Re: Sekání pc

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Sekání pc

Příspěvekod Hastrbusy » 05 zář 2019 12:25

Dobrý den,
chtěl bych Vás požádat o radu.
V poslední době jsem zaznamenal určité "sekání" a to přesněji
1) při přehrávání YouTube, online seriálů a filmů.
2) trhavý/zpomalený pohyb myši.
3) možná i o něco málo pomalejší start Windows.
Jelikož jsem takové problémy dříve neměl, usuzuji že je něco špatně :shock:

Sestava:
Windows 7 Home Premium 64bit
Intel core i7-6700 3.40 GHz
RAM 16 GB DDR4 3400 MHz CL15
Z170-Gaming K3-CF F22
NVIDIA GeForce GTX 750 Ti 2GB 1085 MHz GDDR5 28nm
Seagate BarraCuda 2TB 7200 rpm R/W 156 MB/s

Přikládám Log HijackThis:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:37:01, on 5.9.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19431)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
C:\Windows\SysWOW64\muachost.exe
C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Users\Štěpán\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: AviraBrowserSafety.BrowserSafety - {c3c77255-42c0-499f-b664-6e981a0b1647} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKLM\..\RunOnce: [PreRun] C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe
O4 - HKLM\..\RunOnce: [DualBiosRescue] C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Avira Browser Safety - {d8f67242-b229-4065-95fa-391b077ed6ca} - mscoree.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: abs - {E00957BD-D0E1-4EB9-A025-7743FDC8B27B} - mscoree.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: EasyTune Engine (EasyTuneEngineService) - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GIGABYTE Adjust (gadjservice) - Unknown owner - C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: GamingHotkey_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Hardware Monitor Record service (HwmRecordService) - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSIREGISTER_MR - Micro-Star INT'L CO., LTD. - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service: MSI_ActiveX_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: OcButtonService - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PG Manager (pgt_svc) - Gold Click Ltd - C:\Program Files (x86)\ProxyGate\MainService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Smart TimeLock Service (Smart TimeLock) - Gigabyte Technology CO., LTD. - C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe (file missing)

--
End of file - 14833 bytes



Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39999
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Sekání pc

Příspěvekod jaro3 » 05 zář 2019 18:44

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.


Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.adlice.com/downloadprogress/

Ulož si ho na svojí plochu . Klikni na „Souhlasím“ k povrzení podmínek.
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Skenování“
Po skenu se objeví log , který se otevře. ( jinak je uložen systémovem disku jako C:\AdwCleaner [C?].txt ), jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware na plochu , nainstaluj a spusť ho
-Pokud není program aktuální , klikni na možnost „Aktualizovat nyní“ či „Opravit nyní“.
- bude nalezena aktualizace a nainstaluje se.
- poté klikni na Spustit skenování
- po proběhnutí skenu se ti objeví hláška vpravo dole, tak klikni na Zobrazit zprávu a vyber Export a vyber Kopírovat do schránky a vlož sem celý log. Nebo klikni na „Textový soubor ( .txt)“ a log si ulož.
-jinak se log nachází v programu po kliknutí na „Zprávy“ , nebo je uložen zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Dokončit, a program zavři křížkem vpravo nahoře.
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 05 zář 2019 20:27

Děkuji za radu.
připojuji log z AdwCleaner:

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-04-2019
# Database: 2019-09-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-05-2019
# Duration: 00:00:03
# OS: Windows 7 Home Premium
# Cleaned: 22
# Failed: 0


***** [ Services ] *****

Deleted pgt_svc

***** [ Folders ] *****

Deleted C:\Program Files (x86)\ESTsoft
Deleted C:\Program Files (x86)\ProxyGate
Deleted C:\ProgramData\ESTsoft
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESTsoft
Deleted C:\Users\Štěpán\AppData\Roaming\ESTsoft

***** [ Files ] *****

Deleted C:\TOSTACK

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\csastats
Deleted HKU\.DEFAULT\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted HKU\S-1-5-18\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}

***** [ Chromium (and derivatives) ] *****

Deleted Avira SafeSearch Plus
Deleted Avira SafeSearch Plus

***** [ Chromium URLs ] *****

Deleted AVG Secure Search
Deleted Messenger Plus Smartbar Search
Deleted Messenger Plus Smartbar Search
Deleted Search the web (Babylon)
Deleted Search the web (Babylon)
Deleted SearchYa!
Deleted Softonic EN
Deleted Softonic EN
Deleted Softonic NL
Deleted http://searchya.com/

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [15216 octets] - [05/09/2019 19:58:14]
AdwCleaner[S00].txt - [2568 octets] - [05/09/2019 19:59:18]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########



a log z Malwarebytes' Anti-Malware:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 05.09.19
Čas skenování: 20:09
Logovací soubor: 4079169e-d008-11e9-a20f-1c1b0d94907a.json

-Informace o softwaru-
Verze: 3.8.3.2965
Verze komponentů: 1.0.613
Aktualizovat verzi balíku komponent: 1.0.12341
Licence: Zkušební

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: \u00c5\u00a0t\u00c4\u009bp\u00c3\u00a1n-PC\\u00c5\u00a0t\u00c4\u009bp\u00c3\u00a1n

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 354580
Zjištěné hrozby: 7
Hrozby umístěné do karantény: 0
Uplynulý čas: 10 min, 32 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 7
PUP.Optional.Delta, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [303], [455070],1.0.12341
PUP.Optional.SearchYa, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Žádná uživatelská akce, [384], [477034],1.0.12341
PUP.Optional.Delta, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [303], [455070],1.0.12341
PUP.Optional.SearchYa, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [384], [477034],1.0.12341
PUP.Optional.SearchYa, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [384], [477034],1.0.12341
PUP.Optional.Delta, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [303], [455070],1.0.12341
PUP.Optional.Babylon, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, [363], [455059],1.0.12341

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39999
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Sekání pc

Příspěvekod jaro3 » 05 zář 2019 20:47

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.



. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/files/details ... _tool.html
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.adlice.com/download/roguekil ... HlwZT14ODY
64bit.:
http://www.adlice.com/download/roguekil ... HlwZT14NjQ
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7,8,10 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Open Report “ , v okně pak na „Open TXT“ a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

další odkazy:
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 08 zář 2019 19:22

>JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Home Premium x64
Ran by Štěpán (Administrator) on čt 05.09.2019 at 21:31:18,75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 10

Successfully deleted: C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate (Task)
Successfully deleted: C:\Windows\wininit.ini (File)
Successfully deleted: C:\Users\Štěpán\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FLTKMDUH (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Štěpán\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L94GVI4L (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Štěpán\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NYPVVGH4 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Štěpán\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T7BE2USI (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FLTKMDUH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L94GVI4L (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NYPVVGH4 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T7BE2USI (Temporary Internet Files Folder)



Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on čt 05.09.2019 at 21:37:12,37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

>Malwarebytes:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 05.09.19
Čas skenování: 21:41
Logovací soubor: 16736536-d015-11e9-aab8-1c1b0d94907a.json

-Informace o softwaru-
Verze: 3.8.3.2965
Verze komponentů: 1.0.613
Aktualizovat verzi balíku komponent: 1.0.12345
Licence: Zkušební

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: \u00c5\u00a0t\u00c4\u009bp\u00c3\u00a1n-PC\\u00c5\u00a0t\u00c4\u009bp\u00c3\u00a1n

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 354587
Zjištěné hrozby: 7
Hrozby umístěné do karantény: 7
Uplynulý čas: 5 min, 37 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 7
PUP.Optional.SearchYa, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nahrazen, [384], [477034],1.0.12345
PUP.Optional.Delta, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, [303], [455070],1.0.12345
PUP.Optional.SearchYa, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, [384], [477034],1.0.12345
PUP.Optional.SearchYa, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, [384], [477034],1.0.12345
PUP.Optional.Delta, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, [303], [455070],1.0.12345
PUP.Optional.Babylon, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, [363], [455059],1.0.12345
PUP.Optional.Delta, C:\USERS\ŠTěPáN\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, [303], [455070],1.0.12345

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 08 zář 2019 19:24

>Sophos 1/2:

2019-09-05 19:50:38.585 Sophos Virus Removal Tool version 2.7.0
2019-09-05 19:50:38.585 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-09-05 19:50:38.585 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2019-09-05 19:50:38.585 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2019-09-05 19:50:38.585 Checking for updates...
2019-09-05 19:50:39.506 Update progress: proxy server not available
2019-09-05 19:50:46.229 Option all = no
2019-09-05 19:50:46.229 Option recurse = yes
2019-09-05 19:50:46.229 Option archive = no
2019-09-05 19:50:46.229 Option service = yes
2019-09-05 19:50:46.229 Option confirm = yes
2019-09-05 19:50:46.229 Option sxl = yes
2019-09-05 19:50:46.229 Option max-data-age = 35
2019-09-05 19:50:46.229 Option vdl-logging = yes
2019-09-05 19:50:46.229 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-09-05 19:50:46.229 Machine ID: 579f43be82c84f0fa2f172a06634a063
2019-09-05 19:50:46.229 Component SVRTcli.exe version 2.7.0
2019-09-05 19:50:46.229 Component control.dll version 2.7.0
2019-09-05 19:50:46.229 Component SVRTservice.exe version 2.7.0
2019-09-05 19:50:46.229 Component engine\osdp.dll version 1.44.1.2420
2019-09-05 19:50:46.229 Component engine\veex.dll version 3.73.0.2420
2019-09-05 19:50:46.229 Component engine\savi.dll version 9.0.11.2420
2019-09-05 19:50:46.229 Component rkdisk.dll version 1.5.33.1
2019-09-05 19:50:46.229 Version info: Product version 2.7.0
2019-09-05 19:50:46.229 Version info: Detection engine 3.73.0
2019-09-05 19:50:46.229 Version info: Detection data 5.55
2019-09-05 19:50:46.229 Version info: Build date 18.9.2018
2019-09-05 19:50:46.229 Version info: Data files added 173
2019-09-05 19:50:46.229 Version info: Last successful update (not yet updated)
2019-09-05 19:50:51.003 Downloading updates...
2019-09-05 19:50:51.003 Update progress: [I96736] sdds.svrt_v1.13: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2019-09-05 19:50:51.003 Update progress: [I95020] sdds.svrt_v1.13: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-09-05 19:50:51.003 Update progress: [I22529] sdds.svrt_v1.13: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-09-05 19:50:51.003 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2019-09-05 19:50:51.003 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2019-09-05 19:50:51.003 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2019-09-05 19:50:51.003 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 110 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0b6eeddaf1c46aa01f7f3ba461dd4c7ex000.xml: 4899 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0b6eeddaf1c46aa01f7f3ba461dd4c7ex000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3249ce3e6d90101cd7acff656f5a731bx000.xml: 8673 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3249ce3e6d90101cd7acff656f5a731bx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE570/7de87569596272640769cbf99b229c0ex000.xml: 590 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE570/7de87569596272640769cbf99b229c0ex000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE560/0167d8cf884d717c1779abc52d17cb71x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE560/0167d8cf884d717c1779abc52d17cb71x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE557/13239828b0b1bf83de4692d775629148x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE557/13239828b0b1bf83de4692d775629148x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE554/1883db40022af8cbc8fd680f1c4185ddx000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE554/1883db40022af8cbc8fd680f1c4185ddx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 62 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE553/236bb4ca0d2561a8e59124e4a65837c9x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE553/236bb4ca0d2561a8e59124e4a65837c9x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE558/3a1dfb2d23615d09497b1db3305e32dax000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE558/3a1dfb2d23615d09497b1db3305e32dax000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE552/49e28e1f82adf19b43a3acfb11c919bax000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE552/49e28e1f82adf19b43a3acfb11c919bax000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE551/69eda22632d06ac2df0c576c5946841fx000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE551/69eda22632d06ac2df0c576c5946841fx000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE561/6c1dd3a5196572a9bb41e9156eb30577x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE561/6c1dd3a5196572a9bb41e9156eb30577x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 78 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE555/9f59846a02fa77254f4813df557d969bx000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE555/9f59846a02fa77254f4813df557d969bx000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE559/bf3b91a4649162f3b240ef9f3d9d7c65x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE559/bf3b91a4649162f3b240ef9f3d9d7c65x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE563/cc18c9c4f72ead6c0bb51284002291cax000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE563/cc18c9c4f72ead6c0bb51284002291cax000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE556/cd085cdff0109eb84b9c16d718521445x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE556/cd085cdff0109eb84b9c16d718521445x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE562/d7da1c8549bd88228f71a41e440c4772x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE562/d7da1c8549bd88228f71a41e440c4772x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE564/fc86ecada014384667e0ec752820eec7x000.xml: 601 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE564/fc86ecada014384667e0ec752820eec7x000.xml: 78 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE568/42c44aa0f43e773712a19a486620b36ex000.xml: 1093 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE568/42c44aa0f43e773712a19a486620b36ex000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/801679eb8836ee31e64879e12c2be8d5x000.xml: 17236 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/801679eb8836ee31e64879e12c2be8d5x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 55b8d73618ae38c1f98e6bd348c0edc7x000.xml: 615 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 55b8d73618ae38c1f98e6bd348c0edc7x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6badbf3127a809601018c93f62d1b9c8x000.xml: 320 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6badbf3127a809601018c93f62d1b9c8x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c518d5be60608ac6bd5325ef02b8a7ex000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c518d5be60608ac6bd5325ef02b8a7ex000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 211a9b2ae569945c9fe3e1ca74a2c644x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 211a9b2ae569945c9fe3e1ca74a2c644x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 24be0fc59a0372038b7fbb3af3e19d21x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 24be0fc59a0372038b7fbb3af3e19d21x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4ccc0244dafdc3a404f8bb420c2a165x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4ccc0244dafdc3a404f8bb420c2a165x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b5385d6d93fc43e87fc7d723b90aab9x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b5385d6d93fc43e87fc7d723b90aab9x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 44df079c17c27192400c73a86d16785fx000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 44df079c17c27192400c73a86d16785fx000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4c204ac4b99df718739c309d0f4ab76bx000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4c204ac4b99df718739c309d0f4ab76bx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 46e9b0f78df0d20502af43f391ffc506x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 46e9b0f78df0d20502af43f391ffc506x000.xml: 62 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7fe1eebcf235024389043a634ef20366x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7fe1eebcf235024389043a634ef20366x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9ec625dcb3a242e1fece93286451a352x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9ec625dcb3a242e1fece93286451a352x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eaba289b0a9e187ed96137c42bf85645x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eaba289b0a9e187ed96137c42bf85645x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4e261308128b5b42bf54c232030ea27x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4e261308128b5b42bf54c232030ea27x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d9072ffa19fc0ff71a828d7ca2bc7828x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d9072ffa19fc0ff71a828d7ca2bc7828x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d98051334b3ea8a0b042e0bb99bc283x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d98051334b3ea8a0b042e0bb99bc283x000.xml: 62 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: da92f17acb85d0a5bdb85ace75b37afcx000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: da92f17acb85d0a5bdb85ace75b37afcx000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d2bd1911114961b92c55d33d6faa1a9ax000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d2bd1911114961b92c55d33d6faa1a9ax000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2302ad75630d4b58cca278062b8b5de4x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2302ad75630d4b58cca278062b8b5de4x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 65b7509646b00610cf1732a01f49a46fx000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 65b7509646b00610cf1732a01f49a46fx000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f6ec5061dd7e77923111541727311aa2x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f6ec5061dd7e77923111541727311aa2x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4f4a648042a613c869eddf17703b772ax000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4f4a648042a613c869eddf17703b772ax000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d86540a0b23bc7236508f5b443729232x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d86540a0b23bc7236508f5b443729232x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 20d640fb5ddff12944b1b5c3e34a4ca7x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 20d640fb5ddff12944b1b5c3e34a4ca7x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2ee4a92ec19fb16304c745c83ce570dbx000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2ee4a92ec19fb16304c745c83ce570dbx000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 59c292069cc0fcbe6fbcf8d4289432a4x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 59c292069cc0fcbe6fbcf8d4289432a4x000.xml: 78 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ace8e7b646829af68be5b32bbcc82570x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ace8e7b646829af68be5b32bbcc82570x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f22440c76fa98b33be36804ffa922b99x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f22440c76fa98b33be36804ffa922b99x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7a3833618c1adde4d2e20d2de6f3fa16x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7a3833618c1adde4d2e20d2de6f3fa16x000.xml: 63 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9368403163321ca023d9919cfc51be64x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9368403163321ca023d9919cfc51be64x000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2c9f2b4a3bd9b8aa278af484075cffbbx000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2c9f2b4a3bd9b8aa278af484075cffbbx000.xml: 62 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 542303d59e10e8dcd6b025d5e810d68dx000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 542303d59e10e8dcd6b025d5e810d68dx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4176421e8edc3978a036c9480f32bed6x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4176421e8edc3978a036c9480f32bed6x000.xml: 94 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6d1dd29825561f6dda5ee421e414be76x000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6d1dd29825561f6dda5ee421e414be76x000.xml: 62 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa6f963652fadc6cdeff28b207423ccbx000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa6f963652fadc6cdeff28b207423ccbx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2604e1b742f72c5b2358230ceb552befx000.xml: 338 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2604e1b742f72c5b2358230ceb552befx000.xml: 63 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c8cf9e8cd18096474d38a05097436c0fx000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c8cf9e8cd18096474d38a05097436c0fx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c328e9ffae39972d76b744ddde1825c8x000.xml: 320 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c328e9ffae39972d76b744ddde1825c8x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a2ae1ab344bcc1a49c5e0729d215aab2x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a2ae1ab344bcc1a49c5e0729d215aab2x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b54a738482584498d865bedf6f8f20f3x000.xml: 332 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b54a738482584498d865bedf6f8f20f3x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9ea7683db43b42fd9bf40b82e5a72ed3x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9ea7683db43b42fd9bf40b82e5a72ed3x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b748b74db58a6b71d281c8b99a41ada3x000.xml: 332 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b748b74db58a6b71d281c8b99a41ada3x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: da9d9016354a03eedb5fda1e004cf4e0x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: da9d9016354a03eedb5fda1e004cf4e0x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 275fdd34a46094226c9c28de862b96b6x000.xml: 332 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 275fdd34a46094226c9c28de862b96b6x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc0f30ffa760460568acc3cdb103e58ax000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc0f30ffa760460568acc3cdb103e58ax000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 864998ea21a61a2ef326850894a0cd91x000.xml: 333 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 864998ea21a61a2ef326850894a0cd91x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 82f5db1072ab9fd44c0187dc662db183x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 82f5db1072ab9fd44c0187dc662db183x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9c0268d33d0ff64db2cea4e9ae38866bx000.xml: 333 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9c0268d33d0ff64db2cea4e9ae38866bx000.xml: 47 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 604981f87264db193242f87098285a1bx000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 604981f87264db193242f87098285a1bx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 91099709e9fa3fbbc844f395a1f781a0x000.xml: 333 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 91099709e9fa3fbbc844f395a1f781a0x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 702fc068d4a3012155980ed71b84c993x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 702fc068d4a3012155980ed71b84c993x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c80488a7ae3bc394bd363db2bb17ca7fx000.xml: 333 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c80488a7ae3bc394bd363db2bb17ca7fx000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ac2ef2ba95c04d56fde850a8884a10c9x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ac2ef2ba95c04d56fde850a8884a10c9x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13d912d3ca8c5e86d74272d969946fb6x000.xml: 333 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13d912d3ca8c5e86d74272d969946fb6x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 33bc3a6eac6c758b5603d11dbfa2a0d7x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 33bc3a6eac6c758b5603d11dbfa2a0d7x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 48bed341855f3dba82f09b3a00821dc4x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 48bed341855f3dba82f09b3a00821dc4x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 95358f0de9eb69e09e5d6f7ef3b9dfc6x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 95358f0de9eb69e09e5d6f7ef3b9dfc6x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1983857c2e7926eb8dd2a00c04b51ac6x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1983857c2e7926eb8dd2a00c04b51ac6x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0115aea3d126839eaf0a92b17cbd234cx000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0115aea3d126839eaf0a92b17cbd234cx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e323207c9a9f972cf58f787926269abfx000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e323207c9a9f972cf58f787926269abfx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb28a93b342a609ac29d4e1adcaafca3x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb28a93b342a609ac29d4e1adcaafca3x000.xml: 15 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1fe3dbb6c8d8b605dfbef269ff009d00x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1fe3dbb6c8d8b605dfbef269ff009d00x000.xml: 16 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 03ac13dac7b4f757342bc826a1758191x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 03ac13dac7b4f757342bc826a1758191x000.xml: 16 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2254cdce2b8b89d4b5ae8933aabbafb2x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2254cdce2b8b89d4b5ae8933aabbafb2x000.xml: 16 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 05a819a847dc79edff5af3c0e61af74fx000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 05a819a847dc79edff5af3c0e61af74fx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b452115a93356501e574e0676f61b513x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b452115a93356501e574e0676f61b513x000.xml: 15 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c6aea4fae8cf085b1cca5f6704456f92x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c6aea4fae8cf085b1cca5f6704456f92x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1c2d8a5fb516c5170ecd671beb461fa9x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1c2d8a5fb516c5170ecd671beb461fa9x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 04196fa311a7e057b194e4acc1e1bc33x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 04196fa311a7e057b194e4acc1e1bc33x000.xml: 63 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b39b970c65202c7a726a12ac9a43cb9bx000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b39b970c65202c7a726a12ac9a43cb9bx000.xml: 16 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a638186b4381f9996326bd9005611860x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a638186b4381f9996326bd9005611860x000.xml: 78 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b78f000316a5c95050d4066ce72df4b5x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b78f000316a5c95050d4066ce72df4b5x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c94d662eabaab6b84f68b635fac9c4a4x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c94d662eabaab6b84f68b635fac9c4a4x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2d015c46af0deae605af9e4b907ea828x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2d015c46af0deae605af9e4b907ea828x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c7dcda10082d7d178312e3cba92f39e9x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c7dcda10082d7d178312e3cba92f39e9x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2e33e9463a1845c558a227d72a1a400cx000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2e33e9463a1845c558a227d72a1a400cx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c324b119145806644f1fa4e0b5917b0ax000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c324b119145806644f1fa4e0b5917b0ax000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 907562e790849dc94f686ee0701ffe46x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 907562e790849dc94f686ee0701ffe46x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4e88cdd19116b63288c46944aaf81cb3x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4e88cdd19116b63288c46944aaf81cb3x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 04774664954ef6db1e033a73ff5620d1x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 04774664954ef6db1e033a73ff5620d1x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d40adeedea4c0709086166aa5a524eb6x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d40adeedea4c0709086166aa5a524eb6x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 22cdd5997e6d0737056420f512970301x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 22cdd5997e6d0737056420f512970301x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c9f89cc440cfd6d639703451a2eea63ex000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c9f89cc440cfd6d639703451a2eea63ex000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c20c9360a9daf0aadfe4a2173e85aff0x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c20c9360a9daf0aadfe4a2173e85aff0x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 922b2c1d2bef5bb4abce961310c0f8c6x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 922b2c1d2bef5bb4abce961310c0f8c6x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2ce72f2c67063c0979bd872139073fe5x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2ce72f2c67063c0979bd872139073fe5x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8bb8751447a786547356cd3d54a2aa92x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8bb8751447a786547356cd3d54a2aa92x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3d84696eec479e00d421a6f65a8edd2cx000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3d84696eec479e00d421a6f65a8edd2cx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 361be42c825585bc7af6881ca8ae8c4ax000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 361be42c825585bc7af6881ca8ae8c4ax000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b95c68de94354b81980a276d929e298x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b95c68de94354b81980a276d929e298x000.xml: 46 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0fe582b07583c0b7fa3a95b2b4b6a240x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0fe582b07583c0b7fa3a95b2b4b6a240x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3608f3873e898da37971f8d8b1c11bf5x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3608f3873e898da37971f8d8b1c11bf5x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ed62574a2304241e3e3e8802f5467e4bx000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ed62574a2304241e3e3e8802f5467e4bx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7794560d18e72de8abcf8997946c9ce0x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7794560d18e72de8abcf8997946c9ce0x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bd48196b83990288376dd2c1b4a2ca40x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bd48196b83990288376dd2c1b4a2ca40x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5829add73ca529e5c7b633a45782aec7x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5829add73ca529e5c7b633a45782aec7x000.xml: 78 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 069d94f0df76763442daefa00eabe5d4x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 069d94f0df76763442daefa00eabe5d4x000.xml: 32 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 839ed09a49d789c1da663c5139b1d4a3x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 839ed09a49d789c1da663c5139b1d4a3x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b2ba0bc3ea78cf425fbe79db20de1382x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b2ba0bc3ea78cf425fbe79db20de1382x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1361eaf899bd4aa47fe38e42dac9b2f8x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1361eaf899bd4aa47fe38e42dac9b2f8x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2ee1eab1b9446e741edaefb833491ad1x000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2ee1eab1b9446e741edaefb833491ad1x000.xml: 94 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8c3d1700e2243bf88b50414271806434x000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8c3d1700e2243bf88b50414271806434x000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c0b3c51c84d861d1f524c46fffb765dx000.xml: 877 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c0b3c51c84d861d1f524c46fffb765dx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 64c8609549ffd5ad55360d7d4bbc94cfx000.xml: 335 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 64c8609549ffd5ad55360d7d4bbc94cfx000.xml: 31 ms
2019-09-05 19:50:51.003 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fbc06dffe2f949c622fcf5a30a9e2af7x000.xml: 1027 bytes
2019-09-05 19:50:51.003 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fbc06dffe2f949c622fcf5a30a9e2af7x000.xml: 32 ms
2019-09-05 19:50:51.018 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1791e2b70f679398d4d5c9ac9671eff9x000.xml: 335 bytes
2019-09-05 19:50:51.018 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1791e2b70f679398d4d5c9ac9671eff9x000.xml: 31 ms
2019-09-05 19:50:51.018 Update progress: [I49502] sdds.data0910.xml: found supplement IDE567 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2019-09-05 19:50:51.018 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE567 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE567 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I49502] sdds.data0910.xml: found supplement IDE568 LATEST path= baseVersion= [included from product IDE567 LATEST path=]
2019-09-05 19:50:51.018 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE568 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE568 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I49502] sdds.data0910.xml: found supplement IDE569 LATEST path= baseVersion= [included from product IDE568 LATEST path=]
2019-09-05 19:50:51.018 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE569 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE569 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I49502] sdds.data0910.xml: found supplement IDE570 LATEST path= baseVersion= [included from product IDE569 LATEST path=]
2019-09-05 19:50:51.018 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE570 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE570 LATEST path=
2019-09-05 19:50:51.018 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-09-05 19:50:51.018 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 19c4771e8460e456b8596eff6aa4ed84x000.xml: 78893 bytes
2019-09-05 19:50:51.018 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 19c4771e8460e456b8596eff6aa4ed84x000.xml: 94 ms
2019-09-05 19:50:51.018 Update progress: [I19463] Product download size 213903647 bytes
2019-09-05 19:51:29.223 Update progress: [I19463] Syncing product IDE567 LATEST path=
2019-09-05 19:51:29.223 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8fe8f6bfe9e7b646c6cc40a6068f6c54x000.xml: 27728 bytes
2019-09-05 19:51:29.223 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8fe8f6bfe9e7b646c6cc40a6068f6c54x000.xml: 93 ms
2019-09-05 19:51:29.223 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 65bb7de26cda0dc497a641979e3071b1x000.xml: 397 bytes
2019-09-05 19:51:29.223 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 65bb7de26cda0dc497a641979e3071b1x000.xml: 31 ms
2019-09-05 19:51:29.223 Update progress: [I19463] Product download size 1774620 bytes
2019-09-05 19:51:40.424 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 289744d164fd7ce605e8062019affe5ax000.xml: 8387 bytes
2019-09-05 19:51:40.424 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 289744d164fd7ce605e8062019affe5ax000.xml: 31 ms
2019-09-05 19:51:40.517 Update progress: [I19463] Syncing product IDE568 LATEST path=
2019-09-05 19:51:40.517 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 122b1117accb02752aed12de967ae211x000.xml: 27724 bytes
2019-09-05 19:51:40.517 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 122b1117accb02752aed12de967ae211x000.xml: 62 ms
2019-09-05 19:51:40.517 Update progress: [I19463] Product download size 1821274 bytes
2019-09-05 19:51:49.690 Update progress: [I19463] Syncing product IDE569 LATEST path=
2019-09-05 19:51:49.690 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 58a501f857730c637d8dffca92d7715dx000.xml: 8594 bytes
2019-09-05 19:51:49.690 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 58a501f857730c637d8dffca92d7715dx000.xml: 31 ms
2019-09-05 19:51:49.690 Update progress: [I19463] Product download size 693174 bytes
2019-09-05 19:51:50.954 Update progress: [I19463] Syncing product IDE570 LATEST path=
2019-09-05 19:51:50.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2019-09-05 19:51:50.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 46 ms
2019-09-05 19:51:50.969 Installing updates...
2019-09-05 19:51:51.578 Error level 1
2019-09-05 19:52:25.866 Update successful
2019-09-05 19:52:33.590 Option all = no
2019-09-05 19:52:33.590 Option recurse = yes
2019-09-05 19:52:33.590 Option archive = no
2019-09-05 19:52:33.590 Option service = yes
2019-09-05 19:52:33.590 Option confirm = yes
2019-09-05 19:52:33.590 Option sxl = yes
2019-09-05 19:52:33.590 Option max-data-age = 35
2019-09-05 19:52:33.590 Option vdl-logging = yes
2019-09-05 19:52:33.606 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-09-05 19:52:33.606 Machine ID: 579f43be82c84f0fa2f172a06634a063
2019-09-05 19:52:33.606 Component SVRTcli.exe version 2.7.0
2019-09-05 19:52:33.606 Component control.dll version 2.7.0
2019-09-05 19:52:33.606 Component SVRTservice.exe version 2.7.0
2019-09-05 19:52:33.606 Component engine\osdp.dll version 1.44.1.2461
2019-09-05 19:52:33.606 Component engine\veex.dll version 3.77.1.2461
2019-09-05 19:52:33.606 Component engine\savi.dll version 9.0.15.2461
2019-09-05 19:52:33.606 Component rkdisk.dll version 1.5.33.1
2019-09-05 19:52:33.606 Version info: Product version 2.7.0
2019-09-05 19:52:33.606 Version info: Detection engine 3.77.1
2019-09-05 19:52:33.606 Version info: Detection data 5.66
2019-09-05 19:52:33.606 Version info: Build date 30.7.2019
2019-09-05 19:52:33.606 Version info: Data files added 256
2019-09-05 19:52:33.606 Version info: Last successful update 5.9.2019 21:52:25

2019-09-05 20:28:52.059 Error level 0

2019-09-05 20:28:52.059 Scan cancelled by user.
2019-09-05 20:28:52.059

------------------------------------------------------------

2019-09-06 17:40:34.791 Sophos Virus Removal Tool version 2.7.0
2019-09-06 17:40:34.791 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-09-06 17:40:34.791 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 08 zář 2019 19:25

>Sophos 2/2:


2019-09-06 17:40:34.791 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2019-09-06 17:40:34.792 Checking for updates...
2019-09-06 17:40:35.265 Update progress: proxy server not available
2019-09-06 17:41:04.677 Downloading updates...
2019-09-06 17:41:04.723 Update progress: [I96736] sdds.svrt_v1.13: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2019-09-06 17:41:04.723 Update progress: [I95020] sdds.svrt_v1.13: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-09-06 17:41:04.723 Update progress: [I22529] sdds.svrt_v1.13: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-09-06 17:41:04.723 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2019-09-06 17:41:04.723 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2019-09-06 17:41:04.723 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2019-09-06 17:41:04.723 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 109 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ea921ad85452a9970fd001256d6959d9x000.xml: 4899 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ea921ad85452a9970fd001256d6959d9x000.xml: 93 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 582ffc07b652e89afa44b0d95bfa63bex000.xml: 8673 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 582ffc07b652e89afa44b0d95bfa63bex000.xml: 32 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/b10dc86dd1b99322de76f03691f0876bx000.xml: 18706 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/b10dc86dd1b99322de76f03691f0876bx000.xml: 31 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b0c92cd7029273e7505042f9a467e54fx000.xml: 877 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b0c92cd7029273e7505042f9a467e54fx000.xml: 31 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 605f22903fc92f79b10b829e950e3d8cx000.xml: 877 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 605f22903fc92f79b10b829e950e3d8cx000.xml: 32 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3d179f9cb58493732039b7f8c51dfe23x000.xml: 335 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3d179f9cb58493732039b7f8c51dfe23x000.xml: 31 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7e850f278e5474ace80e4d4de84364b9x000.xml: 877 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7e850f278e5474ace80e4d4de84364b9x000.xml: 16 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 84074c395b1115033133c76cbe858938x000.xml: 335 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 84074c395b1115033133c76cbe858938x000.xml: 31 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 21616d8f208b07a5d3b76e9155721bcfx000.xml: 1027 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 21616d8f208b07a5d3b76e9155721bcfx000.xml: 31 ms
2019-09-06 17:41:04.723 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a308cdff6cf04f09edcbb7f48754e2efx000.xml: 335 bytes
2019-09-06 17:41:04.723 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a308cdff6cf04f09edcbb7f48754e2efx000.xml: 32 ms
2019-09-06 17:41:04.723 Update progress: [I49502] sdds.data0910.xml: found supplement IDE567 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2019-09-06 17:41:04.723 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE567 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE567 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I49502] sdds.data0910.xml: found supplement IDE568 LATEST path= baseVersion= [included from product IDE567 LATEST path=]
2019-09-06 17:41:04.723 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE568 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE568 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I49502] sdds.data0910.xml: found supplement IDE569 LATEST path= baseVersion= [included from product IDE568 LATEST path=]
2019-09-06 17:41:04.723 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE569 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE569 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I49502] sdds.data0910.xml: found supplement IDE570 LATEST path= baseVersion= [included from product IDE569 LATEST path=]
2019-09-06 17:41:04.723 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE570 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE570 LATEST path=
2019-09-06 17:41:04.723 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-09-06 17:41:04.770 Update progress: [I19463] Syncing product IDE567 LATEST path=
2019-09-06 17:41:04.770 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3a9a2e19cd5bf6b217fc55c5b1f48d42x000.xml: 397 bytes
2019-09-06 17:41:04.770 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3a9a2e19cd5bf6b217fc55c5b1f48d42x000.xml: 31 ms
2019-09-06 17:41:04.770 Update progress: [I19463] Product download size 8693 bytes
2019-09-06 17:41:04.770 Option all = no
2019-09-06 17:41:04.770 Option recurse = yes
2019-09-06 17:41:04.770 Option archive = no
2019-09-06 17:41:04.770 Option service = yes
2019-09-06 17:41:04.770 Option confirm = yes
2019-09-06 17:41:04.770 Option sxl = yes
2019-09-06 17:41:04.786 Option max-data-age = 35
2019-09-06 17:41:04.786 Option vdl-logging = yes
2019-09-06 17:41:04.817 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ae941881d136662365aef9192c1fc21dx000.xml: 8693 bytes
2019-09-06 17:41:04.817 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ae941881d136662365aef9192c1fc21dx000.xml: 47 ms
2019-09-06 17:41:04.879 Update progress: [I19463] Syncing product IDE568 LATEST path=
2019-09-06 17:41:04.942 Update progress: [I19463] Syncing product IDE569 LATEST path=
2019-09-06 17:41:04.942 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9bebc12e9bcbce4fdfc1296d8efbf45dx000.xml: 9341 bytes
2019-09-06 17:41:04.942 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9bebc12e9bcbce4fdfc1296d8efbf45dx000.xml: 47 ms
2019-09-06 17:41:04.942 Update progress: [I19463] Product download size 57460 bytes
2019-09-06 17:41:05.098 Update progress: [I19463] Syncing product IDE570 LATEST path=
2019-09-06 17:41:05.129 Installing updates...
2019-09-06 17:41:05.472 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-09-06 17:41:06.081 Machine ID: 579f43be82c84f0fa2f172a06634a063
2019-09-06 17:41:06.081 Component SVRTcli.exe version 2.7.0
2019-09-06 17:41:06.081 Component control.dll version 2.7.0
2019-09-06 17:41:06.081 Component SVRTservice.exe version 2.7.0
2019-09-06 17:41:06.081 Component engine\osdp.dll version 1.44.1.2461
2019-09-06 17:41:06.081 Component engine\veex.dll version 3.77.1.2461
2019-09-06 17:41:06.081 Component engine\savi.dll version 9.0.15.2461
2019-09-06 17:41:06.081 Component rkdisk.dll version 1.5.33.1
2019-09-06 17:41:06.081 Version info: Product version 2.7.0
2019-09-06 17:41:06.081 Version info: Detection engine 3.77.1
2019-09-06 17:41:06.081 Version info: Detection data 5.66
2019-09-06 17:41:06.081 Version info: Build date 30.7.2019
2019-09-06 17:41:06.081 Version info: Data files added 256
2019-09-06 17:41:06.081 Version info: Last successful update 5.9.2019 21:52:25
2019-09-06 17:41:06.081 Error level 1
2019-09-06 17:41:06.783 Update successful
2019-09-06 17:41:13.631 Option all = no
2019-09-06 17:41:13.631 Option recurse = yes
2019-09-06 17:41:13.631 Option archive = no
2019-09-06 17:41:13.631 Option service = yes
2019-09-06 17:41:13.631 Option confirm = yes
2019-09-06 17:41:13.631 Option sxl = yes
2019-09-06 17:41:13.631 Option max-data-age = 35
2019-09-06 17:41:13.631 Option vdl-logging = yes
2019-09-06 17:41:14.364 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-09-06 17:41:14.364 Machine ID: 579f43be82c84f0fa2f172a06634a063
2019-09-06 17:41:14.364 Component SVRTcli.exe version 2.7.0
2019-09-06 17:41:14.364 Component control.dll version 2.7.0
2019-09-06 17:41:14.364 Component SVRTservice.exe version 2.7.0
2019-09-06 17:41:14.364 Component engine\osdp.dll version 1.44.1.2461
2019-09-06 17:41:14.364 Component engine\veex.dll version 3.77.1.2461
2019-09-06 17:41:14.364 Component engine\savi.dll version 9.0.15.2461
2019-09-06 17:41:14.364 Component rkdisk.dll version 1.5.33.1
2019-09-06 17:41:14.364 Version info: Product version 2.7.0
2019-09-06 17:41:14.364 Version info: Detection engine 3.77.1
2019-09-06 17:41:14.364 Version info: Detection data 5.66
2019-09-06 17:41:14.364 Version info: Build date 30.7.2019
2019-09-06 17:41:14.364 Version info: Data files added 259
2019-09-06 17:41:14.364 Version info: Last successful update 6.9.2019 19:41:06

2019-09-06 19:46:43.177 >>> Virus 'Mal/VMProtBad-A' found in file C:\old disc\Euro Truck Simulator 2\bin\win_x86\steam_api.dll
2019-09-06 19:46:54.972 >>> Virus 'Mal/VMProtBad-A' found in file C:\old disc\Hitman Absolution\buddha.dll
2019-09-06 19:49:26.241 Could not open C:\pagefile.sys
2019-09-06 19:59:15.100 >>> Virus 'Mal/Generic-S' found in file C:\Program Files\Sniper Elite 4\stp-se4dx12.exe
2019-09-06 19:59:15.100 >>> Virus 'Mal/Generic-S' found in file C:\Users\Public\Desktop\Sniper Elite 4 (DirectX 12).lnk
2019-09-06 20:35:45.644 >>> Virus 'Mal/VMProtBad-A' found in file C:\Program Files (x86)\PAYDAY 2 Ultimate Edition\steam_api.dll
2019-09-06 20:47:26.126 >>> Virus 'Mal/VMProtBad-A' found in file C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\buddha.dll
2019-09-06 20:54:20.612 Could not open C:\System Volume Information\{0036470c-d007-11e9-91c1-1c1b0d94907a}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-09-06 20:54:20.613 Could not open C:\System Volume Information\{003647bd-d007-11e9-91c1-1c1b0d94907a}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-09-06 20:54:20.613 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-09-06 20:54:20.613 Could not open C:\System Volume Information\{5a767770-cbbf-11e9-a71c-1c1b0d94907a}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-09-06 20:54:20.614 Could not open C:\System Volume Information\{95de5ad0-cb59-11e9-a1d7-1c1b0d94907a}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-09-06 20:54:20.614 Could not open C:\System Volume Information\{fd336f8c-cb1c-11e9-9b64-1c1b0d94907a}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-09-06 21:22:01.956 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2019-09-06 21:22:01.972 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2019-09-06 21:22:06.340 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2019-09-06 21:22:06.340 Could not open C:\Windows\System32\config\RegBack\SAM
2019-09-06 21:22:06.340 Could not open C:\Windows\System32\config\RegBack\SECURITY
2019-09-06 21:22:06.340 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2019-09-06 21:22:06.340 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2019-09-06 21:44:19.344 >>> Virus 'Mal/VMProtBad-A' found in file Z:\old disc\Euro Truck Simulator 2\bin\win_x86\steam_api.dll
2019-09-06 21:44:27.019 >>> Virus 'Mal/VMProtBad-A' found in file Z:\old disc\Hitman Absolution\buddha.dll
2019-09-06 23:53:11.122 The following items will be cleaned up:
2019-09-06 23:53:11.122 Mal/VMProtBad-A
2019-09-06 23:53:11.122 Mal/Generic-S

>RogueKiller:

RogueKiller Anti-Malware V13.4.3.0 (x64) [Aug 20 2019] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
Started in : Normal mode
User : ?t?pán [Administrator]
Started from : C:\Users\?t?pán\Desktop\RogueKiller_portable64.exe
Signatures : 20190906_085515, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2019/09/07 07:56:41 (Duration : 00:16:22)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[Suspicious.Path (Potentially Malicious)] ALSysIO (0) -- \??\C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> O23 - Services
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ALSysIO -- C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys (missing) -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ALSysIO -- C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys (missing) -> Found
>>>>>> O87 - Firewall
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{D86E5E0A-1877-486F-8A18-67967EE366CF}C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe|Name=fivem_gtaprocess.exe|Desc=fivem_gtaprocess.exe|Defer=User| (C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe) -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{5588A99F-8FBF-41E5-84A4-78753979D4B9}C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe|Name=fivem_gtaprocess.exe|Desc=fivem_gtaprocess.exe|Defer=User| (C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe) -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{D86E5E0A-1877-486F-8A18-67967EE366CF}C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe|Name=fivem_gtaprocess.exe|Desc=fivem_gtaprocess.exe|Defer=User| (C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe) -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{5588A99F-8FBF-41E5-84A4-78753979D4B9}C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe|Name=fivem_gtaprocess.exe|Desc=fivem_gtaprocess.exe|Defer=User| (C:\users\?t?pán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe) -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.HackTool (Potentially Malicious)] (folder) AutoKMS -- C:\Windows\AutoKMS -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39999
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Sekání pc

Příspěvekod jaro3 » 08 zář 2019 20:45

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- klikni na „Start Scan“. V novém okně nic neměň a klikni dole na „Start Scan“,
po jeho skončení - vše zatrhni (dej zatržítka vlevo od nálezů , do bílých políček)
- pak klikni na "Remove Selected"
- Počkej, dokud Status box nezobrazí " Removal finished, please review result "
- Klikni na "Open report " a pak na " Open TXT“ a zkopíruj ten log a vlož obsah té zprávy prosím sem. Log je možno nalézt v C:\ProgramData\RogueKiller\Logs - Zavři RogueKiller.

Vypni antivir i firewall.
Stáhni Zoek.exe
http://download.bleepingcomputer.com/smeenk/zoek.exe

Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Můžeš si zatrhnout i vytvoření bodu obnovy:
Klikni na ozubené kolečko , poté na „Skenování“ a zatrhni „vytvářet body obnovy“.
Vrať se zpět ( klikni na domeček).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Další“. Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, objeví se tisková zpráva , zkopíruj sem celý obsah té zprávy.
Jinak můžeš zprávy vidět , když klikneš vpravo nahoře na „ zprávy“.


Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 10 zář 2019 15:52

>RogueKiller:


RogueKiller Anti-Malware V13.4.3.0 (x64) [Aug 20 2019] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits
Started in : Normal mode
User : ?t?pán [Administrator]
Started from : C:\Users\?t?pán\Desktop\RogueKiller_portable64.exe
Signatures : 20190909_143442, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2019/09/09 17:55:05 (Duration : 00:19:13)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

>Zoek:

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Štěpán on po 09.09.2019 at 18:20:45,31.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Štěpán\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

9.9.2019 18:25:18 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\TeamSpeak 3 Client deleted successfully
C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
C:\Users\Štěpán\AppData\Roaming\Opera Software deleted successfully
C:\Users\Štěpán\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Štěpán\AppData\Roaming\Ubisoft deleted successfully
C:\Users\Anežka\AppData\Local\VirtualStore deleted successfully
C:\Users\Štěpán\AppData\Local\AviraSpeedup deleted successfully
C:\Users\Štěpán\AppData\Local\Opera Software deleted successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\CrashDumps deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\TPN~1\AppData\Roaming\TomTom\HOME\Profiles\u4h0dnor.default\prefs.js:

Added to C:\Users\TPN~1\AppData\Roaming\TomTom\HOME\Profiles\u4h0dnor.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\TPN~1\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\prefs.js:

Added to C:\Users\TPN~1\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\TeamSpeak 3 Client not found
C:\Users\Štěpán\AppData\Roaming\Visual Studio Setup deleted
C:\windows\SysNative\Tasks\AviraSystemSpeedupUpdate deleted
C:\Users\Štěpán\.android deleted
C:\82ace7d6-0197-474d-bf4b-a2043e72329b deleted
C:\Users\Štěpán\AppData\Roaming\FC29FA0894FE.ini deleted
C:\Users\Štěpán\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Safer-Networking.log deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Štěpán\AppData\Local\Unity deleted
C:\Users\Štěpán\AppData\Local\WonderShare deleted
C:\Users\Štěpán\AppData\LocalLow\Unity deleted
C:\windows\SysNative\GroupPolicy\adm deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Windows\Syswow64\GroupPolicy\adm deleted
C:\Windows\Syswow64\GroupPolicy\gpt.ini deleted
"C:\Windows\Installer\a83ae.msi" deleted
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\oobelibMkey.log" not deleted

==== Orphaned Tasks deleted from Registry ======================

AviraSystemSpeedupUpdate deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\TPN~1\AppData\Roaming\TomTom\HOME\Profiles\u4h0dnor.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\TPN~1\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\TPN~1\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default
- Undetermined - %ProfilePath%\extensions\abs@avira.com
- Undetermined - %ProfilePath%\extensions\passwordmanager@avira.com
- Segurana do navegador Avira - %ProfilePath%\extensions\abs@avira.com.xpi

==== Firefox Plugins ======================


==== Chromium Look ======================

Google Chrome Version: 76.0.3809.132

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
caljgklbbfbcjjanaijlacgncafpegll - No path found[]
flliilndjeohchalpbbcdekjklbdgfkk - No path found[]
ipmkfpcnmccejididiaagpgchgjfajgp - No path found[]

Avira Password Manager - Anežka\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll
Chrome Media Router - Anežka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
Audiotool - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk
Avira Password Manager - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll
uBlockâ‚€ - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm
Virtual Piano Black - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjagcpcbacoaogfljhglghpjhkmmfeeo
Fair Ads - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\gagfkmknmijppikpcikmbbkdkhggcmge
Until AM Web App - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk
ButtonBass Player Piano - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkmkonkgohgomnnkaclbiammkcjenfdi
BIODIGITAL HUMAN - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\meefjekipolcgabfgaclcpdkbghhmoah
Chrome Media Router - Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - No_Url_Value
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02

==== Reset Google Chrome ======================

C:\Users\Anežka\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Anežka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Anežka\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Anežka\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\844847A95347DA941B578027295CA2E2 deleted successfully
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A748448-7435-49AD-B175-087292C52A2E} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Avira System Speedup_is1 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\844847A95347DA941B578027295CA2E2 deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Anežka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Štěpán\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Štěpán\Desktop\Portrait Professional Studio v10.9.3 Portable ML_RUS\Portrait Professional Studio 10.9\%Internet Cache%\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Anežka\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2013 folders=924 1887155560 bytes)

==== Empty Temp Folders ======================

C:\Users\Anežka\AppData\Local\Temp emptied successfully
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Štěpán\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Reset Hosts File ======================

Hosts File Reset Successfully

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\TPN~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\oobelibMkey.log" not deleted

==== EOF on po 09.09.2019 at 19:27:03,44 ======================

>Zemana:

Informace o kontroly
Název produktu    :  Zemana AntiMalware
Stav kontroly    :  Dokončena
Datum kontroly    :  9.9.2019 19:39:46
Typ kontroly    :  Inteligentní kontrola
Čas trvání    :  00:00:41
Zkontrolované objekty    :  1672
Zjištěné objekty    :  0
Vyloučené objekty    :  0
Automatické odesílání    :  Ano
Operační systém    :  Windows 7 x64
Procesor    :  8X Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Režim systému BIOS    :  Legacy
Informace o doméně    :  WORKGROUP,False,NetSetupWorkgroupName
CUID    :  12783FA69163684A3831CE

>ComboFix:

ComboFix 18-08-08.01 - Štěpán 09.09.2019 20:34:03.2.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16339.13106 [GMT 2:00]
Spuštěný z: c:\users\Štěpán\Desktop\ComboFix.exe
AV: Avira Antivirus *Disabled/Updated* {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Malwarebytes *Disabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Avira Antivirus *Disabled/Updated* {0897D159-75B7-14C4-2E4A-2FC449B26D32}
SP: Malwarebytes *Disabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\programdata\08537E688A.sys
c:\programdata\ntuser.pol
c:\users\Štěpán\AppData\Roaming\Microsoft\Windows\Recent\Lockwood.mat
.
Nakažená kopie c:\windows\SysWow64\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\erdnt\cache86\userinit.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_AdobeUpdateService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2019-08-09 do 2019-09-09 )))))))))))))))))))))))))))))))
.
.
2019-09-09 16:26 . 2019-09-09 17:57 -------- d-----w- c:\windows\system32\drivers\etc
2019-09-09 16:20 . 2019-09-09 17:01 -------- d-----w- C:\zoek_backup
2019-09-08 07:18 . 2019-09-08 07:18 -------- d-----w- c:\users\Anežka\AppData\Local\mbamtray
2019-09-07 05:56 . 2019-09-07 06:37 -------- d-----w- c:\programdata\RogueKiller
2019-09-06 18:40 . 2019-09-06 18:40 -------- d-----w- c:\users\Štěpán\AppData\Roaming\ESTsoft
2019-09-06 18:40 . 2019-09-06 18:40 -------- d-----w- c:\program files (x86)\ESTsoft
2019-09-06 18:40 . 2019-09-06 18:40 -------- d-----w- c:\programdata\ESTsoft
2019-09-05 19:50 . 2019-09-05 19:50 -------- d-----w- c:\programdata\Sophos
2019-09-05 19:49 . 2019-09-05 19:49 -------- d-----w- c:\program files (x86)\Sophos
2019-09-05 18:31 . 2019-09-05 18:33 -------- d-----w- c:\program files\Core Temp
2019-09-05 18:06 . 2019-09-05 18:06 199768 ----a-w- c:\windows\system32\drivers\MbamChameleon.sys
2019-09-05 18:06 . 2019-01-08 14:32 153328 ----a-w- c:\windows\system32\drivers\mbae64.sys
2019-09-05 18:06 . 2019-09-05 18:06 -------- d-----w- c:\programdata\Malwarebytes
2019-09-05 18:06 . 2019-09-05 18:06 -------- d-----w- c:\program files\Malwarebytes
2019-09-05 17:58 . 2019-09-05 17:59 -------- d-----w- C:\AdwCleaner
2019-09-02 15:30 . 2019-09-02 15:34 -------- d-----w- c:\users\Anežka\AppData\Local\Avira
2019-09-01 13:27 . 2019-09-01 13:27 -------- d-----w- c:\users\Štěpán\AppData\Local\CEF
2019-08-31 08:15 . 2019-08-04 03:38 950784 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2019-08-31 08:14 . 2019-07-13 08:14 334848 ----a-w- c:\windows\system32\sipnotify.exe
2019-08-30 12:53 . 2019-02-16 05:32 142336 ----a-w- c:\windows\system32\poqexec.exe
2019-08-30 12:53 . 2019-02-16 05:30 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2019-08-30 10:07 . 2019-08-30 10:08 -------- d-----w- c:\windows\SysWow64\GPBAK
2019-08-30 10:07 . 2008-04-14 00:11 295936 ----a-w- c:\windows\SysWow64\appmgr.dll
2019-08-30 09:24 . 2019-09-09 15:54 -------- d-----w- c:\users\Štěpán\AppData\Local\CrashDumps
2019-08-30 09:18 . 2019-09-04 20:44 -------- d-----w- c:\users\Štěpán\AppData\Local\Adobe
2019-08-30 09:17 . 2019-08-30 09:17 -------- d-----w- c:\programdata\IObit
2019-08-30 09:17 . 2019-08-30 09:17 -------- d-----w- c:\program files (x86)\IObit
2019-08-30 09:02 . 2019-08-30 09:02 -------- d-----w- c:\users\Štěpán\AppData\Local\mbam
2019-08-30 08:59 . 2019-08-30 12:07 -------- d-----w- c:\users\Štěpán\AppData\Local\Avira
2019-08-30 08:43 . 2019-08-30 08:49 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2019-08-30 08:43 . 2019-08-30 11:55 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2019-08-19 17:18 . 2019-08-30 19:29 -------- d-----w- c:\users\Štěpán\AppData\Roaming\.minecraft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2019-09-08 09:24 . 2016-02-22 19:49 218552 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2019-09-08 09:24 . 2016-02-22 19:49 176816 ----a-w- c:\windows\system32\drivers\avipbb.sys
2019-09-02 08:18 . 2016-01-08 13:34 842296 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2019-09-02 08:18 . 2016-01-08 13:34 175160 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2019-08-30 15:17 . 2016-08-03 11:49 134272480 -c--a-w- c:\windows\system32\MRT.exe
2019-08-02 21:31 . 2017-10-14 15:27 26792 ------w- c:\windows\gdrv.sys
2019-08-02 18:59 . 2019-08-02 18:59 27 ----a-w- c:\windows\cli.bat
2019-08-02 18:59 . 2019-08-02 18:59 1691752 ----a-w- c:\windows\rstcli.exe
2019-08-02 18:23 . 2019-08-02 18:20 32600 ------w- c:\windows\gdrv2.sys
2019-07-30 02:20 . 2019-08-31 08:15 345600 ----a-w- c:\windows\system32\schannel.dll
2019-07-30 02:20 . 2019-08-31 08:15 190464 ----a-w- c:\windows\system32\rpchttp.dll
2019-07-30 02:16 . 2019-08-31 08:15 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2019-07-30 02:16 . 2019-08-31 08:15 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2019-07-30 02:15 . 2019-08-31 08:16 44544 ----a-w- c:\windows\apppatch\acwow64.dll
2019-07-13 18:41 . 2019-07-13 18:41 151552 ----a-w- c:\windows\SysWow64\nvRegDev.dll
2019-07-13 18:41 . 2019-07-13 18:41 61440 ----a-w- c:\windows\SysWow64\nvPhotoshopUtil.dll
2019-07-13 18:41 . 2019-07-13 18:41 40960 ----a-w- c:\windows\SysWow64\nvISWOW64.dll
2019-07-11 11:59 . 2019-07-10 14:46 3140 --sha-w- c:\programdata\KGyGaAvL.sys
2019-06-17 18:00 . 2017-06-20 09:51 68152 ----a-w- c:\windows\system32\drivers\avdevprot.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Avira SystrayStartTrigger"="c:\program files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe" [2019-08-27 227648]
"Avira System Speedup User Starter"="c:\program files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe" [2019-09-04 331016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"PreRun"="c:\program files (x86)\GIGABYTE\AppCenter\PreRun.exe" [2016-02-26 14632]
"DualBiosRescue"="c:\program files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe" [2015-08-19 12096]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"shell"= explorer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideSCAHealth"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSecurityTab"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R1 UsbCharger;UsbCharger;c:\windows\system32\DRIVERS\UsbCharger.sys;c:\windows\SYSNATIVE\DRIVERS\UsbCharger.sys [x]
R2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\Antivirus\avmailc7.exe;c:\program files (x86)\Avira\Antivirus\avmailc7.exe [x]
R2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\Antivirus\avwebg7.exe;c:\program files (x86)\Avira\Antivirus\avwebg7.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 GamingApp_Service;GamingApp_Service;c:\program files (x86)\MSI\Gaming APP\GamingApp_Service.exe;c:\program files (x86)\MSI\Gaming APP\GamingApp_Service.exe [x]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe ;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
R2 OcButtonService;OcButtonService;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [x]
R2 WsAppService;Wondershare Application Framework Service;c:\program files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe;c:\program files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\program files (x86)\EasyAntiCheat\EasyAntiCheat.exe;c:\program files (x86)\EasyAntiCheat\EasyAntiCheat.exe [x]
R3 GoogleChromeElevationService;Google Chrome Elevation Service;c:\program files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe;c:\program files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe [x]
R3 HwmRecordService;Hardware Monitor Record service;c:\program files (x86)\GIGABYTE\SIV\HwmRecordService.exe;c:\program files (x86)\GIGABYTE\SIV\HwmRecordService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 INETMON;INETMON;c:\windows\System32\Drivers\INETMON.sys;c:\windows\SYSNATIVE\Drivers\INETMON.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 phantomtap;Phantom TAP-Windows Adapter V9;c:\windows\system32\DRIVERS\phantomtap.sys;c:\windows\SYSNATIVE\DRIVERS\phantomtap.sys [x]
R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\qcusbser.sys;c:\windows\SYSNATIVE\DRIVERS\qcusbser.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VSStandardCollectorService150;Visual Studio Standard Collector Service 150;c:\program files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe;c:\program files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 wdm_usb;wdm_usb;c:\windows\system32\DRIVERS\usb2ser.sys;c:\windows\SYSNATIVE\DRIVERS\usb2ser.sys [x]
R3 WSDScan;Podpora skenování WSD přes UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Device Service;c:\windows\system32\DRIVERS\XtuAcpiDriver.sys;c:\windows\SYSNATIVE\DRIVERS\XtuAcpiDriver.sys [x]
R4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
R4 nvvhci;NVVHCI Enumerator Service;c:\windows\system32\DRIVERS\nvvhci.sys;c:\windows\SYSNATIVE\DRIVERS\nvvhci.sys [x]
R4 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S0 avdevprot;avdevprot;c:\windows\system32\DRIVERS\avdevprot.sys;c:\windows\SYSNATIVE\DRIVERS\avdevprot.sys [x]
S0 avusbflt;avusbflt;c:\windows\System32\Drivers\avusbflt.sys;c:\windows\SYSNATIVE\Drivers\avusbflt.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 amsdk;AMSDK Driver;c:\windows\system32\drivers\amsdk.sys;c:\windows\SYSNATIVE\drivers\amsdk.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 BfLwf;Killer Bandwidth Control;c:\windows\system32\DRIVERS\bflwfx64.sys;c:\windows\SYSNATIVE\DRIVERS\bflwfx64.sys [x]
S1 ESProtectionDriver;Malwarebytes Anti-Exploit;c:\windows\system32\drivers\mbae64.sys;c:\windows\SYSNATIVE\drivers\mbae64.sys [x]
S2 AGMService;Adobe Genuine Monitor Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [x]
S2 AGSService;Adobe Genuine Software Integrity Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\Antivirus\sched.exe;c:\program files (x86)\Avira\Antivirus\sched.exe [x]
S2 Avira.ServiceHost;Avira Service Host;c:\program files (x86)\Avira\Launcher\Avira.ServiceHost.exe;c:\program files (x86)\Avira\Launcher\Avira.ServiceHost.exe [x]
S2 AviraOptimizerHost;Avira Optimizer Host;c:\program files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe;c:\program files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [x]
S2 AviraPhantomVPN;Avira Phantom VPN;c:\program files (x86)\Avira\VPN\Avira.VpnService.exe;c:\program files (x86)\Avira\VPN\Avira.VpnService.exe [x]
S2 AviraUpdaterService;Avira Updater Service;c:\program files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe;c:\program files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 EasyTuneEngineService;EasyTune Engine;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [x]
S2 gadjservice;GIGABYTE Adjust;c:\program files (x86)\GIGABYTE\AppCenter\AdjustService.exe;c:\program files (x86)\GIGABYTE\AppCenter\AdjustService.exe [x]
S2 GamingHotkey_Service;GamingHotkey_Service;c:\program files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe;c:\program files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [x]
S2 Gservice;Gservice;c:\program files (x86)\GIGABYTE\GService\GCloud.exe;c:\program files (x86)\GIGABYTE\GService\GCloud.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.exe [x]
S2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc);c:\program files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe;c:\program files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Killer Service V2;Killer Service V2;c:\program files\Killer Networking\Network Manager\KillerService.exe;c:\program files\Killer Networking\Network Manager\KillerService.exe [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 MSI_ActiveX_Service;MSI_ActiveX_Service;c:\program files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe;c:\program files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [x]
S2 MSI_LiveUpdate_Service;MSI Live Update Service;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super Charger\ChargeService.exe;c:\program files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 MSI_Trigger_Service;MSI_Trigger_Service;c:\program files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe;c:\program files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [x]
S2 MSIREGISTER_MR;MSIREGISTER_MR;c:\msi\MSIRegister\MSIRegisterService.exe;c:\msi\MSIRegister\MSIRegisterService.exe [x]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [x]
S2 NvTelemetryContainer;NVIDIA Telemetry Container;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [x]
S2 Origin Web Helper Service;Origin Web Helper Service;c:\program files (x86)\Origin\OriginWebHelperService.exe;c:\program files (x86)\Origin\OriginWebHelperService.exe [x]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe;c:\program files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 gdrv2;gdrv2;c:\windows\gdrv2.sys;c:\windows\gdrv2.sys [x]
S3 I2cHkBurn;I2cHkBurn;c:\windows\system32\drivers\I2cHkBurn.sys;c:\windows\SYSNATIVE\drivers\I2cHkBurn.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 KillerEth;NDIS Miniport Driver for Killer PCI-E Gigabit Ethernet Controller;c:\windows\system32\DRIVERS\e2xw7x64.sys;c:\windows\SYSNATIVE\DRIVERS\e2xw7x64.sys [x]
S3 MBAMFarflt;MBAMFarflt;c:\windows\system32\DRIVERS\farflt.sys;c:\windows\SYSNATIVE\DRIVERS\farflt.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 MBAMWebProtection;MBAMWebProtection;c:\windows\system32\DRIVERS\mwac.sys;c:\windows\SYSNATIVE\DRIVERS\mwac.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - ESPROTECTIONDRIVER
*NewlyCreated* - MBAMFARFLT
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MBAMWEBPROTECTION
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
c:\program files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe [BU]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
2010-11-05 01:57 444752 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2017-09-26 00:52 491600 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2017-09-26 00:52 491600 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2017-09-26 00:52 491600 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2017-06-29 9228800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\Smart Backup\RPMKickstartEx.exe" [2014-04-01 2320384]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xportovat do Microsoft Excelu - c:\progra~2\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {{d8f67242-b229-4065-95fa-391b077ed6ca} - {d8f67242-b229-4065-95fa-391b077ed6ca} - mscoree.dll
TCP: DhcpNameServer = 192.168.0.1
Handler: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - c:\windows\System32\mscoree.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{1db45392-716a-490d-9b3e-2d96adbb5ab0} - c:\programdata\Package Cache\{1db45392-716a-490d-9b3e-2d96adbb5ab0}\Avira.OE.Setup.Bundle.exe
AddRemove-{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642} - c:\programdata\Package Cache\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}\VC_redist.x86.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{3994d355-238a-4612-af93-26d13deddef1} - c:\programdata\Package Cache\{3994d355-238a-4612-af93-26d13deddef1}\vcredist_x86.exe
AddRemove-{5fb2083a-f3cc-4b78-93ff-bd9788b5de01} - c:\programdata\Package Cache\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}\VC_redist.x64.exe
AddRemove-{5fe95b9d-9219-4d8b-a031-71323ae48a81} - c:\programdata\Package Cache\{5fe95b9d-9219-4d8b-a031-71323ae48a81}\winsdksetup.exe
AddRemove-{6195c203-b53c-4bb7-983a-6070a902e704} - c:\programdata\Package Cache\{6195c203-b53c-4bb7-983a-6070a902e704}\winsdksetup.exe
AddRemove-{c6c5a357-c7ca-4a5f-9789-3bb1af579253} - c:\programdata\Package Cache\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}\LauncherPrereqSetup_x64.exe
AddRemove-{c7f54569-0018-439c-809a-48046a4d4ebc} - c:\programdata\Package Cache\{c7f54569-0018-439c-809a-48046a4d4ebc}\SetupChipset.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
AddRemove-{ce5280a9-88d6-42e4-90bc-8399a3f94460} - c:\programdata\Package Cache\{ce5280a9-88d6-42e4-90bc-8399a3f94460}\dotnet-sdk-2.1.503-win-x64.exe
AddRemove-{d491dd9d-2eda-4d75-b504-1a201436e7fd} - c:\programdata\Package Cache\{d491dd9d-2eda-4d75-b504-1a201436e7fd}\vcredist_x64.exe
AddRemove-{f65db027-aff3-4070-886a-0d87064aabb1} - c:\programdata\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.20"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\Antivirus\avguard.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
c:\program files (x86)\MSI\Gaming APP\GamingHotkey.exe
c:\program files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
c:\program files (x86)\GIGABYTE\SIV\thermald.exe
c:\program files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
c:\program files (x86)\Avira\Antivirus\avgnt.exe
c:\program files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
c:\program files (x86)\Bloody6\Bloody6\Bloody6.exe
c:\program files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe
c:\program files (x86)\GIGABYTE\AppCenter\ApCent.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
c:\program files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
.
**************************************************************************
.
Celkový čas: 2019-09-09 21:05:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2019-09-09 19:05
.
Před spuštěním: Volných bajtů: 1 066 801 942 528
Po spuštění: Volných bajtů: 1 066 452 987 904
.
- - End Of File - - 120F20B070827291D78F78029A58CF75
A36C5E4F47E84449FF07ED3517B43A31

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39999
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Sekání pc

Příspěvekod jaro3 » 10 zář 2019 19:38

Spybot - Search & Destroy bych odinstaloval..

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::
KillAll::
RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.20"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)



Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 10 zář 2019 22:53

>CF:

ComboFix 18-08-08.01 - Štěpán 10.09.2019 22:34:48.4.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16339.12925 [GMT 2:00]
Spuštěný z: c:\users\Őtýpßn\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Őtýpßn\Desktop\CFScript.txt
AV: Avira Antivirus *Disabled/Updated* {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Malwarebytes *Disabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Avira Antivirus *Disabled/Updated* {0897D159-75B7-14C4-2E4A-2FC449B26D32}
SP: Malwarebytes *Disabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2019-08-10 do 2019-09-10 )))))))))))))))))))))))))))))))
.
.
2019-09-10 20:44 . 2019-09-10 20:44 -------- d-----w- c:\users\Public\AppData\Local\temp
2019-09-10 20:44 . 2019-09-10 20:44 -------- d-----w- c:\users\Štěpán\AppData\Local\temp
2019-09-10 20:44 . 2019-09-10 20:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2019-09-10 20:44 . 2019-09-10 20:44 -------- d-----w- c:\users\Anežka\AppData\Local\temp
2019-09-10 18:45 . 2019-09-10 18:45 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2019-09-10 13:58 . 2019-09-10 15:25 -------- d-----w- c:\users\Štěpán\AppData\Local\BitTorrentHelper
2019-09-10 12:57 . 2019-09-10 12:57 224408 ----a-w- c:\windows\system32\drivers\farflt.sys
2019-09-10 12:57 . 2019-09-10 12:57 106344 ----a-w- c:\windows\system32\drivers\mwac.sys
2019-09-10 12:55 . 2019-09-10 12:55 275232 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2019-09-09 17:31 . 2019-09-09 17:31 -------- d-----w- c:\users\Štěpán\AppData\Local\Zemana
2019-09-09 17:31 . 2019-09-09 17:31 -------- d-----w- c:\program files (x86)\Zemana
2019-09-09 17:31 . 2019-09-09 17:31 232792 ----a-w- c:\windows\system32\drivers\amsdk.sys
2019-09-09 17:30 . 2019-09-10 13:50 -------- d-----w- c:\users\Štěpán\AppData\Local\AMSDK
2019-09-09 17:11 . 2014-02-13 21:59 24064 ----a-w- c:\windows\zoek-delete.exe
2019-09-09 17:11 . 2019-09-10 20:44 -------- d-----w- c:\users\Štěpán\AppData\Local\Temp
2019-09-09 16:26 . 2019-09-09 17:57 -------- d-----w- c:\windows\system32\drivers\etc
2019-09-09 16:20 . 2019-09-09 17:01 -------- d-----w- C:\zoek_backup
2019-09-08 07:18 . 2019-09-08 07:18 -------- d-----w- c:\users\Anežka\AppData\Local\mbamtray
2019-09-07 05:56 . 2019-09-07 06:37 -------- d-----w- c:\programdata\RogueKiller
2019-09-06 18:40 . 2019-09-06 18:40 -------- d-----w- c:\users\Štěpán\AppData\Roaming\ESTsoft
2019-09-06 18:40 . 2019-09-06 18:40 -------- d-----w- c:\program files (x86)\ESTsoft
2019-09-06 18:40 . 2019-09-06 18:40 -------- d-----w- c:\programdata\ESTsoft
2019-09-05 19:50 . 2019-09-05 19:50 -------- d-----w- c:\programdata\Sophos
2019-09-05 19:49 . 2019-09-05 19:49 -------- d-----w- c:\program files (x86)\Sophos
2019-09-05 18:31 . 2019-09-05 18:33 -------- d-----w- c:\program files\Core Temp
2019-09-05 18:06 . 2019-09-05 18:06 199768 ----a-w- c:\windows\system32\drivers\MbamChameleon.sys
2019-09-05 18:06 . 2019-01-08 14:32 153328 ----a-w- c:\windows\system32\drivers\mbae64.sys
2019-09-05 18:06 . 2019-09-05 18:06 -------- d-----w- c:\programdata\Malwarebytes
2019-09-05 18:06 . 2019-09-05 18:06 -------- d-----w- c:\program files\Malwarebytes
2019-09-05 17:58 . 2019-09-05 17:59 -------- d-----w- C:\AdwCleaner
2019-09-02 15:30 . 2019-09-02 15:34 -------- d-----w- c:\users\Anežka\AppData\Local\Avira
2019-09-01 13:27 . 2019-09-01 13:27 -------- d-----w- c:\users\Štěpán\AppData\Local\CEF
2019-08-31 08:15 . 2019-08-04 03:38 950784 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2019-08-31 08:14 . 2019-07-13 08:14 334848 ----a-w- c:\windows\system32\sipnotify.exe
2019-08-30 12:53 . 2019-02-16 05:32 142336 ----a-w- c:\windows\system32\poqexec.exe
2019-08-30 12:53 . 2019-02-16 05:30 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2019-08-30 10:07 . 2019-08-30 10:08 -------- d-----w- c:\windows\SysWow64\GPBAK
2019-08-30 10:07 . 2008-04-14 00:11 295936 ----a-w- c:\windows\SysWow64\appmgr.dll
2019-08-30 09:24 . 2019-09-09 15:54 -------- d-----w- c:\users\Štěpán\AppData\Local\CrashDumps
2019-08-30 09:18 . 2019-09-04 20:44 -------- d-----w- c:\users\Štěpán\AppData\Local\Adobe
2019-08-30 09:17 . 2019-08-30 09:17 -------- d-----w- c:\programdata\IObit
2019-08-30 09:17 . 2019-08-30 09:17 -------- d-----w- c:\program files (x86)\IObit
2019-08-30 09:02 . 2019-08-30 09:02 -------- d-----w- c:\users\Štěpán\AppData\Local\mbam
2019-08-30 08:59 . 2019-08-30 12:07 -------- d-----w- c:\users\Štěpán\AppData\Local\Avira
2019-08-19 17:18 . 2019-08-30 19:29 -------- d-----w- c:\users\Štěpán\AppData\Roaming\.minecraft
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2019-09-08 09:24 . 2016-02-22 19:49 218552 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2019-09-08 09:24 . 2016-02-22 19:49 176816 ----a-w- c:\windows\system32\drivers\avipbb.sys
2019-09-02 08:18 . 2016-01-08 13:34 842296 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2019-09-02 08:18 . 2016-01-08 13:34 175160 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2019-08-30 15:17 . 2016-08-03 11:49 134272480 -c--a-w- c:\windows\system32\MRT.exe
2019-08-02 21:31 . 2017-10-14 15:27 26792 ------w- c:\windows\gdrv.sys
2019-08-02 18:59 . 2019-08-02 18:59 27 ----a-w- c:\windows\cli.bat
2019-08-02 18:59 . 2019-08-02 18:59 1691752 ----a-w- c:\windows\rstcli.exe
2019-08-02 18:23 . 2019-08-02 18:20 32600 ------w- c:\windows\gdrv2.sys
2019-07-30 02:20 . 2019-08-31 08:15 345600 ----a-w- c:\windows\system32\schannel.dll
2019-07-30 02:20 . 2019-08-31 08:15 190464 ----a-w- c:\windows\system32\rpchttp.dll
2019-07-30 02:16 . 2019-08-31 08:15 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2019-07-30 02:16 . 2019-08-31 08:15 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2019-07-30 02:15 . 2019-08-31 08:16 44544 ----a-w- c:\windows\apppatch\acwow64.dll
2019-07-13 18:41 . 2019-07-13 18:41 151552 ----a-w- c:\windows\SysWow64\nvRegDev.dll
2019-07-13 18:41 . 2019-07-13 18:41 61440 ----a-w- c:\windows\SysWow64\nvPhotoshopUtil.dll
2019-07-13 18:41 . 2019-07-13 18:41 40960 ----a-w- c:\windows\SysWow64\nvISWOW64.dll
2019-07-11 11:59 . 2019-07-10 14:46 3140 --sha-w- c:\programdata\KGyGaAvL.sys
2019-06-24 19:23 . 2019-06-24 19:26 1351248 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Win10SDK_10.0.17763,version=10.0.17763.2\winsdksetup.exe
2019-06-24 19:23 . 2019-06-24 19:26 38696 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Win10SDK_10.0.17763,version=10.0.17763.2\WinSdkInstaller.exe
2019-06-24 19:22 . 2019-06-24 19:22 7194312 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Microsoft.VisualC.Redist.12,version=12.0.30501.1,chip=x64\vcredist_x64.exe
2019-06-24 19:22 . 2019-06-24 19:22 6503984 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Microsoft.VisualC.Redist.12,version=12.0.30501,chip=x86\vcredist_x86.exe
2019-06-24 19:22 . 2019-06-24 19:22 145896176 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Microsoft.Net.Core.SDK.2.1,version=15.9.28307.272,chip=x64\dotnet-sdk-2.1.503-win-x64.exe
2019-06-24 19:22 . 2019-06-24 19:22 83943272 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Microsoft.Net.4.7.2.FullRedist,version=4.7.3062.2\dotNetFxLatest-x86-x64-AllOS-ENU.exe
2019-06-24 19:22 . 2019-06-24 19:22 5715464 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\Microsoft.Net.4.7.2.FullRedist.Resources,version=4.7.3062.2,language=cs-CZ\dotNetFxLatest-x86-x64-AllOS-csy.exe
2019-06-24 19:17 . 2019-02-23 18:45 1285720 ----a-w- c:\programdata\Microsoft\VisualStudio\Packages\_bootstrapper\vs_bootstrapper.exe
2019-06-17 18:00 . 2017-06-20 09:51 68152 ----a-w- c:\windows\system32\drivers\avdevprot.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Avira SystrayStartTrigger"="c:\program files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe" [2019-08-27 227648]
"Avira System Speedup User Starter"="c:\program files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe" [2019-09-04 331016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"PreRun"="c:\program files (x86)\GIGABYTE\AppCenter\PreRun.exe" [2016-02-26 14632]
"DualBiosRescue"="c:\program files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe" [2015-08-19 12096]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"shell"= explorer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideSCAHealth"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSecurityTab"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R1 UsbCharger;UsbCharger;c:\windows\system32\DRIVERS\UsbCharger.sys;c:\windows\SYSNATIVE\DRIVERS\UsbCharger.sys [x]
R2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\Antivirus\avmailc7.exe;c:\program files (x86)\Avira\Antivirus\avmailc7.exe [x]
R2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\Antivirus\avwebg7.exe;c:\program files (x86)\Avira\Antivirus\avwebg7.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe ;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
R2 OcButtonService;OcButtonService;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [x]
R2 WsAppService;Wondershare Application Framework Service;c:\program files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe;c:\program files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\program files (x86)\EasyAntiCheat\EasyAntiCheat.exe;c:\program files (x86)\EasyAntiCheat\EasyAntiCheat.exe [x]
R3 GoogleChromeElevationService;Google Chrome Elevation Service;c:\program files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe;c:\program files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe [x]
R3 HwmRecordService;Hardware Monitor Record service;c:\program files (x86)\GIGABYTE\SIV\HwmRecordService.exe;c:\program files (x86)\GIGABYTE\SIV\HwmRecordService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 INETMON;INETMON;c:\windows\System32\Drivers\INETMON.sys;c:\windows\SYSNATIVE\Drivers\INETMON.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 phantomtap;Phantom TAP-Windows Adapter V9;c:\windows\system32\DRIVERS\phantomtap.sys;c:\windows\SYSNATIVE\DRIVERS\phantomtap.sys [x]
R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\qcusbser.sys;c:\windows\SYSNATIVE\DRIVERS\qcusbser.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 VSStandardCollectorService150;Visual Studio Standard Collector Service 150;c:\program files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe;c:\program files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 wdm_usb;wdm_usb;c:\windows\system32\DRIVERS\usb2ser.sys;c:\windows\SYSNATIVE\DRIVERS\usb2ser.sys [x]
R3 WSDScan;Podpora skenování WSD přes UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Device Service;c:\windows\system32\DRIVERS\XtuAcpiDriver.sys;c:\windows\SYSNATIVE\DRIVERS\XtuAcpiDriver.sys [x]
R4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
R4 nvvhci;NVVHCI Enumerator Service;c:\windows\system32\DRIVERS\nvvhci.sys;c:\windows\SYSNATIVE\DRIVERS\nvvhci.sys [x]
R4 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S0 avdevprot;avdevprot;c:\windows\system32\DRIVERS\avdevprot.sys;c:\windows\SYSNATIVE\DRIVERS\avdevprot.sys [x]
S0 avusbflt;avusbflt;c:\windows\System32\Drivers\avusbflt.sys;c:\windows\SYSNATIVE\Drivers\avusbflt.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 amsdk;AMSDK Driver;c:\windows\system32\drivers\amsdk.sys;c:\windows\SYSNATIVE\drivers\amsdk.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 BfLwf;Killer Bandwidth Control;c:\windows\system32\DRIVERS\bflwfx64.sys;c:\windows\SYSNATIVE\DRIVERS\bflwfx64.sys [x]
S1 ESProtectionDriver;Malwarebytes Anti-Exploit;c:\windows\system32\drivers\mbae64.sys;c:\windows\SYSNATIVE\drivers\mbae64.sys [x]
S2 AGMService;Adobe Genuine Monitor Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [x]
S2 AGSService;Adobe Genuine Software Integrity Service;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe;c:\program files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\Antivirus\sched.exe;c:\program files (x86)\Avira\Antivirus\sched.exe [x]
S2 Avira.ServiceHost;Avira Service Host;c:\program files (x86)\Avira\Launcher\Avira.ServiceHost.exe;c:\program files (x86)\Avira\Launcher\Avira.ServiceHost.exe [x]
S2 AviraOptimizerHost;Avira Optimizer Host;c:\program files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe;c:\program files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [x]
S2 AviraPhantomVPN;Avira Phantom VPN;c:\program files (x86)\Avira\VPN\Avira.VpnService.exe;c:\program files (x86)\Avira\VPN\Avira.VpnService.exe [x]
S2 AviraUpdaterService;Avira Updater Service;c:\program files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe;c:\program files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 EasyTuneEngineService;EasyTune Engine;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe;c:\program files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [x]
S2 gadjservice;GIGABYTE Adjust;c:\program files (x86)\GIGABYTE\AppCenter\AdjustService.exe;c:\program files (x86)\GIGABYTE\AppCenter\AdjustService.exe [x]
S2 GamingApp_Service;GamingApp_Service;c:\program files (x86)\MSI\Gaming APP\GamingApp_Service.exe;c:\program files (x86)\MSI\Gaming APP\GamingApp_Service.exe [x]
S2 GamingHotkey_Service;GamingHotkey_Service;c:\program files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe;c:\program files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [x]
S2 Gservice;Gservice;c:\program files (x86)\GIGABYTE\GService\GCloud.exe;c:\program files (x86)\GIGABYTE\GService\GCloud.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service;c:\windows\system32\igfxCUIService.exe;c:\windows\SYSNATIVE\igfxCUIService.exe [x]
S2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc);c:\program files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe;c:\program files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Killer Service V2;Killer Service V2;c:\program files\Killer Networking\Network Manager\KillerService.exe;c:\program files\Killer Networking\Network Manager\KillerService.exe [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 MSI_ActiveX_Service;MSI_ActiveX_Service;c:\program files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe;c:\program files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [x]
S2 MSI_LiveUpdate_Service;MSI Live Update Service;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe;c:\program files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super Charger\ChargeService.exe;c:\program files (x86)\MSI\Super Charger\ChargeService.exe [x]
S2 MSI_Trigger_Service;MSI_Trigger_Service;c:\program files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe;c:\program files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [x]
S2 MSIREGISTER_MR;MSIREGISTER_MR;c:\msi\MSIRegister\MSIRegisterService.exe;c:\msi\MSIRegister\MSIRegisterService.exe [x]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe;c:\program files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [x]
S2 NvTelemetryContainer;NVIDIA Telemetry Container;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe;c:\program files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [x]
S2 Origin Web Helper Service;Origin Web Helper Service;c:\program files (x86)\Origin\OriginWebHelperService.exe;c:\program files (x86)\Origin\OriginWebHelperService.exe [x]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe;c:\program files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 gdrv2;gdrv2;c:\windows\gdrv2.sys;c:\windows\gdrv2.sys [x]
S3 I2cHkBurn;I2cHkBurn;c:\windows\system32\drivers\I2cHkBurn.sys;c:\windows\SYSNATIVE\drivers\I2cHkBurn.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 KillerEth;NDIS Miniport Driver for Killer PCI-E Gigabit Ethernet Controller;c:\windows\system32\DRIVERS\e2xw7x64.sys;c:\windows\SYSNATIVE\DRIVERS\e2xw7x64.sys [x]
S3 MBAMFarflt;MBAMFarflt;c:\windows\system32\DRIVERS\farflt.sys;c:\windows\SYSNATIVE\DRIVERS\farflt.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 MBAMWebProtection;MBAMWebProtection;c:\windows\system32\DRIVERS\mwac.sys;c:\windows\SYSNATIVE\DRIVERS\mwac.sys [x]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys;c:\program files (x86)\MSI\Super Charger\NTIOLib_X64.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - ESPROTECTIONDRIVER
*NewlyCreated* - MBAMFARFLT
*NewlyCreated* - MBAMPROTECTION
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MBAMWEBPROTECTION
*Deregistered* - MBAMProtection
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
c:\program files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe [BU]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
2010-11-05 01:57 444752 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2017-09-26 00:52 491600 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2017-09-26 00:52 491600 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2017-09-26 00:52 491600 ----a-w- c:\program files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2017-06-29 9228800]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\Smart Backup\RPMKickstartEx.exe" [2014-04-01 2320384]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xportovat do Microsoft Excelu - c:\progra~2\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {{d8f67242-b229-4065-95fa-391b077ed6ca} - {d8f67242-b229-4065-95fa-391b077ed6ca} - mscoree.dll
TCP: DhcpNameServer = 192.168.0.1
Handler: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - c:\windows\System32\mscoree.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{1db45392-716a-490d-9b3e-2d96adbb5ab0} - c:\programdata\Package Cache\{1db45392-716a-490d-9b3e-2d96adbb5ab0}\Avira.OE.Setup.Bundle.exe
AddRemove-{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642} - c:\programdata\Package Cache\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}\VC_redist.x86.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{3994d355-238a-4612-af93-26d13deddef1} - c:\programdata\Package Cache\{3994d355-238a-4612-af93-26d13deddef1}\vcredist_x86.exe
AddRemove-{5fb2083a-f3cc-4b78-93ff-bd9788b5de01} - c:\programdata\Package Cache\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}\VC_redist.x64.exe
AddRemove-{5fe95b9d-9219-4d8b-a031-71323ae48a81} - c:\programdata\Package Cache\{5fe95b9d-9219-4d8b-a031-71323ae48a81}\winsdksetup.exe
AddRemove-{6195c203-b53c-4bb7-983a-6070a902e704} - c:\programdata\Package Cache\{6195c203-b53c-4bb7-983a-6070a902e704}\winsdksetup.exe
AddRemove-{c6c5a357-c7ca-4a5f-9789-3bb1af579253} - c:\programdata\Package Cache\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}\LauncherPrereqSetup_x64.exe
AddRemove-{c7f54569-0018-439c-809a-48046a4d4ebc} - c:\programdata\Package Cache\{c7f54569-0018-439c-809a-48046a4d4ebc}\SetupChipset.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
AddRemove-{ce5280a9-88d6-42e4-90bc-8399a3f94460} - c:\programdata\Package Cache\{ce5280a9-88d6-42e4-90bc-8399a3f94460}\dotnet-sdk-2.1.503-win-x64.exe
AddRemove-{d491dd9d-2eda-4d75-b504-1a201436e7fd} - c:\programdata\Package Cache\{d491dd9d-2eda-4d75-b504-1a201436e7fd}\vcredist_x64.exe
AddRemove-{f65db027-aff3-4070-886a-0d87064aabb1} - c:\programdata\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_20_0_0_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_228_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_20_0_0_228_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.20"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_20_0_0_228.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2019-09-10 22:47:44
ComboFix-quarantined-files.txt 2019-09-10 20:47
ComboFix2.txt 2019-09-10 09:16
.
Před spuštěním: Volných bajtů: 1 050 686 431 232
Po spuštění: Volných bajtů: 1 050 594 467 840
.
- - End Of File - - DB14662B6AE7B71937ED1A4BDFE9B030
A36C5E4F47E84449FF07ED3517B43A31

>HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:49:25, on 10.9.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19431)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files (x86)\CrystalDiskInfo\DiskInfo32.exe
C:\Users\Štěpán\Desktop\hijackthis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: AviraBrowserSafety.BrowserSafety - {c3c77255-42c0-499f-b664-6e981a0b1647} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKLM\..\RunOnce: [PreRun] C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe
O4 - HKLM\..\RunOnce: [DualBiosRescue] C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Avira Browser Safety - {d8f67242-b229-4065-95fa-391b077ed6ca} - mscoree.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: abs - {E00957BD-D0E1-4EB9-A025-7743FDC8B27B} - mscoree.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\cFosSpeed\spd.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: EasyTune Engine (EasyTuneEngineService) - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GIGABYTE Adjust (gadjservice) - Unknown owner - C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: GamingHotkey_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Hardware Monitor Record service (HwmRecordService) - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSIREGISTER_MR - Micro-Star INT'L CO., LTD. - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service: MSI_ActiveX_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: OcButtonService - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Smart TimeLock Service (Smart TimeLock) - Gigabyte Technology CO., LTD. - C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe (file missing)

--
End of file - 14599 bytes

Hastrbusy
nováček
Příspěvky: 15
Registrován: září 19
Pohlaví: Muž

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 10 zář 2019 22:53

>CDI:

----------------------------------------------------------------------------
CrystalDiskInfo 8.3.0 (C) 2008-2019 hiyohiyo
Crystal Dew World: https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium SP1 [6.1 Build 7601] (x64)
Date : 2019/09/10 22:51:08

-- Controller Map ----------------------------------------------------------
+ Intel(R) 100 Series/C230 Chipset Family SATA AHCI Controller [ATA]
- ST350041 3AS SCSI Disk Device
- ST2000DM 006-2DM164 SCSI Disk Device
- ST500LM0 12 HN-M500MBB SCSI Disk Device
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]

-- Disk List ---------------------------------------------------------------
(1) ST3500413AS : 500,1 GB [0/0/0, pd1] - st
(2) ST2000DM006-2DM164 : 2000,3 GB [1/0/0, pd1] - st
(3) ST500LM012 HN-M500MBB : 500,1 GB [2/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST3500413AS
----------------------------------------------------------------------------
Model : ST3500413AS
Firmware : JC4B
Serial Number : Z2A7CTV6
Disk Size : 500,1 GB (8,4/137,4/500,1/----)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 28745 hod.
Power On Count : 7810 krát
Temperature : 31 C (87 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : D000h [OFF]
Drive Letter : D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 117 _99 __6 0000099D5A8D Počet chyb čtení
03 100 100 __0 000000000000 Čas na roztočení ploten
04 _92 _92 _20 000000002089 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _90 _60 _30 000038A51DA4 Počet chybných hledání
09 _68 _68 __0 000000007049 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _93 _93 _20 000000001E82 Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 00000000000D Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _69 _46 _45 00002017001F Teplota toku vzduchu
C2 _31 _54 __0 00110000001F Teplota
C3 _21 _19 __0 0000099D5A8D Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000002 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 D2990000B68D Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000890CD37E Total Host Writes
F2 100 253 __0 0000EF184BD7 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A32 4137 4354 5636
020: 0000 8000 0004 4A43 3442 2020 2020 5354 3335 3030
030: 3431 3341 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0006 0048 0048
080: 01F0 0029 346B 7F01 4163 3469 BC01 4163 407F 0027
090: 0027 0000 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 0000 0000 5000 C500
110: 357A 1B05 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 6030
130: 3A38 6030 3A38 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 004F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 3F00 9800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 0FA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 75 63 8D 5A 9D 09 00 00 00 03 03
010: 00 64 64 00 00 00 00 00 00 00 04 32 00 5C 5C 89
020: 20 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 5A 3C A4 1D A5 38 00 00 00 09 32
040: 00 44 44 49 70 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 5D 5D 82 1E 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 63 0D 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 45 2E 1F 00 17 20 00 00 00 C2 22 00 1F 36 1F
0B0: 00 00 00 11 00 00 C3 1A 00 15 13 8D 5A 9D 09 00
0C0: 00 00 C5 12 00 64 64 00 00 00 00 00 00 00 C6 10
0D0: 00 64 64 00 00 00 00 00 00 00 C7 3E 00 C8 C8 02
0E0: 00 00 00 00 00 00 F0 00 00 64 FD 8D B6 00 00 99
0F0: D2 14 F1 00 00 64 FD 7E D3 0C 89 00 00 00 F2 00
100: 00 64 FD D7 4B 18 EF 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 50 02 00 7B
170: 03 00 01 00 01 4F 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 29 01 00 00 01 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 A2 2D 18 76 22 5E 00 00
1B0: 00 00 00 00 01 00 88 02 7E D3 0C 89 F3 85 03 00
1C0: D7 4B 18 EF 6A 37 25 00 00 00 00 00 FF FF FF FF
1D0: 00 00 00 04 00 00 00 00 CE 03 00 00 15 00 05 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0B0: 00 00 00 00 00 00 C3 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 F0 00 00 00 00 00 00 00 00 00
0F0: 00 00 F1 00 00 00 00 00 00 00 00 00 00 00 F2 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60

----------------------------------------------------------------------------
(2) ST2000DM006-2DM164
----------------------------------------------------------------------------
Model : ST2000DM006-2DM164
Firmware : CC26
Serial Number : Z4ZB3X0L
Disk Size : 2000,3 GB (8,4/137,4/2000,3/----)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 3907029168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 1762 hod.
Power On Count : 965 krát
Temperature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 119 _99 __6 00000CF5C5A8 Počet chyb čtení
03 _96 _96 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 0000000003C7 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 _78 _60 _30 0000045FC071 Počet chybných hledání
09 _98 _98 __0 0000000006E2 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 0000000003C5 Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _68 _53 _45 000021180020 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000001 Počet vypnutí disku
C1 100 100 __0 0000000003EC Počet cyklů načítání/vymazání
C2 _32 _47 __0 001200000020 Teplota
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 A3F40000071A Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0003921376E6 Total Host Writes
F2 100 253 __0 005B4A18032D Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A34 5A42 3358 304C
020: 0000 0000 0004 4343 3236 2020 2020 5354 3230 3030
030: 444D 3030 362D 3244 4D31 3634 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 5010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0006 00CC 004C
080: 03F0 001F 346B 7D69 4163 3469 BC49 4163 407F 006A
090: 006A 8080 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 88B0 E8E0 0000 0000 0000 0000 6003 0000 5000 C500
110: B0CE 4388 0000 0000 0000 0000 0000 0000 0000 405E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 88B0
130: E8E0 88B0 E8E0 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 8000 0000 0000 5800 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 1085 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0007 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 ACA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 77 63 A8 C5 F5 0C 00 00 00 03 03
010: 00 60 60 00 00 00 00 00 00 00 04 32 00 64 64 C7
020: 03 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 4E 3C 71 C0 5F 04 00 00 00 09 32
040: 00 62 62 E2 06 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 64 64 C5 03 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 64 00 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 44 35 20 00 18 21 00 00 00 BF 32 00 64 64 00
0B0: 00 00 00 00 00 00 C0 32 00 64 64 01 00 00 00 00
0C0: 00 00 C1 32 00 64 64 EC 03 00 00 00 00 00 C2 22
0D0: 00 20 2F 20 00 00 00 12 00 00 C5 12 00 64 64 00
0E0: 00 00 00 00 00 00 C6 10 00 64 64 00 00 00 00 00
0F0: 00 00 C7 3E 00 C8 C8 00 00 00 00 00 00 00 F0 00
100: 00 64 FD 1A 07 00 00 F4 A3 09 F1 00 00 64 FD E6
110: 76 13 92 03 00 00 F2 00 00 64 FD 2D 03 18 4A 5B
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 61 00 00 73
170: 03 00 01 00 01 DE 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 07 04 04 04 04 04 04 04
190: 04 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 1A B4 F7 59 C5 05 00 00
1B0: 00 00 00 00 01 00 12 54 E6 76 13 92 03 00 00 00
1C0: 2D 03 18 4A 5B 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 D3 21 00 00 05 00 00 00
1E0: 00 00 00 00 90 01 01 00 00 00 00 00 00 00 00 02
1F0: 00 00 00 00 00 00 00 00 00 00 14 18 00 00 00 2C

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0B0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0C0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0E0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0F0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 F0 00
100: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
110: 00 00 00 00 00 00 F2 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 FD

----------------------------------------------------------------------------
(3) ST500LM012 HN-M500MBB
----------------------------------------------------------------------------
Model : ST500LM012 HN-M500MBB
Firmware : 2BA30001
Serial Number : S2ZYJ9FG900519
Disk Size : 500,1 GB (8,4/137,4/500,1/----)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3795 hod.
Power On Count : 2919 krát
Temperature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0080h [OFF]
AAM Level : FE00h [OFF]
Drive Letter : E: Z:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000014 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _94 _90 _25 00000000072D Čas na roztočení ploten
04 _97 _97 __0 000000000E76 Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 000000000ED3 Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000004 Počet pokusů o překalibrování
0C _98 _98 __0 000000000B67 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000014 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000006 Počet vypnutí disku
C2 _64 _54 __0 00300011001B Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 00000000043E Počet chyb při zápisu sektorů
DF 100 100 __0 000000000004 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 _90 _90 __0 0000000191E8 Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5332 5A59 4A39 4647 3930 3035 3139 2020 2020 2020
020: 0000 8000 0004 3242 4133 3030 3031 5354 3530 304C
030: 4D30 3132 2048 4E2D 4D35 3030 4D42 4220 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0000
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1D0E 0006 004C 004C
080: 01FF 0028 746B 7F69 6123 7469 BC41 6123 407F 0033
090: 0033 0080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5000 4CF2
110: 109C F419 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 0FA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 14 00 00 00 00 00 00 02 26
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 5E 5A 2D
020: 07 00 00 00 00 00 04 32 00 61 61 76 0E 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 D3 0E 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 64 64 04 00 00 00 00 00 00 0C 32 00 62 62 67
080: 0B 00 00 00 00 00 BF 22 00 64 64 14 00 00 00 00
090: 00 00 C0 22 00 64 64 06 00 00 00 00 00 00 C2 02
0A0: 00 40 36 1B 00 11 00 30 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 C8 C8 00
0E0: 00 00 00 00 00 00 C8 2A 00 64 64 3E 04 00 00 00
0F0: 00 00 DF 32 00 64 64 04 00 00 00 00 00 00 E1 32
100: 00 5A 5A E8 91 01 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 D8 18 00 5B
170: 03 00 01 00 02 6A 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2B

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 16 hostů