[Active] Affected virus & General maintaince

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-11-2020
Ran by Work (19-11-2020 10:14:03)
Running from C:\Users\Work\Downloads
Windows 10 Home Single Language Version 1909 18363.1198 (X64) (2020-05-28 04:05:07)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-818102952-3989389655-2488786305-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-818102952-3989389655-2488786305-503 - Limited - Disabled)
Guest (S-1-5-21-818102952-3989389655-2488786305-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-818102952-3989389655-2488786305-504 - Limited - Disabled)
Work (S-1-5-21-818102952-3989389655-2488786305-1002 - Administrator - Enabled) => C:\Users\Work
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\uTorrent) (Version: 3.5.5.45828 - BitTorrent Inc.)
Ablebits Ultimate Suite for Microsoft Excel, Business edition (HKLM-x32\...\{937042E0-F999-470E-9CF3-33EF2A88BD65}) (Version: 20.1.2424.506 - Ablebits)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0) (Version: 22.0.0.35 - Adobe Inc.)
Calibration Update Wizard (HKLM-x32\...\{5A03CEC0-8805-11D4-ADFB-00000EFB3A77}) (Version: 8.28.0 - Toyota Diagnostics)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
DiCE Usb Driver x64 (HKLM\...\{8184D5CE-0373-4D39-AF8B-A4F4E79FB3B3}) (Version: 6.2.1 - SETEK AB)
DiCE x64 (HKLM\...\{9A986480-FF6D-45D1-A0F7-96DA75A99C17}) (Version: 6.2.0 - SETEK AB)
Dropbox (HKLM-x32\...\Dropbox) (Version: 110.4.458 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.377.1 - Dropbox, Inc.) Hidden
EPS Rewrite (HKLM-x32\...\{9E9973A5-7514-4E94-A544-D74B0EB6F5A5}) (Version: 5.05 - Bosch Automotive Service Solutions Ltd)
Free Cam 8 (HKLM-x32\...\{31FACC6B-2EB0-4092-B715-FE8B8916A967}) (Version: 8.7.27159 - iSpring Solutions Inc.)
Google Chrome (HKLM\...\{1575766F-DF02-3577-BF97-708857783AE6}) (Version: 86.0.4240.198 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
IGdm 3.0.1 (HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\1ead4f81-c61a-5fa6-9e81-7a8c0c868952) (Version: 3.0.1 - ifedapo olarewaju)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{ACA5CFAC-9E99-4764-A7AD-AF5CF3FA15BF}) (Version: 17.0.2.1076 - Intel Corporation)
J2534 Rewrite (HKLM-x32\...\{3D42119A-259B-4897-85AF-52A0C01D79A7}) (Version: 1.00.0034 - Honda Motor Co.,Ltd.)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.34.82 - Logitech)
Malwarebytes version 4.2.3.96 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.3.96 - Malwarebytes)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.69 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.12527.21330 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{471AAD2C-9078-4DAC-BD43-FA10FB7C3FCE}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{48B08845-0CB0-45EC-893C-15319ADDA312}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.51.2500.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Minimal ADB and Fastboot version 1.4.3 (HKLM-x32\...\{B561660D-8B3C-491D-9E3E-293F14FCAADA}_is1) (Version: 1.4.3 - Samuel Rodberg)
Mozilla Firefox 81.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 81.0.1 (x64 en-US)) (Version: 81.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 76.0.1 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
New EPC Disc1 with Application (HKLM-x32\...\{61FE8BE4-5DF8-41CF-88A2-17B28E0420A6}) (Version: Disc1 - Honda)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.6 - Notepad++ Team)
NVIDIA Graphics Driver 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.21330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21330 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12527.20988 - Microsoft Corporation) Hidden
PuTTY release 0.73 (64-bit) (HKLM\...\{44F7642C-AB7E-4468-B028-E8D08A0CBB0E}) (Version: 0.73.0.0 - Simon Tatham)
RDM Control Object (HKLM-x32\...\RDM Control Object) (Version: - ) Hidden
RDM USB Driver (HKLM-x32\...\RDM USB Driver) (Version: - ) Hidden
RDMSOService (HKLM-x32\...\RDMSOService) (Version: - ) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8656 - Realtek Semiconductor Corp.)
Service Pack 1 for SQL Server 2008 R2 (KB2528583) (HKLM-x32\...\KB2528583) (Version: 10.51.2500.0 - Microsoft Corporation)
Service Pack 3 for SQL Server 2008 R2 (KB2979597) (64-bit) (HKLM\...\KB2979597) (Version: 10.53.6000.34 - Microsoft Corporation)
SQL Server 2008 R2 SP1 Common Files (HKLM-x32\...\{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Common Files (HKLM-x32\...\{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Services (HKLM-x32\...\{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Services (HKLM-x32\...\{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Shared (HKLM-x32\...\{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP1 Database Engine Shared (HKLM-x32\...\{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}) (Version: 10.51.2500.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{93998800-1608-403F-9A51-420A77D23C25}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.10.5 - TeamViewer)
Techstream Software (HKLM-x32\...\{7A102E6B-2167-4B68-A43A-C95988B38F59}) (Version: 14.20.019 - DENSO CORPORATION) Hidden
Techstream Software (HKLM-x32\...\{937CA58A-0212-431C-8F0B-0D8305225476}) (Version: 14.20.019 - DENSO CORPORATION)
Telegram Desktop version 2.4.7 (HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.4.7 - Telegram FZ-LLC)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Windows Driver Package - SETEK AB (DiceUsb) DiCE Hardware (01/31/2011 6.1.7600.16385) (HKLM\...\90CA2A751CBC97E97ADE0B901D402F47AE953B42) (Version: 01/31/2011 6.1.7600.16385 - SETEK AB)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Wondershare Filmora X(Build 10.0.0.94) (HKLM\...\Wondershare Filmora X_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Zoom (HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\ZoomUMX) (Version: 5.4.1 (58698.1027) - Zoom Video Communications, Inc.)
Packages:
=========
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2970.0_x64__8j3eq9eme6ctt [2020-11-16] (INTEL CORP) [Startup Task]
Killer Control Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_1.6.2166.0_x64__rh07ty8m5nkag [2020-05-27] (Rivet Networks LLC)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-07-02] (NVIDIA Corp.)
Waves MaxxAudio Pro for Dell -> C:\Program Files\WindowsApps\WavesAudio.WavesMaxxAudioProforDell_1.1.131.0_x64__fh4rh281wavaa [2020-05-27] (Waves Audio)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{035DC084-07E4-357D-B1B2-EC2765D25EA7}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{07AEC45E-BE60-3F70-9022-D0824CA75B3E}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{0D96C74F-EB37-31C6-AECE-97B897C56838}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{11A877C6-9211-3F25-AAA8-D5001B1A1304}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Work\AppData\Local\Microsoft\OneDrive\20.052.0311.0011\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{1CFC812C-582D-3A53-BFB8-C0AB4F32FFE8}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{2421FA1A-517A-3D35-BBFA-B53E79F69424}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{30E6D2B0-28E4-35B8-A728-43ECB2F90550}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{35E97C8C-28CC-36B5-89BB-9C19D78C9300}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{379424B5-24C8-3688-8580-2473C2AD580D}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{3D617CE6-C7CF-4B1D-86B4-00000000000F}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{41DC3786-C793-3391-9D0F-6A9B34DCAB01}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{47F24829-D92D-3953-9D42-F0B1BC0C2D0C}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{4E04B3F1-9FA0-3602-8477-E656C0459F01}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{4F5C8DC4-EB8C-3F8B-9807-8233C08FC868}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{52378D76-2CCF-354A-9DB9-29F81AB9B947}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{53DF92C5-B91D-39F7-BCD7-724013082BDC}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{54503A82-5AE6-3BAF-92FE-0B49A431F63D}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{5892C67A-EEF0-3B36-844E-883FDF5CF9D1}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{5A709FB2-A96F-3E8B-A0B7-EB4853B4577E}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{5C07B259-F7F3-3E4F-B5C9-E30BCA8C56FD}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{5C8934F4-54E1-3A08-9614-ED0F7ED00628}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{6ED11C7C-4A23-3260-BA7F-84557AF99356}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{7316CCD0-2101-3542-961B-64AD6CCD2DBB}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{7AA3AD1B-225F-36F2-B254-4F9220C321AC}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{8B660B4C-CC6F-31C1-A7AA-1E6F0077972C}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{8D2E6C55-5C7B-346E-8D05-486CD5B8588B}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{9B889B10-97DD-32F3-AD62-0EE049C6279B}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{A67E7655-418F-3171-88A6-00C2DF2D7488}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{B4D2E01C-0000-BBBB-BD32-BB93B5A90B2E}\localserver32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsLoader.exe (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{BE994F23-6D44-3DB0-91B5-858F942FB2CA}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{C03A4D57-1E7C-3387-894E-34FB6634500A}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{D526CD80-D358-3ACC-8CE5-883CBCF18A38}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{D84B46AA-F4AB-34FB-A4F8-D250A74490B1}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{DA7A4CF5-12D1-3E08-9BCF-80310807E0A8}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{DFEE3A2E-94B5-3B33-9DB2-0CD56F119088}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{E21496B9-6681-30A9-84ED-8240CB67FDF4}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Work\Desktop\Dropbox\Dropbox [2020-05-27 16:37]
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{E7341923-C265-3B12-A0CF-A34ACE859F84}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{E88567B9-5B70-30D3-9DD4-03DE240FD305}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{E9F75B6D-65D8-3D2A-B551-C3D7F1322F5C}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{ED3934E1-B80E-3C22-AC0D-8CC7BB972945}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{EE40B9FE-BDBB-38C1-BBE2-4645F1858682}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{EEADD6A9-70B6-31B9-88DB-CF6A195234F9}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{EFF29247-1A75-37BB-A240-1AE6CF96E15D}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
CustomCLSID: HKU\S-1-5-21-818102952-3989389655-2488786305-1002_Classes\CLSID\{FE61CC4F-A063-355D-BF78-5EA4231D014A}\InprocServer32 -> C:\Users\Work\AppData\Local\Ablebits\Ultimate Suite for Microsoft Excel\1D68519866096FF\AblebitsUltimateSuite.DLL (4Bits Ltd. -> Ablebits)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-04-21] (Notepad++ -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_6cd15b1bcbca91ac\nvshext.dll [2020-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2017-08-13 08:49 - 2017-08-13 08:49 - 003664184 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
2017-08-13 08:49 - 2017-08-13 08:49 - 000291128 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\WINDOWS\System32\StartMenuHelper64.dll
2020-07-06 07:45 - 2020-07-06 07:45 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.DLL
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData:iSpring Solutions [128]
AlternateDataStreams: C:\Users\All Users:iSpring Solutions [128]
AlternateDataStreams: C:\ProgramData\Application Data:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Work\Application Data:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Work\AppData\Roaming:iSpring Solutions [128]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-818102952-3989389655-2488786305-1002 -> DefaultScope {705EA9C9-62D3-4347-87F7-E9BE2DFA6B9F} URL =
SearchScopes: HKU\S-1-5-21-818102952-3989389655-2488786305-1002 -> {705EA9C9-62D3-4347-87F7-E9BE2DFA6B9F} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\honda-eu.com -> hxxps://w3.ecom.honda-eu.com
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\honda.ca -> honda.ca
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\honda.co.jp -> hxxps://biz.honda.co.jp
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\honda.com -> hxxps://biz.hm.jp.honda.com
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\medium-truck.net -> medium-truck.net
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\ondemand5.com -> ondemand5.com
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\repair-connect.net -> repair-connect.net
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\shopkey5.com -> shopkey5.com
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\tractor-trailer.net -> tractor-trailer.net
IE trusted site: HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\vintage.mitchell1.com -> vintage.mitchell1.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 15:31 - 2020-11-13 09:42 - 000001302 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 support.wondershare.net
127.0.0.1 platform.wondershare.com
127.0.0.1 api.wondershare.com
127.0.0.1 account.wondershare.com
127.0.0.1 useroperation.wondershare.com
127.0.0.1 helper-stats.wondershare.com
127.0.0.1 cbs.wondershare.com
127.0.0.1 www.cbs.wondershare.com
127.0.0.1 www.wondershare.com
127.0.0.1 www.cbs.wondershare.com
127.0.0.1 www.cbs.wondershare.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\PuTTY\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\ProgramData\CAM Commerce Solutions\X-Charge\Application;c:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;c:\Program Files (x86)\Microsoft SQL Server\100\DTS\Binn\
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "GTS-API Process.lnk"
HKLM\...\StartupApproved\StartupFolder: => "1006fix.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerProgramData"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\StartupApproved\Run: => "utweb"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{7B37B245-2EB8-4006-9B85-28D252404C2C}] => (Allow) C:\Users\Work\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{03366803-6632-4351-948B-E7A606BFC7DB}] => (Allow) C:\Users\Work\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{06591DD6-0BB8-460D-A05F-ADECFF016823}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3C01809D-FCB1-453F-88F4-81B1734B1C8A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{18FA5F92-703B-4F8C-A493-96FC7585736F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FA373413-EDC7-4002-82F3-161D85238031}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{335E87A8-FEBE-453B-B057-E0CCDC388192}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F409FEDC-4005-4E51-B681-94426EBDEEC1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AFA2CDB8-BB27-43DE-ACAE-2BA5AC6B9A06}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E83B72C9-52C0-4509-8CC5-F1996F12190A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D9C764E8-03BB-405A-B8CE-BFEE84B45285}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8127BE41-4A93-4949-9F8B-A6526303C749}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0AD31405-C13C-4376-A1AD-FD6B4D66E42E}] => (Allow) C:\Program Files (x86)\Bosch\Immobilizer Setup Tool\GRADE-X Runtime_orig.exe => No File
FirewallRules: [{14652718-80FB-435A-B47E-DF7C2314164F}] => (Allow) C:\Program Files (x86)\Bosch\Immobilizer Setup Tool\GRADE-X Runtime_orig.exe => No File
FirewallRules: [{7B2BB86F-0CDA-4F3D-8AEE-14B3881B6020}] => (Allow) C:\Program Files (x86)\Bosch\Immobilizer Setup Tool\GRADE-X Runtime_orig.exe => No File
FirewallRules: [{9FC2C309-049D-4304-B887-DA707C00F6E1}] => (Allow) C:\Program Files (x86)\Bosch\Immobilizer Setup Tool\GRADE-X Runtime_orig.exe => No File
FirewallRules: [{29A33A24-DE30-4B9D-9D0E-066D784EEB4D}] => (Allow) C:\Program Files (x86)\Bosch\Immobilizer Setup Tool\GRADE-X Runtime_orig.exe => No File
FirewallRules: [{57F6B8D6-6FCC-4AA9-9DA1-0757672A6FE9}] => (Allow) C:\Program Files (x86)\Bosch\Immobilizer Setup Tool\GRADE-X Runtime_orig.exe => No File
FirewallRules: [{88202DC6-3058-4B94-B428-8A36C79BA3F8}] => (Allow) C:\Program Files\Teradyne\HIP Rewrite\HipRewriteApp.exe => No File
FirewallRules: [{0AD5C560-04DC-4B13-B9C1-41268D8B20A3}] => (Allow) C:\Program Files\Teradyne\HIP Rewrite\HipRewriteApp.exe => No File
FirewallRules: [{D50D0F9E-A7DA-43F6-92C4-2BFA52440A83}] => (Allow) C:\Windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F63DDD5C-0EE5-451B-A5BD-30ABACB4D88D}] => (Allow) C:\Windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{42E28B83-0394-46B6-9C97-1B09E2A7A230}] => (Block) C:\Program Files (x86)\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{7AFF2220-AFE1-494D-8506-A63DFAFBA97B}] => (Block) C:\Program Files (x86)\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{06EF69CC-6EC0-4A0C-AA07-DF3504691A47}] => (Block) C:\Program Files (x86)\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{D0488350-9041-4EAB-BB3F-4AA6D92D22AD}] => (Block) C:\Program Files (x86)\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{7D6C6EEC-0F0A-467C-AD91-FBFA7D5CB62B}] => (Block) C:\Program Files (x86)\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{8EEA62E9-A58B-4879-925E-62E94F8BFFBE}] => (Block) C:\Program Files (x86)\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{2FED2616-7E53-42F4-A734-8249844D6293}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5F85A82D-C5CD-4D2E-8676-CBA4B6630467}] => (Allow) LPort=5150
FirewallRules: [{99347FDE-8112-46A5-BB22-28719313F171}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BA453086-D560-4768-A22C-0E1F68DC622B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3B7D25C1-89D1-49F2-B836-B721B93F89F4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B7804D37-2B68-4B6E-AAFB-17BC5CFF6FE5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B3417119-0048-4397-94A9-BE2116AC15A5}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{89F4998F-119A-47D2-93E5-1800313ACED8}] => (Allow) C:\Users\Work\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{52095188-2A8C-4F2E-8322-0547044FFDFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0B667591-2CCB-40A6-A38B-F872E95032D5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Restore Points =========================
19-11-2020 10:10:35 AdwCleaner_BeforeCleaning_19/11/2020_10:10:35
==================== Faulty Device Manager Devices ============
Name: WinDriver
Description: WinDriver
Class Guid: {6402edb3-f0db-44bb-887b-b8d31439b0a2}
Manufacturer: DENSO CORPORATION
Service: WinDriver6
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: WinDriver
Description: WinDriver
Class Guid: {6402edb3-f0db-44bb-887b-b8d31439b0a2}
Manufacturer: DENSO CORPORATION
Service: WinDriver6
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: ========================
Application errors:
==================
Error: (11/19/2020 10:11:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: FreemakeUtilsService.exe, version: 1.0.0.0, time stamp: 0x5faa299f
Faulting module name: KERNELBASE.dll, version: 10.0.18362.1139, time stamp: 0x6a8e6b97
Exception code: 0xe0434352
Fault offset: 0x00114662
Faulting process id: 0xf94
Faulting application start time: 0x01d6be19447c03db
Faulting application path: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 391d66c8-3e16-48f8-9252-bfbd8c5b76ab
Faulting package full name:
Faulting package-relative application ID:
Error: (11/19/2020 10:11:18 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: FreemakeUtilsService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
at FreemakeUtilsService.Program.Main(System.String[])
Error: (11/19/2020 10:10:55 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (11/19/2020 10:10:55 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (11/19/2020 10:08:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: FreemakeUtilsService.exe, version: 1.0.0.0, time stamp: 0x5faa299f
Faulting module name: KERNELBASE.dll, version: 10.0.18362.1139, time stamp: 0x6a8e6b97
Exception code: 0xe0434352
Fault offset: 0x00114662
Faulting process id: 0x1038
Faulting application start time: 0x01d6be18dcf99578
Faulting application path: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 14de9cc8-77d4-4520-bfb2-3acb480ca3ce
Faulting package full name:
Faulting package-relative application ID:
Error: (11/19/2020 10:08:25 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: FreemakeUtilsService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.IO.FileNotFoundException
at FreemakeUtilsService.Program.Main(System.String[])
Error: (11/19/2020 09:56:11 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6596,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (11/19/2020 09:49:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: FreemakeUtilsService.exe, version: 1.0.0.0, time stamp: 0x5faa299f
Faulting module name: KERNELBASE.dll, version: 10.0.18362.1139, time stamp: 0x6a8e6b97
Exception code: 0xe0434352
Fault offset: 0x00114662
Faulting process id: 0x10cc
Faulting application start time: 0x01d6be162a45fbf9
Faulting application path: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 913fa151-f0c6-48a1-9392-016cfff0085d
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (11/19/2020 10:11:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Freemake Improver service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (11/19/2020 10:11:19 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (60000 milliseconds) while waiting for the Freemake Improver service to connect.
Error: (11/19/2020 10:10:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) Capability Licensing Service TCP IP Interface service terminated unexpectedly. It has done this 1 time(s).
Error: (11/19/2020 10:10:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel® SGX AESM service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
Error: (11/19/2020 10:10:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Killer Network Service service terminated unexpectedly. It has done this 1 time(s).
Error: (11/19/2020 10:10:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Modules Installer service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
Error: (11/19/2020 10:10:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The DbxSvc service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
Error: (11/19/2020 10:10:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) Content Protection HECI Service service terminated unexpectedly. It has done this 1 time(s).
Windows Defender:
===================================
Date: 2020-11-18 09:54:57.216
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {4A0F1845-B351-48BA-92AC-15A0F53E4FB2}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-11-16 13:03:45.492
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {D9039FA3-239F-4454-A783-1252DAA9BCD7}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-11-12 23:16:27.736
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {D82721E0-D137-450F-8FE1-A51D9201E160}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-11-10 13:13:19.887
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {A71B7F20-344B-4DB6-BC27-A5E34764FB87}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-11-09 11:03:19.094
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {141C9E6D-08AF-49B7-9E51-D56BB9501960}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2020-11-19 10:03:15.867
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.327.1124.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17600.5
Error code: 0x80070422
Error description: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Date: 2020-10-09 12:47:43.219
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.325.422.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.17500.4
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
CodeIntegrity:
===================================
Date: 2020-09-19 22:42:52.824
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:41:24.728
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:41:23.018
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:41:05.758
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:39:56.188
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:39:56.097
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:39:52.335
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-09-19 22:39:52.246
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.16.2 04/21/2020
Motherboard: Dell Inc. 0D0T05
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 43%
Total physical RAM: 16119.11 MB
Available physical RAM: 9032.96 MB
Total Virtual: 18551.11 MB
Available Virtual: 10114.02 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:455.08 GB) (Free:170.15 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:20.65 GB) (Free:20.6 GB) NTFS
\\?\Volume{e3f680c3-bc9f-42e1-8812-43ed91c2d1a5}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{4eec27d9-936f-423b-a4b6-97e6b1a9d2e2}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS
\\?\Volume{356dd288-f235-406b-899f-2558d3a60e53}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-11-2020
Ran by Work (administrator) on WORK (Dell Inc. XPS 15 9570) (19-11-2020 10:13:18)
Running from C:\Users\Work\Downloads
Loaded Profiles: Work
Platform: Windows 10 Home Single Language Version 1909 18363.1198 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\110.4.458\QtWebEngineProcess.exe <2>
(Greatis Software LLC -> Greatis Software, LLC) C:\Windows\UPDATE\SU10Guard.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_9196e89091d8bdbb\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) pGFX 2020 -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_577475639d32bfed\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d70b02a5a438df3c\GfxDownloadWrapper.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d70b02a5a438df3c\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d70b02a5a438df3c\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_b0ce3b6fbdab301d\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_b0ce3b6fbdab301d\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_99239023b47c777a\RstMwService.exe
(Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <18>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1190_none_1716e3ef2a15f08c\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\NisSrv.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvdm.inf_amd64_6cd15b1bcbca91ac\Display.NvContainer\NVDisplay.Container.exe <2>
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(RDM Corporation -> RDM Corporation) C:\Windows\SysWOW64\RDMSOService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_027e77dd91b4f5e9\WavesSysSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1138416 2020-07-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_027e77dd91b4f5e9\WavesSvc64.exe [1319112 2019-03-20] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-10-21] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992832 2020-11-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\Work\AppData\Local\Microsoft\Teams\Update.exe [2342544 2020-05-27] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\Run: [utweb] => "C:\Users\Work\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\Run: [uTorrent] => C:\Users\Work\AppData\Roaming\uTorrent\uTorrent.exe [2138840 2020-11-14] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-818102952-3989389655-2488786305-1002\...\Policies\Explorer: [NoSecurityTab] 1
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-17] (Google LLC -> Google LLC)
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\software_reporter_tool.exe: [Debugger] C:\WINDOWS\System32\taskkill.exe
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\1006fix.lnk [2011-10-14]
ShortcutTarget: 1006fix.lnk -> C:\Program Files (x86)\Common Files\Mitchell1\1006fix\startsomts.bat (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GTS-API Process.lnk [2020-07-13]
ShortcutTarget: GTS-API Process.lnk -> C:\Program Files (x86)\Toyota Diagnostics\Techstream\bin\GTSAPI_TGD.exe () [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {035ED5C2-5DA4-403B-A43D-F16D0BBF95FC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {28817759-0828-4818-8B7E-307B890761D6} - System32\Tasks\Opera scheduled assistant Autoupdate 1590564114 => C:\Users\Work\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Work\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {2F44032F-15C9-4187-9072-CF8E791DAFA6} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-27] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3B3296D0-46BE-4E9E-BE29-6BDDD06064FE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612240 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DAB4F1B-7310-4675-93F4-F9E5569EBACA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4484359C-048B-420F-B02C-556CFF45B028} - System32\Tasks\Opera scheduled Autoupdate 1590564069 => C:\Users\Work\AppData\Local\Programs\Opera\launcher.exe
Task: {541A20A0-2000-40D1-BB69-7DC53ED87799} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {5F7A9790-5523-4421-8396-D4F9829C1D93} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612240 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {6C9C4523-626A-48CE-88A3-64FE9D81DB0F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4371888 2020-11-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {72DFBA44-2D1C-4CA0-9112-3F4C9F63031A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {88B07102-9BF5-436F-BA9D-8C34DAA03060} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-10] (Google Inc -> Google LLC)
Task: {A7DAE145-12D3-4881-A500-12DD5803E205} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-10] (Google Inc -> Google LLC)
Task: {C41CAB8A-21C9-4BD1-B1A3-EFB8ABDC024B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2020-11-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {D55A1A5D-96B1-48B0-B9A9-246AD3D3C995} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4438D04-E05F-4915-8B1B-D40D3055BFA2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4371888 2020-11-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE4D835A-F515-4AED-911B-9306A33B89B0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2020-11-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3C8DA41-97EF-4CDE-9A91-29FA96A643D5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-27] (Dropbox, Inc -> Dropbox, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5e765eb0-5ea1-4e42-b0ce-da42e4980d11}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d3531f-d8a6-4454-b895-6beaec71a488}: [DhcpNameServer] 192.168.1.1
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-19]
Edge Notifications: Default -> hxxps://vviewpoint.biz; hxxps://www.facebook.com
Edge HomePage: Default -> hxxp://www.google.com/
Edge Session Restore: Default -> is enabled.
Edge Extension: (Old Layout for Facebook) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\abmkkackbbimmdbfjdilpnfaegaeagge [2020-11-08]
Edge Extension: (F.B.(FluffBusting)Purity) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbadpifemeclpdmgelgehgclmeohdoge [2020-11-14]
Edge Extension: (ShowPassword) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbiclfnbhommljbjcoelobnnnibemabl [2020-07-17]
Edge Extension: (FREE LinkedIn Email Finder - LeadLeaper) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bmdlmeaaknhbhcjfilehipoeckolbalp [2020-07-17]
Edge Extension: (ColdInbox for LinkedIn Automation) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\effolohhmklkhglfifkfemfdofdddaok [2020-10-09]
Edge Extension: (Video Downloader PLUS) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-10-03]
Edge Extension: (Absolute Enable Right Click & Copy) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2020-10-25]
Edge Extension: (Allow Select And Copy) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lamaakaemgdclpnfbofmhpkanfnojjch [2020-07-17]
Edge Extension: (AliPrice Shopping Assistant for Lazada) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mgibnbelkfjiljlimjcmaomokehnngfl [2020-11-19]
Edge Extension: (FREE Linkedin Email Finder: SalesQL) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mlhacebjlefifkldmkbilohcaiednbik [2020-10-25]
Edge Extension: (AdBlock — best ad blocker) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-11-08]
Edge Extension: (Autofill) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nlmmgnhgdeffjkdckmikfpnddkbbfkkk [2020-10-13]
Edge Extension: (AliPrice Shopping Assistant for Shopee) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oanlehpljgeknlohgbakodejdbingjpj [2020-11-15]
Edge Extension: (uBlock Origin) - C:\Users\Work\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2020-10-31]
FireFox:
========
FF DefaultProfile: q5pixzzz.default
FF ProfilePath: C:\Users\Work\AppData\Roaming\Mozilla\Firefox\Profiles\q5pixzzz.default [2020-05-30]
FF ProfilePath: C:\Users\Work\AppData\Roaming\Mozilla\Firefox\Profiles\peqg3j3c.default-release [2020-10-29]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-05] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-05] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-07-19] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default [2020-11-17]
CHR Notifications: Default -> hxxps://deliverynotforme.best
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://google.com/"
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png
CHR Session Restore: Default -> is enabled.
CHR Extension: (Slides) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-05-27]
CHR Extension: (Docs) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-05-27]
CHR Extension: (Google Drive) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-31]
CHR Extension: (ShowPassword) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbiclfnbhommljbjcoelobnnnibemabl [2020-05-27]
CHR Extension: (YouTube) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-27]
CHR Extension: (FREE LinkedIn Email Finder - LeadLeaper) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmdlmeaaknhbhcjfilehipoeckolbalp [2020-06-14]
CHR Extension: (uBlock Origin) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-10-31]
CHR Extension: (ColdInbox for LinkedIn Automation) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\effolohhmklkhglfifkfemfdofdddaok [2020-10-09]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2020-05-27]
CHR Extension: (Sheets) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-05-27]
CHR Extension: (Video Downloader PLUS) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2020-06-17]
CHR Extension: (Google Docs Offline) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-10-31]
CHR Extension: (Allow Select And Copy) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\lamaakaemgdclpnfbofmhpkanfnojjch [2020-05-27]
CHR Extension: (AliPrice Shopping Assistant for Lazada) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgibnbelkfjiljlimjcmaomokehnngfl [2020-11-17]
CHR Extension: (FREE Linkedin Email Finder: SalesQL) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlhacebjlefifkldmkbilohcaiednbik [2020-10-31]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2020-11-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-27]
CHR Extension: (AliPrice Shopping Assistant for Shopee) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\oanlehpljgeknlohgbakodejdbingjpj [2020-11-17]
CHR Extension: (Gmail) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-31]
CHR Extension: (Chrome Media Router) - C:\Users\Work\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-31]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137392 2020-11-02] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-27] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-05-27] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-11-17] (Dropbox, Inc -> Dropbox, Inc.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-11-10] (Mixbyte Inc -> Freemake)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2485016 2018-09-21] (Rivet Networks LLC -> Rivet Networks)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-19] (Malwarebytes Inc -> Malwarebytes)
R2 RDMSOService; C:\Windows\SysWOW64\RDMSOService.exe [128448 2010-10-01] (RDM Corporation -> RDM Corporation)
R2 SU10Guard; C:\Windows\UPDATE\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13103632 2020-09-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-06-18] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_6cd15b1bcbca91ac\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvdm.inf_amd64_6cd15b1bcbca91ac\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 CYUSB3; C:\WINDOWS\System32\Drivers\CYUSB3.sys [62648 2020-03-17] (Cypress Semiconductor Technology India Pvt Ltd. -> Cypress Semiconductor)
S3 imausbhpal; C:\WINDOWS\System32\drivers\imausbhpal.sys [671224 2017-05-19] (Intel(R) Wireless Connectivity Solutions -> )
S3 imausbhub; C:\WINDOWS\System32\drivers\imausbhub.sys [479736 2017-05-19] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [154576 2018-09-21] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 LSI_SAS3; C:\WINDOWS\System32\drivers\lsi_sas3.sys [136224 2018-04-17] (Avago Technologies U.S. Inc. -> Avago Technologies)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-11-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-11-19] (Malwarebytes Inc -> Malwarebytes)
S3 megasas35; C:\WINDOWS\System32\drivers\megasas35.sys [87632 2018-10-11] (Avago Technologies U.S. Inc. -> Avago Technologies)
S3 percsas3; C:\WINDOWS\System32\drivers\percsas3.sys [75792 2016-09-21] (AVAGO TECHNOLOGIES U.S. INC. -> Avago Technologies)
S3 qcusbser; C:\WINDOWS\System32\drivers\dellusbser.sys [251880 2018-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 Rockusb; C:\WINDOWS\System32\drivers\rockusb.sys [69920 2020-03-17] (Fuzhou Rockchip Electronics Co., Ltd. -> Fuzhou Rockchip Electronics Co,Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [213088 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174024 2020-07-11] (Oracle Corporation -> Oracle Corporation)
U5 vsock; C:\Windows\System32\Drivers\vsock.sys [105912 2020-08-11] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429288 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
R3 WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [285696 2007-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Jungo)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================

 

hi i think i was affected yesterday and need to do general maintaince


Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 11/19/20
Scan Time: 9:51 AM
Log File: bfcfcc1a-2a09-11eb-b4cf-9cb6d0c6abda.json
-Software Information-
Version: 4.2.3.96
Components Version: 1.0.1112
Update Package Version: 1.0.33070
License: Expired
-System Information-
OS: Windows 10 (Build 18362.1198)
CPU: x64
File System: NTFS
User: WORK\Work
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 315333
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 27 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)

 

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-11-12.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-19-2020
# Duration: 00:00:18
# OS: Windows 10 Home Single Language
# Scanned: 31909
# Detected: 4
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Adware.Heuristic HKCU\SOFTWARE\57ff1dfb5df4c15cde1c62f95f91c144
PUP.Optional.DriverPack HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\drp.su
PUP.Optional.DriverPack HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\drp.su
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

 

Affected in what way?
I don't see anything malicious there.

 

ive removed the virus before posting here. my computer fan was running 30mins without stopping.


Farbar Service Scanner Version: 09-11-2020
Ran by Work (administrator) on 19-11-2020 at 10:25:01
Running from "C:\Users\Work\Downloads"
Microsoft Windows 10 Home Single Language (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Windows Security:
============
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type, depending on the OS, is either Auto or 3.
The ImagePath of wuauserv: "%systemroot%\system32\svchost.exe -k netsvcs -p".
The ServiceDll of wuauserv service is OK.
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\Drivers\afd.sys => File is digitally signed
C:\Windows\System32\Drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\SecurityHealthService.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****





Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 261
Java version 32-bit out of Date!
Google Chrome (86.0.4240.198)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````







2020-11-19 02:30:22.726 Sophos Virus Removal Tool version 2.8.0
2020-11-19 02:30:22.726 Copyright (c) 2009-2020 Sophos Limited. All rights reserved.
2020-11-19 02:30:22.726 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2020-11-19 02:30:22.726 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64
2020-11-19 02:30:22.730 Checking for updates...
2020-11-19 02:30:22.736 Update progress: proxy server not available
2020-11-19 02:30:31.454 Option all = no
2020-11-19 02:30:31.454 Option recurse = yes
2020-11-19 02:30:31.462 Option archive = no
2020-11-19 02:30:31.462 Option service = yes
2020-11-19 02:30:31.462 Option confirm = yes
2020-11-19 02:30:31.462 Option sxl = yes
2020-11-19 02:30:31.462 Option max-data-age = 35
2020-11-19 02:30:31.462 Option vdl-logging = yes
2020-11-19 02:30:31.462 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-11-19 02:30:31.462 Machine ID: 6eab8c651d5849798b7ae6ddfce7a2cc
2020-11-19 02:30:31.478 Component SVRTcli.exe version 2.8.0
2020-11-19 02:30:31.478 Component control.dll version 2.8.0
2020-11-19 02:30:31.478 Component SVRTservice.exe version 2.8.0
2020-11-19 02:30:31.478 Component engine\osdp.dll version 1.44.1.2490
2020-11-19 02:30:31.478 Component engine\veex.dll version 3.79.0.2490
2020-11-19 02:30:31.478 Component engine\savi.dll version 9.0.20.2490
2020-11-19 02:30:31.516 Component rkdisk.dll version 1.5.33.1
2020-11-19 02:30:31.516 Version info: Product version 2.8.0
2020-11-19 02:30:31.516 Version info: Detection engine 3.79.0
2020-11-19 02:30:31.516 Version info: Detection data 5.78
2020-11-19 02:30:31.516 Version info: Build date 9/8/2020
2020-11-19 02:30:31.516 Version info: Data files added 351
2020-11-19 02:30:31.516 Version info: Last successful update (not yet updated)
2020-11-19 02:30:39.235 Downloading updates...
2020-11-19 02:30:39.235 Update progress: [I96736] sdds.svrt_v1.20: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2020-11-19 02:30:39.235 Update progress: [I95020] sdds.svrt_v1.20: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-11-19 02:30:39.235 Update progress: [I22529] sdds.svrt_v1.20: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-11-19 02:30:39.235 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2020-11-19 02:30:39.235 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2020-11-19 02:30:39.235 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2020-11-19 02:30:39.235 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5b2a282b6ffd4320f9afd4c8fd425c1ex000.xml: 2306 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5b2a282b6ffd4320f9afd4c8fd425c1ex000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fad5ea73108a5b6bfc1259278dfd9499x000.xml: 8673 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fad5ea73108a5b6bfc1259278dfd9499x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE582/0b3fc481278f5d42b8e676b24c69598ax000.xml: 590 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE582/0b3fc481278f5d42b8e676b24c69598ax000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 328 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE579/26a1a097a14b8e0bbd28be53a2aafb1ex000.xml: 601 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE579/26a1a097a14b8e0bbd28be53a2aafb1ex000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE580/44559335c6f1bc63dde9d811db091136x000.xml: 601 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE580/44559335c6f1bc63dde9d811db091136x000.xml: 15 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 601 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 32 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 601 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 15 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 601 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 391 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE578/fd09277a9cc316c7820beadc29555583x000.xml: 601 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE578/fd09277a9cc316c7820beadc29555583x000.xml: 344 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE581/6c3ea93b7cf47b93975b0089848b1945x000.xml: 18228 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE581/6c3ea93b7cf47b93975b0089848b1945x000.xml: 15 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 94ee76f75cc2a222a79a6d5a305ac005x000.xml: 615 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 94ee76f75cc2a222a79a6d5a305ac005x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c3b05924f8bebb2144ddae058798a9e0x000.xml: 320 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c3b05924f8bebb2144ddae058798a9e0x000.xml: 922 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f68284d0c844770e160f65625b572b5ex000.xml: 1027 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f68284d0c844770e160f65625b572b5ex000.xml: 187 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b6237eb64a0908d40c9415a7c7ba3843x000.xml: 338 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b6237eb64a0908d40c9415a7c7ba3843x000.xml: 672 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 664cf44531a491f6d94d8e883ebd8013x000.xml: 1027 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 664cf44531a491f6d94d8e883ebd8013x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e633c35f2a494780bd5b5266ac06f13ax000.xml: 338 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e633c35f2a494780bd5b5266ac06f13ax000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d48b68b7041bde7c1484c5cb94897672x000.xml: 1027 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d48b68b7041bde7c1484c5cb94897672x000.xml: 0 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28bb8eb241a254452f85129686b027e5x000.xml: 338 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28bb8eb241a254452f85129686b027e5x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 1027 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9bb8aeca1b234665832ec72c609610cex000.xml: 338 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9bb8aeca1b234665832ec72c609610cex000.xml: 187 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7009c81b29e1d232da816176e143ae49x000.xml: 1027 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7009c81b29e1d232da816176e143ae49x000.xml: 813 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 338 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 172 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ff82765819ae95b2d888a3384d7f2c2cx000.xml: 1027 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ff82765819ae95b2d888a3384d7f2c2cx000.xml: 203 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d9a77a07892e11509435eeb503ebcbafx000.xml: 338 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d9a77a07892e11509435eeb503ebcbafx000.xml: 343 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9f47ef3e0d24c42f8f091a89d8cf92abx000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9f47ef3e0d24c42f8f091a89d8cf92abx000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 902127f727fc9fc931d91904144eb177x000.xml: 333 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 902127f727fc9fc931d91904144eb177x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 08b2a93bc9a90c804e129bb75a418961x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 08b2a93bc9a90c804e129bb75a418961x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d1865dd527f039272999da697d035e85x000.xml: 333 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d1865dd527f039272999da697d035e85x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1db5481816c4ba0fc34383253223cd3fx000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1db5481816c4ba0fc34383253223cd3fx000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d1b3742945f3efbfdf8a6e1cd0d8066dx000.xml: 333 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d1b3742945f3efbfdf8a6e1cd0d8066dx000.xml: 0 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4f6fd502b98292e9808aea3adf966c75x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4f6fd502b98292e9808aea3adf966c75x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6354b10172b2e6c537e86b826cd36cafx000.xml: 333 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6354b10172b2e6c537e86b826cd36cafx000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c3a6d0d54ad255bab4e1d0d8db7bba50x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c3a6d0d54ad255bab4e1d0d8db7bba50x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aaa50318c4e9e3ed8a059ad3e184c3acx000.xml: 333 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aaa50318c4e9e3ed8a059ad3e184c3acx000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7b6b87dbb569ba8c25b044ae9d864d92x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7b6b87dbb569ba8c25b044ae9d864d92x000.xml: 360 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d8e8f151fcc701291f99229ea0a9ad86x000.xml: 333 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d8e8f151fcc701291f99229ea0a9ad86x000.xml: 15 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1de95f28b460b68ed0dcc325aea1a0c6x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1de95f28b460b68ed0dcc325aea1a0c6x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 132716a5bf070785ecf1b56ba84f12eex000.xml: 335 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 132716a5bf070785ecf1b56ba84f12eex000.xml: 32 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ba4f1e62511b731c53197c1865c8aad3x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ba4f1e62511b731c53197c1865c8aad3x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 932cda2c4a4e024e6e274e403361e354x000.xml: 335 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 932cda2c4a4e024e6e274e403361e354x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a494322b9476f1e76ed7f0c81629742x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a494322b9476f1e76ed7f0c81629742x000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 66f9e8d071bb25f8b95de35692c41da5x000.xml: 335 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 66f9e8d071bb25f8b95de35692c41da5x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e083d805f00f414336d7edb61abcc427x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e083d805f00f414336d7edb61abcc427x000.xml: 16 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a22257431f44c87e0a598d60a80b3b8fx000.xml: 335 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a22257431f44c87e0a598d60a80b3b8fx000.xml: 31 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c01c17cd7b25efe867593a7ad707bc12x000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c01c17cd7b25efe867593a7ad707bc12x000.xml: 344 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ef327e0abdb08d12e435640bb6b1a078x000.xml: 335 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ef327e0abdb08d12e435640bb6b1a078x000.xml: 15 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a218ae1236938113c9ad3d04ddde5d9ax000.xml: 877 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a218ae1236938113c9ad3d04ddde5d9ax000.xml: 32 ms
2020-11-19 02:30:39.235 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fcfef64d0c418dddf5a2b45c4a4a1e5ex000.xml: 335 bytes
2020-11-19 02:30:39.235 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fcfef64d0c418dddf5a2b45c4a4a1e5ex000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 990a3fd0c6e668af8cee59e19520fdeax000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 990a3fd0c6e668af8cee59e19520fdeax000.xml: 31 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1c9fabb1c022b447117f58c0df49d88fx000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1c9fabb1c022b447117f58c0df49d88fx000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76186823f94c442be080931ff084dedcx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76186823f94c442be080931ff084dedcx000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28afb58c461f668c0a5463ab1d6f2100x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28afb58c461f668c0a5463ab1d6f2100x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a5f63ec8131911b66650e3a382f60f7x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a5f63ec8131911b66650e3a382f60f7x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eccc3c59237d6db1795874e5fd8564c3x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eccc3c59237d6db1795874e5fd8564c3x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4b2c5bdfb14cb7e0bd076fd8c1b5cc4ax000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4b2c5bdfb14cb7e0bd076fd8c1b5cc4ax000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b8890ea0217f1f3f124304b16bcdad94x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b8890ea0217f1f3f124304b16bcdad94x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2497b55ed00bd9e12cf2c058bb0688f4x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2497b55ed00bd9e12cf2c058bb0688f4x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5b2a1e18d4756738bed0ec93db210a21x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5b2a1e18d4756738bed0ec93db210a21x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 776fbeacf55ccb82b6bd1cd098b19757x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 776fbeacf55ccb82b6bd1cd098b19757x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bd40c966a8c6fc8e45572eaeb1d57affx000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bd40c966a8c6fc8e45572eaeb1d57affx000.xml: 32 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c9e072e1a73dd6c06ff29937442b5f0dx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c9e072e1a73dd6c06ff29937442b5f0dx000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1e743616d399136b0e5be1c80d2aaa19x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1e743616d399136b0e5be1c80d2aaa19x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eb168ccda7ffe74ec71d7898241370dbx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eb168ccda7ffe74ec71d7898241370dbx000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 818fe237fe2a802e7e8fa43160e90736x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 818fe237fe2a802e7e8fa43160e90736x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f816c6cc93547017ebb7386815f8e899x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f816c6cc93547017ebb7386815f8e899x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eae80942305dc450d9d421403c92b932x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eae80942305dc450d9d421403c92b932x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f350914aa32a5c3088e08fe6d37f1e65x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f350914aa32a5c3088e08fe6d37f1e65x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cde7f2776ea6f1000ae569a9dc3df44cx000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cde7f2776ea6f1000ae569a9dc3df44cx000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3e52366ac0c800b8fa0ebc53e46c0dcdx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3e52366ac0c800b8fa0ebc53e46c0dcdx000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 77e9ef1c60c8c1388e93c452a57c2ce5x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 77e9ef1c60c8c1388e93c452a57c2ce5x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9e09d89fa6df96a96fe07782b2753cd7x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9e09d89fa6df96a96fe07782b2753cd7x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 81d457c6117e8a12f9f2bdfc00eed08dx000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 81d457c6117e8a12f9f2bdfc00eed08dx000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3a9b3db768880b312e81cbf4a4f89a5dx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3a9b3db768880b312e81cbf4a4f89a5dx000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 71a1263243ee9836143b37398ef2ddedx000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 71a1263243ee9836143b37398ef2ddedx000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4450fdc2ba6ab1087d8def832f873a1ex000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4450fdc2ba6ab1087d8def832f873a1ex000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ec21b65de7d9b7fdfd29880d981962cex000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ec21b65de7d9b7fdfd29880d981962cex000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dad66e4e5ad894cdee4793fff900cbc0x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dad66e4e5ad894cdee4793fff900cbc0x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cab202331adcad3052c4dcfd1fd5d5ddx000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cab202331adcad3052c4dcfd1fd5d5ddx000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b28b8a55fbe08bb4a8544977cbea9b16x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b28b8a55fbe08bb4a8544977cbea9b16x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4db6e726160b27ce1fc0b93950bb4217x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4db6e726160b27ce1fc0b93950bb4217x000.xml: 0 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a521b0adb5998c53727959e3d28ac091x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a521b0adb5998c53727959e3d28ac091x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: feafb469988351f8fa25f008c24d99a0x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: feafb469988351f8fa25f008c24d99a0x000.xml: 0 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8c114d3bb29fd4c59a3ad121792a7fedx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8c114d3bb29fd4c59a3ad121792a7fedx000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d183cc24429b9724c06c8ea727659e0x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d183cc24429b9724c06c8ea727659e0x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8a11679af9e6a96b3b121773ea496e1ex000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8a11679af9e6a96b3b121773ea496e1ex000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a29744f16327f408eb763382b22c4d24x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a29744f16327f408eb763382b22c4d24x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 40b92227ba8ab39281a24b3680b1f7afx000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 40b92227ba8ab39281a24b3680b1f7afx000.xml: 0 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 388c47ca65022d8d19cbb0232982073ax000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 388c47ca65022d8d19cbb0232982073ax000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ceeb8a4a993f3f1672d3a7f31de5c564x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ceeb8a4a993f3f1672d3a7f31de5c564x000.xml: 0 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bc7dd060fd7e0501eadc4c40fc46f819x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bc7dd060fd7e0501eadc4c40fc46f819x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 89ca4f94cb8de194062daf148bc36c17x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 89ca4f94cb8de194062daf148bc36c17x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fa58dbfb36136157a952aa1a30708013x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fa58dbfb36136157a952aa1a30708013x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7d5c48b813844fa707571654321900a6x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7d5c48b813844fa707571654321900a6x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d7855d16476fafe182e406f8ebfebcc0x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d7855d16476fafe182e406f8ebfebcc0x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 31b3e29f3f57e603bbde01f2f15f19b8x000.xml: 877 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 31b3e29f3f57e603bbde01f2f15f19b8x000.xml: 0 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2c74b0fbfda0c0eb5535203da8c817a8x000.xml: 335 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2c74b0fbfda0c0eb5535203da8c817a8x000.xml: 15 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7ff55d3af06acbce3c4c86a69241cb91x000.xml: 1027 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7ff55d3af06acbce3c4c86a69241cb91x000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 54c552ba1bf9fcf1b2fbffaa727c992ax000.xml: 336 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 54c552ba1bf9fcf1b2fbffaa727c992ax000.xml: 16 ms
2020-11-19 02:30:39.238 Update progress: [I49502] sdds.data0910.xml: found supplement IDE579 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2020-11-19 02:30:39.238 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE579 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE579 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I49502] sdds.data0910.xml: found supplement IDE580 LATEST path= baseVersion= [included from product IDE579 LATEST path=]
2020-11-19 02:30:39.238 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE580 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE580 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I49502] sdds.data0910.xml: found supplement IDE581 LATEST path= baseVersion= [included from product IDE580 LATEST path=]
2020-11-19 02:30:39.238 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE581 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE581 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I49502] sdds.data0910.xml: found supplement IDE582 LATEST path= baseVersion= [included from product IDE581 LATEST path=]
2020-11-19 02:30:39.238 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE582 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE582 LATEST path=
2020-11-19 02:30:39.238 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-11-19 02:30:39.238 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c90fc61d20c95b97fb8f24a79b020a22x000.xml: 58196 bytes
2020-11-19 02:30:39.238 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c90fc61d20c95b97fb8f24a79b020a22x000.xml: 906 ms
2020-11-19 02:30:39.238 Update progress: [I19463] Product download size 175118518 bytes
2020-11-19 02:30:42.539 Update progress: [I19463] Syncing product IDE579 LATEST path=
2020-11-19 02:30:42.539 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4c2bcd4c718673e16f63e09efff1a8ex000.xml: 38198 bytes
2020-11-19 02:30:42.539 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4c2bcd4c718673e16f63e09efff1a8ex000.xml: 1047 ms
2020-11-19 02:30:42.539 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: bb55660e881ed82884dec3fa061babd6x000.xml: 397 bytes
2020-11-19 02:30:42.539 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: bb55660e881ed82884dec3fa061babd6x000.xml: 16 ms
2020-11-19 02:30:42.539 Update progress: [I19463] Product download size 3368412 bytes
2020-11-19 02:30:42.734 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 228339bb0f3dc5b6655571b3660b14a9x000.xml: 6447 bytes
2020-11-19 02:30:42.734 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 228339bb0f3dc5b6655571b3660b14a9x000.xml: 0 ms
2020-11-19 02:30:42.784 Update progress: [I19463] Syncing product IDE580 LATEST path=
2020-11-19 02:30:42.784 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fa14ac969204291e5569af27e2082366x000.xml: 39399 bytes
2020-11-19 02:30:42.784 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fa14ac969204291e5569af27e2082366x000.xml: 15 ms
2020-11-19 02:30:42.784 Update progress: [I19463] Product download size 2835246 bytes
2020-11-19 02:30:42.968 Update progress: [I19463] Syncing product IDE581 LATEST path=
2020-11-19 02:30:42.968 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9cb33b53aa6dd2ce5f7d56d911246d6fx000.xml: 10086 bytes
2020-11-19 02:30:42.968 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9cb33b53aa6dd2ce5f7d56d911246d6fx000.xml: 15 ms
2020-11-19 02:30:42.968 Update progress: [I19463] Product download size 667835 bytes
2020-11-19 02:30:43.028 Update progress: [I19463] Syncing product IDE582 LATEST path=
2020-11-19 02:30:43.028 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2020-11-19 02:30:43.028 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 16 ms
2020-11-19 02:30:43.059 Installing updates...
2020-11-19 02:30:43.698 Error level 1
2020-11-19 02:30:46.205 Update successful
2020-11-19 02:30:54.696 Option all = no
2020-11-19 02:30:54.696 Option recurse = yes
2020-11-19 02:30:54.696 Option archive = no
2020-11-19 02:30:54.696 Option service = yes
2020-11-19 02:30:54.696 Option confirm = yes
2020-11-19 02:30:54.696 Option sxl = yes
2020-11-19 02:30:54.696 Option max-data-age = 35
2020-11-19 02:30:54.696 Option vdl-logging = yes
2020-11-19 02:30:54.702 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2020-11-19 02:30:54.702 Machine ID: 6eab8c651d5849798b7ae6ddfce7a2cc
2020-11-19 02:30:54.702 Component SVRTcli.exe version 2.8.0
2020-11-19 02:30:54.702 Component control.dll version 2.8.0
2020-11-19 02:30:54.702 Component SVRTservice.exe version 2.8.0
2020-11-19 02:30:54.702 Component engine\osdp.dll version 1.44.1.2490
2020-11-19 02:30:54.702 Component engine\veex.dll version 3.79.0.2490
2020-11-19 02:30:54.702 Component engine\savi.dll version 9.0.20.2490
2020-11-19 02:30:54.702 Component rkdisk.dll version 1.5.33.1
2020-11-19 02:30:54.702 Version info: Product version 2.8.0
2020-11-19 02:30:54.702 Version info: Detection engine 3.79.0
2020-11-19 02:30:54.702 Version info: Detection data 5.78
2020-11-19 02:30:54.702 Version info: Build date 9/8/2020
2020-11-19 02:30:54.702 Version info: Data files added 351
2020-11-19 02:30:54.702 Version info: Last successful update 11/19/2020 10:30:46 AM
2020-11-19 03:20:38.368 Could not open C:\pagefile.sys
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file C:\Program Files (x86)\XHorse Electronics\MVCI Driver for TOYOTA TIS\FirmwareUpdateTool.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINDOWS10UPGRADERAPP.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Windows10Upgrade.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaasMedicAgent.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaaSMedic.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UsoClient.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UPFC.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UpdateAssistant.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\software_reporter_tool.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SIHClient.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\remsh.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MUSNOTIFICATIONUX.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MusNotification.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\InstallAgent.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EOSNOTIFY.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dismHost.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINDOWS10UPGRADERAPP.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Windows10Upgrade.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaasMedicAgent.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaaSMedic.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UsoClient.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UPFC.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UpdateAssistant.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\software_reporter_tool.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SIHClient.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\remsh.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MUSNOTIFICATIONUX.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MusNotification.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\InstallAgent.exe
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EOSNOTIFY.EXE
2020-11-19 03:24:59.599 >>> Virus 'Mal/Behav-374' found in file HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dismHost.exe
2020-11-19 03:25:20.562 Could not open C:\swapfile.sys
2020-11-19 03:25:20.671 Could not open C:\System Volume Information\{1597e8fc-2a0c-11eb-857a-9cb6d0c6abda}{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-11-19 03:25:20.671 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-11-19 03:25:20.671 Could not open C:\System Volume Information\{7d4e3446-2a0c-11eb-857b-9cb6d0c6abda}{3808876b-c176-4e48-b7ae-04046e6cc752}
2020-11-19 03:27:28.450 Could not open C:\Users\Work\AppData\Local\Dropbox\events\store
2020-11-19 03:27:28.466 Could not open C:\Users\Work\AppData\Local\Dropbox\instance1\sync\temp\05a66988fb762d47
2020-11-19 03:27:28.466 Could not open C:\Users\Work\AppData\Local\Dropbox\instance1\sync\temp\91fa88c832fde10d
2020-11-19 03:27:28.466 Could not open C:\Users\Work\AppData\Local\Dropbox\instance1\sync\temp\f5ff2a0b05a986ad
2020-11-19 03:31:32.609 Could not open C:\Users\Work\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-11-19 03:31:32.609 Could not open C:\Users\Work\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-11-19 03:39:02.854 Could not open C:\Windows\System32\config\BBI
2020-11-19 03:44:47.850 The following items will be cleaned up:
2020-11-19 03:44:47.850 Mal/Behav-374
2020-11-19 05:25:16.530 Threat 'Mal/Behav-374' has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINDOWS10UPGRADERAPP.EXE" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WINDOWS10UPGRADERAPP.EXE" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Windows10Upgrade.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Windows10Upgrade.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaasMedicAgent.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaasMedicAgent.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaaSMedic.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\WaaSMedic.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UsoClient.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UsoClient.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UPFC.EXE" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UPFC.EXE" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UpdateAssistant.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UpdateAssistant.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\software_reporter_tool.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\software_reporter_tool.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SIHClient.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SIHClient.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\remsh.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\remsh.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MUSNOTIFICATIONUX.EXE" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MUSNOTIFICATIONUX.EXE" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MusNotification.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MusNotification.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\InstallAgent.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\InstallAgent.exe" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EOSNOTIFY.EXE" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\EOSNOTIFY.EXE" has been cleaned up.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dismHost.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 Registry key "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dismHost.exe" has been cleaned up.
2020-11-19 05:25:16.530 File "C:\Program Files (x86)\XHorse Electronics\MVCI Driver for TOYOTA TIS\FirmwareUpdateTool.exe" belongs to malware 'Mal/Behav-374'.
2020-11-19 05:25:16.530 File "C:\Program Files (x86)\XHorse Electronics\MVCI Driver for TOYOTA TIS\FirmwareUpdateTool.exe" has been cleaned up.
2020-11-19 05:25:16.530 Removal successful
2020-11-19 05:25:17.033 Error level 0

 

All logs look clean now.
You should be good to go