Jump to content

Recommended Posts

Hello everyone, in back home after 7 months, and my family due smartworking has been using the computer a lot. When first i run the scan there were around 110 threats, so i run the cleaning, computer restarted in a weird provvisional way (it may be normal for what i know), restart again, and after that i was unable to start MB again. So i tryed to unistall it, and even if the final unistal message says success, MB still here and unable to be opened.

What should i do? I tryed alredy "mb-clean-3.1.0.1035" but it says contact the forum

Thanks for your help

report.txt mb-clean-results.txt

Link to post
Share on other sites

  • Replies 54
  • Created
  • Last Reply

Top Posters In This Topic

Hello Facco and welcome to Malwarebytes,

Run the following:

Download Farbar Recovery Scan Tool and save it to your desktop.

Alternative download option: http://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

If your security alerts to FRST either, accept the alert or turn your security off to allow FRST to run. It is not malicious or infected in any way...

Be aware FRST must be run from an account with Administrator status...

When you`ve downloaded FRST64.exe, rename it to FRST64English.exe...
 
  • Double-click to run it. When the tool opens click Yes to disclaimer.(Windows 8/10 users will be prompted about Windows SmartScreen protection - click More information and Run.)
  • Make sure Addition.txt is checkmarked under "Optional scans"
    user posted image
     
  • Press Scan button to run the tool....
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The tool will also make a log named (Addition.txt) Please attach that log to your reply.


Thank you,

Kevin..
Link to post
Share on other sites

Hello Facco,

Thanks for those logs, continue:

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into. "Do not open that file when running FRST fix"
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Open FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Next,

Download and run the Malwarebytes Support Tool
Accept the EULA and click Advanced tab on the left (not Start Repair)
Click the Clean button, and allow it to restart your system and then reinstall Malwarebytes, either by allowing the tool to do so when it offers to on restart, or by downloading and installing the latest version from here

Next,

Open Malwarebytes, select > "settings" > "security tab"

Scroll down to "Scan Options" ensure Scan for Rootkits and Scan within Archives are both on....

Go back to "DashBoard" select the Blue "Scan Now" tab......

When the scan completes quarantine any found entries...

To get the log from Malwarebytes do the following:
 
  • Single click on the target sight above scanner window.
  • In the new window select Report
  • Double click on the Scan log which shows the Date and time of the scan just performed.
  • Click Export > From export you have two options:
    Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
    Export toTxt - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply

     
  • Please use "Export to Txt" then attach the log to your reply...


Next,

Download AdwCleaner by Malwarebytes onto your Desktop.

Or from this Mirror
 
  • Right-click on AdwCleaner.exe and select user posted imageRun as Administrator (for Windows Vista, 7, 8, 8.1 and 10 users)
  • Accept the EULA (I accept), then click on Scan
  • Let the scan complete. Once it's done, make sure that every item listed in the different tabs is checked and click on the Quarantine button. This will kill all the active processes
  • Once the cleaning process is complete, AdwCleaner will ask to restart your computer, do it
  • After the restart, a log will open when logging in. Please copy/paste the content of that log in your next reply


Next,

Download "Microsoft's Safety Scanner" and save direct to the desktop

Ensure to get the correct version for your system....

https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/safety-scanner-download


Right click on the Tool, select “Run as Administrator” the tool will expand to the options Window
In the "Scan Type" window, select Quick Scan
Perform a scan and Click Finish when the scan is done.


Retrieve the MSRT log as follows, and post it in your next reply:

1) Select the Windows key and R key together to open the "Run" function
2) Type or Copy/Paste the following command to the "Run Line" and Press Enter:

notepad c:\windows\debug\mrt.log

The log will include log details for each time MSRT has run, we only need the most recent log by date and time....

Let me see those logs in your reply..

Thank you,

Kevin

fixlist.txt

Link to post
Share on other sites

Hiya Facco,

Download Farbar Service Scanner from here: http://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/ and run it on the computer with the issue.

Make sure the following options are checked:
 
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Windows Defender
 
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Thank you,

Kevin..

Link to post
Share on other sites

Farbar Service Scanner Version: 14-12-2019
Ran by simon (administrator) on 16-07-2020 at 09:22:26
Running from "C:\Users\simon\Downloads"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.
Checking LEGACY_mpsdrv: ATTENTION!=====> Unable to open LEGACY_mpsdrv\0000 registry key. The key does not exist.

MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is set to Disabled. The default start type is Auto.
The ImagePath of MpsSvc: "%SystemRoot%\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p".
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Link to post
Share on other sites

Hello Facco,

I`ve attached two zip files to this reply WinDefend.zip and wscscv.zip Download and unzip both of those files to your Desktop, you should now have WinDefend.reg and wscscv.reg

Double click on each file in turn, accept UAC also accept any alerts or merges. When both reg files have been merged reboot your system...

Next,

Run Farbar Service Scanner once more...

Make sure the following options are checked:
 

  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Windows Defender

 

  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Thanks,

Kevin

 

WinDefend.zip wscsvc.zip

Link to post
Share on other sites

Thank you so much again Kevin, i installed both Keys and thats the report. windows firewall still wont allow me to start it, translating it says "impossible to modify settings from current user, 0x80070422" and for windows defender now it detect MB, but seems ok

 

 

 

Farbar Service Scanner Version: 14-12-2019
Ran by simon (administrator) on 16-07-2020 at 23:19:58
Running from "C:\Users\simon\Desktop\Farbar"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.
Checking LEGACY_mpsdrv: ATTENTION!=====> Unable to open LEGACY_mpsdrv\0000 registry key. The key does not exist.

MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is set to Disabled. The default start type is Auto.
The ImagePath of MpsSvc: "%SystemRoot%\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p".
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv: "%systemroot%\system32\svchost.exe -k netsvcs -p".
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe"".


Windows Defender Disabled Policy:

 

 

==========================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

FSS.txt

Link to post
Share on other sites

Hello Facco,

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into. "Do not open that file when running FRST fix"
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Open FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

When the fix completes it will force a reboot, on completion run Farbar Service Scanner again and post the produced log...

Thank you,

Kevin

 

 

 

fixlist.txt

Link to post
Share on other sites

is it normal i dont have anymore the file "fixlist" you gave me and im pretty sure i put in the folder and now i have only the file "fixlog" in the same folder? like, your file disappeared after the restart... anyway here is the scan

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by simon (17-07-2020 00:16:37) Run:2
Running from C:\Users\simon\Desktop\Nuova cartella
Loaded Profiles: simon
Boot Mode: Normal
==============================================

fixlist content:
*****************
StartRegedit:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\mpsdrv]
"DisplayName"="@%SystemRoot%\\system32\\drivers\\mpsdrv.sys,-23092"
"ErrorControl"=dword:00000001
"Group"="network"
"ImagePath"=hex(2):53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,64,00,\
  72,00,69,00,76,00,65,00,72,00,73,00,5c,00,6d,00,70,00,73,00,64,00,72,00,76,\
  00,2e,00,73,00,79,00,73,00,00,00
"Start"=dword:00000003
"Type"=dword:00000001
"Description"="@%SystemRoot%\\system32\\drivers\\mpsdrv.sys,-23093"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend]
"DisplayName"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-310"
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):22,00,25,00,50,00,72,00,6f,00,67,00,72,00,61,00,6d,00,46,00,\
  69,00,6c,00,65,00,73,00,25,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,\
  00,20,00,44,00,65,00,66,00,65,00,6e,00,64,00,65,00,72,00,5c,00,4d,00,73,00,\
  4d,00,70,00,45,00,6e,00,67,00,2e,00,65,00,78,00,65,00,22,00,00,00
"Start"=dword:00000002
"Type"=dword:00000010
"Description"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-240"
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"ObjectName"="LocalSystem"
"ServiceSidType"=dword:00000001
"RequiredPrivileges"=hex(7):53,00,65,00,4c,00,6f,00,61,00,64,00,44,00,72,00,69,\
  00,76,00,65,00,72,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
  00,00,53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,\
  00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
  65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,74,00,6f,00,72,00,\
  65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,\
  00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,\
  67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,\
  00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
  65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,\
  68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,6e,00,63,00,72,00,65,00,61,00,\
  73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,\
  50,00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,\
  63,00,62,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,\
  00,65,00,53,00,79,00,73,00,74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,\
  6f,00,6e,00,6d,00,65,00,6e,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,\
  00,67,00,65,00,00,00,00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
  00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00
"LaunchProtected"=dword:00000003
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend\Security]
"Security"=hex:01,00,14,80,f4,00,00,00,00,01,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,c4,00,07,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,\
  05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
  12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
  02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
  14,00,9d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,ff,01,0f,\
  00,01,06,00,00,00,00,00,05,50,00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,\
  57,00,77,6e,c0,02,64,87,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
  00,00,00,bf,55,08,72,3b,e0,28,d0,89,79,4b,f8,91,89,6e,7c,40,25,ec,f4,01,01,\
  00,00,00,00,00,05,12,00,00,00,01,01,00,00,00,00,00,05,12,00,00,00
 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc]
"DisplayName"="@%SystemRoot%\\system32\\FirewallAPI.dll,-23090"
"ErrorControl"=dword:00000001
"Group"="NetworkProvider"
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\
  74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,73,\
  00,76,00,63,00,68,00,6f,00,73,00,74,00,2e,00,65,00,78,00,65,00,20,00,2d,00,\
  6b,00,20,00,4c,00,6f,00,63,00,61,00,6c,00,53,00,65,00,72,00,76,00,69,00,63,\
  00,65,00,4e,00,6f,00,4e,00,65,00,74,00,77,00,6f,00,72,00,6b,00,00,00
"Start"=dword:00000002
"Type"=dword:00000020
"Description"="@%SystemRoot%\\system32\\FirewallAPI.dll,-23091"
"DependOnService"=hex(7):6d,00,70,00,73,00,64,00,72,00,76,00,00,00,62,00,66,00,\
  65,00,00,00,00,00
"ObjectName"="NT Authority\\LocalService"
"ServiceSidType"=dword:00000003
"RequiredPrivileges"=hex(7):53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,50,\
  00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,00,\
  72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,75,\
  00,64,00,69,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
  00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,00,74,00,69,\
  00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,\
  53,00,65,00,43,00,72,00,65,00,61,00,74,00,65,00,47,00,6c,00,6f,00,62,00,61,\
  00,6c,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
  65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,00,65,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,\
  6e,00,63,00,72,00,65,00,61,00,73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
  00,01,00,00,00,c0,d4,01,00,01,00,00,00,e0,93,04,00,00,00,00,00,00,00,00,00
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Parameters]
"ServiceDll"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\
  00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\
  6d,00,70,00,73,00,73,00,76,00,63,00,2e,00,64,00,6c,00,6c,00,00,00
"ServiceDllUnloadOnStop"=dword:00000001
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Parameters\ACService]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Parameters\PortKeywords]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Security]
"Security"=hex:01,00,14,80,b4,00,00,00,c0,00,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,84,00,05,00,00,00,00,00,14,00,fd,01,02,00,01,01,00,00,00,00,00,\
  05,12,00,00,00,00,00,18,00,ff,01,0f,00,01,02,00,00,00,00,00,05,20,00,00,00,\
  20,02,00,00,00,00,14,00,8d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,\
  00,14,00,8d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,15,00,\
  00,00,01,06,00,00,00,00,00,05,50,00,00,00,49,59,9d,77,91,56,e5,55,dc,f4,e2,\
  0e,a7,8b,eb,ca,7b,42,13,56,01,01,00,00,00,00,00,05,12,00,00,00,01,01,00,00,\
  00,00,00,05,12,00,00,00
 
EndRegedit:
Reboot:

*****************

Registry ====> Operazione completata.

 

The system needed a reboot.

==== End of Fixlog 00:16:37 ====

Link to post
Share on other sites

i just did it again, but the results looks the same as the one i post before, also the "fix" is almost instant, it just tell me to restart after 0.002 seconds i press, is it normal?

 

here's the new report

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Ran by simon (17-07-2020 00:31:43) Run:3
Running from C:\Users\simon\Desktop\Nuova cartella
Loaded Profiles: simon
Boot Mode: Normal
==============================================

fixlist content:
*****************
StartRegedit:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\mpsdrv]
"DisplayName"="@%SystemRoot%\\system32\\drivers\\mpsdrv.sys,-23092"
"ErrorControl"=dword:00000001
"Group"="network"
"ImagePath"=hex(2):53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,64,00,\
  72,00,69,00,76,00,65,00,72,00,73,00,5c,00,6d,00,70,00,73,00,64,00,72,00,76,\
  00,2e,00,73,00,79,00,73,00,00,00
"Start"=dword:00000003
"Type"=dword:00000001
"Description"="@%SystemRoot%\\system32\\drivers\\mpsdrv.sys,-23093"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend]
"DisplayName"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-310"
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):22,00,25,00,50,00,72,00,6f,00,67,00,72,00,61,00,6d,00,46,00,\
  69,00,6c,00,65,00,73,00,25,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,\
  00,20,00,44,00,65,00,66,00,65,00,6e,00,64,00,65,00,72,00,5c,00,4d,00,73,00,\
  4d,00,70,00,45,00,6e,00,67,00,2e,00,65,00,78,00,65,00,22,00,00,00
"Start"=dword:00000002
"Type"=dword:00000010
"Description"="@%ProgramFiles%\\Windows Defender\\MpAsDesc.dll,-240"
"DependOnService"=hex(7):52,00,70,00,63,00,53,00,73,00,00,00,00,00
"ObjectName"="LocalSystem"
"ServiceSidType"=dword:00000001
"RequiredPrivileges"=hex(7):53,00,65,00,4c,00,6f,00,61,00,64,00,44,00,72,00,69,\
  00,76,00,65,00,72,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
  00,00,53,00,65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,\
  00,65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
  65,00,42,00,61,00,63,00,6b,00,75,00,70,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,52,00,65,00,73,00,74,00,6f,00,72,00,\
  65,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,\
  00,44,00,65,00,62,00,75,00,67,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,\
  67,00,65,00,00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,\
  00,74,00,69,00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,\
  65,00,00,00,53,00,65,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,53,00,\
  68,00,75,00,74,00,64,00,6f,00,77,00,6e,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,6e,00,63,00,72,00,65,00,61,00,\
  73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,00,72,00,69,00,76,00,69,00,6c,\
  00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,\
  50,00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,54,00,\
  63,00,62,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,\
  00,65,00,53,00,79,00,73,00,74,00,65,00,6d,00,45,00,6e,00,76,00,69,00,72,00,\
  6f,00,6e,00,6d,00,65,00,6e,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,\
  00,67,00,65,00,00,00,00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
  00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00
"LaunchProtected"=dword:00000003
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinDefend\Security]
"Security"=hex:01,00,14,80,f4,00,00,00,00,01,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,c4,00,07,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,\
  05,20,00,00,00,21,02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,\
  12,00,00,00,00,00,18,00,9d,01,02,00,01,02,00,00,00,00,00,05,20,00,00,00,20,\
  02,00,00,00,00,14,00,9d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,00,\
  14,00,9d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,ff,01,0f,\
  00,01,06,00,00,00,00,00,05,50,00,00,00,b5,89,fb,38,19,84,c2,cb,5c,6c,23,6d,\
  57,00,77,6e,c0,02,64,87,00,00,28,00,ff,01,0f,00,01,06,00,00,00,00,00,05,50,\
  00,00,00,bf,55,08,72,3b,e0,28,d0,89,79,4b,f8,91,89,6e,7c,40,25,ec,f4,01,01,\
  00,00,00,00,00,05,12,00,00,00,01,01,00,00,00,00,00,05,12,00,00,00
 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc]
"DisplayName"="@%SystemRoot%\\system32\\FirewallAPI.dll,-23090"
"ErrorControl"=dword:00000001
"Group"="NetworkProvider"
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\
  74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,73,\
  00,76,00,63,00,68,00,6f,00,73,00,74,00,2e,00,65,00,78,00,65,00,20,00,2d,00,\
  6b,00,20,00,4c,00,6f,00,63,00,61,00,6c,00,53,00,65,00,72,00,76,00,69,00,63,\
  00,65,00,4e,00,6f,00,4e,00,65,00,74,00,77,00,6f,00,72,00,6b,00,00,00
"Start"=dword:00000002
"Type"=dword:00000020
"Description"="@%SystemRoot%\\system32\\FirewallAPI.dll,-23091"
"DependOnService"=hex(7):6d,00,70,00,73,00,64,00,72,00,76,00,00,00,62,00,66,00,\
  65,00,00,00,00,00
"ObjectName"="NT Authority\\LocalService"
"ServiceSidType"=dword:00000003
"RequiredPrivileges"=hex(7):53,00,65,00,41,00,73,00,73,00,69,00,67,00,6e,00,50,\
  00,72,00,69,00,6d,00,61,00,72,00,79,00,54,00,6f,00,6b,00,65,00,6e,00,50,00,\
  72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,41,00,75,\
  00,64,00,69,00,74,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,\
  00,00,53,00,65,00,43,00,68,00,61,00,6e,00,67,00,65,00,4e,00,6f,00,74,00,69,\
  00,66,00,79,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,\
  53,00,65,00,43,00,72,00,65,00,61,00,74,00,65,00,47,00,6c,00,6f,00,62,00,61,\
  00,6c,00,50,00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,\
  65,00,49,00,6d,00,70,00,65,00,72,00,73,00,6f,00,6e,00,61,00,74,00,65,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,53,00,65,00,49,00,\
  6e,00,63,00,72,00,65,00,61,00,73,00,65,00,51,00,75,00,6f,00,74,00,61,00,50,\
  00,72,00,69,00,76,00,69,00,6c,00,65,00,67,00,65,00,00,00,00,00
"FailureActions"=hex:80,51,01,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\
  00,01,00,00,00,c0,d4,01,00,01,00,00,00,e0,93,04,00,00,00,00,00,00,00,00,00
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Parameters]
"ServiceDll"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\
  00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\
  6d,00,70,00,73,00,73,00,76,00,63,00,2e,00,64,00,6c,00,6c,00,00,00
"ServiceDllUnloadOnStop"=dword:00000001
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Parameters\ACService]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Parameters\PortKeywords]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\MpsSvc\Security]
"Security"=hex:01,00,14,80,b4,00,00,00,c0,00,00,00,14,00,00,00,30,00,00,00,02,\
  00,1c,00,01,00,00,00,02,80,14,00,ff,01,0f,00,01,01,00,00,00,00,00,01,00,00,\
  00,00,02,00,84,00,05,00,00,00,00,00,14,00,fd,01,02,00,01,01,00,00,00,00,00,\
  05,12,00,00,00,00,00,18,00,ff,01,0f,00,01,02,00,00,00,00,00,05,20,00,00,00,\
  20,02,00,00,00,00,14,00,8d,01,02,00,01,01,00,00,00,00,00,05,04,00,00,00,00,\
  00,14,00,8d,01,02,00,01,01,00,00,00,00,00,05,06,00,00,00,00,00,28,00,15,00,\
  00,00,01,06,00,00,00,00,00,05,50,00,00,00,49,59,9d,77,91,56,e5,55,dc,f4,e2,\
  0e,a7,8b,eb,ca,7b,42,13,56,01,01,00,00,00,00,00,05,12,00,00,00,01,01,00,00,\
  00,00,00,05,12,00,00,00
 
EndRegedit:
Reboot:

*****************

Registry ====> Operazione completata.

 

The system needed a reboot.

==== End of Fixlog 00:31:44 ====

Link to post
Share on other sites

Hiya Facco,

No I did not want the fix running again, I want you to run Farbar service scanner to see if the registry fix has help.. here are instructions again..

Run Farbar Service Scanner once more...

Make sure the following options are checked:
 

  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Windows Defender

 

  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Thanks,

Kevin

Link to post
Share on other sites

My bad man, never used so many programs in one day, i was mixing them up

here's the report

 

Farbar Service Scanner Version: 14-12-2019
Ran by simon (administrator) on 17-07-2020 at 00:50:50
Running from "C:\Users\simon\Desktop\Farbar"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv: "%systemroot%\system32\svchost.exe -k netsvcs -p".
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe"".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

Link to post
Share on other sites

Still a problem with the Firewall, Windows Defender is currently disabled, that will have been done when you installed Avast, can be left alone..

Back to the Firewall, Open Malwarebytes Support Tool, select "Advanced" in the new window under "Repair System" select "Windows Firewall" then select "Repair System"...

Reboot your system when that completes....

Next,

Run Farbar Service Scanner again and post a fresh log, lets see if the firewall issue is fixed...

its after midnight local time for me, off to be for some sleep.... Catch up later....

MSTool.JPG

Link to post
Share on other sites

Good morning Kevin, yes was midnight also here, i went to sleep too :)

So, when i press repair system it says "registry back up failed, continue?" and pressed yes, it reboot, and i was very happy to se in the moment i log in my account the window of windows firewell asking me to allow a couple of programs.

so, thats the report of MB support tools

MBST Fix Results Log Version: 1.6.2.802
Date/Time Log Created: 2020-07-17 11:08:57.345
User Account Type: Admin
Operating System: Windows 10 Version 1903 x64

2020-07-17 11:08:57.924   Repair 1: Firewall
2020-07-17 11:08:57.925   =========================
2020-07-17 11:08:57.925   Starting Firewall repair process.
2020-07-17 11:08:57.926   Stopping Windows Firewall service.
2020-07-17 11:08:57.926   Resetting service configuration for Windows Firewall service.
2020-07-17 11:08:57.935   Restoring default registry settings
2020-07-17 11:09:01.160   Unable to open service mpsdrv. Error: Access is denied.(error=5)
2020-07-17 11:09:01.161   Stopping Windows Firewall Authorization driver.
2020-07-17 11:09:01.161   Stopping Internet Connection Sharing service.
2020-07-17 11:09:01.161   Resetting configuration for Internet Connection Sharing service.
2020-07-17 11:09:01.164   Restoring default registry settings
2020-07-17 11:09:01.382   Scanning C:\WINDOWS\system32\mpssvc.dll
2020-07-17 11:09:03.939   Protezione risorse di Windows: nessuna violazione di integrità trovata.
2020-07-17 11:09:03.939   Scanning C:\WINDOWS\system32\ipnathlp.dll
2020-07-17 11:09:04.247   Protezione risorse di Windows: nessuna violazione di integrità trovata.
2020-07-17 11:09:04.366   Attempting to start mpssvc service
2020-07-17 11:09:04.367   Failed to start mpssvc service. Error: The service start failed since one or more services in the same process have an incompatible service SID type setting. A service with restricted service SID typ
2020-07-17 11:09:04.367   Attempting to start mpsdrv service
2020-07-17 11:09:04.367   Attempting to start sharedaccess service
2020-07-17 11:09:04.368   Failed to start sharedaccess service. Error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.(error=1058)
2020-07-17 11:09:04.368   Attempting to start mpssvc service
2020-07-17 11:09:04.368   Attempted to start service successfully
2020-07-17 11:09:34.386   mpssvc service didn't start after 30 seconds

 

And this is FARBAR

Farbar Service Scanner Version: 14-12-2019
Ran by simon (administrator) on 17-07-2020 at 11:17:10
Running from "C:\Users\simon\Desktop\Farbar"
Microsoft Windows 10 Pro  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe"".


Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

It looks like it works

Link to post
Share on other sites

Hello Facco

The only outstanding issue is Windows Defender, that is currently disabled. Not really sure but probably Avast will have made that change. We can reset that if you want... Other than that your system should work ok for you now.

However, i`d like to run another AV scan to make sure we`ve definitely cleaned your system. I guess the hardest part was sorting out the required registry changes...

Download Sophos Free Virus Removal Tool and save it to your desktop.

If your security alerts to this scan either accept the alert or turn off your security to allow Sophos to run and complete.....

Please Do Not use your PC whilst the scan is in progress.... This scan is very thorough so may take several hours...
 
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
  • If no threats were found please confirm that result....



The Virus Removal Tool scans the following areas of your computer:
  • Memory, including system memory on 32-bit (x86) versions of Windows
  • The Windows registry
  • All local hard drives, fixed and removable
  • Mapped network drives are not scanned.



Note: If threats are found in the computer memory, the scan stops. This is because further scanning could enable the threat to spread. You will be asked to click Start Cleanup to remove the threats before continuing the scan.

Saved logs are found here: C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Thank you,

Kevin

 

Link to post
Share on other sites

Update2

It looks perfect like i told you for my account, but not for my parents account, i cannot open photos and i have an error message when i click on windows store :(

shouli i repeat some of the passages from the other account?

Link to post
Share on other sites

8 minutes ago, kevinf80 said:

The only outstanding issue is Windows Defender, that is currently disabled. Not really sure but probably Avast will have made that change. We can reset that if you want... Other than that your system should work ok for you now.

Could it be the fact that MB is installed and has "priority" on defender? (check photo). Yes, at this point i would like to do everything we can

Anyway im starting Sophos now, i will let you know how it goes

Immagine.jpg

Link to post
Share on other sites

Scan complete, 1 threat (Mal/Generic-S)

 

2020-07-17 09:52:26.359    Sophos Virus Removal Tool version 2.8.0
2020-07-17 09:52:26.359    Copyright (c) 2009-2020 Sophos Limited. All rights reserved.

2020-07-17 09:52:26.359    This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-07-17 09:52:26.359    Windows version 6.2 SP 0.0  build 9200 SM=0x100 PT=0x1 WOW64
2020-07-17 09:52:26.360    Checking for updates...
2020-07-17 09:52:26.376    Update progress: proxy server not available
2020-07-17 09:52:30.838    Downloading updates...
2020-07-17 09:52:30.842    Update progress: [I96736] sdds.svrt_v1.18: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2020-07-17 09:52:30.842    Update progress: [I95020] sdds.svrt_v1.18: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-07-17 09:52:30.842    Update progress: [I22529] sdds.svrt_v1.18: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2020-07-17 09:52:30.842    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2020-07-17 09:52:30.842    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 32 ms
2020-07-17 09:52:30.842    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0f3dddc44b9396544c12f1710845d61cx000.xml: 3817 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0f3dddc44b9396544c12f1710845d61cx000.xml: 15 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b23f73fddef0bd869baa8c4122da61a5x000.xml: 8673 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b23f73fddef0bd869baa8c4122da61a5x000.xml: 0 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE579/be72557af274465f55bb90d707222bcex000.xml: 590 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE579/be72557af274465f55bb90d707222bcex000.xml: 16 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 0 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 601 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 15 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 601 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 31 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 601 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 16 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 16 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 15 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 16 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 0 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 0 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE570/c4215464d25d3865903108d821935879x000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE570/c4215464d25d3865903108d821935879x000.xml: 31 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 15 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 0 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE578/ca9e0f5f94e8660ef5147d497431b469x000.xml: 3539 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE578/ca9e0f5f94e8660ef5147d497431b469x000.xml: 0 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 155b3a95d5b0e4846854a9243c74ddcdx000.xml: 615 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 155b3a95d5b0e4846854a9243c74ddcdx000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7053105889eb8d37f0ff3e14e00cb32ex000.xml: 320 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7053105889eb8d37f0ff3e14e00cb32ex000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 31 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 0 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 15 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 16 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 1027 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 16 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76f3567164278171cca28fc8121461d1x000.xml: 338 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76f3567164278171cca28fc8121461d1x000.xml: 0 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 1027 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 0 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85126464fb11fca22421b7a21742a6adx000.xml: 338 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85126464fb11fca22421b7a21742a6adx000.xml: 16 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d48b68b7041bde7c1484c5cb94897672x000.xml: 1027 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d48b68b7041bde7c1484c5cb94897672x000.xml: 16 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28bb8eb241a254452f85129686b027e5x000.xml: 338 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28bb8eb241a254452f85129686b027e5x000.xml: 15 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 1027 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 0 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2302ad75630d4b58cca278062b8b5de4x000.xml: 338 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2302ad75630d4b58cca278062b8b5de4x000.xml: 31 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 985d7fdf3a8062434d72516f5baed879x000.xml: 1027 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 985d7fdf3a8062434d72516f5baed879x000.xml: 16 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa703f2a2b1a92c90674ad451a16034cx000.xml: 338 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa703f2a2b1a92c90674ad451a16034cx000.xml: 16 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 1027 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 0 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9bb8aeca1b234665832ec72c609610cex000.xml: 338 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9bb8aeca1b234665832ec72c609610cex000.xml: 15 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa6f963652fadc6cdeff28b207423ccbx000.xml: 1027 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa6f963652fadc6cdeff28b207423ccbx000.xml: 16 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2604e1b742f72c5b2358230ceb552befx000.xml: 338 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2604e1b742f72c5b2358230ceb552befx000.xml: 16 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 87666e9540b89546868b55d119c7b029x000.xml: 1027 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 87666e9540b89546868b55d119c7b029x000.xml: 0 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 332f16f3f32467ddbe44773d18577bccx000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 332f16f3f32467ddbe44773d18577bccx000.xml: 15 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d237963bb731cbdbc601999032c52b9fx000.xml: 1027 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d237963bb731cbdbc601999032c52b9fx000.xml: 47 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f69ad668e95e36fbcf54a28cc37044bax000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f69ad668e95e36fbcf54a28cc37044bax000.xml: 16 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f22440c76fa98b33be36804ffa922b99x000.xml: 1027 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f22440c76fa98b33be36804ffa922b99x000.xml: 31 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 31 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a13db9de3890166bfd908f854b655c37x000.xml: 1027 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a13db9de3890166bfd908f854b655c37x000.xml: 16 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 15 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7009c81b29e1d232da816176e143ae49x000.xml: 1027 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7009c81b29e1d232da816176e143ae49x000.xml: 16 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 338 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 16 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb1a3889dd6856fef81cf1de2f6bf966x000.xml: 877 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb1a3889dd6856fef81cf1de2f6bf966x000.xml: 15 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 83fd2a6af7297f8b3ee58e548f551792x000.xml: 335 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 83fd2a6af7297f8b3ee58e548f551792x000.xml: 16 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5bf62b7346705127c19208552f287897x000.xml: 877 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5bf62b7346705127c19208552f287897x000.xml: 0 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5b21ec0740676b78981788d6bbce1cb1x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5b21ec0740676b78981788d6bbce1cb1x000.xml: 0 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4ca5415baa8b785bdfff7cb89137c019x000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4ca5415baa8b785bdfff7cb89137c019x000.xml: 15 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5a015cf0609cb2fb0a7682bb97af4c98x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5a015cf0609cb2fb0a7682bb97af4c98x000.xml: 16 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 114c4f2901d8c867aa12bdb251967a5cx000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 114c4f2901d8c867aa12bdb251967a5cx000.xml: 0 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: faa096583f8b3cdf8e5847c34ea0419bx000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: faa096583f8b3cdf8e5847c34ea0419bx000.xml: 15 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 380506f6545573446dc76ddcad5b9c59x000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 380506f6545573446dc76ddcad5b9c59x000.xml: 16 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1317bf2b4970d9f5f29b1c1576fdd5e2x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1317bf2b4970d9f5f29b1c1576fdd5e2x000.xml: 16 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb27262dc102807ded0f204e5cfbfddex000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb27262dc102807ded0f204e5cfbfddex000.xml: 0 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d22ccc14c24df55e6845e27decd32f13x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d22ccc14c24df55e6845e27decd32f13x000.xml: 0 ms
2020-07-17 09:52:30.852    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6503dd7d00d7a127b75a927ac250c378x000.xml: 1027 bytes
2020-07-17 09:52:30.852    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6503dd7d00d7a127b75a927ac250c378x000.xml: 16 ms
2020-07-17 09:52:30.852    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c2d51f32bfd445aeba72b8b5228d1392x000.xml: 335 bytes
2020-07-17 09:52:30.852    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c2d51f32bfd445aeba72b8b5228d1392x000.xml: 16 ms
2020-07-17 09:52:30.852    Update progress: [I49502] sdds.data0910.xml: found supplement IDE577 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2020-07-17 09:52:30.852    Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE577 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE577 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I49502] sdds.data0910.xml: found supplement IDE578 LATEST path= baseVersion= [included from product IDE577 LATEST path=]
2020-07-17 09:52:30.852    Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE578 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE578 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I49502] sdds.data0910.xml: found supplement IDE579 LATEST path= baseVersion= [included from product IDE578 LATEST path=]
2020-07-17 09:52:30.852    Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE579 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE579 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-07-17 09:52:30.852    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 66576692d59fc6bca90a40009920c658x000.xml: 57194 bytes
2020-07-17 09:52:30.852    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 66576692d59fc6bca90a40009920c658x000.xml: 46 ms
2020-07-17 09:52:30.852    Update progress: [I19463] Product download size 172271185 bytes
2020-07-17 09:52:34.094    Option all = no
2020-07-17 09:52:34.094    Option recurse = yes
2020-07-17 09:52:34.094    Option archive = no
2020-07-17 09:52:34.094    Option service = yes
2020-07-17 09:52:34.094    Option confirm = yes
2020-07-17 09:52:34.094    Option sxl = yes
2020-07-17 09:52:34.096    Option max-data-age = 35
2020-07-17 09:52:34.096    Option vdl-logging = yes
2020-07-17 09:52:34.101    Customer ID:    094260ca9b3af99f9d4a3909fc47a743
2020-07-17 09:52:34.101    Machine ID:    487009ed1ee34abfbf94813e4f47dbbf
2020-07-17 09:52:34.102    Component SVRTcli.exe version 2.8.0
2020-07-17 09:52:34.102    Component control.dll version 2.8.0
2020-07-17 09:52:34.102    Component SVRTservice.exe version 2.8.0
2020-07-17 09:52:34.102    Component engine\osdp.dll version 1.44.1.2490
2020-07-17 09:52:34.103    Component engine\veex.dll version 3.79.0.2490
2020-07-17 09:52:34.103    Component engine\savi.dll version 9.0.20.2490
2020-07-17 09:52:34.103    Component rkdisk.dll version 1.5.33.1
2020-07-17 09:52:34.103    Version info:    Product version    2.8.0
2020-07-17 09:52:34.103    Version info:    Detection engine    3.79.0
2020-07-17 09:52:34.103    Version info:    Detection data    5.76
2020-07-17 09:52:34.103    Version info:    Build date    6/23/2020
2020-07-17 09:52:34.103    Version info:    Data files added    200
2020-07-17 09:52:34.104    Version info:    Last successful update    (not yet updated)
2020-07-17 09:52:38.677    Update progress: [I19463] Syncing product IDE577 LATEST path=
2020-07-17 09:52:38.677    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 41318 bytes
2020-07-17 09:52:38.677    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 16 ms
2020-07-17 09:52:38.677    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c70b659f054f6b98bc0bc13c4ee59aex000.xml: 397 bytes
2020-07-17 09:52:38.678    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c70b659f054f6b98bc0bc13c4ee59aex000.xml: 15 ms
2020-07-17 09:52:38.678    Update progress: [I19463] Product download size 2064809 bytes
2020-07-17 09:52:39.261    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32c65e480133a28f064677a5d31a298ex000.xml: 4619 bytes
2020-07-17 09:52:39.261    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32c65e480133a28f064677a5d31a298ex000.xml: 16 ms
2020-07-17 09:52:39.285    Update progress: [I19463] Syncing product IDE578 LATEST path=
2020-07-17 09:52:39.285    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8e0b0f72e80f3f9f3568ecdef364cb36x000.xml: 8571 bytes
2020-07-17 09:52:39.285    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8e0b0f72e80f3f9f3568ecdef364cb36x000.xml: 16 ms
2020-07-17 09:52:39.286    Update progress: [I19463] Product download size 441475 bytes
2020-07-17 09:52:39.384    Update progress: [I19463] Syncing product IDE579 LATEST path=
2020-07-17 09:52:39.385    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2020-07-17 09:52:39.385    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 16 ms
2020-07-17 09:52:39.467    Installing updates...
2020-07-17 09:52:40.072    Error level 1
2020-07-17 09:52:52.230    Update successful
2020-07-17 09:52:59.661    Option all = no
2020-07-17 09:52:59.661    Option recurse = yes
2020-07-17 09:52:59.661    Option archive = no
2020-07-17 09:52:59.662    Option service = yes
2020-07-17 09:52:59.662    Option confirm = yes
2020-07-17 09:52:59.662    Option sxl = yes
2020-07-17 09:52:59.663    Option max-data-age = 35
2020-07-17 09:52:59.663    Option vdl-logging = yes
2020-07-17 09:52:59.668    Customer ID:    094260ca9b3af99f9d4a3909fc47a743
2020-07-17 09:52:59.668    Machine ID:    487009ed1ee34abfbf94813e4f47dbbf
2020-07-17 09:52:59.668    Component SVRTcli.exe version 2.8.0
2020-07-17 09:52:59.668    Component control.dll version 2.8.0
2020-07-17 09:52:59.669    Component SVRTservice.exe version 2.8.0
2020-07-17 09:52:59.669    Component engine\osdp.dll version 1.44.1.2490
2020-07-17 09:52:59.669    Component engine\veex.dll version 3.79.0.2490
2020-07-17 09:52:59.669    Component engine\savi.dll version 9.0.20.2490
2020-07-17 09:52:59.669    Component rkdisk.dll version 1.5.33.1
2020-07-17 09:52:59.669    Version info:    Product version    2.8.0
2020-07-17 09:52:59.669    Version info:    Detection engine    3.79.0
2020-07-17 09:52:59.670    Version info:    Detection data    5.76
2020-07-17 09:52:59.670    Version info:    Build date    6/23/2020
2020-07-17 09:52:59.670    Version info:    Data files added    200
2020-07-17 09:52:59.670    Version info:    Last successful update    7/17/2020 11:52:52 AM

2020-07-17 10:08:08.770    Could not open C:\hiberfil.sys
2020-07-17 10:08:08.814    Could not open C:\pagefile.sys
2020-07-17 10:08:15.423    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-console-l1-1-0.dll
2020-07-17 10:08:15.424    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-datetime-l1-1-0.dll
2020-07-17 10:08:15.424    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-debug-l1-1-0.dll
2020-07-17 10:08:15.425    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-errorhandling-l1-1-0.dll
2020-07-17 10:08:15.426    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-file-l1-1-0.dll
2020-07-17 10:08:15.426    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-17 10:08:15.427    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-17 10:08:15.427    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-handle-l1-1-0.dll
2020-07-17 10:08:15.428    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-heap-l1-1-0.dll
2020-07-17 10:08:15.428    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-interlocked-l1-1-0.dll
2020-07-17 10:08:15.429    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-libraryloader-l1-1-0.dll
2020-07-17 10:08:15.429    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-17 10:08:15.430    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-memory-l1-1-0.dll
2020-07-17 10:08:15.430    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-namedpipe-l1-1-0.dll
2020-07-17 10:08:15.431    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-processenvironment-l1-1-0.dll
2020-07-17 10:08:15.431    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-0.dll
2020-07-17 10:08:15.432    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-17 10:08:15.432    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-profile-l1-1-0.dll
2020-07-17 10:08:15.433    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-07-17 10:08:15.433    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-string-l1-1-0.dll
2020-07-17 10:08:15.434    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-synch-l1-1-0.dll
2020-07-17 10:08:15.434    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-17 10:08:15.435    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-sysinfo-l1-1-0.dll
2020-07-17 10:08:15.436    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-17 10:08:15.436    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-util-l1-1-0.dll
2020-07-17 10:08:15.437    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-conio-l1-1-0.dll
2020-07-17 10:08:15.437    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-17 10:08:15.438    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-07-17 10:08:15.438    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-07-17 10:08:15.439    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-17 10:08:15.439    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-07-17 10:08:15.440    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-07-17 10:08:15.440    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-07-17 10:08:15.441    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-private-l1-1-0.dll
2020-07-17 10:08:15.441    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-process-l1-1-0.dll
2020-07-17 10:08:15.442    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-17 10:08:15.442    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-17 10:08:15.443    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-17 10:08:15.443    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-07-17 10:08:15.444    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-07-17 10:08:15.445    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\concrt140.dll
2020-07-17 10:08:15.445    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\msvcp140.dll
2020-07-17 10:08:15.445    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\ucrtbase.dll
2020-07-17 10:08:15.446    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\vcruntime140.dll
2020-07-17 10:08:15.447    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\vcruntime140_1.dll
2020-07-17 10:15:23.181    Could not open C:\swapfile.sys
2020-07-17 10:17:39.927    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\GameBarElevatedFT_Alias.exe
2020-07-17 10:17:39.929    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2020-07-17 10:17:39.930    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2020-07-17 10:17:39.932    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-07-17 10:17:39.935    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.XboxGamingOverlay_8wekyb3d8bbwe\GameBarElevatedFT_Alias.exe
2020-07-17 10:17:39.935    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-07-17 10:17:39.936    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\python.exe
2020-07-17 10:17:39.936    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\python3.exe
2020-07-17 10:17:39.937    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Spotify.exe
2020-07-17 10:17:39.939    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\SpotifyAB.SpotifyMusic_zpdnekdrzrea0\Spotify.exe
2020-07-17 10:19:08.603    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.603    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
2020-07-17 10:19:08.605    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin
2020-07-17 10:19:08.605    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin
2020-07-17 10:19:44.871    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\GameBarElevatedFT_Alias.exe
2020-07-17 10:19:44.873    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2020-07-17 10:19:44.874    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2020-07-17 10:19:44.876    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-07-17 10:19:44.879    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.XboxGamingOverlay_8wekyb3d8bbwe\GameBarElevatedFT_Alias.exe
2020-07-17 10:19:44.879    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-07-17 10:19:44.880    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\python.exe
2020-07-17 10:19:44.880    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\python3.exe
2020-07-17 10:19:44.881    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Spotify.exe
2020-07-17 10:19:44.883    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\SpotifyAB.SpotifyMusic_zpdnekdrzrea0\Spotify.exe
2020-07-17 10:20:25.048    Could not open C:\Users\simon\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
2020-07-17 10:20:25.052    Could not open C:\Users\simon\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
2020-07-17 10:26:37.731    Could not open C:\Windows\System32\config\BBI
2020-07-17 11:00:35.667    Could not open LOGICAL:0005:00000000
2020-07-17 11:00:35.670    Could not open F:\
2020-07-17 11:00:35.670    Could not open LOGICAL:0007:00000000
2020-07-17 11:00:35.671    Could not open H:\
2020-07-17 11:00:35.799    The following items will be cleaned up:
2020-07-17 11:00:35.799    Mal/Generic-S

 

 

 

Starting clean-up now

 

Link to post
Share on other sites

Post-clean report

 

2020-07-17 09:52:26.359    Sophos Virus Removal Tool version 2.8.0
2020-07-17 09:52:26.359    Copyright (c) 2009-2020 Sophos Limited. All rights reserved.

2020-07-17 09:52:26.359    This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2020-07-17 09:52:26.359    Windows version 6.2 SP 0.0  build 9200 SM=0x100 PT=0x1 WOW64
2020-07-17 09:52:26.360    Checking for updates...
2020-07-17 09:52:26.376    Update progress: proxy server not available
2020-07-17 09:52:30.838    Downloading updates...
2020-07-17 09:52:30.842    Update progress: [I96736] sdds.svrt_v1.18: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2020-07-17 09:52:30.842    Update progress: [I95020] sdds.svrt_v1.18: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-07-17 09:52:30.842    Update progress: [I22529] sdds.svrt_v1.18: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2020-07-17 09:52:30.842    Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2020-07-17 09:52:30.842    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2020-07-17 09:52:30.842    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 32 ms
2020-07-17 09:52:30.842    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0f3dddc44b9396544c12f1710845d61cx000.xml: 3817 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0f3dddc44b9396544c12f1710845d61cx000.xml: 15 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b23f73fddef0bd869baa8c4122da61a5x000.xml: 8673 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b23f73fddef0bd869baa8c4122da61a5x000.xml: 0 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE579/be72557af274465f55bb90d707222bcex000.xml: 590 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE579/be72557af274465f55bb90d707222bcex000.xml: 16 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 598 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: SXLSUP/9658bb75e4104455fe802645d41af3dax000.xml: 0 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 601 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE565/1ce171d7f5b9565065bf17a44774f0a1x000.xml: 15 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 601 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE569/248a1f9123c16937d1a142b9bd2a4596x000.xml: 31 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 601 bytes
2020-07-17 09:52:30.843    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE572/4ab07c00d79967fb6508f55710ec9b42x000.xml: 16 ms
2020-07-17 09:52:30.843    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE577/55f0b0a4e526c2d0401e01357d48129ax000.xml: 16 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE567/7b23de79c99d2127137bb3a2e2e9ab95x000.xml: 15 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE573/7ba8e288e69480f63603dae9299d2bbfx000.xml: 16 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE576/7ed1ad18698b36122cfd3eb25407d6e6x000.xml: 0 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE568/848b908325eda99060171b6fb57a995dx000.xml: 0 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE570/c4215464d25d3865903108d821935879x000.xml: 601 bytes
2020-07-17 09:52:30.844    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE570/c4215464d25d3865903108d821935879x000.xml: 31 ms
2020-07-17 09:52:30.844    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE574/ccfbc65ac586329407a2efa32e204976x000.xml: 15 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/d051415c7c83e949b41461e8db404aedx000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE571/edf129287364b01442832aa2cf0459d1x000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 601 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE575/f655ae2aebfe5da4ab6db868c674ba43x000.xml: 0 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE578/ca9e0f5f94e8660ef5147d497431b469x000.xml: 3539 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE578/ca9e0f5f94e8660ef5147d497431b469x000.xml: 0 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 155b3a95d5b0e4846854a9243c74ddcdx000.xml: 615 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 155b3a95d5b0e4846854a9243c74ddcdx000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7053105889eb8d37f0ff3e14e00cb32ex000.xml: 320 bytes
2020-07-17 09:52:30.845    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7053105889eb8d37f0ff3e14e00cb32ex000.xml: 16 ms
2020-07-17 09:52:30.845    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 31 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 0 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 15 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 16 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 1027 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6af07560e7f7cbe00e191bfa0abee6e0x000.xml: 16 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76f3567164278171cca28fc8121461d1x000.xml: 338 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76f3567164278171cca28fc8121461d1x000.xml: 0 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 1027 bytes
2020-07-17 09:52:30.846    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c3ddc48c2d025297a730e04edc5f3b2x000.xml: 0 ms
2020-07-17 09:52:30.846    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 85126464fb11fca22421b7a21742a6adx000.xml: 338 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 85126464fb11fca22421b7a21742a6adx000.xml: 16 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d48b68b7041bde7c1484c5cb94897672x000.xml: 1027 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d48b68b7041bde7c1484c5cb94897672x000.xml: 16 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28bb8eb241a254452f85129686b027e5x000.xml: 338 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28bb8eb241a254452f85129686b027e5x000.xml: 15 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 1027 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 78c5bd6e43890df1ecf3457a9b5a5dd1x000.xml: 0 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2302ad75630d4b58cca278062b8b5de4x000.xml: 338 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2302ad75630d4b58cca278062b8b5de4x000.xml: 31 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 985d7fdf3a8062434d72516f5baed879x000.xml: 1027 bytes
2020-07-17 09:52:30.847    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 985d7fdf3a8062434d72516f5baed879x000.xml: 16 ms
2020-07-17 09:52:30.847    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa703f2a2b1a92c90674ad451a16034cx000.xml: 338 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa703f2a2b1a92c90674ad451a16034cx000.xml: 16 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 1027 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a074ff18c7f3222667dc2edfa46e75fx000.xml: 0 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9bb8aeca1b234665832ec72c609610cex000.xml: 338 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9bb8aeca1b234665832ec72c609610cex000.xml: 15 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa6f963652fadc6cdeff28b207423ccbx000.xml: 1027 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa6f963652fadc6cdeff28b207423ccbx000.xml: 16 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2604e1b742f72c5b2358230ceb552befx000.xml: 338 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2604e1b742f72c5b2358230ceb552befx000.xml: 16 ms
2020-07-17 09:52:30.848    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 87666e9540b89546868b55d119c7b029x000.xml: 1027 bytes
2020-07-17 09:52:30.848    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 87666e9540b89546868b55d119c7b029x000.xml: 0 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 332f16f3f32467ddbe44773d18577bccx000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 332f16f3f32467ddbe44773d18577bccx000.xml: 15 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d237963bb731cbdbc601999032c52b9fx000.xml: 1027 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d237963bb731cbdbc601999032c52b9fx000.xml: 47 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f69ad668e95e36fbcf54a28cc37044bax000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f69ad668e95e36fbcf54a28cc37044bax000.xml: 16 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f22440c76fa98b33be36804ffa922b99x000.xml: 1027 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f22440c76fa98b33be36804ffa922b99x000.xml: 31 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 677c6984b6b0fcb32a84bb4f05a2e35ax000.xml: 31 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a13db9de3890166bfd908f854b655c37x000.xml: 1027 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a13db9de3890166bfd908f854b655c37x000.xml: 16 ms
2020-07-17 09:52:30.849    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 338 bytes
2020-07-17 09:52:30.849    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fc4049d7c7119b0048a7d49548ad3f97x000.xml: 15 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7009c81b29e1d232da816176e143ae49x000.xml: 1027 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7009c81b29e1d232da816176e143ae49x000.xml: 16 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 338 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 51d6e7beb10ae1cf1b534f59c6e58e86x000.xml: 16 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb1a3889dd6856fef81cf1de2f6bf966x000.xml: 877 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb1a3889dd6856fef81cf1de2f6bf966x000.xml: 15 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 83fd2a6af7297f8b3ee58e548f551792x000.xml: 335 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 83fd2a6af7297f8b3ee58e548f551792x000.xml: 16 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5bf62b7346705127c19208552f287897x000.xml: 877 bytes
2020-07-17 09:52:30.850    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5bf62b7346705127c19208552f287897x000.xml: 0 ms
2020-07-17 09:52:30.850    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5b21ec0740676b78981788d6bbce1cb1x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5b21ec0740676b78981788d6bbce1cb1x000.xml: 0 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4ca5415baa8b785bdfff7cb89137c019x000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4ca5415baa8b785bdfff7cb89137c019x000.xml: 15 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5a015cf0609cb2fb0a7682bb97af4c98x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5a015cf0609cb2fb0a7682bb97af4c98x000.xml: 16 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 114c4f2901d8c867aa12bdb251967a5cx000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 114c4f2901d8c867aa12bdb251967a5cx000.xml: 0 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: faa096583f8b3cdf8e5847c34ea0419bx000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: faa096583f8b3cdf8e5847c34ea0419bx000.xml: 15 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 380506f6545573446dc76ddcad5b9c59x000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 380506f6545573446dc76ddcad5b9c59x000.xml: 16 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1317bf2b4970d9f5f29b1c1576fdd5e2x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1317bf2b4970d9f5f29b1c1576fdd5e2x000.xml: 16 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb27262dc102807ded0f204e5cfbfddex000.xml: 877 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb27262dc102807ded0f204e5cfbfddex000.xml: 0 ms
2020-07-17 09:52:30.851    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d22ccc14c24df55e6845e27decd32f13x000.xml: 335 bytes
2020-07-17 09:52:30.851    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d22ccc14c24df55e6845e27decd32f13x000.xml: 0 ms
2020-07-17 09:52:30.852    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6503dd7d00d7a127b75a927ac250c378x000.xml: 1027 bytes
2020-07-17 09:52:30.852    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6503dd7d00d7a127b75a927ac250c378x000.xml: 16 ms
2020-07-17 09:52:30.852    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c2d51f32bfd445aeba72b8b5228d1392x000.xml: 335 bytes
2020-07-17 09:52:30.852    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c2d51f32bfd445aeba72b8b5228d1392x000.xml: 16 ms
2020-07-17 09:52:30.852    Update progress: [I49502] sdds.data0910.xml: found supplement IDE577 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2020-07-17 09:52:30.852    Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE577 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE577 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I49502] sdds.data0910.xml: found supplement IDE578 LATEST path= baseVersion= [included from product IDE577 LATEST path=]
2020-07-17 09:52:30.852    Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE578 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE578 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I49502] sdds.data0910.xml: found supplement IDE579 LATEST path= baseVersion= [included from product IDE578 LATEST path=]
2020-07-17 09:52:30.852    Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE579 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE579 LATEST path=
2020-07-17 09:52:30.852    Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2020-07-17 09:52:30.852    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 66576692d59fc6bca90a40009920c658x000.xml: 57194 bytes
2020-07-17 09:52:30.852    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 66576692d59fc6bca90a40009920c658x000.xml: 46 ms
2020-07-17 09:52:30.852    Update progress: [I19463] Product download size 172271185 bytes
2020-07-17 09:52:34.094    Option all = no
2020-07-17 09:52:34.094    Option recurse = yes
2020-07-17 09:52:34.094    Option archive = no
2020-07-17 09:52:34.094    Option service = yes
2020-07-17 09:52:34.094    Option confirm = yes
2020-07-17 09:52:34.094    Option sxl = yes
2020-07-17 09:52:34.096    Option max-data-age = 35
2020-07-17 09:52:34.096    Option vdl-logging = yes
2020-07-17 09:52:34.101    Customer ID:    094260ca9b3af99f9d4a3909fc47a743
2020-07-17 09:52:34.101    Machine ID:    487009ed1ee34abfbf94813e4f47dbbf
2020-07-17 09:52:34.102    Component SVRTcli.exe version 2.8.0
2020-07-17 09:52:34.102    Component control.dll version 2.8.0
2020-07-17 09:52:34.102    Component SVRTservice.exe version 2.8.0
2020-07-17 09:52:34.102    Component engine\osdp.dll version 1.44.1.2490
2020-07-17 09:52:34.103    Component engine\veex.dll version 3.79.0.2490
2020-07-17 09:52:34.103    Component engine\savi.dll version 9.0.20.2490
2020-07-17 09:52:34.103    Component rkdisk.dll version 1.5.33.1
2020-07-17 09:52:34.103    Version info:    Product version    2.8.0
2020-07-17 09:52:34.103    Version info:    Detection engine    3.79.0
2020-07-17 09:52:34.103    Version info:    Detection data    5.76
2020-07-17 09:52:34.103    Version info:    Build date    6/23/2020
2020-07-17 09:52:34.103    Version info:    Data files added    200
2020-07-17 09:52:34.104    Version info:    Last successful update    (not yet updated)
2020-07-17 09:52:38.677    Update progress: [I19463] Syncing product IDE577 LATEST path=
2020-07-17 09:52:38.677    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 41318 bytes
2020-07-17 09:52:38.677    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: de685a791066b4c3c2aad0c0f5ee0a97x000.xml: 16 ms
2020-07-17 09:52:38.677    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6c70b659f054f6b98bc0bc13c4ee59aex000.xml: 397 bytes
2020-07-17 09:52:38.678    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6c70b659f054f6b98bc0bc13c4ee59aex000.xml: 15 ms
2020-07-17 09:52:38.678    Update progress: [I19463] Product download size 2064809 bytes
2020-07-17 09:52:39.261    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32c65e480133a28f064677a5d31a298ex000.xml: 4619 bytes
2020-07-17 09:52:39.261    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32c65e480133a28f064677a5d31a298ex000.xml: 16 ms
2020-07-17 09:52:39.285    Update progress: [I19463] Syncing product IDE578 LATEST path=
2020-07-17 09:52:39.285    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8e0b0f72e80f3f9f3568ecdef364cb36x000.xml: 8571 bytes
2020-07-17 09:52:39.285    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8e0b0f72e80f3f9f3568ecdef364cb36x000.xml: 16 ms
2020-07-17 09:52:39.286    Update progress: [I19463] Product download size 441475 bytes
2020-07-17 09:52:39.384    Update progress: [I19463] Syncing product IDE579 LATEST path=
2020-07-17 09:52:39.385    Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2020-07-17 09:52:39.385    Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 16 ms
2020-07-17 09:52:39.467    Installing updates...
2020-07-17 09:52:40.072    Error level 1
2020-07-17 09:52:52.230    Update successful
2020-07-17 09:52:59.661    Option all = no
2020-07-17 09:52:59.661    Option recurse = yes
2020-07-17 09:52:59.661    Option archive = no
2020-07-17 09:52:59.662    Option service = yes
2020-07-17 09:52:59.662    Option confirm = yes
2020-07-17 09:52:59.662    Option sxl = yes
2020-07-17 09:52:59.663    Option max-data-age = 35
2020-07-17 09:52:59.663    Option vdl-logging = yes
2020-07-17 09:52:59.668    Customer ID:    094260ca9b3af99f9d4a3909fc47a743
2020-07-17 09:52:59.668    Machine ID:    487009ed1ee34abfbf94813e4f47dbbf
2020-07-17 09:52:59.668    Component SVRTcli.exe version 2.8.0
2020-07-17 09:52:59.668    Component control.dll version 2.8.0
2020-07-17 09:52:59.669    Component SVRTservice.exe version 2.8.0
2020-07-17 09:52:59.669    Component engine\osdp.dll version 1.44.1.2490
2020-07-17 09:52:59.669    Component engine\veex.dll version 3.79.0.2490
2020-07-17 09:52:59.669    Component engine\savi.dll version 9.0.20.2490
2020-07-17 09:52:59.669    Component rkdisk.dll version 1.5.33.1
2020-07-17 09:52:59.669    Version info:    Product version    2.8.0
2020-07-17 09:52:59.669    Version info:    Detection engine    3.79.0
2020-07-17 09:52:59.670    Version info:    Detection data    5.76
2020-07-17 09:52:59.670    Version info:    Build date    6/23/2020
2020-07-17 09:52:59.670    Version info:    Data files added    200
2020-07-17 09:52:59.670    Version info:    Last successful update    7/17/2020 11:52:52 AM

2020-07-17 10:08:08.770    Could not open C:\hiberfil.sys
2020-07-17 10:08:08.814    Could not open C:\pagefile.sys
2020-07-17 10:08:15.423    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-console-l1-1-0.dll
2020-07-17 10:08:15.424    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-datetime-l1-1-0.dll
2020-07-17 10:08:15.424    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-debug-l1-1-0.dll
2020-07-17 10:08:15.425    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-errorhandling-l1-1-0.dll
2020-07-17 10:08:15.426    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-file-l1-1-0.dll
2020-07-17 10:08:15.426    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-17 10:08:15.427    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-17 10:08:15.427    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-handle-l1-1-0.dll
2020-07-17 10:08:15.428    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-heap-l1-1-0.dll
2020-07-17 10:08:15.428    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-interlocked-l1-1-0.dll
2020-07-17 10:08:15.429    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-libraryloader-l1-1-0.dll
2020-07-17 10:08:15.429    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-17 10:08:15.430    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-memory-l1-1-0.dll
2020-07-17 10:08:15.430    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-namedpipe-l1-1-0.dll
2020-07-17 10:08:15.431    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-processenvironment-l1-1-0.dll
2020-07-17 10:08:15.431    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-0.dll
2020-07-17 10:08:15.432    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-17 10:08:15.432    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-profile-l1-1-0.dll
2020-07-17 10:08:15.433    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-07-17 10:08:15.433    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-string-l1-1-0.dll
2020-07-17 10:08:15.434    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-synch-l1-1-0.dll
2020-07-17 10:08:15.434    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-17 10:08:15.435    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-sysinfo-l1-1-0.dll
2020-07-17 10:08:15.436    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-17 10:08:15.436    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-core-util-l1-1-0.dll
2020-07-17 10:08:15.437    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-conio-l1-1-0.dll
2020-07-17 10:08:15.437    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-17 10:08:15.438    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2020-07-17 10:08:15.438    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2020-07-17 10:08:15.439    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-17 10:08:15.439    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2020-07-17 10:08:15.440    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2020-07-17 10:08:15.440    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2020-07-17 10:08:15.441    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-private-l1-1-0.dll
2020-07-17 10:08:15.441    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-process-l1-1-0.dll
2020-07-17 10:08:15.442    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-17 10:08:15.442    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-17 10:08:15.443    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-17 10:08:15.443    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2020-07-17 10:08:15.444    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2020-07-17 10:08:15.445    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\concrt140.dll
2020-07-17 10:08:15.445    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\msvcp140.dll
2020-07-17 10:08:15.445    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\ucrtbase.dll
2020-07-17 10:08:15.446    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\vcruntime140.dll
2020-07-17 10:08:15.447    Could not open C:\Program Files\Avast Software\Avast\1040\avast.local_vc142.crt\vcruntime140_1.dll
2020-07-17 10:15:23.181    Could not open C:\swapfile.sys
2020-07-17 10:17:39.927    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\GameBarElevatedFT_Alias.exe
2020-07-17 10:17:39.929    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2020-07-17 10:17:39.930    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2020-07-17 10:17:39.932    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-07-17 10:17:39.935    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Microsoft.XboxGamingOverlay_8wekyb3d8bbwe\GameBarElevatedFT_Alias.exe
2020-07-17 10:17:39.935    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-07-17 10:17:39.936    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\python.exe
2020-07-17 10:17:39.936    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\python3.exe
2020-07-17 10:17:39.937    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\Spotify.exe
2020-07-17 10:17:39.939    Could not open C:\Users\Pleba\AppData\Local\Microsoft\WindowsApps\SpotifyAB.SpotifyMusic_zpdnekdrzrea0\Spotify.exe
2020-07-17 10:19:08.603    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.603    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
2020-07-17 10:19:08.604    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA
2020-07-17 10:19:08.605    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin
2020-07-17 10:19:08.605    >>> Virus 'Mal/Generic-S' found in file HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin
2020-07-17 10:19:44.871    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\GameBarElevatedFT_Alias.exe
2020-07-17 10:19:44.873    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2020-07-17 10:19:44.874    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2020-07-17 10:19:44.876    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2020-07-17 10:19:44.879    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Microsoft.XboxGamingOverlay_8wekyb3d8bbwe\GameBarElevatedFT_Alias.exe
2020-07-17 10:19:44.879    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2020-07-17 10:19:44.880    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\python.exe
2020-07-17 10:19:44.880    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\python3.exe
2020-07-17 10:19:44.881    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\Spotify.exe
2020-07-17 10:19:44.883    Could not open C:\Users\simon\AppData\Local\Microsoft\WindowsApps\SpotifyAB.SpotifyMusic_zpdnekdrzrea0\Spotify.exe
2020-07-17 10:20:25.048    Could not open C:\Users\simon\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
2020-07-17 10:20:25.052    Could not open C:\Users\simon\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
2020-07-17 10:26:37.731    Could not open C:\Windows\System32\config\BBI
2020-07-17 11:00:35.667    Could not open LOGICAL:0005:00000000
2020-07-17 11:00:35.670    Could not open F:\
2020-07-17 11:00:35.670    Could not open LOGICAL:0007:00000000
2020-07-17 11:00:35.671    Could not open H:\
2020-07-17 11:00:35.799    The following items will be cleaned up:
2020-07-17 11:00:35.799    Mal/Generic-S
2020-07-17 11:09:07.160    Threat 'Mal/Generic-S' has been cleaned up.
2020-07-17 11:09:07.161    File "C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll" belongs to malware 'Mal/Generic-S'.
2020-07-17 11:09:07.161    File "C:\Users\simon\AppData\Local\8472740050B67B8A744E7A33AB3EF24E\Files\applications\25\Resources\[PServer]Load.dll" has been cleaned up.
2020-07-17 11:09:07.161    Removal successful
2020-07-17 11:09:07.626    Error level 0

 

Link to post
Share on other sites

Hiya Facco,

For your account do this:

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into. "Do not open that file when running FRST fix"
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Open FRST and press the Fix button just once and wait. The fix will force a reboot...
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Check if windows defender is now ok for you...

For your parents account, boot to that account:

Select > Start > scroll to and right click on "Photos" in the new window select > "More" > then "App Settings" In the new window scroll to "Repair" select that, it will try to repair the Photo app.

See if that fix works, if not do the same again but this select "Reset" see if that works. I`ll get back to on the Windows Store issue later, have to go out...

Thanks,

Kevin..

fixlist.txt

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.