Solved Cannot get rid of PUP.Optional virus

Judy K

TS Rookie
Packages:
=========
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1530.2.0_x86__kgqvnymyfvs32 [2019-06-13] (king.com)
Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_3.1.10383.1000_x86__8wekyb3d8bbwe [2019-06-08] (Microsoft Corporation)
Getting Started with Windows 8 -> C:\Program Files\WindowsApps\AD2F1837.GettingStartedwithWindows8_1.6.0.0_neutral__v10z8vjag6ke6 [2015-03-03] (Hewlett-Packard Company)
HP Registration -> C:\Program Files\WindowsApps\AD2F1837.HPRegistration_1.2.1.166_neutral__v10z8vjag6ke6 [2014-11-28] (Hewlett-Packard Company)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2019-05-22] (Instagram)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2015-06-20] (AMZN Mobile LLC)
LINE -> C:\Program Files\WindowsApps\NAVER.LINEwin8_5.17.1.0_x86__8ptj331gd3tyt [2019-06-13] (LINE Corporation)
Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe [2019-05-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2018-11-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-14] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-14] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.9.4100.0_x64__8wekyb3d8bbwe [2019-04-19] (Microsoft Studios) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.30.10924.0_x64__8wekyb3d8bbwe [2019-04-05] (Microsoft Corporation) [MS Ad]
Microsoft Phone -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Corporation)
Microsoft Phone Companion -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-16] (Microsoft Studios) [MS Ad]
MSN Food & Drink -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Health & Fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.29.10701.0_x64__8wekyb3d8bbwe [2019-03-23] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.28.3242.0_x64__8wekyb3d8bbwe [2018-12-16] (Microsoft Corporation) [MS Ad]
MSN Travel -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-14] (Microsoft Corporation) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
mZIP -> C:\Program Files\WindowsApps\28885zimmermann.mZIP_2.1.0.24_neutral__zw91z8z11he4m [2015-12-11] (zimmermann)
Norton Studio -> C:\Program Files\WindowsApps\SymantecCorporation.NortonStudio_2.2.0.0_x86__v68kp9n051hdp [2018-04-25] (Symantec Corporation)
Taptiles -> C:\Program Files\WindowsApps\Microsoft.Taptiles_2.6.288.0_x86__8wekyb3d8bbwe [2018-10-25] (Microsoft Studios) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Judy\Dropbox [2013-08-09 21:22]
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2446170218-512241896-1534691390-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-11] (CyberLink -> Cyberlink)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-12-03] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\NavShExt.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-11] (CyberLink -> Cyberlink)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\NavShExt.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\shellmenu64.dll [2010-05-14] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\buShell.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton 360\Engine\22.17.2.46\NavShExt.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1_S-1-5-21-2446170218-512241896-1534691390-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1_S-1-5-21-2446170218-512241896-1534691390-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
ContextMenuHandlers4_S-1-5-21-2446170218-512241896-1534691390-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-2446170218-512241896-1534691390-1001: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Judy\AppData\Roaming\Dropbox\bin\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Judy\Desktop\mydlink (60045390).lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> hxxp://sg.mydlink.com/

==================== Loaded Modules (Whitelisted) ==============

2013-01-18 05:55 - 2012-08-17 07:53 - 000180224 _____ () [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\PresetsCOM.dll
2018-04-09 15:21 - 2016-07-21 10:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2018-04-09 15:21 - 2017-09-12 10:34 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2013-01-18 05:58 - 2009-02-20 08:22 - 000028672 _____ () [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\WMINPUT.DLL
2013-01-18 05:43 - 2009-03-03 17:42 - 000089600 _____ (Andrea Electronics Corporation) [File not signed] C:\Program Files\IDT\WDM\AESTSr64.exe
2012-08-20 12:13 - 2012-08-20 12:13 - 000323584 ____R (Atheros) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
2013-01-18 05:43 - 2012-07-14 08:18 - 000037888 _____ (Hewlett-Packard ) [File not signed] C:\Program Files\IDT\WDM\Beats64.exe
2013-01-18 05:58 - 2012-06-14 04:55 - 002101248 _____ (Hewlett-Packard) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe
2013-01-18 05:58 - 2009-02-21 08:29 - 000053248 _____ (Hewlett-Packard) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\HPCPQUSB.DLL
2018-06-09 03:15 - 2018-06-09 03:15 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2018-06-09 03:15 - 2018-06-09 03:15 - 000057344 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80ENU.DLL
2013-01-18 05:55 - 2012-08-17 07:53 - 000172032 _____ (Portrait Displays, Inc) [File not signed] C:\Program Files (x86)\Common Files\Portrait Displays\Shared\HtmlEngine.dll
2013-01-18 05:47 - 2012-07-14 08:02 - 002451456 _____ (Realsil Microelectronics Inc.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
2013-01-18 05:47 - 2012-02-08 05:59 - 000166912 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll
2005-01-13 10:47 - 2005-01-13 10:47 - 000049152 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll
2010-03-25 17:57 - 2010-03-25 17:57 - 000055296 _____ (SEIKO EPSON CORP.) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll
2010-03-25 12:02 - 2010-03-25 12:02 - 000103936 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2010-03-26 15:50 - 2010-03-26 15:50 - 000136192 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll
2011-04-21 19:02 - 2011-04-21 19:02 - 000285696 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON_P2B\Printer Software\Status Monitor\seksmnet.dll
2014-02-24 16:11 - 2008-11-12 03:00 - 000118784 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\E_ILMGUP.DLL
2018-04-09 15:21 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:0A8E2C33 [133]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 20:25 - 2018-08-25 12:04 - 000000056 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;c:\Program Files (x86)\AMD APP\bin\x86_64;c:\Program Files (x86)\AMD APP\bin\x86;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared;c:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;c:\Program Files (x86)\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Judy\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hp_svinoya_norway_sunset.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\StartupFolder: => "ant aladdin.lnk"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "PivotSoftware"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "BATINDICATOR"
HKLM\...\StartupApproved\Run32: => "BATINDICATORHL"
HKLM\...\StartupApproved\Run32: => "MX14NF RUN"
HKLM\...\StartupApproved\Run32: => "LauncherMX14NF"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\StartupFolder: => "autoStartSignage.bat"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\Run: => "EPSON L200 Series"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\Run: => "CommonLauncher"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2446170218-512241896-1534691390-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5CA00E2C-E5F4-49FD-968D-C857401BD660}] => (Allow) LPort=1900
FirewallRules: [{F725833C-1C7A-415A-AF9C-CA9C3948A2C8}] => (Allow) LPort=2869
FirewallRules: [{C75DD5DB-61AD-4926-88FE-C44F210256D2}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{07C00A5C-D230-4276-8296-766BC2D77872}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{B3F50363-0A80-4E5C-AE4F-492E019FCC6C}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{6A3D898F-AA6A-4971-B453-2FE3DEC89B7D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30B34F22-8947-442D-B6A7-5B13774BB466}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4736146D-38AF-4E91-B289-8318EFC69506}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AAE3AF7B-884A-4882-86CE-CB71E75AE439}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8D857E7-5B78-4BA5-B5B8-B1CFB845F781}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{76E460DE-C378-4539-8A36-DBBCC0B21BB5}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{6810F6F6-7531-4442-B767-C4E32BF1E2FF}] => (Allow) C:\Program Files (x86)\PanaVue\ImageAssembler 3\pia3.exe (PanaVue) [File not signed]
FirewallRules: [{3C95B129-EC7F-4B68-B1AA-92D424BE00EA}] => (Allow) C:\Program Files (x86)\PanaVue\ImageAssembler 3\pia3.exe (PanaVue) [File not signed]
FirewallRules: [UDP Query User{D57EAE1C-7FA0-44A6-964D-A46D18DE911C}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{AAA95E8C-F487-4294-8570-B3C2C65DB264}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
FirewallRules: [{937D703C-1DA0-482A-B7A6-7E794C477486}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{41CBC9E6-4D5C-4927-94B7-74731736B5E9}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6CA7A74A-4170-4D44-BC46-C75B5D78717B}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{64CA59DF-3BA7-4738-90A4-4413F250E751}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{777FE581-52F4-408C-BBD3-9A76F3206AC6}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{711B5CC7-9AD6-4E9E-A87B-2FA572C9F5CB}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{572D5335-3365-4371-A1EF-19AA526E15F6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B4DF0D39-26C8-45C4-B903-38618A3C2882}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1391D077-55D3-4A5F-B751-61484E986CF3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F2C540D5-87D2-4EC7-89D3-FEE8C0D041F4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A0435EE7-D869-4E68-B89C-9D87721D01AD}] => (Allow) C:\Users\Judy\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{33ABFB52-13D8-4CC2-83AC-A0BBB64B62DF}] => (Allow) C:\Users\Judy\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{46ED5465-3D30-4A90-AAE6-1C0CDFD9E7B1}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{26738F52-A370-489D-8B7C-25D79820DAFF}] => (Allow) C:\Program Files (x86)\ASUS\Wireless Router\Device Discovery\Discovery.exe (ASUSTeK COMPUTER INC.) [File not signed]
FirewallRules: [{2F15130D-EB4F-4287-A3B5-CDFFE02EAC4B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3F2907D5-1BDE-4A5B-A3A2-10EFD455ECCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A368A5FD-4C1B-4003-822B-D2FA7F38187B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{05097669-F187-4866-A29A-D0C4611D2920}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0B6F7350-B682-4BA1-8B9C-F834AA67EC2B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9EAB8DBD-1F66-4A9D-9CD1-DCCC1397414D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F3797DD9-98AB-4052-9B02-204CE57A88FA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{0F250090-855A-429F-B779-E9E08C52E9DD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{A0F2AA7B-8C1B-4095-BDD3-7CC96C8B6F84}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{FCC104CD-1557-410F-B62D-E9020404A1F3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{17237A00-87B6-4FE3-9FEA-9DFA124D9C27}] => (Allow) C:\Users\Judy\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{1ED64F24-5986-40CB-87F9-EA8812245395}] => (Allow) C:\Users\Judy\AppData\Roaming\Zoom\bin\airhost.exe No File
FirewallRules: [{674981E9-CBC1-45D2-B82F-C1CE3C4BB6BA}] => (Allow) C:\Users\Judy\Downloads\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{9F009DCA-45C0-43AD-8756-706637CC8E14}] => (Allow) C:\Users\Judy\Downloads\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{5BE2507C-E529-485A-82CD-3A45D763CAF3}] => (Allow) C:\Users\Judy\Downloads\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{D6277372-B0B3-41C9-80E0-CC8C76530C40}] => (Allow) C:\Users\Judy\Downloads\AnyDesk.exe (philandro Software GmbH -> )
FirewallRules: [{4B26E8AB-ED90-4578-B0B8-964B80CE60AC}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ADE601D1-A26F-4B65-8A11-AECDA932D665}] => (Allow) C:\Program Files (x86)\AtomPark\Atomic Email Hunter\AtomicEmailHunter.exe (AtomPark Software Inc.) [File not signed]
FirewallRules: [{C189F394-8FEF-478E-BC65-A03BE3FB5CF6}] => (Allow) C:\Program Files (x86)\AtomPark\Atomic Email Hunter\AtomicEmailHunter.exe (AtomPark Software Inc.) [File not signed]
FirewallRules: [{4B52BAFB-7129-46AC-92F6-3F1D5137611D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{5E0B73AC-4244-4702-ABB0-03DBE29A091E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{5357CCC2-918D-41A0-96CB-0F783B231E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F10B1A39-F9E3-4B9E-B416-A72F97C59C87}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{EC8F6702-A781-4558-A0E0-10813B10E283}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
 

Judy K

TS Rookie
==================== Restore Points =========================

23-05-2019 17:00:58 Scheduled Checkpoint
01-06-2019 20:56:44 Scheduled Checkpoint
11-06-2019 17:05:36 Scheduled Checkpoint
15-06-2019 09:27:49 Removed iTunes

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/16/2019 05:42:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mepService.exe, version: 1.0.3.0, time stamp: 0x5011017b
Faulting module name: mepService.exe, version: 1.0.3.0, time stamp: 0x5011017b
Exception code: 0xc000000d
Fault offset: 0x0006c179
Faulting process id: 0xfd4
Faulting application start time: 0x01d524301fdffd7e
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
Faulting module path: C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
Report Id: d75fc54c-ecff-44a4-bf44-9a8cb1ad1aff
Faulting package full name:
Faulting package-relative application ID:

Error: (06/16/2019 05:41:59 PM) (Source: MSSQL$ASI2008) (EventID: 8317) (User: )
Description: Cannot query value 'First Counter' associated with registry key 'HKLM\SYSTEM\CurrentControlSet\Services\MSSQL$ASI2008\Performance'. SQL Server performance counters are disabled.

Error: (06/16/2019 05:41:59 PM) (Source: MSSQL$DATAMATE) (EventID: 8317) (User: )
Description: Cannot query value 'First Counter' associated with registry key 'HKLM\SYSTEM\CurrentControlSet\Services\MSSQL$DATAMATE\Performance'. SQL Server performance counters are disabled.

Error: (06/16/2019 05:39:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 10.0.17134.677, time stamp: 0xb4a88dff
Faulting module name: dthook.dll_unloaded, version: 0.0.0.0, time stamp: 0x502d891d
Exception code: 0xc0000005
Fault offset: 0x0000000000007cf0
Faulting process id: 0x11a0
Faulting application start time: 0x01d5242e4b4c10b8
Faulting application path: C:\WINDOWS\Explorer.EXE
Faulting module path: dthook.dll
Report Id: 4d08b2dc-ba44-4a50-a327-7a3283d4fa6e
Faulting package full name:
Faulting package-relative application ID:

Error: (06/16/2019 05:28:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mepService.exe, version: 1.0.3.0, time stamp: 0x5011017b
Faulting module name: mepService.exe, version: 1.0.3.0, time stamp: 0x5011017b
Exception code: 0xc000000d
Fault offset: 0x0006c179
Faulting process id: 0x136c
Faulting application start time: 0x01d5242e3807aef8
Faulting application path: C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
Faulting module path: C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
Report Id: 37fcda79-ae8f-42f4-8c2f-2033fb1ad342
Faulting package full name:
Faulting package-relative application ID:

Error: (06/16/2019 05:28:21 PM) (Source: MSSQL$ASI2008) (EventID: 8317) (User: )
Description: Cannot query value 'First Counter' associated with registry key 'HKLM\SYSTEM\CurrentControlSet\Services\MSSQL$ASI2008\Performance'. SQL Server performance counters are disabled.

Error: (06/16/2019 05:28:21 PM) (Source: MSSQL$DATAMATE) (EventID: 8317) (User: )
Description: Cannot query value 'First Counter' associated with registry key 'HKLM\SYSTEM\CurrentControlSet\Services\MSSQL$DATAMATE\Performance'. SQL Server performance counters are disabled.

Error: (06/15/2019 08:26:02 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "SQLAgent$DATAMATE" in DLL "perf-MSSQL10_50.DATAMATE-sqlagtctr.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.


System errors:
=============
Error: (06/16/2019 05:46:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (06/16/2019 05:46:33 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The HP Support Solutions Framework Service service hung on starting.

Error: (06/16/2019 05:46:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (06/16/2019 05:45:26 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {784E29F4-5EBE-4279-9948-1E8FE941646D} did not register with DCOM within the required timeout.

Error: (06/16/2019 05:45:05 PM) (Source: DCOM) (EventID: 10016) (User: HP-WIN8)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user HP-Win8\Judy SID (S-1-5-21-2446170218-512241896-1534691390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (06/16/2019 05:42:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (06/16/2019 05:42:25 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (06/16/2019 05:42:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MyEpson Portal Service service terminated unexpectedly. It has done this 1 time(s).


CodeIntegrity:
===================================

Date: 2019-06-16 17:16:51.095
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:50.794
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:50.542
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:46.506
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:46.364
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:46.286
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:46.006
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-06-16 17:16:45.987
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: AMI 8.10 09/25/2012
Motherboard: PEGATRON CORPORATION 2ADC
Processor: Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz
Percentage of memory in use: 83%
Total physical RAM: 4027.82 MB
Available physical RAM: 681.81 MB
Total Virtual: 5379.65 MB
Available Virtual: 806.26 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:462.35 GB) (Free:287.85 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Data) (Fixed) (Total:450.21 GB) (Free:76.11 GB) NTFS
Drive e: (Recovery Image) (Fixed) (Total:16.69 GB) (Free:2.03 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (我的光盘) (CDROM) (Total:0.04 GB) (Free:0 GB) CDFS

\\?\Volume{e802ebb0-e1b5-4c20-b913-fef458aac526}\ (Windows RE tools) (Fixed) (Total:1 GB) (Free:0.65 GB) NTFS
\\?\Volume{3dc87e31-8885-4ec2-9b59-df6273e60171}\ () (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS
\\?\Volume{3b55cf73-732e-43eb-8ea0-0a379e658465}\ () (Fixed) (Total:0.34 GB) (Free:0.31 GB) NTFS
\\?\Volume{44288dfb-c1d9-43b6-94b3-cdf841c1320b}\ (SYSTEM) (Fixed) (Total:0.35 GB) (Free:0.31 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C8CA4F75)

Partition: GPT.

==================== End of Addition.txt ============================
 

Broni

Malware Annihilator
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
 

Attachments

Judy K

TS Rookie
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-06-2019
Ran by Judy (17-06-2019 07:35:00) Run:1
Running from C:\Users\Judy\Downloads
Loaded Profiles: Judy (Available Profiles: Judy & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
GroupPolicy\User: Restriction ? <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {076B4B3F-9005-4354-B70A-EE5E2ED5859C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {0CFC6A20-D75B-4D97-A0F4-437454F381B4} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3CF5B939-F603-4107-8575-161F354228A4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {40959587-D009-4CF2-998E-EB74099F1D4C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {4A04CB62-17A7-4585-8112-8ADE86BC4AC2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {527E793F-4DC4-494F-A4D7-130E088FA777} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {77F85592-DED6-4037-B681-3DCE846D1CB0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {90D37FE2-E584-42CB-B0EB-CA13F19CFC8E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A69B190B-A8BF-420E-ADB4-24B31735C269} - \Optimize Start Menu Cache Files-S-1-5-21-2446170218-512241896-1534691390-1001 -> No File <==== ATTENTION
Task: {BB6E329E-0A64-4620-A727-F1F63BBD68C1} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {C62E7597-7BC4-434D-9CC0-9B6A624B3EEF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {CD67AFD2-59F1-4D1F-9265-E6EBED86F9C4} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {F045E025-3AEB-4121-AE49-1CE61C058C4F} - \GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2446170218-512241896-1534691390-1001 -> No File <==== ATTENTION
Task: {F1E3B61C-6EF0-4814-A9EA-F3F15C572FC2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL => No File
AlternateDataStreams: C:\ProgramData\Temp:0A8E2C33 [133]
FirewallRules: [{76E460DE-C378-4539-8A36-DBBCC0B21BB5}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{1ED64F24-5986-40CB-87F9-EA8812245395}] => (Allow) C:\Users\Judy\AppData\Roaming\Zoom\bin\airhost.exe No File

*****************

C:\WINDOWS\system32\GroupPolicy\User => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{076B4B3F-9005-4354-B70A-EE5E2ED5859C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{076B4B3F-9005-4354-B70A-EE5E2ED5859C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0CFC6A20-D75B-4D97-A0F4-437454F381B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0CFC6A20-D75B-4D97-A0F4-437454F381B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3CF5B939-F603-4107-8575-161F354228A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CF5B939-F603-4107-8575-161F354228A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{40959587-D009-4CF2-998E-EB74099F1D4C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40959587-D009-4CF2-998E-EB74099F1D4C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A04CB62-17A7-4585-8112-8ADE86BC4AC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A04CB62-17A7-4585-8112-8ADE86BC4AC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{527E793F-4DC4-494F-A4D7-130E088FA777}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{527E793F-4DC4-494F-A4D7-130E088FA777}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{77F85592-DED6-4037-B681-3DCE846D1CB0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77F85592-DED6-4037-B681-3DCE846D1CB0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{90D37FE2-E584-42CB-B0EB-CA13F19CFC8E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{90D37FE2-E584-42CB-B0EB-CA13F19CFC8E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A69B190B-A8BF-420E-ADB4-24B31735C269}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A69B190B-A8BF-420E-ADB4-24B31735C269}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimize Start Menu Cache Files-S-1-5-21-2446170218-512241896-1534691390-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB6E329E-0A64-4620-A727-F1F63BBD68C1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB6E329E-0A64-4620-A727-F1F63BBD68C1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C62E7597-7BC4-434D-9CC0-9B6A624B3EEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C62E7597-7BC4-434D-9CC0-9B6A624B3EEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CD67AFD2-59F1-4D1F-9265-E6EBED86F9C4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CD67AFD2-59F1-4D1F-9265-E6EBED86F9C4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F045E025-3AEB-4121-AE49-1CE61C058C4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F045E025-3AEB-4121-AE49-1CE61C058C4F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2446170218-512241896-1534691390-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F1E3B61C-6EF0-4814-A9EA-F3F15C572FC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1E3B61C-6EF0-4814-A9EA-F3F15C572FC2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} => removed successfully
HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} => removed successfully
C:\ProgramData\Temp => ":0A8E2C33" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{76E460DE-C378-4539-8A36-DBBCC0B21BB5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1ED64F24-5986-40CB-87F9-EA8812245395}" => removed successfully


The system needed a reboot.

==== End of Fixlog 07:35:04 ====
 

Judy K

TS Rookie
Log results posted. I will be starting my drive shortly and I hope to have access to computer later tonight. If not, it will be in 2 days time.

Thanks for all your help so far. And I hope I can get rid of this PUP thingy forever. :)
 

Broni

Malware Annihilator
Last scans...

Download Security Check from here or here and save it to your Desktop.
  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run


Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center
  • Windows Update
  • Windows Defender
  • Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.


Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
  • Double click on TFC.exe to run the program.
  • Click on Start button to begin cleaning process.
  • TFC will close all running programs, and it may ask you to restart computer.


Download Sophos Free Virus Removal Tool and save it to your desktop.
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
 

Judy K

TS Rookie
Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Norton 360
Windows Defender
[size=1]WMI entry may not exist for antivirus; attempting automatic update.[/size]
`````````Anti-malware/Other Utilities Check:`````````
Java 8 Update 111
Java version 32-bit out of Date!
Adobe Flash Player 32.0.0.207
Google Chrome (74.0.3729.169)
Google Chrome (SetupMetrics...)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamtray.exe
Windows Defender MSASCuiL.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
 

Judy K

TS Rookie
Farbar Service Scanner Version: 27-01-2016
Ran by Judy (administrator) on 18-06-2019 at 21:05:38
Running from "C:\Users\Judy\Desktop"
Microsoft Windows 10 Home Single Language (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv: "%systemroot%\system32\svchost.exe -k netsvcs -p".
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
 

Judy K

TS Rookie
How long does it take to download the virus database for the sophos virus removal tool?

When I click to run the program, it just shows the logo and is stuck there for 30 min now and it is still stuck there. Nothing seems to be happening.

Should I uninstall and reinstall again?
 

Broni

Malware Annihilator
Try this...

Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Under "I want a free one-time scan with ESET Online Scanner" click on "Scan now" button.
  • It'll download small file "esetonlinescanner_enu.exe".
  • Double click on downloaded file.
  • Click on Accept button.
  • Checkmark "Disable detection of potentially unwanted applications".
  • Click Scan
  • Accept any security warnings from your browser.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
 

Judy K

TS Rookie
Left the Sophos program on overnight and it seems to be updated now. I have just started the scanning. Will post results when the scan is complete.
 

Judy K

TS Rookie
2019-06-18 14:27:34.561 Sophos Virus Removal Tool version 2.7.0
2019-06-18 14:27:34.561 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-06-18 14:27:34.561 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2019-06-18 14:27:34.561 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64
2019-06-18 14:27:34.562 Checking for updates...
2019-06-18 14:27:34.625 Update progress: proxy server not available
2019-06-18 14:28:01.174 Option all = no
2019-06-18 14:28:01.174 Option recurse = yes
2019-06-18 14:28:01.174 Option archive = no
2019-06-18 14:28:01.174 Option service = yes
2019-06-18 14:28:01.174 Option confirm = yes
2019-06-18 14:28:01.174 Option sxl = yes
2019-06-18 14:28:01.176 Option max-data-age = 35
2019-06-18 14:28:01.176 Option vdl-logging = yes
2019-06-18 14:28:01.179 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-06-18 14:28:01.179 Machine ID: 0a5aa77336d042a99832a2edc0b2c9dc
2019-06-18 14:28:01.180 Component SVRTcli.exe version 2.7.0
2019-06-18 14:28:01.180 Component control.dll version 2.7.0
2019-06-18 14:28:01.180 Component SVRTservice.exe version 2.7.0
2019-06-18 14:28:01.180 Component engine\osdp.dll version 1.44.1.2443
2019-06-18 14:28:01.180 Component engine\veex.dll version 3.75.0.2443
2019-06-18 14:28:01.180 Component engine\savi.dll version 9.0.13.2443
2019-06-18 14:28:01.375 Component rkdisk.dll version 1.5.33.1
2019-06-18 14:28:01.375 Version info: Product version 2.7.0
2019-06-18 14:28:01.375 Version info: Detection engine 3.75.0
2019-06-18 14:28:01.375 Version info: Detection data 5.61
2019-06-18 14:28:01.375 Version info: Build date 12/03/2019
2019-06-18 14:28:01.375 Version info: Data files added 496
2019-06-18 14:28:01.375 Version info: Last successful update (not yet updated)
2019-06-18 14:32:59.629 Sophos Virus Removal Tool version 2.7.0
2019-06-18 14:32:59.629 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-06-18 14:32:59.629 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2019-06-18 14:32:59.629 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64
2019-06-18 14:32:59.630 Checking for updates...
2019-06-18 14:32:59.638 Update progress: proxy server not available
2019-06-18 14:32:59.767 Error: failed to create service (1072: The specified service has been marked for deletion.)
2019-06-18 14:34:14.853 Sophos Virus Removal Tool version 2.7.0
2019-06-18 14:34:14.853 Copyright (c) 2009-2018 Sophos Limited. All rights reserved.

2019-06-18 14:34:14.853 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2019-06-18 14:34:14.853 Windows version 6.2 SP 0.0 build 9200 SM=0x300 PT=0x1 WOW64
2019-06-18 14:34:14.854 Checking for updates...
2019-06-18 14:34:14.930 Update progress: proxy server not available
2019-06-18 14:34:38.637 Option all = no
2019-06-18 14:34:38.637 Option recurse = yes
2019-06-18 14:34:38.637 Option archive = no
2019-06-18 14:34:38.637 Option service = yes
2019-06-18 14:34:38.637 Option confirm = yes
2019-06-18 14:34:38.637 Option sxl = yes
2019-06-18 14:34:38.639 Option max-data-age = 35
2019-06-18 14:34:38.639 Option vdl-logging = yes
2019-06-18 14:34:38.642 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-06-18 14:34:38.642 Machine ID: 0a5aa77336d042a99832a2edc0b2c9dc
2019-06-18 14:34:38.643 Component SVRTcli.exe version 2.7.0
2019-06-18 14:34:38.643 Component control.dll version 2.7.0
2019-06-18 14:34:38.643 Component SVRTservice.exe version 2.7.0
2019-06-18 14:34:38.643 Component engine\osdp.dll version 1.44.1.2443
2019-06-18 14:34:38.643 Component engine\veex.dll version 3.75.0.2443
2019-06-18 14:34:38.643 Component engine\savi.dll version 9.0.13.2443
2019-06-18 14:34:38.644 Component rkdisk.dll version 1.5.33.1
2019-06-18 14:34:38.644 Version info: Product version 2.7.0
2019-06-18 14:34:38.644 Version info: Detection engine 3.75.0
2019-06-18 14:34:38.644 Version info: Detection data 5.61
2019-06-18 14:34:38.644 Version info: Build date 12/03/2019
2019-06-18 14:34:38.644 Version info: Data files added 496
2019-06-18 14:34:38.644 Version info: Last successful update (not yet updated)
 

Judy K

TS Rookie
2019-06-18 15:06:56.910 Downloading updates...
2019-06-18 15:06:56.942 Update progress: [I96736] sdds.svrt_v1.10: adding primary package C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED baseVersion=1
2019-06-18 15:06:56.942 Update progress: [I95020] sdds.svrt_v1.10: looking for packages included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-06-18 15:06:56.943 Update progress: [I22529] sdds.svrt_v1.10: looking for supplements included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-06-18 15:06:56.943 Update progress: [V81533] SU::createCachedPackageSource creating cached package source for http://d2.sophosupd.com/update-B: url=SOPHOS
2019-06-18 15:06:56.943 Update progress: [V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
2019-06-18 15:06:56.943 Update progress: [V81533] SU::createCachedPackageSource creating package source to download customer file
2019-06-18 15:06:56.943 Update progress: [V81533] SU::createCachedPackageSource creating cached package source
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: catalogue/sdds.data0910.xml
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: catalogue/sdds.data0910.xml: 406 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE550/1e04bd4f6cc5b189217b416d0cacd23ax000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE550/1e04bd4f6cc5b189217b416d0cacd23ax000.xml: 16 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE553/236bb4ca0d2561a8e59124e4a65837c9x000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE553/236bb4ca0d2561a8e59124e4a65837c9x000.xml: 61625 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE558/3a1dfb2d23615d09497b1db3305e32dax000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE558/3a1dfb2d23615d09497b1db3305e32dax000.xml: 593 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE552/49e28e1f82adf19b43a3acfb11c919bax000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE552/49e28e1f82adf19b43a3acfb11c919bax000.xml: 578 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE551/69eda22632d06ac2df0c576c5946841fx000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE551/69eda22632d06ac2df0c576c5946841fx000.xml: 297 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE561/6c1dd3a5196572a9bb41e9156eb30577x000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE561/6c1dd3a5196572a9bb41e9156eb30577x000.xml: 547 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE555/9f59846a02fa77254f4813df557d969bx000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE555/9f59846a02fa77254f4813df557d969bx000.xml: 62734 ms
2019-06-18 15:06:56.943 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE559/bf3b91a4649162f3b240ef9f3d9d7c65x000.xml: 601 bytes
2019-06-18 15:06:56.943 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE559/bf3b91a4649162f3b240ef9f3d9d7c65x000.xml: 578 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE563/cc18c9c4f72ead6c0bb51284002291cax000.xml: 601 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE563/cc18c9c4f72ead6c0bb51284002291cax000.xml: 578 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE556/cd085cdff0109eb84b9c16d718521445x000.xml: 601 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE556/cd085cdff0109eb84b9c16d718521445x000.xml: 594 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE562/d7da1c8549bd88228f71a41e440c4772x000.xml: 601 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE562/d7da1c8549bd88228f71a41e440c4772x000.xml: 547 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE564/fc86ecada014384667e0ec752820eec7x000.xml: 601 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE564/fc86ecada014384667e0ec752820eec7x000.xml: 640 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: IDE566/b14d3fa7b3abefec7bdc1e92cdebec22x000.xml: 24584 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: IDE566/b14d3fa7b3abefec7bdc1e92cdebec22x000.xml: 0 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cc4cc36498680327b039e06779ebfd8ax000.xml: 615 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cc4cc36498680327b039e06779ebfd8ax000.xml: 32750 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0d88b8ed0f67aeec3147dbe83b9b09ebx000.xml: 320 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0d88b8ed0f67aeec3147dbe83b9b09ebx000.xml: 31984 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 753 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c458d84352f35f2b272f8b87e9f9576x000.xml: 578 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 331 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c7f0eec8cb5f488397216dcfb7e98e8x000.xml: 593 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5c518d5be60608ac6bd5325ef02b8a7ex000.xml: 1027 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5c518d5be60608ac6bd5325ef02b8a7ex000.xml: 1047 ms
2019-06-18 15:06:56.944 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 211a9b2ae569945c9fe3e1ca74a2c644x000.xml: 338 bytes
2019-06-18 15:06:56.944 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 211a9b2ae569945c9fe3e1ca74a2c644x000.xml: 60563 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 24be0fc59a0372038b7fbb3af3e19d21x000.xml: 1027 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 24be0fc59a0372038b7fbb3af3e19d21x000.xml: 765 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4ccc0244dafdc3a404f8bb420c2a165x000.xml: 338 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4ccc0244dafdc3a404f8bb420c2a165x000.xml: 32438 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b5385d6d93fc43e87fc7d723b90aab9x000.xml: 1027 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b5385d6d93fc43e87fc7d723b90aab9x000.xml: 32016 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 44df079c17c27192400c73a86d16785fx000.xml: 338 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 44df079c17c27192400c73a86d16785fx000.xml: 609 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 32f2c03993b8d3414be5d9d714792de3x000.xml: 1027 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 32f2c03993b8d3414be5d9d714792de3x000.xml: 60641 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13ff2225063d88f220fa6841f37c8371x000.xml: 338 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13ff2225063d88f220fa6841f37c8371x000.xml: 968 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9e72c50dc4507dfba988367b178eda4ax000.xml: 1027 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9e72c50dc4507dfba988367b178eda4ax000.xml: 61594 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e0a2f9d4b770945eb817f82acf76dc76x000.xml: 338 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e0a2f9d4b770945eb817f82acf76dc76x000.xml: 32391 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4c204ac4b99df718739c309d0f4ab76bx000.xml: 1027 bytes
2019-06-18 15:06:56.945 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4c204ac4b99df718739c309d0f4ab76bx000.xml: 578 ms
2019-06-18 15:06:56.945 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 46e9b0f78df0d20502af43f391ffc506x000.xml: 338 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 46e9b0f78df0d20502af43f391ffc506x000.xml: 60547 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7fe1eebcf235024389043a634ef20366x000.xml: 1027 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7fe1eebcf235024389043a634ef20366x000.xml: 578 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9ec625dcb3a242e1fece93286451a352x000.xml: 338 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9ec625dcb3a242e1fece93286451a352x000.xml: 297 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: eaba289b0a9e187ed96137c42bf85645x000.xml: 1027 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: eaba289b0a9e187ed96137c42bf85645x000.xml: 765 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e4e261308128b5b42bf54c232030ea27x000.xml: 338 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e4e261308128b5b42bf54c232030ea27x000.xml: 594 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d9072ffa19fc0ff71a828d7ca2bc7828x000.xml: 1027 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d9072ffa19fc0ff71a828d7ca2bc7828x000.xml: 547 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d98051334b3ea8a0b042e0bb99bc283x000.xml: 338 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d98051334b3ea8a0b042e0bb99bc283x000.xml: 859 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: da92f17acb85d0a5bdb85ace75b37afcx000.xml: 1027 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: da92f17acb85d0a5bdb85ace75b37afcx000.xml: 31125 ms
2019-06-18 15:06:56.946 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d2bd1911114961b92c55d33d6faa1a9ax000.xml: 338 bytes
2019-06-18 15:06:56.946 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d2bd1911114961b92c55d33d6faa1a9ax000.xml: 31609 ms
2019-06-18 15:06:56.947 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 65b7509646b00610cf1732a01f49a46fx000.xml: 1027 bytes
2019-06-18 15:06:56.947 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 65b7509646b00610cf1732a01f49a46fx000.xml: 563 ms
2019-06-18 15:06:56.947 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f6ec5061dd7e77923111541727311aa2x000.xml: 338 bytes
2019-06-18 15:06:56.947 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f6ec5061dd7e77923111541727311aa2x000.xml: 547 ms
2019-06-18 15:06:56.947 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4f4a648042a613c869eddf17703b772ax000.xml: 1027 bytes
2019-06-18 15:06:56.947 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4f4a648042a613c869eddf17703b772ax000.xml: 30922 ms
2019-06-18 15:06:56.947 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d86540a0b23bc7236508f5b443729232x000.xml: 338 bytes
2019-06-18 15:06:56.947 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d86540a0b23bc7236508f5b443729232x000.xml: 546 ms
2019-06-18 15:06:56.947 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 20d640fb5ddff12944b1b5c3e34a4ca7x000.xml: 1027 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 20d640fb5ddff12944b1b5c3e34a4ca7x000.xml: 60594 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2ee4a92ec19fb16304c745c83ce570dbx000.xml: 338 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2ee4a92ec19fb16304c745c83ce570dbx000.xml: 578 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 59c292069cc0fcbe6fbcf8d4289432a4x000.xml: 1027 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 59c292069cc0fcbe6fbcf8d4289432a4x000.xml: 297 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ace8e7b646829af68be5b32bbcc82570x000.xml: 338 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ace8e7b646829af68be5b32bbcc82570x000.xml: 1063 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7a3833618c1adde4d2e20d2de6f3fa16x000.xml: 1027 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7a3833618c1adde4d2e20d2de6f3fa16x000.xml: 33234 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9368403163321ca023d9919cfc51be64x000.xml: 338 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9368403163321ca023d9919cfc51be64x000.xml: 563 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2c9f2b4a3bd9b8aa278af484075cffbbx000.xml: 1027 bytes
2019-06-18 15:06:56.948 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2c9f2b4a3bd9b8aa278af484075cffbbx000.xml: 31406 ms
2019-06-18 15:06:56.948 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 542303d59e10e8dcd6b025d5e810d68dx000.xml: 338 bytes
2019-06-18 15:06:56.949 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 542303d59e10e8dcd6b025d5e810d68dx000.xml: 312 ms
2019-06-18 15:06:56.949 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 594ba543f4dc5e05c3724386ffdfcea3x000.xml: 877 bytes
2019-06-18 15:06:56.949 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 594ba543f4dc5e05c3724386ffdfcea3x000.xml: 563 ms
2019-06-18 15:06:56.949 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c1939ceacb06dd1e766a94e547bb53d2x000.xml: 320 bytes
2019-06-18 15:06:56.949 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c1939ceacb06dd1e766a94e547bb53d2x000.xml: 578 ms
2019-06-18 15:06:56.949 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9a56c54c94579b58a63bed5912a88ad4x000.xml: 877 bytes
2019-06-18 15:06:56.949 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9a56c54c94579b58a63bed5912a88ad4x000.xml: 578 ms
2019-06-18 15:06:56.949 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 693d2bd866bc2383f65818534f731a4ax000.xml: 332 bytes
2019-06-18 15:06:56.949 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 693d2bd866bc2383f65818534f731a4ax000.xml: 563 ms
2019-06-18 15:06:56.949 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a54269aab7201fdcac8dceb898c19c78x000.xml: 877 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a54269aab7201fdcac8dceb898c19c78x000.xml: 531 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: be554c1758906c0e2ac5ebd48dadff53x000.xml: 332 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: be554c1758906c0e2ac5ebd48dadff53x000.xml: 578 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 64d7278616df3eb7fb1dd18c4d043259x000.xml: 877 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 64d7278616df3eb7fb1dd18c4d043259x000.xml: 546 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cce1831d34544d43399669ebd66bf7fdx000.xml: 332 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cce1831d34544d43399669ebd66bf7fdx000.xml: 60563 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 17868953af074d14cf9181ad9cac215bx000.xml: 877 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 17868953af074d14cf9181ad9cac215bx000.xml: 297 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a6c0d9b44b39bbea622d87b66bb15ae7x000.xml: 333 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a6c0d9b44b39bbea622d87b66bb15ae7x000.xml: 578 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: dcc6483498aef08cacf725a05267f994x000.xml: 877 bytes
2019-06-18 15:06:56.950 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: dcc6483498aef08cacf725a05267f994x000.xml: 562 ms
2019-06-18 15:06:56.950 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 99f5442f7bae6abf7d91f78a1a5b32c2x000.xml: 333 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 99f5442f7bae6abf7d91f78a1a5b32c2x000.xml: 563 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 808403d185ce54df6c695b4b345ed1b2x000.xml: 877 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 808403d185ce54df6c695b4b345ed1b2x000.xml: 121359 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f2dfa72175e1a2ea4c29db22a5da3693x000.xml: 333 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f2dfa72175e1a2ea4c29db22a5da3693x000.xml: 562 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e2503aa4c05fd5182173fb651a21d68ex000.xml: 877 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e2503aa4c05fd5182173fb651a21d68ex000.xml: 31204 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c2069b7f89595e5aa7bf0a15a70529d3x000.xml: 333 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c2069b7f89595e5aa7bf0a15a70529d3x000.xml: 781 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 11bee95d774651a4549d1bc4e011f94dx000.xml: 877 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 11bee95d774651a4549d1bc4e011f94dx000.xml: 31204 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 04e05c8e856b5a2488c73d9b0f087b8ex000.xml: 333 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 04e05c8e856b5a2488c73d9b0f087b8ex000.xml: 593 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cd09c5477786d1eeb3a80a356e29eee7x000.xml: 877 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cd09c5477786d1eeb3a80a356e29eee7x000.xml: 797 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4cdf742f8ff860dfc2fbc0ab1f699049x000.xml: 333 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4cdf742f8ff860dfc2fbc0ab1f699049x000.xml: 30610 ms
2019-06-18 15:06:56.951 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b453b4080acea4056c9a973232d04f56x000.xml: 877 bytes
2019-06-18 15:06:56.951 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b453b4080acea4056c9a973232d04f56x000.xml: 312 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 337bf9e04361ca88efb79ead4632f185x000.xml: 335 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 337bf9e04361ca88efb79ead4632f185x000.xml: 63172 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 35f9330b0b40ef946c930c9f26ed1a5cx000.xml: 877 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 35f9330b0b40ef946c930c9f26ed1a5cx000.xml: 562 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8f422683e8fca726d075a2e4e8798275x000.xml: 335 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8f422683e8fca726d075a2e4e8798275x000.xml: 578 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0fea17bdea611b2babeabdf11fc181a0x000.xml: 877 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0fea17bdea611b2babeabdf11fc181a0x000.xml: 813 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8534dfbe63e9954b850f7e5921a80baex000.xml: 335 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8534dfbe63e9954b850f7e5921a80baex000.xml: 578 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6d657393e729f026b4d65b918f84f428x000.xml: 877 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6d657393e729f026b4d65b918f84f428x000.xml: 1000 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 19c599df6d6440eb3d1b8c2bfca257fex000.xml: 335 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 19c599df6d6440eb3d1b8c2bfca257fex000.xml: 829 ms
2019-06-18 15:06:56.952 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1aebf43d21d79fc26f9bc5a5ac4aee25x000.xml: 877 bytes
2019-06-18 15:06:56.952 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1aebf43d21d79fc26f9bc5a5ac4aee25x000.xml: 547 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 882e3bd49cf6fe61eb89ff13ae258808x000.xml: 335 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 882e3bd49cf6fe61eb89ff13ae258808x000.xml: 953 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d271e7ebfc45abf12c7eeb802e0c994ax000.xml: 877 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d271e7ebfc45abf12c7eeb802e0c994ax000.xml: 531 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1b226a5ce2800066f541bb57e0026380x000.xml: 335 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1b226a5ce2800066f541bb57e0026380x000.xml: 625 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 646897d4123e087ff16faba38a96800ex000.xml: 877 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 646897d4123e087ff16faba38a96800ex000.xml: 33625 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 65aafd87961f949bae07f12a048dbdf6x000.xml: 335 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 65aafd87961f949bae07f12a048dbdf6x000.xml: 578 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8a804abfb9dde4bd0d2952232c395c9bx000.xml: 877 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8a804abfb9dde4bd0d2952232c395c9bx000.xml: 578 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1e2ccc9344ef1d4a7798f662da4fa362x000.xml: 335 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1e2ccc9344ef1d4a7798f662da4fa362x000.xml: 797 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 08f6c9fb4e1150086bc33931645f61e1x000.xml: 877 bytes
2019-06-18 15:06:56.953 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 08f6c9fb4e1150086bc33931645f61e1x000.xml: 60594 ms
2019-06-18 15:06:56.953 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 4387947479ad5d15a3eff442db410d20x000.xml: 335 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 4387947479ad5d15a3eff442db410d20x000.xml: 60547 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c2d390c40f946b9aafa1683c48e6bc71x000.xml: 877 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c2d390c40f946b9aafa1683c48e6bc71x000.xml: 672 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 907f11029ea9cc0e0462ded6edd41698x000.xml: 335 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 907f11029ea9cc0e0462ded6edd41698x000.xml: 562 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3be0e5a6cf9223ca8b4cc67ccaf0835bx000.xml: 877 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3be0e5a6cf9223ca8b4cc67ccaf0835bx000.xml: 531 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 2a6ee1fa95f9e648147853dabee9b10bx000.xml: 335 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 2a6ee1fa95f9e648147853dabee9b10bx000.xml: 313 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f93b549335440cd5c3c91a882296da90x000.xml: 877 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f93b549335440cd5c3c91a882296da90x000.xml: 562 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6350508e809438065dcb1229f3a03bd2x000.xml: 335 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6350508e809438065dcb1229f3a03bd2x000.xml: 30063 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 00f487b3b3fcdfc855d70d7a57afaa7dx000.xml: 877 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 00f487b3b3fcdfc855d70d7a57afaa7dx000.xml: 875 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 28d40af13deee839fb2b63424e4d3116x000.xml: 335 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 28d40af13deee839fb2b63424e4d3116x000.xml: 594 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 6d2e361295eed6857fa7c64d6cdacce4x000.xml: 877 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 6d2e361295eed6857fa7c64d6cdacce4x000.xml: 562 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 3ce869d74bfdd86766c7f02dc99d1437x000.xml: 335 bytes
2019-06-18 15:06:56.954 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 3ce869d74bfdd86766c7f02dc99d1437x000.xml: 313 ms
2019-06-18 15:06:56.954 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 388ffbfa708f998c97aa6fa1808b60c9x000.xml: 877 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 388ffbfa708f998c97aa6fa1808b60c9x000.xml: 578 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 18467c1633bbd43d1d849dc15c2907a1x000.xml: 335 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 18467c1633bbd43d1d849dc15c2907a1x000.xml: 33078 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: cb8d259d82db4f541f322971266546e1x000.xml: 877 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: cb8d259d82db4f541f322971266546e1x000.xml: 594 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5ba13b30b9c7c7fb3acaa56441510f16x000.xml: 335 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5ba13b30b9c7c7fb3acaa56441510f16x000.xml: 547 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a2b2367a8ec1ed7689b39aa0493cb462x000.xml: 877 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a2b2367a8ec1ed7689b39aa0493cb462x000.xml: 546 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b5c9712710ea5232062d14eaa217fd0ex000.xml: 335 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b5c9712710ea5232062d14eaa217fd0ex000.xml: 813 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c9028e55733853e2130c7e70658056c9x000.xml: 877 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c9028e55733853e2130c7e70658056c9x000.xml: 562 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 5191a9e2c3c8f7f03523340cc96dd88cx000.xml: 335 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 5191a9e2c3c8f7f03523340cc96dd88cx000.xml: 64485 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: edf6a0900b69e832cd5b1c25730dc554x000.xml: 877 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: edf6a0900b69e832cd5b1c25730dc554x000.xml: 1250 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aaa547736f362c33af7b82161d012129x000.xml: 335 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aaa547736f362c33af7b82161d012129x000.xml: 62703 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b64ea3883fe835bd055d383e0da9f423x000.xml: 877 bytes
2019-06-18 15:06:56.955 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b64ea3883fe835bd055d383e0da9f423x000.xml: 562 ms
2019-06-18 15:06:56.955 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d08250d8d2b5c280b7a428441beba901x000.xml: 335 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d08250d8d2b5c280b7a428441beba901x000.xml: 563 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 7eff51365a3721caa8fd3909d0f979ebx000.xml: 877 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 7eff51365a3721caa8fd3909d0f979ebx000.xml: 296 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 59d43f2a0ff72ef09ed6e92094009ab8x000.xml: 335 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 59d43f2a0ff72ef09ed6e92094009ab8x000.xml: 532 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f12041ed843f06ea70bdd0176fb0bed9x000.xml: 877 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f12041ed843f06ea70bdd0176fb0bed9x000.xml: 60578 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aa5d75d7ac002ebeeafcc4476e6a025fx000.xml: 335 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aa5d75d7ac002ebeeafcc4476e6a025fx000.xml: 33953 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 65cf4bed050ad623819a8c0403d13066x000.xml: 877 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 65cf4bed050ad623819a8c0403d13066x000.xml: 546 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 92a4f799b16079496034954907679307x000.xml: 335 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 92a4f799b16079496034954907679307x000.xml: 31454 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1d288b579986edb7da31a958312fcd0bx000.xml: 877 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1d288b579986edb7da31a958312fcd0bx000.xml: 546 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 161959de32f828f3005c6030cb519858x000.xml: 335 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 161959de32f828f3005c6030cb519858x000.xml: 703 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 966faacc7c8f8e0b6eb0cdea5d0ed62ax000.xml: 877 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 966faacc7c8f8e0b6eb0cdea5d0ed62ax000.xml: 594 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 9127665cf9dbc7a1ff7767ab7e2b6350x000.xml: 335 bytes
2019-06-18 15:06:56.956 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 9127665cf9dbc7a1ff7767ab7e2b6350x000.xml: 578 ms
2019-06-18 15:06:56.956 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ef1d46b094e53d108894fa1614b85806x000.xml: 877 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ef1d46b094e53d108894fa1614b85806x000.xml: 65063 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ef8a86f2cd2ee8fb8be3755f7c42f45ex000.xml: 335 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ef8a86f2cd2ee8fb8be3755f7c42f45ex000.xml: 781 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: fb6a348cf60aebb6ce47b210d0a061a3x000.xml: 877 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: fb6a348cf60aebb6ce47b210d0a061a3x000.xml: 562 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 533145daaf2a0f39c9f3d9b58001118cx000.xml: 335 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 533145daaf2a0f39c9f3d9b58001118cx000.xml: 563 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c68ad9bae1973033bb73c56cae64ea6cx000.xml: 877 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c68ad9bae1973033bb73c56cae64ea6cx000.xml: 562 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c707b2343cb0d657d3f086a447a2235ex000.xml: 335 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c707b2343cb0d657d3f086a447a2235ex000.xml: 563 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a69d35ba91e08d0b078cca4a20460ff8x000.xml: 877 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a69d35ba91e08d0b078cca4a20460ff8x000.xml: 33703 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 13d73af21f1df3e4738df02f3ef54fb0x000.xml: 335 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 13d73af21f1df3e4738df02f3ef54fb0x000.xml: 60547 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 77d59591c274c08ab1bc51e8da1a63dbx000.xml: 877 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 77d59591c274c08ab1bc51e8da1a63dbx000.xml: 562 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a5489387baf488a621f9dae128241b62x000.xml: 335 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a5489387baf488a621f9dae128241b62x000.xml: 797 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 813ef7e8e26450f94ad3dd630965f434x000.xml: 877 bytes
2019-06-18 15:06:56.957 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 813ef7e8e26450f94ad3dd630965f434x000.xml: 313 ms
2019-06-18 15:06:56.957 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 976f52f872e989ad99548e3782c834d9x000.xml: 336 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 976f52f872e989ad99548e3782c834d9x000.xml: 515 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 61709d5fda290e4daf7de1752f2ac5a4x000.xml: 877 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 61709d5fda290e4daf7de1752f2ac5a4x000.xml: 578 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b9aacd2b8738de9a0c5f0516c6c8d337x000.xml: 336 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b9aacd2b8738de9a0c5f0516c6c8d337x000.xml: 829 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 11fcda616108d5a8255976d067bad18fx000.xml: 877 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 11fcda616108d5a8255976d067bad18fx000.xml: 578 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 76da8666f2b01a3e32ab0b8af568131fx000.xml: 336 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 76da8666f2b01a3e32ab0b8af568131fx000.xml: 969 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: aeb3be6521b13ee27de5499fb86f508ax000.xml: 877 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: aeb3be6521b13ee27de5499fb86f508ax000.xml: 30047 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: d9b6fdc97517dec881bdbc420cec9199x000.xml: 336 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: d9b6fdc97517dec881bdbc420cec9199x000.xml: 765 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 44b03995ac6074ac744a9557ee02fce6x000.xml: 877 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 44b03995ac6074ac744a9557ee02fce6x000.xml: 750 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1558cb382c3e16f3f7870de90875b5fax000.xml: 336 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1558cb382c3e16f3f7870de90875b5fax000.xml: 610 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 294d496558dd615292b0961aa3bab4ddx000.xml: 877 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 294d496558dd615292b0961aa3bab4ddx000.xml: 578 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 8d4c62daa29eaff1b6cc177110959198x000.xml: 336 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 8d4c62daa29eaff1b6cc177110959198x000.xml: 578 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f3e75f8ead7471f207e60f000cb5aeaex000.xml: 877 bytes
2019-06-18 15:06:56.958 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f3e75f8ead7471f207e60f000cb5aeaex000.xml: 32937 ms
2019-06-18 15:06:56.958 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 749c71eac393f7869170d2dbd481b7c6x000.xml: 336 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 749c71eac393f7869170d2dbd481b7c6x000.xml: 578 ms
2019-06-18 15:06:56.959 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 547b3d5eb98a1293966be751bad34ab3x000.xml: 877 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 547b3d5eb98a1293966be751bad34ab3x000.xml: 500 ms
2019-06-18 15:06:56.959 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: e3296b60f61165d2c9b7f4475275efb1x000.xml: 336 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: e3296b60f61165d2c9b7f4475275efb1x000.xml: 31203 ms
2019-06-18 15:06:56.959 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c02baafb291c855edfefd9d97513c055x000.xml: 877 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c02baafb291c855edfefd9d97513c055x000.xml: 60578 ms
2019-06-18 15:06:56.959 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 0c4c1b4501a4b896d9b8ca108e75222ax000.xml: 336 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 0c4c1b4501a4b896d9b8ca108e75222ax000.xml: 782 ms
2019-06-18 15:06:56.959 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 92c084f0e3ed0bdf893ec9cbe897eb92x000.xml: 1027 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 92c084f0e3ed0bdf893ec9cbe897eb92x000.xml: 546 ms
2019-06-18 15:06:56.959 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 50427579b660111d9f79192de7a60c71x000.xml: 336 bytes
2019-06-18 15:06:56.959 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 50427579b660111d9f79192de7a60c71x000.xml: 766 ms
 

Judy K

TS Rookie
2019-06-18 15:06:56.959 Update progress: [I49502] sdds.data0910.xml: found supplement IDE562 LATEST path= baseVersion= [included from product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=]
2019-06-18 15:06:56.959 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE562 LATEST path=
2019-06-18 15:06:56.959 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE562 LATEST path=
2019-06-18 15:06:56.959 Update progress: [I49502] sdds.data0910.xml: found supplement IDE563 LATEST path= baseVersion= [included from product IDE562 LATEST path=]
2019-06-18 15:06:56.959 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE563 LATEST path=
2019-06-18 15:06:56.959 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE563 LATEST path=
2019-06-18 15:06:56.959 Update progress: [I49502] sdds.data0910.xml: found supplement IDE564 LATEST path= baseVersion= [included from product IDE563 LATEST path=]
2019-06-18 15:06:56.959 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE564 LATEST path=
2019-06-18 15:06:56.959 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE564 LATEST path=
2019-06-18 15:06:56.959 Update progress: [I49502] sdds.data0910.xml: found supplement IDE565 LATEST path= baseVersion= [included from product IDE564 LATEST path=]
2019-06-18 15:06:56.959 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE565 LATEST path=
2019-06-18 15:06:56.960 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE565 LATEST path=
2019-06-18 15:06:56.960 Update progress: [I49502] sdds.data0910.xml: found supplement IDE566 LATEST path= baseVersion= [included from product IDE565 LATEST path=]
2019-06-18 15:06:56.960 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE566 LATEST path=
2019-06-18 15:06:56.960 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE566 LATEST path=
2019-06-18 15:06:56.960 Update progress: [I49502] sdds.data0910.xml: found supplement IDE567 LATEST path= baseVersion= [included from product IDE566 LATEST path=]
2019-06-18 15:06:56.960 Update progress: [I95020] sdds.data0910.xml: looking for packages included from product IDE567 LATEST path=
2019-06-18 15:06:56.960 Update progress: [I22529] sdds.data0910.xml: looking for supplements included from product IDE567 LATEST path=
2019-06-18 15:06:56.960 Update progress: [I19463] Syncing product C1A903B2-E63E-483b-982D-04BB9C457C60 RECOMMENDED path=
2019-06-18 15:06:56.960 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: a5f9a9701bd51a95af10cb0c395d29f9x000.xml: 81125 bytes
2019-06-18 15:06:56.960 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: a5f9a9701bd51a95af10cb0c395d29f9x000.xml: 1016 ms
2019-06-18 15:06:56.960 Update progress: [I19463] Product download size 218285021 bytes
2019-06-18 15:07:51.103 Update progress: [I19463] Syncing product IDE562 LATEST path=
2019-06-18 15:07:51.103 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 08740e2c8499d353c13edccb0101863ex000.xml: 26999 bytes
2019-06-18 15:07:51.103 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 08740e2c8499d353c13edccb0101863ex000.xml: 891 ms
2019-06-18 15:07:51.103 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 1a39c753a2b12405cace0855b8f27d3fx000.xml: 397 bytes
2019-06-18 15:07:51.103 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 1a39c753a2b12405cace0855b8f27d3fx000.xml: 63 ms
2019-06-18 15:07:51.103 Update progress: [I19463] Product download size 2224681 bytes
2019-06-18 15:07:52.065 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 837dcfbea689acae0cfcb360c7946421x000.xml: 9458 bytes
2019-06-18 15:07:52.065 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 837dcfbea689acae0cfcb360c7946421x000.xml: 16 ms
2019-06-18 15:07:52.655 Update progress: [I19463] Syncing product IDE563 LATEST path=
2019-06-18 15:07:52.656 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: c2064317131ec2bb64217a8beb0a3dc5x000.xml: 27755 bytes
2019-06-18 15:07:52.656 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: c2064317131ec2bb64217a8beb0a3dc5x000.xml: 531 ms
2019-06-18 15:07:52.656 Update progress: [I19463] Product download size 2258739 bytes
2019-06-18 15:07:55.035 Update progress: [I19463] Syncing product IDE564 LATEST path=
2019-06-18 15:07:55.035 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: b31805dbf2a988abbc4a8c67da695c53x000.xml: 29226 bytes
2019-06-18 15:07:55.035 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: b31805dbf2a988abbc4a8c67da695c53x000.xml: 640 ms
2019-06-18 15:07:55.035 Update progress: [I19463] Product download size 1821417 bytes
2019-06-18 15:08:59.134 Update progress: [I19463] Syncing product IDE565 LATEST path=
2019-06-18 15:08:59.134 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: 59511491e02f7189056be86f467170e2x000.xml: 26230 bytes
2019-06-18 15:08:59.134 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: 59511491e02f7189056be86f467170e2x000.xml: 61906 ms
2019-06-18 15:08:59.134 Update progress: [I19463] Product download size 1847133 bytes
2019-06-18 15:09:00.222 Update progress: [I19463] Syncing product IDE566 LATEST path=
2019-06-18 15:09:00.222 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: ad1f2de2c56b4e7ccf441f9ece436ebcx000.xml: 12315 bytes
2019-06-18 15:09:00.222 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: ad1f2de2c56b4e7ccf441f9ece436ebcx000.xml: 16 ms
2019-06-18 15:09:00.222 Update progress: [I19463] Product download size 742832 bytes
2019-06-18 15:09:31.670 Update progress: [I19463] Syncing product IDE567 LATEST path=
2019-06-18 15:09:31.670 Update progress: [V52614] SU::LoggingAdvisor::start_file [metadata] Syncing: f430c089bf466bb070b959d79391e4c2x000.xml: 124 bytes
2019-06-18 15:09:31.670 Update progress: [V52615] SU::LoggingAdvisor::end_file [metadata] Success: f430c089bf466bb070b959d79391e4c2x000.xml: 30922 ms
2019-06-18 15:09:31.720 Installing updates...
2019-06-18 15:09:32.340 Error level 1
2019-06-18 15:09:46.898 Update successful
2019-06-18 15:09:57.525 Option all = no
2019-06-18 15:09:57.525 Option recurse = yes
2019-06-18 15:09:57.525 Option archive = no
2019-06-18 15:09:57.525 Option service = yes
2019-06-18 15:09:57.525 Option confirm = yes
2019-06-18 15:09:57.525 Option sxl = yes
2019-06-18 15:09:57.526 Option max-data-age = 35
2019-06-18 15:09:57.526 Option vdl-logging = yes
2019-06-18 15:09:57.711 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2019-06-18 15:09:57.711 Machine ID: 0a5aa77336d042a99832a2edc0b2c9dc
2019-06-18 15:09:57.859 Component SVRTcli.exe version 2.7.0
2019-06-18 15:09:57.860 Component control.dll version 2.7.0
2019-06-18 15:09:57.860 Component SVRTservice.exe version 2.7.0
2019-06-18 15:09:57.860 Component engine\osdp.dll version 1.44.1.2443
2019-06-18 15:09:57.860 Component engine\veex.dll version 3.75.0.2443
2019-06-18 15:09:57.860 Component engine\savi.dll version 9.0.13.2443
2019-06-18 15:09:57.954 Component rkdisk.dll version 1.5.33.1
2019-06-18 15:09:57.954 Version info: Product version 2.7.0
2019-06-18 15:09:57.955 Version info: Detection engine 3.75.0
2019-06-18 15:09:57.955 Version info: Detection data 5.61
2019-06-18 15:09:57.955 Version info: Build date 12/03/2019
2019-06-18 15:09:57.956 Version info: Data files added 490
2019-06-18 15:09:57.956 Version info: Last successful update 18/06/2019 10:09:46 PM
 

Judy K

TS Rookie
2019-06-19 01:13:51.571 Could not open C:\hiberfil.sys
2019-06-19 01:56:54.874 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_AVPAPP_{BB639333-810A-4bf8-85F5-C537857F55FC}1
2019-06-19 01:56:54.875 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_CSDK_ServiceG
2019-06-19 01:56:54.875 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_CSDK_Session1
2019-06-19 01:56:54.889 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_ICFMGR_{F34173A0-C9EA-45ab-B832-29D35E6D04EC}G
2019-06-19 01:56:54.889 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_RDRPluginG
2019-06-19 01:56:54.890 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_SNDPluginG
2019-06-19 01:56:54.890 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_SvcMgr-A2B50D70-5EA1-45a0-A983-0DB9E7101676G
2019-06-19 01:56:54.900 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\CmnClnt\_lck\_{4E9CB39A-5F78-4887-A3D6-2790DE9DDE11}1
2019-06-19 02:00:54.025 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\sef\databases\ProcessClassifier\pc_process_events\LOCK
2019-06-19 02:00:54.284 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\sef\databases\scheduler\jobsdb\LOCK
2019-06-19 02:00:54.466 Could not open C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\sef\databases\SmartListing\ha_submission_events\LOCK
2019-06-19 02:03:20.715 Could not open C:\swapfile.sys
2019-06-19 02:04:34.119 Could not open C:\System Volume Information\{0a599331-8eb7-11e9-80bf-68942331e5c4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-06-19 02:04:34.119 Could not open C:\System Volume Information\{0d084d63-918d-11e9-80c5-68942331e5c4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-06-19 02:04:34.120 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-06-19 02:04:34.120 Could not open C:\System Volume Information\{438313ad-8472-11e9-80b5-68942331e5c4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-06-19 02:04:34.120 Could not open C:\System Volume Information\{4dfe08f3-8b86-11e9-80b9-68942331e5c4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2019-06-19 02:16:08.814 Could not open C:\Users\Judy\AppData\Local\Google\Chrome\User Data\Default\Current Session
2019-06-19 02:16:08.835 Could not open C:\Users\Judy\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
2019-06-19 02:26:12.095 Could not open C:\Users\Judy\AppData\Local\Microsoft\WindowsApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
2019-06-19 02:26:12.096 Could not open C:\Users\Judy\AppData\Local\Microsoft\WindowsApps\MicrosoftEdge.exe
2019-06-19 02:28:59.490 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\Local\Microsoft\OneDrive\OneDrive.exe
2019-06-19 02:28:59.766 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content\0177A2B8C3D6561744552D69E6BD54B0_40DA235FA11269CCDF8BC8524CE66718
2019-06-19 02:28:59.767 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
2019-06-19 02:28:59.768 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
2019-06-19 02:28:59.769 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\Content\82CB34DD3343FE727DF8890D352E0D8F
2019-06-19 02:28:59.882 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData\0177A2B8C3D6561744552D69E6BD54B0_40DA235FA11269CCDF8BC8524CE66718
2019-06-19 02:28:59.882 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
2019-06-19 02:28:59.900 Could not open C:\Users\Judy\AppData\Local\Packages\Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe\LocalCache\LocalLow\Microsoft\CryptnetUrlCache\MetaData\82CB34DD3343FE727DF8890D352E0D8F
2019-06-19 03:10:55.710 Could not open C:\Windows\System32\catroot2\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\catdb
2019-06-19 03:10:55.713 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2019-06-19 03:10:55.715 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2019-06-19 03:11:05.324 Could not open C:\Windows\System32\config\BBI
2019-06-19 03:11:07.353 Could not open C:\Windows\System32\config\RegBack\DEFAULT
2019-06-19 03:11:07.353 Could not open C:\Windows\System32\config\RegBack\SAM
2019-06-19 03:11:07.354 Could not open C:\Windows\System32\config\RegBack\SECURITY
2019-06-19 03:11:07.354 Could not open C:\Windows\System32\config\RegBack\SOFTWARE
2019-06-19 03:11:07.355 Could not open C:\Windows\System32\config\RegBack\SYSTEM
2019-06-19 04:04:07.827 >>> Virus 'Mal/Generic-S' found in file D:\IP Wireless Camera\english\ocx2.exe
2019-06-19 04:04:07.827 >>> Virus 'Mal/Generic-S' found in file D:\IP Wireless Camera\english\ocx2.exe
2019-06-19 04:04:07.827 >>> Virus 'Mal/Generic-S' found in file D:\IP Wireless Camera\english\ocx2.exe
2019-06-19 04:37:00.448 The following items will be cleaned up:
2019-06-19 04:37:00.449 Mal/Generic-S
 

Broni

Malware Annihilator
Your computer is clean https://www.bleepstatic.com/fhost/uploads/6/snag-0004.jpg[/URL]]

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
[COLOR=#ff0000][B]This is a very crucial step so make sure you don't skip it.[/B][/COLOR]
Download [IMG]http://www.imgdumper.nl/uploads6/51a5ce45267c1/51a5ce45263de-delfix.pngDelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
  • Activate UAC (optional; some users prefer to keep it off)
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings
Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")

5. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

6. Run Temporary File Cleaner (TFC) and AdwCleaner weekly (you need to redownload these tools since they were removed by DelFix).

7. (optional) If you want to keep all your programs up to date, download and install FileHippo App Manager.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

8. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

9. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/#entry3187642

10. Please, let me know, how your computer is doing.
 

Judy K

TS Rookie
Hi, my Norton anti-virus would not allow me to download the delfix_1.010.exe. It says it has a risk name of Heur.AdvMl.C.

Should I stop my Norton to download this file?
 

Judy K

TS Rookie
Malwarebytes still say I have the same 2 pup.optional.ask threats. Seems it cannot be removed.

The scan results show:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 6/16/19
Scan Time: 4:57 PM
Log File: 390e36d1-901d-11e9-a56f-7054d27e3a73.json

-Software Information-
Version: 3.7.1.2839
Components Version: 1.0.586
Update Package Version: 1.0.11074
License: Free

-System Information-
OS: Windows 10 (Build 17134.829)
CPU: x64
File System: NTFS
User: HP-WIN8\Judy

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 377917
Threats Detected: 2
Threats Quarantined: 2
Time Elapsed: 25 min, 16 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 2
PUP.Optional.ASK, C:\USERS\JUDY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\SyncData.sqlite3, Replaced, [2], [454823],1.0.11074
PUP.Optional.ASK, C:\USERS\JUDY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Replaced, [2], [454823],1.0.11074

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

What else can I do?
 

Broni

Malware Annihilator
It looks like it comes from Chrome, so...

Reset Chrome...
Click on "Customize and control Google Chrome":

Click "Settings" then "Show advanced settings" at the bottom of the screen.
Click "Reset browser settings" button.
Restart Chrome.

If the above didn't help....

Reinstall Chrome...
If you want to save your bookmarks...
How to Backup Bookmarks in Google Chrome
If you want to save your passwords as well see here: http://www.intowindows.com/how-to-backup-saved-passwords-in-google-chrome-browser/
  • Close all Chrome windows and tabs.
  • Go to the Start menu > Control Panel. (Windows 8 users: Learn how to access the Control Panel)
  • Click Programs and Features.
  • Double-click Google Chrome.
  • Click Uninstall from the confirmation dialog. Delete your user profile information, like your browser preferences, bookmarks, and history, by selecting the "Also delete your browsing data" checkbox.
Install fresh copy.
 

Judy K

TS Rookie
Sorry for this delayed reply.

I have managed to remove Chrome and the scan by Malwarebytes came out clean.

I resintalled Chrome and did another scan and unfortunately that same two threats are there again. :(

What else can I do?
 

Broni

Malware Annihilator
Did you install any addons after reinstalling Chrome.
If so, reinstall Chrome one more time and don't add anything.

If you didn't install any addons after reinstalling Chrome, reinstall it one more time but this time make sure sync function is disabled.
 

Judy K

TS Rookie
Hi, sorry for this late reply again. I am still travelling and have limited access to the internet.

I did not install any addons.

I am uninstalling Chrome again and will try to reinstall again by today or the next two days. And I will not sync it this time. Will update you again.
 

Judy K

TS Rookie
Good news.

Uninstalled, reinstalled, no addons, not sync and now malwarebytes scan is clean.

Does this mean I cannot sync at all from now onwards?