- Klikni na "Open report " a pak na " Open TXT“ a zkopíruj ten log a vlož obsah té zprávy prosím sem. Log je možno nalézt v C:\ProgramData\RogueKiller\Logs - Zavři RogueKiller.


Vypni antivir i firewall, RogueKiller, Malwarebytes Antimalware, windowsDefender
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe
https://uloz.to/file/nFH1LwSrGioP/zoek1-rar

Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.


Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.


Vlož nový log z HJT + informuj o problémech
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 16 črc 2021 19:30

RogueKiller Anti-Malware V15.0.8.0 (x64) [Jul 13 2021] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19042) 64-bit
Started in : Normal mode
User : jurym [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20210713_121625, Driver : Loaded
Mode : Standard Scan, Delete -- Date : 2021/07/16 19:29:06 (Duration : 00:03:35)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Delete ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.Gen0 (Potentially Malicious)] Video Downloader professional -- elicpjhcidhpjomhibiffojpinpmmpil -> Deleted

Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 16 črc 2021 20:00

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by jurym on 16.07.2021 at 19:33:39,85.
Microsoft Windows 10 Home 10.0.19042 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\jurym\AppData\Local\Temp\Rar$EXa15484.13988\zoek1\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

16.07.2021 19:35:08 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\AVG deleted successfully
C:\PROGRA~2\Origin Games deleted successfully
C:\PROGRA~2\Razer deleted successfully
C:\PROGRA~2\WOWKO TEST deleted successfully
C:\Program Files\NordVPN network TUN deleted successfully
C:\Program Files\Common Files\AV deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\ssh deleted successfully
C:\PROGRA~3\{94D791AB-B60C-BE49-EB8A-C85759C28BAB} deleted successfully
C:\Users\jaere\AppData\Local\VirtualStore deleted successfully
C:\Users\jurym\AppData\Local\Battlefield V deleted successfully
C:\Users\jurym\AppData\Local\DBG deleted successfully
C:\Users\jurym\AppData\Local\PackageStaging deleted successfully
C:\Users\jurym\AppData\Local\RedM deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2403191041-1499668496-1599166842-1001\SOFTWARE\Microsoft\Internet Explorer\Approved Extensions\{9F904093-6E18-4536-BF5F-B03689CF00F0} deleted successfully
HKEY_USERS\S-1-5-21-2403191041-1499668496-1599166842-1001\SOFTWARE\Microsoft\Internet Explorer\Approved Extensions\{EF293C5A-9F37-49FD-91C4-2B867063FC54} deleted successfully

==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\PROGRA~2\AGEIA Technologies not found
C:\PROGRA~2\AVG not found
C:\PROGRA~2\Origin Games not found
C:\PROGRA~2\Razer not found
C:\PROGRA~2\WOWKO TEST not found
C:\PROGRA~3\{94D791AB-B60C-BE49-EB8A-C85759C28BAB} not found
C:\Users\jurym\AppData\Roaming\.tlauncher deleted
C:\Users\jurym\AppData\Roaming\discord deleted
C:\Users\jurym\AppData\Roaming\Plitch deleted
C:\Users\jurym\AppData\Roaming\slobs-client deleted
C:\Users\jurym\AppData\Roaming\vysor deleted
C:\Users\jurym\.android deleted
C:\cinderblocks.xml deleted
C:\RentApartment.xml deleted
C:\TangerinePickup.xml deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\jurym\AppData\Local\oobelibMkey.log deleted
C:\Users\jurym\AppData\Local\DrugDealerSimulator deleted
C:\Users\jurym\AppData\Local\cache deleted
C:\Users\jurym\AppData\Local\CrashRpt deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2c4a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2c7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2cab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2cfc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2d1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2d3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2d5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2d71.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2da2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2dd3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2e04.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2e15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2e36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2e58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2e69.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2ec9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2eea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2efc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-3368-6a2f1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b987f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b9891.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b9893.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b9895.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b98fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b990c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b990e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1acc-3754-b9920.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba83e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba850.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba852.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba854.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba865.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba867.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba869.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba87b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba87d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba87f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba881.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba893.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba895.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba897.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba8a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba8aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba8ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba8ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1c88-1d2c-ba8c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b90ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b90e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b90e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b90f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9105.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9117.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9119.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b911b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b912c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b912e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9130.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9142.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9144.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9156.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b9158.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b915a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b916b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b916d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-253c-202c-b916f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e7fd84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e7fdb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e7fe44.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e7fe65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e7feb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8000f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e80040.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8009f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8011e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8018e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8022c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e802ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8033a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8038a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e803bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e803ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8041c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e8049b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a50-45d4-e804cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cb0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cb2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cc4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cc6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cda.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cdc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146ced.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146cf1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d03.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d05.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d07.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d18.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d1a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d1c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d2e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2ad4-2f6c-146d32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-979f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a1a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a1c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a5c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a5e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a72.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a74.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30e4-b14-97a86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15baac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15babe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bac0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bac2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bad4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bad6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bad8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bae9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15baeb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15baed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15baff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb03.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb28.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb2a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31b8-37e0-15bb3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b131c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b131e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b132f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1331.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1333.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1345.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1347.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1349.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b135b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b135d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b135f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1361.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1372.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1374.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1376.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b1388.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b138a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b138c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-340c-3830-29b139d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec5c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec5e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec72.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec74.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec8a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec9b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec9d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2dec9f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2decb1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2decb3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2decb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2decc7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-358c-2f30-2decc9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d19.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d4c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3d8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3db0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3dd1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3dd3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3df4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3e16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-35d4-3fa8-1d3e37.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133d77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133d79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133d8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133d8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133d8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133d91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133da3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133da5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133da7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133db8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dbc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dbe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dd0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dd2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dd4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133dd6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133de7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3a44-4474-133de9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be1f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be23.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be37.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be69.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38be9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bec0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bee1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bef2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bf04.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bf06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bf27.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bf49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3adc-3d70-38bf4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209df7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209df9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209dfb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e51.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209e79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ea9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ebb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ebd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ecf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ed1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ed3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ee4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3cfc-d54-209ee6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b18.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b59.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b5b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b7e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608b8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608ba1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608bc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608bd4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608be6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608bf7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c18.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c2a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c6f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c80.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608c92.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608ca3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608cb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608cb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d48.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d4a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d4c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608d95.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608da6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608da8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608daa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dbc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dbe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dc0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dd3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dd7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608de9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608deb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608ded.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608dff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608e01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608e03.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608e05.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3eb0-23e4-608e16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f573c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f574e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f5750.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f5752.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f5783.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f5785.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f5787.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f5799.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f579b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3f34-32a8-f57fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b954.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b976.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b987.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b9a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b9ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b9db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b9ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64b9ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba12.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba78.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64ba8a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64baba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64bacc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64bade.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4510-da8-64baef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bb6f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bb80.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bb82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bb94.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bb96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bb98.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbaa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbbd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbbf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbd3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbe6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbe8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbfa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bbfc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bc0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-45e4-2438-24bc10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af19.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af2e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af44.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af48.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af4a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af5c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af5e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af60.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441af81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441afa2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441afb4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441afd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441afe7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-46f4-43c-441b008.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d26a7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d26c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d26da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d26ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d270d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d273e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d274f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d2771.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d27a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d27d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d27e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d27f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d2817.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d2819.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d282b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d282d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d283e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d2850.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4e6c-454c-3d2871.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-386fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-38700.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-38702.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-38704.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5a8-5ac-38706.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d410e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4120.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4122.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4124.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4136.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4138.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d413a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d413c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d414d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d414f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4151.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4163.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4165.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4167.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4169.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d417b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d417d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d417f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-85c-351c-d4190.tmp deleted
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\oobelibMkey.log deleted
C:\Users\jurym\AppData\LocalLow\Unity deleted
"C:\Users\jurym\AppData\Roaming\.machineId" deleted
"C:\DumpStack.log.tmp" not deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension.17@acrobat.adobe.com"="C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi" [07.12.2020 12:24]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"web2pdfextension.17@acrobat.adobe.com"="C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi" [07.12.2020 12:24]

==== Firefox XPI-files found: ======================

- Adobe Systems Inc. - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
- Onboarding - C:\Users\jurym\Desktop\PROGRAMY\Tor Browser\Browser\browser\features\onboarding@mozilla.org.xpi
- __MSG_about_ext_name__ - C:\Users\jurym\Desktop\PROGRAMY\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\extensions\https-everywhere-eff@eff.org.xpi
- NoScript - C:\Users\jurym\Desktop\PROGRAMY\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi

==== Chromium Look ======================

Google Chrome Version: 91.0.4472.164

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
efaidnbmnnnibpcajpcglclefindmkaj - No path found[]

ffz-ap - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aiimboljphncldaakcnapfolgnjonlea
uBlock₀ - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm
Export History/Bookmarks to JSON/CSV*/XLS* - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dcoegfodcnjofhjfbhegcgjgapeichlf
Bookmarks Checker - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eeckiajfclogcacnhgigljkcgabfcmco
FFZ - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb
SuperSorter - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hjebfgojnlefhdgmomncgjglmdckngij
Booklyst - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jgncicmcfanpemdmknkcaahbgobahngg
Bookmarks clean up - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oncbjlgldmiagjophlhobkogeladjijl
1.4.0 - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pgniedifoejifjkndekolimjeclnokkb
Chrome Media Router - jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - jurym\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Rich Hints Agent - jurym\Appdata\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== Reset Google Chrome ======================

C:\Users\jaere\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\jaere\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\jaere\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\jaere\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Guest Profile\Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Guest Profile\Secure Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 2\Secure Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\System Profile\Preferences was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\System Profile\Secure Preferences was reset successfully
C:\Users\jurym\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\jurym\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\jurym\Appdata\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\jurym\Appdata\Roaming\Opera Software\Opera Stable\Preferences.backup was reset successfully
C:\Users\jurym\Appdata\Roaming\Opera Software\Opera Stable\Secure Preferences was reset successfully
C:\Users\jurym\Appdata\Roaming\Opera Software\Opera Stable\Secure Preferences.backup was reset successfully
C:\Users\jaere\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\jaere\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\jaere\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\jaere\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Guest Profile\Web Data was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Guest Profile\Web Data-journal was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data-journal was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data-journal was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\System Profile\Web Data was reset successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\System Profile\Web Data-journal was reset successfully
C:\Users\jurym\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully
C:\Users\jurym\AppData\Local\Microsoft\Edge\User Data\Default\Web Data-journal was reset successfully
C:\Users\jurym\Appdata\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
C:\Users\jurym\Appdata\Roaming\Opera Software\Opera Stable\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{360AC456-30DD-40AF-B206-01424888587B} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iWisoft Free Video Converter_is1 deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\jurym\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\jurym\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\jurym\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully
C:\Users\jaere\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\jaere\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Guest Profile\Cache emptied successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 1\Cache emptied successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\Profile 2\Cache emptied successfully
C:\Users\jurym\AppData\Local\Google\Chrome\User Data\System Profile\Cache emptied successfully
C:\Users\jurym\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5253 folders=641 944526144 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\jaere\AppData\Local\Temp emptied successfully
C:\Users\jurym\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\jurym\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\DumpStack.log.tmp" not deleted

==== EOF on 16.07.2021 at 19:59:25,41 ======================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod jaro3 » 16 črc 2021 21:33

Ještě Zemana a HJT.
Nemáš tam ještě nějaké zbytky po AVG?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 18 črc 2021 12:30

Informace o kontroly
Název produktu    :  Zemana AntiMalware
Stav kontroly    :  Dokončena
Datum kontroly    :  18.07.2021 12:29:07
Typ kontroly    :  Inteligentní kontrola
Čas trvání    :  00:00:16
Zkontrolované objekty    :  2065
Zjištěné objekty    :  6
Vyloučené objekty    :  0
Automatické odesílání    :  Ne
Operační systém    :  Windows 10 x64
Procesor    :  12X AMD Ryzen 5 1600 Six-Core Processor
Režim systému BIOS    :  UEFI
Informace o doméně    :  WORKGROUP,False,NetSetupWorkgroupName
CUID    :  12DEDEF4644366A70F8A34


Odhalení
MD5    :  
Stav    :  Zkontrolováno
Objekt    :  c:\users\jurym\appdata\local\google\chrome\user data\profile 1\extensions\eeckiajfclogcacnhgigljkcgabfcmco
Vydavatel    :  
Velikost    :  0
Odhalení    :  HijackExt:ChromePlugin/Bookmarks Checker
Akce    :  Vymazat
-----------------------------------------------------------------------
MD5    :  
Stav    :  Zkontrolováno
Objekt    :  c:\users\jurym\appdata\local\google\chrome\user data\profile 1\extensions\gddbgllpilhpnjpkdbopahnpealaklle
Vydavatel    :  
Velikost    :  0
Odhalení    :  HijackExt:ChromePlugin/M3u8 downloader,download m3u8 to mp4 -CoCoCut
Akce    :  Vymazat
-----------------------------------------------------------------------
MD5    :  
Stav    :  Zkontrolováno
Objekt    :  c:\users\jurym\appdata\local\google\chrome\user data\profile 1\extensions\jgncicmcfanpemdmknkcaahbgobahngg
Vydavatel    :  
Velikost    :  0
Odhalení    :  HijackExt:ChromePlugin/Booklyst
Akce    :  Vymazat
-----------------------------------------------------------------------
MD5    :  
Stav    :  Zkontrolováno
Objekt    :  c:\users\jurym\appdata\local\google\chrome\user data\profile 1\extensions\nfpoemjdmpnbcnidaedpngfikhlchicf
Vydavatel    :  
Velikost    :  0
Odhalení    :  HijackExt:ChromePlugin/Kurator
Akce    :  Vymazat
-----------------------------------------------------------------------
MD5    :  
Stav    :  Zkontrolováno
Objekt    :  c:\users\jurym\appdata\local\google\chrome\user data\profile 1\extensions\oncbjlgldmiagjophlhobkogeladjijl
Vydavatel    :  
Velikost    :  0
Odhalení    :  HijackExt:ChromePlugin/Bookmarks clean up
Akce    :  Vymazat
-----------------------------------------------------------------------
MD5    :  
Stav    :  Zkontrolováno
Objekt    :  c:\users\jurym\appdata\local\google\chrome\user data\profile 1\extensions\pgniedifoejifjkndekolimjeclnokkb
Vydavatel    :  
Velikost    :  0
Odhalení    :  HijackExt:ChromePlugin/Global Twitch Emotes
Akce    :  Vymazat
-----------------------------------------------------------------------

Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 18 črc 2021 12:31

Měl jsem dva dny AVG a odinstaloval jsem to jen pomocí odinstalátoru, takže tam asi zbytek ještě bude. Vše vypadá v pořádku. Na první straně jsem ještě posílal logy z toho win defenderu, ale vše ok podle mě. Mám odinstalovat ty programy? Díky moc

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod jaro3 » 18 črc 2021 17:31

Vymazal to až Zemana.

Ještě vlož nový log z HJT.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Uživatelský avatar
Speedhack
Level 2.5
Level 2.5
Příspěvky: 310
Registrován: květen 17
Bydliště: Brno
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod Speedhack » 27 črc 2021 19:05

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:04:15, on 27.07.2021
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
C:\Users\jurym\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe
C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
D:\DOWNLOAD\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.55\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O4 - HKLM\..\Run: [RoccatIsku] "C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [IDrive Background process] "C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe" min
O4 - HKLM\..\Run: [IDrive Tray] "C:\Program Files (x86)\IDriveWindows\id_tray.exe" min
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\jurym\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [FirmwareUpdater] C:\Program Files\SamsungFirmwareUpdater\FirmwareUpdater.exe
O4 - HKCU\..\Run: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
O4 - HKCU\..\Run: [MiPhoneManager] "C:\Users\jurym\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe"
O4 - HKCU\..\Run: [Opera Browser Assistant] C:\Users\jurym\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
O8 - Extra context menu item: Add to WebSite-Watcher - C:\Users\jurym\AppData\Roaming\aignes\WebSite-Watcher\config\settings\wswie.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AOC G-MenuAOC G-Menu Service by Portrait Displays (AOCDTAOCGMenuService) - Portrait Displays, Inc. - C:\Program Files\Portrait Displays\AOC G-Menu\DisplayTuneService.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: DiskDrill Watcher (cfbackd) - CleverFiles - C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_1b54f480 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.107\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IDriveService - Prosoftnet - C:\Program Files (x86)\IDriveWindows\id_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nordvpn-service - TEFINCOM S.A. - C:\Program Files\NordVPN\nordvpn-service.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: vgc - Riot Games, Inc. - C:\Program Files\Riot Vanguard\vgc.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14174 bytes

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Platba paypal Trojan:Script/Oneeva.A!ml

Příspěvekod jaro3 » 27 črc 2021 20:21

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “Viry, antiviry, firewally…”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 2 hosti