Prosím i kontrolu logu, nedostatek místa na disku "C" Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 22 úno 2019 07:17

Přeji dobrý den, chtěl bych požádat o kontrolu logu pro můj PC.
Tento počítač moc nevyužívám, většinou jen pro zálohu fotografií a telefonu. Maximálně 1x až 2x do měsíce....
PC běží relativně normálně, jen je problém s úbytkem místa na disku "C". Celková kapacita je 65,1 GB, ale volné místo se z "ničeho nic", což je hloupost, zmenšilo na minimum, tedy např. 85 MB.
Pravidelně čistím CCleanerem.
Přitom jsem si jist, že volného místa bylo okolo 8 GB, a určitě ne méně, jak 10% kapacity disku.

Zde log z HJT:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:09:37, on 22.2.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19267)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\System32\umonit.exe
C:\Windows\System32\spool\drivers\w32x86\3\WrtMon.exe
C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
C:\Windows\System32\spool\drivers\w32x86\3\WrtProc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\GamingMouseEditor\GamingMouseEditor\GamingMouseEditor.exe
C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\ESET\ESET Security\egui.exe
E:\Datadisk\firefox.exe
E:\Datadisk\firefox.exe
E:\Datadisk\firefox.exe
E:\Datadisk\firefox.exe
E:\Datadisk\firefox.exe
C:\Users\GRIZZLY\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [UMonit] C:\Windows\system32\umonit.exe
O4 - HKLM\..\Run: [WrtMon.exe] C:\Windows\system32\spool\drivers\w32x86\3\WrtMon.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Security\ecmds.exe" /launch /hide
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GamingMouseEditor] "C:\Program Files\GamingMouseEditor\GamingMouseEditor\GamingMouseEditor.exe" Minimum
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ASUS\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ASUS\Bluetooth Software\bin\btwdins.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Corel License Validation Service V2, Powered by arvato (PSI_SVC_2) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files\Wondershare\WAF\2.4.2.223\WsAppService.exe

--
End of file - 6113 bytes



Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39526
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod jaro3 » 22 úno 2019 18:24

to nemusí být ale viry..

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.adlice.com/downloadprogress/

Ulož si ho na svojí plochu . Klikni na „Souhlasím“ k povrzení podmínek.
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Skenování“
Po skenu se objeví log , který se otevře. ( jinak je uložen systémovem disku jako C:\AdwCleaner [C?].txt ), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware na plochu , nainstaluj a spusť ho
-Pokud není program aktuální , klikni na možnost „Aktualizovat nyní“ či „Opravit nyní“.
- bude nalezena aktualizace a nainstaluje se.
- poté klikni na Spustit skenování
- po proběhnutí skenu se ti objeví hláška vpravo dole, tak klikni na Zobrazit zprávu a vyber Export a vyber Kopírovat do schránky a vlož sem celý log. Nebo klikni na „Textový soubor ( .txt)“ a log si ulož.
-jinak se log nachází v programu po kliknutí na „Zprávy“ , nebo je uložen zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Dokončit, a program zavři křížkem vpravo nahoře.
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 25 úno 2019 11:25

Ahoj, děkuji za odpověď.
Nedovolím si tvrdit, že by to měl být vir, jen jsem vycházel z předešlé zkušenosti, kdy jsem to tady s vámi už jednou řešil, tak jsem to opět dal sem.
Děkuji za pochopení a moc si vážím Tvé pomoci.

Vše provedeno podle pokynů.
ATF Cleaner - používám jej pravidelně, jediné, co mi nešlo, nebyla aktivní záložka "Firefox". Firefox, který používám jako hlavní prohlížeč, jsem tedy nemohl ATF Cleanerem vyčistit.
TFC - prošel bez problémů a provedl jsem restart.

Logy níže.

1) log ADW:AdwCleaner[C00]
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-25-2019
# Duration: 00:00:02
# OS: Windows 7 Professional
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1257 octets] - [25/02/2019 09:46:16]


2) log ADW:AdwCleaner[S00]
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-25-2019
# Duration: 00:00:27
# OS: Windows 7 Professional
# Scanned: 31818
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########


3) log MWB:
Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 25.02.19
Čas skenování: 10:02
Logovací soubor: 0e792242-38dc-11e9-a5e6-60e327049092.json
Správce: Ano

-Informace o softwaru-
Verze: 3.4.4.2398
Verze komponentů: 1.0.322
Aktualizovat verzi balíku komponent: 1.0.9426
Licence: Bezplatný

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x86
Systém souborů: NTFS
Uživatel: GRIZZLY-PC\GRIZZLY

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 213204
Zjištěné hrozby: 0
(Nebyly zjištěny žádné škodlivé položky)
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 12 min, 14 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39526
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod jaro3 » 25 úno 2019 18:57

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/files/details ... _tool.html
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY
64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

další odkazy:
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 26 úno 2019 16:24

Vše jsem provedl podle návodu.
Junkware nenašel nic.
Sophos Virus Removal Tool našel jednu hrozbu a smazal.
RogueKiller našel dvě hrozby, bojím se napsat, že jsem dal "Removal", snad je to tak správně?

1) JUNKWARE REMOVAL TOOL
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Professional x86
Ran by GRIZZLY (Administrator) on Łt 26.02.2019 at 9:16:35,30
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 9

Failed to delete: C:\Windows\System32\wscm32.dll (File)
Successfully deleted: C:\Users\GRIZZLY\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1TGLGXAC (Temporary Internet Files Folder)
Successfully deleted: C:\Users\GRIZZLY\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FAHRCBLR (Temporary Internet Files Folder)
Successfully deleted: C:\Users\GRIZZLY\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IIENMTNJ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\GRIZZLY\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X614XW94 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1TGLGXAC (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FAHRCBLR (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IIENMTNJ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X614XW94 (Temporary Internet Files Folder)



Registry: 1

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 26.02.2019 at 9:19:54,02
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


2) SOPHOS VIRUS REMOVAL TOOL
2019-02-26 09:10:37.110 Sophos Virus Removal Tool version 2.7.0
2019-02-26 09:10:37.110 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-02-26 09:10:37.110 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2019-02-26 09:10:37.110 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x100 PT=0x1 Win32
2019-02-26 09:10:37.110 Checking for updates...
2019-02-26 09:10:37.516 Update progress: proxy server not available
2019-02-26 09:10:39.079 Update error: failed to read remote metadata (error 4)
[V46381] SU::Handle::readRemoteMetadata + SU::Handle::readRemoteMetadata()
[V75884] SU::Metadata::readRemoteMetadata SU::Metadata::readRemoteMetadata()
[I40394] Downloading customer file from sophos:1:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:1:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.com/update/1/6c/16 ... ad4968.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:2:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:2:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.net/update/1/6c/16 ... ad4968.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:3:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:3:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E75373] Ran out of sophos aliases for this update source
[E35369] Out of update sources
[E99999] Out of sources
2019-02-26 09:10:39.235 Warning: failed to start SMS service (646: Ovladač nelze načíst, protože systém je zaváděn v nouzovém režimu. )
2019-02-26 09:11:01.579 Option all = no
2019-02-26 09:11:01.579 Option recurse = yes
2019-02-26 09:11:01.579 Option archive = no
2019-02-26 09:11:01.579 Option service = yes
2019-02-26 09:11:01.579 Option confirm = yes
2019-02-26 09:11:01.579 Option sxl = yes
2019-02-26 09:11:01.579 Option max-data-age = 35
2019-02-26 09:11:01.579 Option vdl-logging = yes
2019-02-26 09:11:01.594 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-02-26 09:11:01.594 Machine ID: 6bfbc448bb17470187c9e9f229f7f444
2019-02-26 09:11:01.594 Component SVRTcli.exe version 2.7.0
2019-02-26 09:11:01.594 Component control.dll version 2.7.0
2019-02-26 09:11:01.594 Component SVRTservice.exe version 2.7.0
2019-02-26 09:11:01.594 Component engine\osdp.dll version 1.44.1.2420
2019-02-26 09:11:01.594 Component engine\veex.dll version 3.73.0.2420
2019-02-26 09:11:01.594 Component engine\savi.dll version 9.0.11.2420
2019-02-26 09:11:01.594 Component rkdisk.dll version 1.5.33.1
2019-02-26 09:11:01.594 Version info: Product version 2.7.0
2019-02-26 09:11:01.594 Version info: Detection engine 3.73.0
2019-02-26 09:11:01.594 Version info: Detection data 5.55
2019-02-26 09:11:01.594 Version info: Build date 18.9.2018
2019-02-26 09:11:01.594 Version info: Data files added 173
2019-02-26 09:11:01.594 Version info: Last successful update (not yet updated)

2019-02-26 09:11:11.313 Couldn't apply option 'SXLLiveProtection' to the detection engine.
2019-02-26 09:23:13.891 Could not open C:\Boot\BCD
2019-02-26 09:23:15.313 Could not open C:\hiberfil.sys
2019-02-26 09:41:09.360 Error level 0

2019-02-26 09:41:10.735 Scan cancelled by user.
2019-02-26 09:41:10.735

------------------------------------------------------------

2019-02-26 09:59:06.524 Sophos Virus Removal Tool version 2.7.0
2019-02-26 09:59:06.524 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-02-26 09:59:06.524 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2019-02-26 09:59:06.524 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x100 PT=0x1 Win32
2019-02-26 09:59:06.524 Checking for updates...
2019-02-26 09:59:07.196 Update progress: proxy server not available
2019-02-26 09:59:35.113 Downloading updates...
2019-02-26 09:59:35.128 Update progress: [I96736] sdds.svrt_v1.9: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2019-02-26 09:59:35.128 Update progress: [I95020] sdds.svrt_v1.9: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-02-26 09:59:35.128 Update progress: [I22529] sdds.svrt_v1.9: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-02-26 09:59:35.128 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2019-02-26 09:59:35.128 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2019-02-26 09:59:35.128 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2019-02-26 09:59:35.128 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 250 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5fa066e5c6c564c81cc0c99d59fb0ec8x000.xml: 3603 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5fa066e5c6c564c81cc0c99d59fb0ec8x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 49dd5e231bd1963db591cf45c2be666ax000.xml: 8673 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 49dd5e231bd1963db591cf45c2be666ax000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE563/7d4dc0d1bc44fdf6136416ffe08d620ax000.xml: 590 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE563/7d4dc0d1bc44fdf6136416ffe08d620ax000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE560/0167d8cf884d717c1779abc52d17cb71x000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE560/0167d8cf884d717c1779abc52d17cb71x000.xml: 79 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE557/13239828b0b1bf83de4692d775629148x000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE557/13239828b0b1bf83de4692d775629148x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE554/1883db40022af8cbc8fd680f1c4185ddx000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE554/1883db40022af8cbc8fd680f1c4185ddx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE550/1e04bd4f6cc5b189217b416d0cacd23ax000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE550/1e04bd4f6cc5b189217b416d0cacd23ax000.xml: 46 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE553/236bb4ca0d2561a8e59124e4a65837c9x000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE553/236bb4ca0d2561a8e59124e4a65837c9x000.xml: 188 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE558/3a1dfb2d23615d09497b1db3305e32dax000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE558/3a1dfb2d23615d09497b1db3305e32dax000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE552/49e28e1f82adf19b43a3acfb11c919bax000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE552/49e28e1f82adf19b43a3acfb11c919bax000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE551/69eda22632d06ac2df0c576c5946841fx000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE551/69eda22632d06ac2df0c576c5946841fx000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE555/9f59846a02fa77254f4813df557d969bx000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE555/9f59846a02fa77254f4813df557d969bx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE559/bf3b91a4649162f3b240ef9f3d9d7c65x000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE559/bf3b91a4649162f3b240ef9f3d9d7c65x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE556/cd085cdff0109eb84b9c16d718521445x000.xml: 601 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE556/cd085cdff0109eb84b9c16d718521445x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE561/26bd9165632f5b4c72035a920cfc88d1x000.xml: 1093 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE561/26bd9165632f5b4c72035a920cfc88d1x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE562/36e9cbdcb3bb2c1eaf3e5d6262ccbeaax000.xml: 26054 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE562/36e9cbdcb3bb2c1eaf3e5d6262ccbeaax000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ba14751b5438be1078ee14f0ee90c499x000.xml: 615 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ba14751b5438be1078ee14f0ee90c499x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5e361cc2fc5444f3aac34cca3ecd82b4x000.xml: 320 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5e361cc2fc5444f3aac34cca3ecd82b4x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c518d5be60608ac6bd5325ef02b8a7ex000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c518d5be60608ac6bd5325ef02b8a7ex000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 211a9b2ae569945c9fe3e1ca74a2c644x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 211a9b2ae569945c9fe3e1ca74a2c644x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 24be0fc59a0372038b7fbb3af3e19d21x000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 24be0fc59a0372038b7fbb3af3e19d21x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4ccc0244dafdc3a404f8bb420c2a165x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4ccc0244dafdc3a404f8bb420c2a165x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b5385d6d93fc43e87fc7d723b90aab9x000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b5385d6d93fc43e87fc7d723b90aab9x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 44df079c17c27192400c73a86d16785fx000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 44df079c17c27192400c73a86d16785fx000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9e72c50dc4507dfba988367b178eda4ax000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9e72c50dc4507dfba988367b178eda4ax000.xml: 94 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e0a2f9d4b770945eb817f82acf76dc76x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e0a2f9d4b770945eb817f82acf76dc76x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4c204ac4b99df718739c309d0f4ab76bx000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4c204ac4b99df718739c309d0f4ab76bx000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 46e9b0f78df0d20502af43f391ffc506x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 46e9b0f78df0d20502af43f391ffc506x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7fe1eebcf235024389043a634ef20366x000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7fe1eebcf235024389043a634ef20366x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9ec625dcb3a242e1fece93286451a352x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9ec625dcb3a242e1fece93286451a352x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eaba289b0a9e187ed96137c42bf85645x000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eaba289b0a9e187ed96137c42bf85645x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4e261308128b5b42bf54c232030ea27x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4e261308128b5b42bf54c232030ea27x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d9072ffa19fc0ff71a828d7ca2bc7828x000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d9072ffa19fc0ff71a828d7ca2bc7828x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d98051334b3ea8a0b042e0bb99bc283x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d98051334b3ea8a0b042e0bb99bc283x000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 65b7509646b00610cf1732a01f49a46fx000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 65b7509646b00610cf1732a01f49a46fx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f6ec5061dd7e77923111541727311aa2x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f6ec5061dd7e77923111541727311aa2x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4f4a648042a613c869eddf17703b772ax000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4f4a648042a613c869eddf17703b772ax000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d86540a0b23bc7236508f5b443729232x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d86540a0b23bc7236508f5b443729232x000.xml: 187 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 59c292069cc0fcbe6fbcf8d4289432a4x000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 59c292069cc0fcbe6fbcf8d4289432a4x000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ace8e7b646829af68be5b32bbcc82570x000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ace8e7b646829af68be5b32bbcc82570x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ec903a8da18d2f78aad7ed6747b5ca0fx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ec903a8da18d2f78aad7ed6747b5ca0fx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a414dad5f30cd2486eca21c72bdca41fx000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a414dad5f30cd2486eca21c72bdca41fx000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: da92f17acb85d0a5bdb85ace75b37afcx000.xml: 1027 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: da92f17acb85d0a5bdb85ace75b37afcx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d2bd1911114961b92c55d33d6faa1a9ax000.xml: 338 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d2bd1911114961b92c55d33d6faa1a9ax000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: edcfdadba6d9bdfb05e55b36513ab6fdx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: edcfdadba6d9bdfb05e55b36513ab6fdx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: be2d272e2eaf16409234eef929bbcbf4x000.xml: 320 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: be2d272e2eaf16409234eef929bbcbf4x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b283c2a1edc6d282ce3cf6c7e70c08ffx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b283c2a1edc6d282ce3cf6c7e70c08ffx000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a9fa65415b98ccfe349b1d69ba5386ex000.xml: 332 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a9fa65415b98ccfe349b1d69ba5386ex000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 06d08ca48fe39ceaefa5490a12237ce7x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 06d08ca48fe39ceaefa5490a12237ce7x000.xml: 46 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c6ab30ee1fffc286e5e0eda7ce9a9275x000.xml: 332 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c6ab30ee1fffc286e5e0eda7ce9a9275x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b12a7e6a67fb1fe683761496f4d21e9ax000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b12a7e6a67fb1fe683761496f4d21e9ax000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b7f2bde525cd31cacc334eb167efdbf2x000.xml: 332 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b7f2bde525cd31cacc334eb167efdbf2x000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 99c5433ee4eb2bf1466e72561179719dx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 99c5433ee4eb2bf1466e72561179719dx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 131960c0aba701c54cefbdf4fc56ca55x000.xml: 333 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 131960c0aba701c54cefbdf4fc56ca55x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1c8b9474cb2c400a5dc56a435e4823dex000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1c8b9474cb2c400a5dc56a435e4823dex000.xml: 78 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 504dc4ec058545cd54d4e6b7a0f371a4x000.xml: 333 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 504dc4ec058545cd54d4e6b7a0f371a4x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f6ce3fa4b09824f025860e43dbb3b786x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f6ce3fa4b09824f025860e43dbb3b786x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d76c94dbb459f5fbd9244c61852ee1cx000.xml: 333 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d76c94dbb459f5fbd9244c61852ee1cx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 295c0b0ebaecf6522eb6b096506d64fdx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 295c0b0ebaecf6522eb6b096506d64fdx000.xml: 31 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2327779aa9fd1d5bf663176f8ce6548ax000.xml: 333 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2327779aa9fd1d5bf663176f8ce6548ax000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4762ddee795dc2d05e543dfa8d0db4bdx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4762ddee795dc2d05e543dfa8d0db4bdx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e0c3d47de18f0f7dd94a86d50075ec2dx000.xml: 333 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e0c3d47de18f0f7dd94a86d50075ec2dx000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ecbc5fc0266c3a8aae58e2a70d17d6d6x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ecbc5fc0266c3a8aae58e2a70d17d6d6x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8025ea843b2e0ac244bbfdbadddc6b6ex000.xml: 333 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8025ea843b2e0ac244bbfdbadddc6b6ex000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b66fb064bdd10655d15d8d0c3145a615x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b66fb064bdd10655d15d8d0c3145a615x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ed0b7fd553a76053c7c5208c41efecdax000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ed0b7fd553a76053c7c5208c41efecdax000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 517c50e9e4866c9043c54cffd1700660x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 517c50e9e4866c9043c54cffd1700660x000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cd97b6839f6fa0eca7f2724765a64193x000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cd97b6839f6fa0eca7f2724765a64193x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f6907579760af73afb17b7c2d8313d54x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f6907579760af73afb17b7c2d8313d54x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85368e00e4c17377b24ec0d536b9fbcbx000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85368e00e4c17377b24ec0d536b9fbcbx000.xml: 62 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 11ab5cf8bcb7b592db734025725ada38x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 11ab5cf8bcb7b592db734025725ada38x000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ae9d46269570f3e130223bf7d37d1288x000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ae9d46269570f3e130223bf7d37d1288x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cd359b31e41e414ec6bea002be5d7236x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cd359b31e41e414ec6bea002be5d7236x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fb534a5c0fefdc48458fd137ba2b1a01x000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fb534a5c0fefdc48458fd137ba2b1a01x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 97573c42af051ee3fc3a0c3af3826e59x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 97573c42af051ee3fc3a0c3af3826e59x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7359fcef2451130ef318a69578eddbd4x000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7359fcef2451130ef318a69578eddbd4x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 834871f639a0b2177e03945576c3a24cx000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 834871f639a0b2177e03945576c3a24cx000.xml: 63 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b9b13cb991d674d8d286464ca7444112x000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b9b13cb991d674d8d286464ca7444112x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0a132dfd7c765f1fb8c4246ccd5c2e95x000.xml: 877 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0a132dfd7c765f1fb8c4246ccd5c2e95x000.xml: 47 ms
2019-02-26 09:59:35.128 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9c3b5412bb2d93ea7ecb7d7b96164047x000.xml: 335 bytes
2019-02-26 09:59:35.128 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9c3b5412bb2d93ea7ecb7d7b96164047x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cc699aec6ecd3529a1b4a7f64cf2a30fx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cc699aec6ecd3529a1b4a7f64cf2a30fx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b933448d04aeca6cd984f0566866b3bx000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b933448d04aeca6cd984f0566866b3bx000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e5ff7f651ff47953c9157c6de571640fx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e5ff7f651ff47953c9157c6de571640fx000.xml: 78 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d7c48164c108532dca154d287b53f4c9x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d7c48164c108532dca154d287b53f4c9x000.xml: 234 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a943bdac18753334fdf50c24a8a0449ax000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a943bdac18753334fdf50c24a8a0449ax000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 89dd25c52ee60fb81a093cd4e7d50d76x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 89dd25c52ee60fb81a093cd4e7d50d76x000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4a068ad768435aca8562660d97444fc1x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4a068ad768435aca8562660d97444fc1x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dbb0b0d19e436d3570a9ca36e7aef6fex000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dbb0b0d19e436d3570a9ca36e7aef6fex000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ac08b3da7b70665a3b596aaf0877a0efx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ac08b3da7b70665a3b596aaf0877a0efx000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 29c669c3b07752997c9c83b92d69e4d2x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 29c669c3b07752997c9c83b92d69e4d2x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5b96ecea399a04a1fa486874cba12b25x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5b96ecea399a04a1fa486874cba12b25x000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6f5b43816df9859c4badecd0f741a312x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6f5b43816df9859c4badecd0f741a312x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d93ad962168d18997d698730a7966a84x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d93ad962168d18997d698730a7966a84x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7b075242091a3cce3d26e129bacb0b7ax000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7b075242091a3cce3d26e129bacb0b7ax000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78b19a800e37460284138846b88421d0x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78b19a800e37460284138846b88421d0x000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c6302ce8155fb98d31ce6b682dc0af6x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c6302ce8155fb98d31ce6b682dc0af6x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a593f4c27aee7a9257cbf0bf2bf3675x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a593f4c27aee7a9257cbf0bf2bf3675x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 06b82a0bf81e7e14f870d69c30743e59x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 06b82a0bf81e7e14f870d69c30743e59x000.xml: 78 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f622b3e59f1b9e5c620499287e6b5fe9x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f622b3e59f1b9e5c620499287e6b5fe9x000.xml: 78 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3eec400345420ad8d15cce1d50e41335x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3eec400345420ad8d15cce1d50e41335x000.xml: 46 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7b75933f84bb190d85fbc41ed4bc090cx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7b75933f84bb190d85fbc41ed4bc090cx000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 25cef7523e4037178136562a03df470bx000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 25cef7523e4037178136562a03df470bx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 61f3b0d774de25917274600b9b5a26dbx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 61f3b0d774de25917274600b9b5a26dbx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 071a194bfccaaecd7de4fc981303c439x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 071a194bfccaaecd7de4fc981303c439x000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 896367f5ad02ee61daeee26f1d2e2481x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 896367f5ad02ee61daeee26f1d2e2481x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 935d9dfd50d08980d8c53a1a356d169cx000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 935d9dfd50d08980d8c53a1a356d169cx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 11de51077a7accf8dccc0efa15d04b9bx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 11de51077a7accf8dccc0efa15d04b9bx000.xml: 46 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 19913b9b92a30ba7329bfc6a035944d4x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 19913b9b92a30ba7329bfc6a035944d4x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9ede1c30733da9284c510a63609a10cfx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9ede1c30733da9284c510a63609a10cfx000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85298eccda5ef42b6739e08ced581418x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85298eccda5ef42b6739e08ced581418x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 06db4d3be3f34e79a79be6c0d1d588c5x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 06db4d3be3f34e79a79be6c0d1d588c5x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6b2837c98a1d4ed17a9bd5aeedd937d6x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6b2837c98a1d4ed17a9bd5aeedd937d6x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9161c2612619de15ec42190b7d950e4cx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9161c2612619de15ec42190b7d950e4cx000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5eb227840db511d5c8ed2330954490fbx000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5eb227840db511d5c8ed2330954490fbx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4a3c3e503b8e63cd0a97e600c316c3e2x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4a3c3e503b8e63cd0a97e600c316c3e2x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1615badb7939cb6ac218fd9631ae69b1x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1615badb7939cb6ac218fd9631ae69b1x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3f29eb010d0ec98d3e62233f816b02e9x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3f29eb010d0ec98d3e62233f816b02e9x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7a99fbed131c16d4d18eac264f7defe6x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7a99fbed131c16d4d18eac264f7defe6x000.xml: 62 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dd00504a68b91fddd4c84eab3c83a584x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dd00504a68b91fddd4c84eab3c83a584x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6ca37cda773fdd2a673992dadd9f9f4cx000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6ca37cda773fdd2a673992dadd9f9f4cx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 24dab1bb323d06f02a6272ed5372b8b1x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 24dab1bb323d06f02a6272ed5372b8b1x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eb341ebe0ad346a442747fa611aa2bd1x000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eb341ebe0ad346a442747fa611aa2bd1x000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: abf45efdc5efbd6712e0d045fa9dd3fbx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: abf45efdc5efbd6712e0d045fa9dd3fbx000.xml: 46 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1599e4ce21c0b0899b75b666699ddb0cx000.xml: 335 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1599e4ce21c0b0899b75b666699ddb0cx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 490f45181addbe7519abd9bf3f9c9a5dx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 490f45181addbe7519abd9bf3f9c9a5dx000.xml: 32 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8dfea69368b3a4423b5adea8e243fcdex000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8dfea69368b3a4423b5adea8e243fcdex000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1408b8699b2ec8c2fc4579b11cdcad14x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1408b8699b2ec8c2fc4579b11cdcad14x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c4c5bfca2a567bd1cfc088cedf6f844x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c4c5bfca2a567bd1cfc088cedf6f844x000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bc5df32e767448d51c292e58f41800bdx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bc5df32e767448d51c292e58f41800bdx000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1883b1e15291f9ef3659ca2b83567d02x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1883b1e15291f9ef3659ca2b83567d02x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4f61c46b326f2e96990c6be5cb8352adx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4f61c46b326f2e96990c6be5cb8352adx000.xml: 46 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d42d9d2439729d2111c5b65cf947abadx000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d42d9d2439729d2111c5b65cf947abadx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 41cee8a96923833c003d86f18ea123a0x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 41cee8a96923833c003d86f18ea123a0x000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0b3fdf298a067c0fd420beb0391e71e0x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0b3fdf298a067c0fd420beb0391e71e0x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 574f3ee1fef340feac7d6398fe41c615x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 574f3ee1fef340feac7d6398fe41c615x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a5202da0f45c5d96ecef7e61c10a650fx000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a5202da0f45c5d96ecef7e61c10a650fx000.xml: 63 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 402a6d60987a0613d565f9476603c184x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 402a6d60987a0613d565f9476603c184x000.xml: 78 ms

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 26 úno 2019 16:26

2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ac155ccdfe75d490bf57db1bc6d27310x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ac155ccdfe75d490bf57db1bc6d27310x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a7b00d43ffb5757025c8286edda33c74x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a7b00d43ffb5757025c8286edda33c74x000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5491f5e743c3eca6475cfdf6b770840fx000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5491f5e743c3eca6475cfdf6b770840fx000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1cc135352be3f27ed30adc23ede38e70x000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1cc135352be3f27ed30adc23ede38e70x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 636f990694a8da200adb1c2d07ed4060x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 636f990694a8da200adb1c2d07ed4060x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 55b12d7efaa10e9164bb2b78cb57b20dx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 55b12d7efaa10e9164bb2b78cb57b20dx000.xml: 46 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e6e2c53dc40c2b0a2cfa6cefef59514cx000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e6e2c53dc40c2b0a2cfa6cefef59514cx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8f04a4681f492813d9e68ffc3a0b559ex000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8f04a4681f492813d9e68ffc3a0b559ex000.xml: 32 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8b947350854656a8754cf419445dd466x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8b947350854656a8754cf419445dd466x000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 75d97ce2bd28af1d8ef373834575611dx000.xml: 877 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 75d97ce2bd28af1d8ef373834575611dx000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bd0502cf8677b24a0930b569e8d7f403x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bd0502cf8677b24a0930b569e8d7f403x000.xml: 47 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ae142b2ae0d01199bc9adbec1b6b9ddfx000.xml: 1027 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ae142b2ae0d01199bc9adbec1b6b9ddfx000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ac5ab59e88c1b7ee6681d4d1f7283a01x000.xml: 336 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ac5ab59e88c1b7ee6681d4d1f7283a01x000.xml: 31 ms
2019-02-26 09:59:35.144 Update progress: [I49502] sdds.data0910.xml: found supplement IDE560 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2019-02-26 09:59:35.144 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE560 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE560 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I49502] sdds.data0910.xml: found supplement IDE561 LATEST path= baseVersion= [included from product IDE560 LATEST path=]
2019-02-26 09:59:35.144 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE561 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE561 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I49502] sdds.data0910.xml: found supplement IDE562 LATEST path= baseVersion= [included from product IDE561 LATEST path=]
2019-02-26 09:59:35.144 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE562 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE562 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I49502] sdds.data0910.xml: found supplement IDE563 LATEST path= baseVersion= [included from product IDE562 LATEST path=]
2019-02-26 09:59:35.144 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE563 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE563 LATEST path=
2019-02-26 09:59:35.144 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-02-26 09:59:35.144 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 700ff02fecb20950178f12a9881c2002x000.xml: 80124 bytes
2019-02-26 09:59:35.144 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 700ff02fecb20950178f12a9881c2002x000.xml: 297 ms
2019-02-26 09:59:35.144 Update progress: [I19463] Product download size 213677536 bytes
2019-02-26 09:59:43.753 Option all = no
2019-02-26 09:59:43.753 Option recurse = yes
2019-02-26 09:59:43.753 Option archive = no
2019-02-26 09:59:43.753 Option service = yes
2019-02-26 09:59:43.753 Option confirm = yes
2019-02-26 09:59:43.753 Option sxl = yes
2019-02-26 09:59:43.769 Option max-data-age = 35
2019-02-26 09:59:43.769 Option vdl-logging = yes
2019-02-26 09:59:43.785 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-02-26 09:59:43.785 Machine ID: 6bfbc448bb17470187c9e9f229f7f444
2019-02-26 09:59:43.847 Component SVRTcli.exe version 2.7.0
2019-02-26 09:59:43.847 Component control.dll version 2.7.0
2019-02-26 09:59:43.847 Component SVRTservice.exe version 2.7.0
2019-02-26 09:59:43.847 Component engine\osdp.dll version 1.44.1.2420
2019-02-26 09:59:43.847 Component engine\veex.dll version 3.73.0.2420
2019-02-26 09:59:43.847 Component engine\savi.dll version 9.0.11.2420
2019-02-26 09:59:43.863 Component rkdisk.dll version 1.5.33.1
2019-02-26 09:59:43.863 Version info: Product version 2.7.0
2019-02-26 09:59:43.863 Version info: Detection engine 3.73.0
2019-02-26 09:59:43.863 Version info: Detection data 5.55
2019-02-26 09:59:43.863 Version info: Build date 18.9.2018
2019-02-26 09:59:43.863 Version info: Data files added 173
2019-02-26 09:59:43.863 Version info: Last successful update (not yet updated)
2019-02-26 10:00:08.019 Update progress: [I19463] Syncing product IDE560 LATEST path=
2019-02-26 10:00:08.019 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: de42a8b95fcd71194778ce516fe67c03x000.xml: 34911 bytes
2019-02-26 10:00:08.019 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: de42a8b95fcd71194778ce516fe67c03x000.xml: 156 ms
2019-02-26 10:00:08.019 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e70aecf083626c5c39f038ee534166f8x000.xml: 397 bytes
2019-02-26 10:00:08.019 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e70aecf083626c5c39f038ee534166f8x000.xml: 47 ms
2019-02-26 10:00:08.019 Update progress: [I19463] Product download size 3090989 bytes
2019-02-26 10:01:15.347 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f0016e5b11ae970e55c1ca2c316c3c54x000.xml: 8902 bytes
2019-02-26 10:01:15.347 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f0016e5b11ae970e55c1ca2c316c3c54x000.xml: 31 ms
2019-02-26 10:01:15.535 Update progress: [I19463] Syncing product IDE561 LATEST path=
2019-02-26 10:01:15.535 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5e8b1c96389c03d34997fc6c11c632b7x000.xml: 27264 bytes
2019-02-26 10:01:15.535 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5e8b1c96389c03d34997fc6c11c632b7x000.xml: 93 ms
2019-02-26 10:01:15.535 Update progress: [I19463] Product download size 2649016 bytes
2019-02-26 10:01:23.519 Update progress: [I19463] Syncing product IDE562 LATEST path=
2019-02-26 10:01:23.519 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 63394ab8fe78f4cbd557e008120078dfx000.xml: 13071 bytes
2019-02-26 10:01:23.519 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 63394ab8fe78f4cbd557e008120078dfx000.xml: 31 ms
2019-02-26 10:01:23.519 Update progress: [I19463] Product download size 1136905 bytes
2019-02-26 10:01:26.707 Update progress: [I19463] Syncing product IDE563 LATEST path=
2019-02-26 10:01:26.707 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2019-02-26 10:01:26.707 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 47 ms
2019-02-26 10:01:26.785 Installing updates...
2019-02-26 10:01:28.207 Error level 1
2019-02-26 10:01:48.144 Update successful
2019-02-26 10:02:15.238 Option all = no
2019-02-26 10:02:15.238 Option recurse = yes
2019-02-26 10:02:15.238 Option archive = no
2019-02-26 10:02:15.238 Option service = yes
2019-02-26 10:02:15.238 Option confirm = yes
2019-02-26 10:02:15.238 Option sxl = yes
2019-02-26 10:02:15.238 Option max-data-age = 35
2019-02-26 10:02:15.238 Option vdl-logging = yes
2019-02-26 10:02:15.253 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-02-26 10:02:15.253 Machine ID: 6bfbc448bb17470187c9e9f229f7f444
2019-02-26 10:02:15.253 Component SVRTcli.exe version 2.7.0
2019-02-26 10:02:15.253 Component control.dll version 2.7.0
2019-02-26 10:02:15.253 Component SVRTservice.exe version 2.7.0
2019-02-26 10:02:15.253 Component engine\osdp.dll version 1.44.1.2443
2019-02-26 10:02:15.253 Component engine\veex.dll version 3.75.0.2443
2019-02-26 10:02:15.253 Component engine\savi.dll version 9.0.13.2443
2019-02-26 10:02:15.253 Component rkdisk.dll version 1.5.33.1
2019-02-26 10:02:15.253 Version info: Product version 2.7.0
2019-02-26 10:02:15.253 Version info: Detection engine 3.75.0
2019-02-26 10:02:15.253 Version info: Detection data 5.59
2019-02-26 10:02:15.253 Version info: Build date 15.1.2019
2019-02-26 10:02:15.253 Version info: Data files added 301
2019-02-26 10:02:15.253 Version info: Last successful update 26.2.2019 11:01:48

2019-02-26 11:08:09.102 Could not open C:\Boot\BCD
2019-02-26 11:08:11.008 Could not open C:\hiberfil.sys
2019-02-26 12:03:31.774 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2019-02-26 12:03:31.790 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2019-02-26 12:03:53.524 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2019-02-26 12:03:53.665 Could not open C:\Windows\System32\config\RegBack\SAM
2019-02-26 12:03:53.665 Could not open C:\Windows\System32\config\RegBack\SECURITY
2019-02-26 12:03:53.758 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2019-02-26 12:03:53.758 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2019-02-26 12:38:41.618 >>> Virus 'Mal/Generic-L' found in file D:\DOWNLOAD\01 S O F T W A R E\Photodex-ProShow-Gold-6.0.3397+Activator-RNDD\Keyfilemaker-RNDD\Keyfilemaker-RNDD\Keyfilemaker.exe
2019-02-26 12:38:41.618 >>> Virus 'Mal/Generic-L' found in file HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect
2019-02-26 12:38:41.618 >>> Virus 'Mal/Generic-L' found in file HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1208
2019-02-26 12:38:41.618 >>> Virus 'Mal/Generic-L' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect
2019-02-26 12:52:00.540 Could not open D:\pagefile.sys
2019-02-26 12:55:06.142 Password protected file E:\BB\cocktail school\Word\TRÉNINK BARMANSTVÍ.docx
2019-02-26 13:19:51.171 Could not open LOGICAL:0007:00000000
2019-02-26 13:19:51.171 Could not open H:\
2019-02-26 13:19:51.187 Could not open LOGICAL:0008:00000000
2019-02-26 13:19:51.187 Could not open I:\
2019-02-26 13:19:51.187 Could not open LOGICAL:0009:00000000
2019-02-26 13:19:51.187 Could not open J:\
2019-02-26 13:19:51.187 Could not open LOGICAL:0011:00000000
2019-02-26 13:19:51.187 Could not open R:\
2019-02-26 13:19:51.703 The following items will be cleaned up:
2019-02-26 13:19:51.703 Mal/Generic-L
2019-02-26 13:24:41.796 Threat 'Mal/Generic-L' has been cleaned up.
2019-02-26 13:24:41.796 File "D:\DOWNLOAD\01 S O F T W A R E\Photodex-ProShow-Gold-6.0.3397+Activator-RNDD\Keyfilemaker-RNDD\Keyfilemaker-RNDD\Keyfilemaker.exe" belongs to malware 'Mal/Generic-L'.
2019-02-26 13:24:41.796 File "D:\DOWNLOAD\01 S O F T W A R E\Photodex-ProShow-Gold-6.0.3397+Activator-RNDD\Keyfilemaker-RNDD\Keyfilemaker-RNDD\Keyfilemaker.exe" has been cleaned up.
2019-02-26 13:24:41.796 Registry value "HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect" belongs to malware 'Mal/Generic-L'.
2019-02-26 13:24:41.796 Registry value "HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect" has been cleaned up.
2019-02-26 13:24:41.796 Registry value "HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1208" belongs to malware 'Mal/Generic-L'.
2019-02-26 13:24:41.796 Registry value "HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1208" has been cleaned up.
2019-02-26 13:24:41.796 Registry value "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect" belongs to malware 'Mal/Generic-L'.
2019-02-26 13:24:41.796 Registry value "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnPostRedirect" has been cleaned up.
2019-02-26 13:24:41.796 Removal successful
2019-02-26 13:24:49.359 Error level 0

3) ROGUEKILLER
RogueKiller Anti-Malware V13.1.6.0 [Feb 25 2019] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits
Started in : Normal mode
User : GRIZZLY [Administrator]
Started from : C:\Users\GRIZZLY\Desktop\RogueKiller_portable32.exe
Signatures : 20190204_072850, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2019/02/26 14:36:09 (Duration : 01:34:51)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> O101 - Clsid
[Suspicious.Path (Potentially Malicious)] HKEY_CLASSES_ROOT\CLSID\{6d05bf60-3eaf-4a97-87c5-10cce505435b} -- C:\Users\GRIZZLY\AppData\Local\Temp\{9c0ba3c1-2b67-45eb-bf69-bed9658d28d2}\IDriver.NonElevated.exe (missing) -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> Firefox Config
[PUM.HomePage (Potentially Malicious)] browser.startup.homepage (C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258\prefs.js) -- https://www.google.cz/ -> Found

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39526
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod jaro3 » 26 úno 2019 18:19

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“,
po jeho skončení - vše zatrhni (dej zatržítka vlevo od nálezů , do bílých políček)
- pak klikni na "Remove Selected"
- Počkej, dokud Status box nezobrazí " Removal finished, please review result "
- Klikni na "Open report " a pak na " Open TXT“ a zkopíruj ten log a vlož obsah té zprávy prosím sem. Log je možno nalézt v C:\ProgramData\RogueKiller\Logs - Zavři RogueKiller.

Vypni antivir i firewall.
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe

Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.


Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 28 úno 2019 14:22

1)
RogueKiller Anti-Malware V13.1.6.0 [Feb 25 2019] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits
Started in : Normal mode
User : GRIZZLY [Administrator]
Started from : D:\DOWNLOAD\Nástroje na ?i?t?ní\RogueKiller_portable32.exe
Signatures : 20190204_072850, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2019/02/27 12:24:14 (Duration : 01:20:48)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

2)
Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by GRIZZLY on źt 28.02.2019 at 11:36:50,57.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: D:\DOWNLOAD\Nástroje na čištění\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2019-02-27-134145.log 6597 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsAppService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WsAppService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\WsAppService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WsAppService deleted successfully

==== FireFox Fix ======================

Deleted from C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258\prefs.js:
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258

user.js not found
---- Lines searchengine removed from prefs.js ----
user_pref("browser.pageActions.persistedActions", "{\"version\":1,\"ids\":[\"bookmark\",\"bookmarkSeparator\",\"copyURL\",\"emailLink\",\"addSearchEng
---- FireFox user.js and prefs.js backups ----

prefs_28.02.2019_1221_.backup

==== Deleting Files \ Folders ======================

C:\Users\Public\Desktop\Rajče Downloader.lnk not found

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"web2pdfextension@web2pdf.adobedotcom"="C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn" [05.09.2015 21:47]

==== Firefox Extensions ======================

ProfilePath: C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258
- short_ __MSG_name__ - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- short_ iaextractor - %ProfilePath%\extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258
D32D51CED4116AA1E1DC15B1BE0F16D4 - C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_142.dll - Shockwave Flash
537EA917725B957B6D3DC0413C3A67A7 - C:\Program Files\Photodex Presenter\npPxPlay.dll - Photodex Presenter Plugin
B7CA365E7F1BECCE849FF6D390F16DCE - E:\Datadisk\VLC\npvlc.dll - VLC Web Plugin
446BCAE59E26321802E000FC3E0C390A - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll - Adobe Acrobat
3D7B9956A148376196627CD49E1A98F7 - C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrlui.dll - Microsoft® Silverlight
10FFDDCB31B87E48AA264566FF93F51E - C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll - Silverlight Plug-In


==== Chromium Look ======================


Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Application Data\Application Data\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Application Data\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Application Data\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Chrome Media Router - GRIZZLY\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

3)
Zemana AntiMalware 2.74.2.664 (instalační verze)

-------------------------------------------------------
Scan Result : Dokončeno
Scan Date : 2019.2.28
Operating System : Windows 7 32-bit
Processor : 2X Intel(R) Pentium(R) 4 CPU 3.20GHz
BIOS Mode : Legacy
CUID : 1209E42039C4C4C2B2C684
Scan Type : Skenování systému
Duration : 9m 50s
Scanned Objects : 66342
Detected Objects : 0
Excluded Objects : 0
Read Level : SCSI
Auto Upload : Zapnuto
Detect All Extensions : Vypnuto
Scan Documents : Vypnuto
Domain Info : WORKGROUP,0,2

Detected Objects
-------------------------------------------------------

Nebyly zjištěny žádné hrozby

4)
ComboFix 18-08-08.01 - GRIZZLY 28.02.2019 13:41:46.2.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3071.1983 [GMT 1:00]
Spuštěný z: c:\users\GRIZZLY\Desktop\ComboFix.exe
AV: ESET Security *Enabled/Updated* {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
FW: ESET Firewall *Enabled* {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
SP: ESET Security *Enabled/Updated* {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2019-01-28 do 2019-02-28 )))))))))))))))))))))))))))))))
.
.
2019-02-28 12:57 . 2019-02-28 12:57 -------- d-----w- c:\users\Default\AppData\Local\temp
2019-02-12 10:03 . 2018-12-28 19:48 582144 ----a-w- c:\windows\system32\oleaut32.dll
2019-02-12 10:03 . 2018-12-28 19:48 380928 ----a-w- c:\windows\system32\rpcss.dll
2019-02-12 10:03 . 2018-12-28 19:48 26112 ----a-w- c:\windows\system32\oleres.dll
2019-02-12 10:03 . 2018-12-28 19:48 1425920 ----a-w- c:\windows\system32\ole32.dll
2019-02-12 10:03 . 2018-12-28 19:32 7168 ----a-w- c:\windows\system32\comcat.dll
2019-02-12 10:03 . 2018-12-04 15:55 158720 ----a-w- c:\windows\system32\itircl.dll
2019-02-12 10:03 . 2018-12-04 15:55 142848 ----a-w- c:\windows\system32\itss.dll
2019-02-12 10:03 . 2018-12-02 15:55 527872 ----a-w- c:\windows\system32\termsrv.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2019-02-12 10:25 . 2015-04-30 18:20 842240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2019-02-12 10:25 . 2015-04-30 18:20 175104 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2019-01-15 06:52 . 2019-02-18 11:05 254464 ----a-w- c:\windows\system32\schannel.dll
2019-01-15 06:52 . 2019-02-18 11:05 141312 ----a-w- c:\windows\system32\rpchttp.dll
2019-01-09 02:54 . 2019-02-18 11:05 4608 ----a-w- c:\windows\system32\drivers\en-US\srv.sys.mui
2018-12-28 19:51 . 2019-01-16 13:44 1214696 ----a-w- c:\windows\system32\drivers\ntfs.sys
2018-12-28 19:48 . 2019-01-16 13:44 171008 ----a-w- c:\windows\system32\winsrv.dll
2018-12-28 19:48 . 2019-01-16 13:44 294400 ----a-w- c:\windows\system32\KernelBase.dll
2018-12-28 19:48 . 2019-01-16 13:44 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-12-28 19:48 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-12-28 19:29 . 2019-01-16 13:44 271360 ----a-w- c:\windows\system32\conhost.exe
2018-12-28 19:26 . 2019-01-16 13:44 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-12-28 19:26 . 2019-01-16 13:44 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-12-28 19:26 . 2019-01-16 13:44 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-12-28 19:26 . 2019-01-16 13:44 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-12-10 22:04 . 2015-01-30 16:02 499424 ------w- c:\windows\system32\MpSigStub.exe
2018-12-08 02:56 . 2019-01-16 13:44 81408 ----a-w- c:\windows\system32\rascfg.dll
2018-12-08 02:56 . 2019-01-16 13:44 61952 ----a-w- c:\windows\system32\rasdiag.dll
2018-12-08 02:56 . 2019-01-16 13:44 50688 ----a-w- c:\windows\system32\ndptsp.tsp
2018-12-08 02:41 . 2019-01-16 13:44 63488 ----a-w- c:\windows\system32\drivers\wanarp.sys
2018-12-08 02:41 . 2019-01-16 13:44 38912 ----a-w- c:\windows\system32\kmddsp.tsp
2018-12-08 02:41 . 2019-01-16 13:44 48640 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2018-12-08 02:41 . 2019-01-16 13:44 33280 ----a-w- c:\windows\system32\rasmxs.dll
2018-12-08 02:41 . 2019-01-16 13:44 22528 ----a-w- c:\windows\system32\rasser.dll
2018-12-08 02:41 . 2019-01-16 13:44 20992 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2003-03-21 12:37 . 2003-03-21 12:37 16056 ----a-w- c:\program files\owcstp16.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"GamingMouseEditor"="c:\program files\GamingMouseEditor\GamingMouseEditor\GamingMouseEditor.exe" [2012-08-17 3333120]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2009-11-11 1505144]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-05-20 98304]
"UMonit"="c:\windows\system32\umonit.exe" [2006-07-26 53248]
"WrtMon.exe"="c:\windows\system32\spool\drivers\w32x86\3\WrtMon.exe" [2006-09-20 20480]
"WD Quick View"="c:\program files\Western Digital\WD Quick View\WDDMStatus.exe" [2016-04-19 5571944]
"egui"="c:\program files\ESET\ESET Security\ecmds.exe" [2018-12-06 169616]
"ZAM"="c:\program files\Zemana AntiMalware\ZAM.exe" [2019-02-14 25160568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\ASUS\Bluetooth Software\BTTray.exe [2007-11-1 576104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk
backup=c:\windows\pss\ImageBrowser EX Agent.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Monitor.lnk
backup=c:\windows\pss\Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^GRIZZLY^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EOS Utility.lnk]
path=c:\users\GRIZZLY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk
backup=c:\windows\pss\EOS Utility.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^GRIZZLY^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\users\GRIZZLY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2014-09-12 09:43 3499920 ----a-w- c:\program files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2014-09-12 09:43 959176 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
2014-09-19 18:22 557768 ----a-w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2019-01-18 19:04 267576 ----a-w- e:\datadisk\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2009-08-20 12:25 2363392 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
R3 CYUSB3;Cypress Generic USB3.0 Driver;c:\windows\system32\Drivers\CYUSB3.sys [2016-08-04 62696]
R3 ESETCleanersDriver;ESET Cleaner Service;c:\windows\system32\Drivers\ESETCleanersDriver.sys [x]
R3 fixustor;fixustor;c:\windows\system32\drivers\fixustor.sys [2006-07-26 6016]
R3 ggflt;SOMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2015-11-09 13528]
R3 ggsomc;SOMC USB Flash Driver;c:\windows\system32\DRIVERS\ggsomc.sys [2015-11-09 26328]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2019-01-25 104960]
R3 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-03-03 4675872]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl.sys [2014-08-15 18944]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2015-02-12 1343400]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam_prewin8.sys [2016-01-14 20256]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2012-03-27 319264]
R4 AdobeActiveFileMonitor12.0;Adobe Active File Monitor V12;c:\program files\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [2013-09-25 181152]
R4 WDBackup;WD Backup;c:\program files\Western Digital\WD SmartWare\WDBackupEngine.exe [2016-04-19 1049464]
S0 edevmon;edevmon;c:\windows\system32\DRIVERS\edevmon.sys [2018-11-18 92176]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2018-11-18 124776]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2018-11-18 149192]
S1 EpfwLWF;ESET Personal Firewall;c:\windows\system32\DRIVERS\EpfwLWF.sys [2018-11-18 54240]
S1 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2018-11-18 94712]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam32.sys [2019-02-28 181496]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard32.sys [2019-02-28 181496]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-05-16 176128]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 ekbdflt;ekbdflt;c:\windows\system32\DRIVERS\ekbdflt.sys [2018-11-18 43816]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Security\ekrn.exe [2018-12-06 1833552]
S2 WDDriveService;WD Drive Manager;c:\program files\Western Digital\WD Drive Manager\WDDriveService.exe [2017-09-19 355184]
S2 ZAMSvc;ZAM Controller Service;c:\program files\Zemana AntiMalware\ZAM.exe [2019-02-14 25160568]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2016-02-24 78848]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - ZAM
*NewlyCreated* - ZAM_GUARD
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
utcsvc REG_MULTI_SZ DiagTrack
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 12:24 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\ASUS\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send To Bluetooth - c:\program files\ASUS\Bluetooth Software\btsendto_ie.htm
Trusted Zone: localhost
Trusted Zone: eset.com\help
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
SafeBoot-ZAM.exe" /service
MSConfigStartUp-QuickTime Task - c:\program files\QuickTime\QTTask.exe
AddRemove-{27c7215d-df19-4095-8f6a-eba55cab35be} - c:\programdata\Package Cache\{27c7215d-df19-4095-8f6a-eba55cab35be}\WDDriveUtilitiesSetup.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{4555885d-a64c-4234-9aac-72a8a6b5590b} - c:\programdata\Package Cache\{4555885d-a64c-4234-9aac-72a8a6b5590b}\WD SmartWare Installer.exe
AddRemove-{89ca2a32-2b52-4595-8dfd-6fe4757958d0} - c:\programdata\Package Cache\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}\vsta_setup.exe
AddRemove-{979a4332-3eb0-4561-9f74-a4fb871cf2bd} - c:\programdata\Package Cache\{979a4332-3eb0-4561-9f74-a4fb871cf2bd}\WD SmartWare Installer.exe
AddRemove-{98f335cd-0a32-4b3f-b74c-ef9480e834f0} - c:\programdata\Package Cache\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}\SetupChipset.exe
AddRemove-{ce085a78-074e-4823-8dc1-8a721b94b76d} - c:\programdata\Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d}\vcredist_x86.exe
.
.
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(4292)
c:\windows\system32\btmmhook.dll
.
Celkový čas: 2019-02-28 13:59:58
ComboFix-quarantined-files.txt 2019-02-28 12:59
.
Před spuštěním: 138 657 792
Po spuštění: 38 494 208
.
- - End Of File - - F79F268170F600C47C09AC8D6A7EBE25
A36C5E4F47E84449FF07ED3517B43A31

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39526
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod jaro3 » 28 úno 2019 18:18

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na https://www.virustotal.com/#/home/uploadVirustotal
c:\program files\owcstp16.dll

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 04 bře 2019 09:31

Zdravím, nic nenalezeno

https://www.virustotal.com/#/file/38f70 ... /detection

http://r.virscan.org/language/cs/report ... 34029b95ed

V PC jsem odinstaloval cca 800MB abych mohl alespoň "něco" dělat, ale po malé chvilce opět hlásí pný disk "C"...

Chci poděkovat za pomoc. A hlavně za trpělovost!!! Díky dík.

Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10639
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Orcus » 04 bře 2019 09:44

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Láska hřeje, ale uhlí je uhlí. :fire:



Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.

Alan-K
Level 2.5
Level 2.5
Příspěvky: 304
Registrován: listopad 07
Pohlaví: Muž

Re: Prosím i kontrolu logu, nedostatek místa na disku "C"

Příspěvekod Alan-K » 04 bře 2019 14:34

FIRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-03-2019 01
Ran by GRIZZLY (administrator) on GRIZZLY-PC (04-03-2019 14:19:28)
Running from C:\Users\GRIZZLY\Desktop
Loaded Profiles: GRIZZLY (Available Profiles: GRIZZLY)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "E:\Datadisk\firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(ATI Technologies, Inc -> AMD) C:\Windows\System32\atiesrxx.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\bin\btwdins.exe
(Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(ATI Technologies, Inc -> AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\Windows\SOUNDMAN.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(General) [File not signed] C:\Windows\System32\umonit.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() [File not signed] C:\Windows\System32\spool\drivers\w32x86\3\WrtMon.exe
() [File not signed] C:\Windows\System32\spool\drivers\w32x86\3\WrtProc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() [File not signed] C:\Program Files\GamingMouseEditor\GamingMouseEditor\GamingMouseEditor.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [604704 2009-04-14] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [1505144 2009-11-11] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-05-20] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [UMonit] => C:\Windows\system32\umonit.exe [53248 2006-07-26] (General) [File not signed]
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\w32x86\3\WrtMon.exe [20480 2006-09-20] () [File not signed]
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [169616 2018-12-06] (ESET, spol. s r.o. -> ESET)
HKU\S-1-5-21-562781244-3421340207-2977103295-1000\...\Run: [GamingMouseEditor] => C:\Program Files\GamingMouseEditor\GamingMouseEditor\GamingMouseEditor.exe [3333120 2012-08-17] () [File not signed]
HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\system32\ir50_32.dll [746496 2009-07-14] (Microsoft Windows -> Intel Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files\Common Files\LightScribe\LSRunOnce.exe [2009-08-20] (Hewlett-Packard Company -> Hewlett-Packard Company)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-02-03]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{069DC6BB-BCBB-4CD1-80E4-B758D005CE82}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{2A3C86FB-9325-483B-A12A-CC159E91735E}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{E634E8DD-F177-4BF1-962C-F4877776A6F0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{EBE71C56-B627-4793-888F-FC65E9073402}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-562781244-3421340207-2977103295-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\S-1-5-21-562781244-3421340207-2977103295-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: e2o82v9z.default-1542561745258
FF ProfilePath: C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258 [2019-03-04]
FF NewTab: Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258 -> about:newtab
FF Extension: (No Name) - C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-01-29]
FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\GRIZZLY\AppData\Roaming\Mozilla\Firefox\Profiles\e2o82v9z.default-1542561745258\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2018-11-18]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-09-05] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @photodex.com/PhotodexPresenter -> C:\Program Files\Photodex Presenter\npPxPlay.dll [2016-09-25] ( ) [File not signed]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2014-09-12] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
StartMenuInternet: Firefox-2E649DC0CEF66649 - E:\Datadisk\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\GRIZZLY\AppData\Local\Google\Chrome\User Data\Default [2019-02-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\GRIZZLY\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-21]
CHR Extension: (Chrome Media Router) - C:\Users\GRIZZLY\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdobeActiveFileMonitor12.0; C:\Program Files\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [181152 2013-09-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [176128 2009-05-16] (ATI Technologies, Inc -> AMD)
R2 btwdins; C:\Program Files\ASUS\Bluetooth Software\bin\btwdins.exe [264800 2007-11-01] (Broadcom Corporation -> Broadcom Corporation.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1833552 2018-12-06] (ESET, spol. s r.o. -> ESET)
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-08-20] (Hewlett-Packard Company) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4675872 2018-03-03] (Malwarebytes Corporation -> Malwarebytes)
R2 PSI_SVC_2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S4 ScsiAccess; C:\Program Files\Photodex\ProShow Gold\ScsiAccess.exe [186760 2016-09-25] (Photodex Corporation -> )
S4 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1049464 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [355184 2017-09-19] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S4 RichVideo; "C:\Program Files\CyberLink\Shared files\RichVideo.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ALCXSENS; C:\Windows\System32\drivers\ALCXSENS.SYS [400384 2004-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Sensaura)
R3 ALCXWDM; C:\Windows\System32\drivers\RTKVAC.SYS [4172832 2009-06-18] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW73.sys [78848 2016-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 btaudio; C:\Windows\System32\drivers\btaudio.sys [539576 2007-11-05] (Broadcom Corporation -> Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation -> Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [879528 2007-11-05] (Broadcom Corporation -> Broadcom Corporation.)
S3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [156392 2007-06-29] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwhid; C:\Windows\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation -> Broadcom Corporation.)
R3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [74656 2007-08-27] (Broadcom Corporation -> Broadcom Corporation.)
S3 CYUSB3; C:\Windows\System32\Drivers\CYUSB3.sys [62696 2016-08-04] (Cypress Semiconductor Technology India Pvt Ltd. -> Cypress Semiconductor)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [124776 2018-11-18] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [92176 2018-11-18] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149192 2018-11-18] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43816 2018-11-18] (ESET, spol. s r.o. -> ESET)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG -> Elaborate Bytes AG)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [72912 2018-11-18] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [54240 2018-11-18] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [94712 2018-11-18] (ESET, spol. s r.o. -> ESET)
S3 fixustor; C:\Windows\System32\drivers\fixustor.sys [6016 2006-07-26] (Genesys Logic) [File not signed]
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2015-11-09] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18944 2014-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam_prewin8.sys [20256 2016-01-14] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [319264 2012-03-27] (Marvell Semiconductor -> Marvell)
S3 catchme; \??\C:\Users\GRIZZLY\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
S3 ESETCleanersDriver; \??\C:\Windows\system32\Drivers\ESETCleanersDriver.sys [X]
S1 ZAM; \??\C:\Windows\System32\drivers\zam32.sys [X]
S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard32.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-04 14:19 - 2019-03-04 14:21 - 000014294 _____ C:\Users\GRIZZLY\Desktop\FRST.txt
2019-03-04 14:19 - 2019-03-04 14:19 - 000000000 ____D C:\FRST
2019-03-04 14:17 - 2019-03-04 14:17 - 001793024 _____ (Farbar) C:\Users\GRIZZLY\Desktop\FRST.exe
2019-03-04 13:14 - 2019-02-16 22:57 - 000348760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-03-04 13:14 - 2019-02-16 08:52 - 020280320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-03-04 13:14 - 2019-02-16 08:48 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-03-04 13:14 - 2019-02-16 08:48 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-03-04 13:14 - 2019-02-16 08:38 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-03-04 13:14 - 2019-02-16 08:38 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-03-04 13:14 - 2019-02-16 08:37 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-03-04 13:14 - 2019-02-16 08:37 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-03-04 13:14 - 2019-02-16 08:37 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-03-04 13:14 - 2019-02-16 08:35 - 002295808 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-03-04 13:14 - 2019-02-16 08:33 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-03-04 13:14 - 2019-02-16 08:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-03-04 13:14 - 2019-02-16 08:31 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-03-04 13:14 - 2019-02-16 08:30 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-03-04 13:14 - 2019-02-16 08:30 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-03-04 13:14 - 2019-02-16 08:30 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-03-04 13:14 - 2019-02-16 08:30 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-03-04 13:14 - 2019-02-16 08:26 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-03-04 13:14 - 2019-02-16 08:24 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-03-04 13:14 - 2019-02-16 08:20 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-03-04 13:14 - 2019-02-16 08:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-03-04 13:14 - 2019-02-16 08:19 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-03-04 13:14 - 2019-02-16 08:18 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-03-04 13:14 - 2019-02-16 08:17 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-03-04 13:14 - 2019-02-16 08:16 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-03-04 13:14 - 2019-02-16 08:15 - 004494336 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-03-04 13:14 - 2019-02-16 08:15 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-03-04 13:14 - 2019-02-16 08:10 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-03-04 13:14 - 2019-02-16 08:10 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-03-04 13:14 - 2019-02-16 08:09 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-03-04 13:14 - 2019-02-16 08:09 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-03-04 13:14 - 2019-02-16 08:08 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-03-04 13:14 - 2019-02-16 08:08 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-03-04 13:14 - 2019-02-16 07:55 - 004386304 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-03-04 13:14 - 2019-02-16 07:52 - 001331200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-03-04 13:14 - 2019-02-16 07:49 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-03-04 13:14 - 2019-02-16 06:29 - 000313344 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2019-03-04 13:14 - 2019-02-12 07:08 - 001177088 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-03-04 13:14 - 2019-02-12 07:08 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-03-04 13:14 - 2019-02-12 07:08 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-03-04 13:14 - 2019-02-12 07:08 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-03-04 13:14 - 2019-02-09 01:16 - 000137952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-03-04 13:14 - 2019-02-09 01:16 - 000136416 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-03-04 13:14 - 2019-02-09 01:15 - 004055776 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-03-04 13:14 - 2019-02-09 01:15 - 003960544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-03-04 13:14 - 2019-02-09 01:15 - 000189664 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-03-04 13:14 - 2019-02-09 01:15 - 000189664 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-03-04 13:14 - 2019-02-09 01:15 - 000067296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-03-04 13:14 - 2019-02-09 01:14 - 001310520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000583168 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000380928 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-03-04 13:14 - 2019-02-09 01:13 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 01:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 00:56 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-03-04 13:14 - 2019-02-09 00:54 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-03-04 13:14 - 2019-02-09 00:54 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-03-04 13:14 - 2019-02-09 00:54 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-03-04 13:14 - 2019-02-09 00:54 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-03-04 13:14 - 2019-02-09 00:54 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-03-04 13:14 - 2019-02-09 00:53 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-03-04 13:14 - 2019-02-09 00:52 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-03-04 13:14 - 2019-02-09 00:52 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-03-04 13:14 - 2019-02-09 00:51 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-03-04 13:14 - 2019-02-09 00:51 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-03-04 13:14 - 2019-02-09 00:50 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-03-04 13:14 - 2019-02-09 00:50 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-03-04 13:14 - 2019-02-09 00:50 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-03-04 13:14 - 2019-02-09 00:50 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-03-04 13:14 - 2019-02-09 00:50 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 00:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 00:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-04 13:14 - 2019-02-09 00:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-04 13:14 - 2019-01-07 18:35 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-03-04 13:14 - 2019-01-04 17:00 - 000122600 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-03-04 13:14 - 2019-01-04 16:56 - 000593408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 002703872 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-03-04 13:14 - 2019-01-04 15:04 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 000617984 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 000524800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 000377856 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-03-04 13:14 - 2019-01-04 15:04 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-03-04 13:14 - 2019-01-03 16:55 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-02-28 14:02 - 2019-02-28 14:02 - 000016533 _____ C:\Users\GRIZZLY\Desktop\combofix.txt
2019-02-28 13:59 - 2019-02-28 13:59 - 000016533 _____ C:\ComboFix.txt
2019-02-28 13:38 - 2011-06-26 07:45 - 000256000 _____ C:\Windows\PEV.exe
2019-02-28 13:38 - 2010-11-07 18:20 - 000208896 _____ C:\Windows\MBR.exe
2019-02-28 13:38 - 2009-04-20 05:56 - 000060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2019-02-28 13:38 - 2000-08-31 01:00 - 000518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2019-02-28 13:38 - 2000-08-31 01:00 - 000406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2019-02-28 13:38 - 2000-08-31 01:00 - 000098816 _____ C:\Windows\sed.exe
2019-02-28 13:38 - 2000-08-31 01:00 - 000080412 _____ C:\Windows\grep.exe
2019-02-28 13:38 - 2000-08-31 01:00 - 000068096 _____ C:\Windows\zip.exe
2019-02-28 13:36 - 2019-02-28 13:58 - 000000000 ____D C:\Windows\erdnt
2019-02-28 13:36 - 2019-02-28 13:36 - 005660510 ____R (Swearware) C:\Users\GRIZZLY\Desktop\ComboFix.exe
2019-02-28 13:33 - 2019-02-28 13:33 - 000000830 _____ C:\Users\GRIZZLY\Desktop\2019.02.28-13.20.43-i0-t92-d0 zemana.txt
2019-02-28 13:20 - 2019-03-04 09:58 - 000022597 _____ C:\Windows\ZAM_Guard.krnl.trace
2019-02-28 13:20 - 2019-03-04 09:44 - 000042034 _____ C:\Windows\ZAM.krnl.trace
2019-02-28 13:19 - 2019-03-04 09:48 - 000000000 ____D C:\Users\GRIZZLY\AppData\Local\Zemana
2019-02-28 12:19 - 2019-02-28 12:19 - 000000000 ____D C:\zoek
2019-02-28 11:38 - 2019-02-27 14:04 - 002038755 _____ C:\Users\GRIZZLY\Desktop\zoek.exe
2019-02-27 14:05 - 2019-02-28 12:26 - 000002978 _____ C:\runcheck.txt
2019-02-27 14:05 - 2019-02-28 12:21 - 000000000 ____D C:\zoek_backup
2019-02-27 13:54 - 2019-02-27 13:54 - 000002098 _____ C:\Users\GRIZZLY\Desktop\RogueKiller 27.02.2019.txt
2019-02-27 12:23 - 2019-02-27 12:23 - 000000250 _____ C:\Users\GRIZZLY\Desktop\Prosím i kontrolu logu, nedostatek místa na disku C - PC-HELP.CZ.URL
2019-02-26 14:35 - 2019-02-26 16:28 - 000000000 ____D C:\ProgramData\RogueKiller
2019-02-26 09:30 - 2019-02-26 10:37 - 000798514 _____ C:\Windows\ntbtlog.txt
2019-02-22 08:58 - 2019-02-28 14:00 - 000000000 ____D C:\Qoobox
2019-02-18 12:05 - 2019-01-12 03:55 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-02-18 12:05 - 2019-01-12 03:55 - 000004608 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-02-18 12:05 - 2019-01-12 03:36 - 001311744 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2019-02-18 12:05 - 2019-01-12 03:36 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-02-18 12:05 - 2019-01-09 03:55 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-02-18 12:05 - 2019-01-09 03:40 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2019-02-18 12:05 - 2019-01-09 03:40 - 000026496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-02-18 12:05 - 2019-01-09 03:40 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2019-02-18 12:05 - 2019-01-09 03:37 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-02-18 12:05 - 2019-01-09 03:34 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-02-18 12:05 - 2019-01-09 03:34 - 000314368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-02-18 12:05 - 2019-01-09 03:34 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-02-18 12:05 - 2019-01-07 18:15 - 002405376 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-02-18 12:05 - 2019-01-01 17:01 - 000105192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-02-18 12:05 - 2019-01-01 16:58 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-02-18 12:05 - 2019-01-01 16:58 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2019-02-18 12:05 - 2019-01-01 16:58 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-02-18 12:05 - 2019-01-01 16:57 - 001806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-02-18 12:05 - 2019-01-01 16:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2019-02-18 12:05 - 2019-01-01 16:39 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-02-12 15:23 - 2019-02-12 15:23 - 000000000 ____D C:\ProgramData\Mozilla
2019-02-12 11:03 - 2018-12-04 16:55 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2019-02-12 11:03 - 2018-12-04 16:55 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-02-12 11:03 - 2018-12-02 16:55 - 000527872 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-04 14:18 - 2016-11-19 20:18 - 000000000 ____D C:\Users\GRIZZLY\AppData\LocalLow\Mozilla
2019-03-04 13:49 - 2009-07-14 05:34 - 000019184 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-04 13:49 - 2009-07-14 05:34 - 000019184 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-04 13:45 - 2015-01-31 01:39 - 000668542 _____ C:\Windows\system32\perfh005.dat
2019-03-04 13:45 - 2015-01-31 01:39 - 000141202 _____ C:\Windows\system32\perfc005.dat
2019-03-04 13:45 - 2015-01-30 16:52 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-04 13:45 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2019-03-04 13:41 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-04 13:37 - 2015-01-30 17:10 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-03-04 13:37 - 2015-01-30 17:10 - 000000000 ____D C:\Windows\system32\appraiser
2019-03-04 11:40 - 2015-01-30 16:48 - 000000000 ____D C:\Users\GRIZZLY\AppData\Local\VirtualStore
2019-03-04 11:05 - 2015-01-31 19:44 - 000000000 ____D C:\ProgramData\Apple
2019-03-04 09:59 - 2017-09-03 12:13 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-02-28 13:57 - 2009-07-14 03:04 - 000000215 _____ C:\Windows\system.ini
2019-02-28 13:20 - 2015-01-30 16:48 - 000000000 ____D C:\Users\GRIZZLY
2019-02-26 16:46 - 2015-06-23 02:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2019-02-26 16:46 - 2015-06-20 17:11 - 000000000 ____D C:\ProgramData\Sony
2019-02-26 16:46 - 2015-06-20 17:08 - 000000000 ____D C:\Program Files\Sony
2019-02-26 10:04 - 2015-02-01 00:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2019-02-26 10:04 - 2015-02-01 00:07 - 000000000 ____D C:\Program Files\Canon
2019-02-26 10:03 - 2015-01-30 16:51 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2019-02-22 09:18 - 2009-07-14 03:03 - 023855104 _____ C:\Windows\system32\config\SYSTEM.bak
2019-02-22 09:18 - 2009-07-14 03:03 - 000524288 _____ C:\Windows\system32\config\DEFAULT.bak
2019-02-22 09:18 - 2009-07-14 03:03 - 000262144 _____ C:\Windows\system32\config\SECURITY.bak
2019-02-22 09:18 - 2009-07-14 03:03 - 000262144 _____ C:\Windows\system32\config\SAM.bak
2019-02-22 08:24 - 2015-01-30 21:49 - 000000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-02-19 12:03 - 2009-07-14 05:33 - 003959256 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-19 11:56 - 2015-01-30 21:49 - 000000000 ____D C:\Program Files\CCleaner
2019-02-18 14:00 - 2015-10-15 15:16 - 000000000 ___RD C:\Users\GRIZZLY\Documents\Scanned Documents
2019-02-15 15:38 - 2015-01-30 17:03 - 000000000 ____D C:\Windows\system32\MRT
2019-02-15 15:30 - 2015-01-30 17:03 - 126228304 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-02-12 11:25 - 2015-04-30 19:20 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2019-02-12 11:25 - 2015-04-30 19:20 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2019-02-12 11:25 - 2015-02-01 01:43 - 000000000 ____D C:\Windows\system32\Macromed

==================== Files in the root of some directories =======

2003-03-21 13:37 - 2003-03-21 13:37 - 000016056 _____ () C:\Program Files\owcstp16.dll
2015-10-23 10:17 - 2017-06-04 15:08 - 000000132 _____ () C:\Users\GRIZZLY\AppData\Roaming\Formát PNG Adobe CC – předvolby

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-02-12 12:25

==================== End of FRST.txt ============================


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 0 hostů