Использование Javascript отключено

Javascript отключен. В результате, некоторые функции могут не работать. Для возобновления полноценного функционирования форума, включите Javascript.

Проблема с агентом.

Автор Zenw1e , июл 07 2022 20:39

След.

Please log in to reply

22 ответов в этой теме

#1 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 07 Июль 2022 - 20:39

Добрый день. Аналогичная ерунда, на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм. Windows 7 ОС, перезарузка не помогает, в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).
В программах и компонентах вообще нету в списке продукта Dr.Web, хотя файлы физически и службы то присутствуют. Хотел снести drw_remover'ом - "заругался" на самозащиту. Есть какие-нибудь фиксы помимо livecd?
P.S. он не был подключен к ESS Server'у, т.к. стоял как сингл продукт.
При попытке установки агента на него - естественно, ругается, что, якобы, админ "запретил" установку.

Прикрепленные файлы:

не стартует дрвеб.jpg 254,06К 3 Скачано раз

Сообщение было изменено Zenw1e: 07 Июль 2022 - 20:40

Наверх

#2 VVS

The Master

Moderators
19 387 Сообщений:

Отправлено 07 Июль 2022 - 20:58

Добрый день. Аналогичная ерунда, на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм. Windows 7 ОС, перезарузка не помогает, в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).
В программах и компонентах вообще нету в списке продукта Dr.Web, хотя файлы физически и службы то присутствуют. Хотел снести drw_remover'ом - "заругался" на самозащиту. Есть какие-нибудь фиксы помимо livecd?
P.S. он не был подключен к ESS Server'у, т.к. стоял как сингл продукт.

Хрустальный шар говорит, что это утверждение не соответствует действительности.

Приложите отчёт доктора, чтобы уточнить показания хрустального шара.

меня вот что возмутило. что даже не начинают толком диалог сразу дампы...... © alehas777
--------------------------------
Антивирус это как ремень безопасности - всего лишь увеличивает шансы выжить или получить менее тяжкую травму при аварии.
Есть, однако, категория людей, которые рассматривают средства безопасности как ауру неуязвимости. © basid

Наверх

#3 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 07 Июль 2022 - 21:19

Добрый день. Аналогичная ерунда, на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм. Windows 7 ОС, перезарузка не помогает, в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).
В программах и компонентах вообще нету в списке продукта Dr.Web, хотя файлы физически и службы то присутствуют. Хотел снести drw_remover'ом - "заругался" на самозащиту. Есть какие-нибудь фиксы помимо livecd?
P.S. он не был подключен к ESS Server'у, т.к. стоял как сингл продукт.

Хрустальный шар говорит, что это утверждение не соответствует действительности.

Приложите отчёт доктора, чтобы уточнить показания хрустального шара.

Отчёт какой нужен? Через файл C:\Program Files\DrWeb\dwsysinfo.exe ?

Наверх

#4 VVS

The Master

Moderators
19 387 Сообщений:

Отправлено 07 Июль 2022 - 21:24

Добрый день. Аналогичная ерунда, на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм. Windows 7 ОС, перезарузка не помогает, в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).
В программах и компонентах вообще нету в списке продукта Dr.Web, хотя файлы физически и службы то присутствуют. Хотел снести drw_remover'ом - "заругался" на самозащиту. Есть какие-нибудь фиксы помимо livecd?
P.S. он не был подключен к ESS Server'у, т.к. стоял как сингл продукт.

Хрустальный шар говорит, что это утверждение не соответствует действительности.
Приложите отчёт доктора, чтобы уточнить показания хрустального шара.

Отчёт какой нужен? Через файл C:\Program Files\DrWeb\dwsysinfo.exe ?

Честно говоря, я не знаю, соберёт ли он отчёт при неработающем сервисе.
Так что лучше https://cdn-download.drweb.com/pub/drweb/tools/dwsysinfo.exe

меня вот что возмутило. что даже не начинают толком диалог сразу дампы...... © alehas777
--------------------------------
Антивирус это как ремень безопасности - всего лишь увеличивает шансы выжить или получить менее тяжкую травму при аварии.
Есть, однако, категория людей, которые рассматривают средства безопасности как ауру неуязвимости. © basid

Наверх

#5 NickM

Member

Posters
186 Сообщений:

Отправлено 07 Июль 2022 - 22:24

на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм.

в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).

Судя по скринам проблема с подписью - интересно, а может у Вас мартовский случай, когда у кого-то БСОДило, а у кого-то служба отваливалась?

Вот тут фикс предлагали, может и удалять не придётся?

Ну или, что-то в системе действительно не в порядке, ну там корневые сертификаты не обновлены и пр. (1)

Сообщение было изменено NickM: 07 Июль 2022 - 22:25

Наверх

#6 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 07 Июль 2022 - 22:56

Добрый день. Аналогичная ерунда, на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм. Windows 7 ОС, перезарузка не помогает, в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).
В программах и компонентах вообще нету в списке продукта Dr.Web, хотя файлы физически и службы то присутствуют. Хотел снести drw_remover'ом - "заругался" на самозащиту. Есть какие-нибудь фиксы помимо livecd?
P.S. он не был подключен к ESS Server'у, т.к. стоял как сингл продукт.

Хрустальный шар говорит, что это утверждение не соответствует действительности.
Приложите отчёт доктора, чтобы уточнить показания хрустального шара.

Отчёт какой нужен? Через файл C:\Program Files\DrWeb\dwsysinfo.exe ?

Честно говоря, я не знаю, соберёт ли он отчёт при неработающем сервисе.
Так что лучше https://cdn-download.drweb.com/pub/drweb/tools/dwsysinfo.exe

Не могу приложить сюда в сообщение файл-архив с отчётом, ругается на "Этот файл слишком велик", хотя написано, что макс. размер одного файла - 100 мб, а архив весит ~61 мб.
Загрузил на файлохранилище другое https://dropmefiles.com/ggqwY

Наверх

#7 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 07 Июль 2022 - 23:15

на некоторых ПК в локальной сети странным образом "сломался" Dr.Web, раньше работал норм.

в трее значок Веба и "Dr.Web is starting..", служба "Dr.Web Control Service" тоже не стартует, ругается (см. скриншот).

Судя по скринам проблема с подписью - интересно, а может у Вас мартовский случай, когда у кого-то БСОДило, а у кого-то служба отваливалась?

Вот тут фикс предлагали, может и удалять не придётся?

Ну или, что-то в системе действительно не в порядке, ну там корневые сертификаты не обновлены и пр. (1)

Фикс скачал, запустил, действительно он помог запустить антивирус хотя бы, но опять "мобильный режим" и в логах такое:

2022-Jul-08 01:12:40.445806 [ 1288] [INF] [es-client] [TextProto/Client/A2S/Session] Connected to "tcp://192.168.0.18:2193"
2022-Jul-08 01:12:40.446805 [ 1156] [INF] [es-client] [TextProto/Client/C2S] tcp://192.168.0.18:2193/dead: There is an error in previous connection, automatically try next server if it is
2022-Jul-08 01:12:40.446805 [ 1280] [ERR] [es-client] [TextProto/Client/A2S/Session] Unable to connect to "192.168.0.18" because of  (error: 1)

Наверх

#8 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 07 Июль 2022 - 23:35

Сертификаты установил как по ссылке, ничего не изменилось, после ребута этих ПК также "Dr.Web is starting..."

Наверх

#9 VVS

The Master

Moderators
19 387 Сообщений:

Отправлено 08 Июль 2022 - 00:13

Таким образом, у Вас не автономная версия, а агент ES.
Завтра перенесу этот офтопик из этой темы в нужное место форума.

меня вот что возмутило. что даже не начинают толком диалог сразу дампы...... © alehas777
--------------------------------
Антивирус это как ремень безопасности - всего лишь увеличивает шансы выжить или получить менее тяжкую травму при аварии.
Есть, однако, категория людей, которые рассматривают средства безопасности как ауру неуязвимости. © basid

Наверх

#10 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 17:17

В общем, странности продолжаются...Заметил, что в основном проблемы у машинок с ОС Win 7 и Win 8.1.
Например, сегодняшний лог es-service.log у клиента с Win 8.1

Spoiler

2022-Jul-08 17:32:21.485301 [ 1964] [INF] [event-processor] Accumulate event because of not connected to server (6 events pending)
2022-Jul-08 17:32:21.485407 [ 1964] [INF] [event-processor] Starting timer (6 events pending)
2022-Jul-08 17:33:21.486172 [ 1964] [INF] [event-processor] Accumulate event because of not connected to server (6 events pending)
2022-Jul-08 17:33:21.486353 [ 1964] [INF] [event-processor] Starting timer (6 events pending)
2022-Jul-08 17:33:24.325548 [ 1964] [INF] [es-client] [TextProto/Client/A2S/Session] <unbound>: there is an error in previous connection, will try next server if it is
2022-Jul-08 17:33:24.328346 [ 1972] [INF] [es-client] [TextProto/Client/A2S/Session] Connected to "tcp://192.168.0.18:2193"
2022-Jul-08 17:33:24.329271 [ 1956] [INF] [es-client] [TextProto/Client/C2S] tcp://192.168.0.18:2193/dead: There is an error in previous connection, automatically try next server if it is
2022-Jul-08 17:33:24.329497 [ 1964] [ERR] [es-client] [TextProto/Client/A2S/Session] Unable to connect to "192.168.0.18" because of  (error: 1)
2022-Jul-08 17:33:24.329617 [ 1964] [WRN] [reconnector] ES connection error 1 ''
2022-Jul-08 17:33:24.330644 [ 1964] [INF] [reconnector] retry ... 120 seconds
2022-Jul-08 17:33:24.330694 [ 1964] [INF] [components] on_connected
2022-Jul-08 17:33:24.330712 [ 1964] [INF] [components] on_connected error: 
2022-Jul-08 17:34:21.486636 [ 1964] [INF] [event-processor] Accumulate event because of not connected to server (6 events pending)
2022-Jul-08 17:34:21.486755 [ 1964] [INF] [event-processor] Starting timer (6 events pending)
2022-Jul-08 17:35:21.487334 [ 1972] [INF] [event-processor] Accumulate event because of not connected to server (6 events pending)
2022-Jul-08 17:35:21.487489 [ 1972] [INF] [event-processor] Starting timer (6 events pending)
2022-Jul-08 17:35:24.332843 [ 1972] [INF] [es-client] [TextProto/Client/A2S/Session] <unbound>: there is an error in previous connection, will try next server if it is
2022-Jul-08 17:35:24.334424 [ 1956] [INF] [es-client] [TextProto/Client/A2S/Session] Connected to "tcp://192.168.0.18:2193"
2022-Jul-08 17:35:24.459590 [ 1972] [INF] [reconnector] ES connected to 192.168.0.18:2193 'connected successfully'
2022-Jul-08 17:35:24.568008 [ 1972] [INF] [reconnector] request settings for 4
2022-Jul-08 17:35:24.568113 [ 1972] [INF] [reconnector] request settings for 14
2022-Jul-08 17:35:24.568224 [ 1972] [INF] [reconnector] request settings for 30
2022-Jul-08 17:35:24.568327 [ 1972] [INF] [reconnector] request settings for 38
2022-Jul-08 17:35:24.568429 [ 1972] [INF] [reconnector] request settings for 54
2022-Jul-08 17:35:24.568494 [ 1972] [INF] [reconnector] request settings for 57
2022-Jul-08 17:35:24.568550 [ 1972] [INF] [reconnector] request settings for 103
2022-Jul-08 17:35:24.568650 [ 1972] [INF] [reconnector] request settings for 124
2022-Jul-08 17:35:24.568704 [ 1972] [INF] [reconnector] request settings for 144
2022-Jul-08 17:35:24.568712 [ 1972] [INF] [reconnector] request settings for 145
2022-Jul-08 17:35:24.568764 [ 1972] [INF] [reconnector] request settings for 149
2022-Jul-08 17:35:24.568827 [ 1972] [INF] [reconnector] request settings for 154
2022-Jul-08 17:35:24.568889 [ 1972] [INF] [reconnector] request settings for 156
2022-Jul-08 17:35:24.568906 [ 1972] [INF] [components] on_connected
2022-Jul-08 17:35:24.568956 [ 1952] [INF] [components] Scanner (4) changed state to unknown
2022-Jul-08 17:35:24.568973 [ 1952] [INF] [components] NetFilterMail (14) changed state to started
2022-Jul-08 17:35:24.569074 [ 1972] [INF] [event-processor] Flush events on connect (6 events pending)
2022-Jul-08 17:35:24.616821 [ 1972] [INF] [reboot-manager] notify es of no restart required
2022-Jul-08 17:35:24.616930 [ 1972] [INF] [VdbCache] wait ANF_STATE for send vdb info
2022-Jul-08 17:35:24.651434 [ 1972] [INF] [Scheduler] Need schedule cause connect
2022-Jul-08 17:35:24.651487 [ 1972] [INF] [Scheduler] Get schedule request
2022-Jul-08 17:35:24.652302 [ 6264] [INF] [quarantine] Quarantine digest calculation started
2022-Jul-08 17:35:24.652580 [ 1972] [INF] [esloader] Connected to es server
2022-Jul-08 17:35:24.652869 [ 1972] [INF] [esloader] Update products-revisions map
2022-Jul-08 17:35:24.652902 [ 1972] [INF] [esloader]  ESproduct = 10-drwbases; revision = 130'20220708081025
2022-Jul-08 17:35:24.652919 [ 1972] [INF] [esloader]  ESproduct = 10-drwgatedb; revision = 130'20220708082251
2022-Jul-08 17:35:24.652930 [ 1972] [INF] [esloader]  ESproduct = 10-drwspamdb; revision = 130'20220707220434
2022-Jul-08 17:35:24.652941 [ 1972] [INF] [esloader]  ESproduct = 20-drwagent; revision = 130'20220707111549
2022-Jul-08 17:35:24.653077 [ 1972] [INF] [esloader] Sending ANF_STATE to server ...
2022-Jul-08 17:35:24.654299 [ 1972] [INF] [esloader]  EsProduct = 10-drwbases ; revision = 13020220708081025; state = S; force_update = no
2022-Jul-08 17:35:24.654332 [ 1972] [INF] [esloader]  EsProduct = 10-drwgatedb; revision = 13020220708082251; state = S; force_update = no
2022-Jul-08 17:35:24.654347 [ 1972] [INF] [esloader]  EsProduct = 10-drwspamdb; revision = 13020220707220434; state = S; force_update = no
2022-Jul-08 17:35:24.654359 [ 1972] [INF] [esloader]  EsProduct = 20-drwagent ; revision = 13020220707111549; state = S; force_update = no
2022-Jul-08 17:35:24.654382 [ 1972] [INF] [VdbCache] send vdb info after ANF_STATE
2022-Jul-08 17:35:24.812746 [ 1960] [INF] [reconnector] New Rights
2022-Jul-08 17:35:24.871071 [ 6264] [INF] [quarantine] Quarantine digest sent
2022-Jul-08 17:35:24.871120 [ 6264] [INF] [quarantine] Quarantine digest calculation finished
2022-Jul-08 17:35:24.959213 [ 1952] [INF] [components] AvService (30) changed state to started
2022-Jul-08 17:35:24.996909 [ 1952] [INF] [components] EScanner (37) changed state to unknown
2022-Jul-08 17:35:24.996958 [ 1952] [INF] [components] NetFilterHttp (38) changed state to started
2022-Jul-08 17:35:25.039356 [ 1952] [INF] [components] NetFilterParentalControl (54) changed state to started
2022-Jul-08 17:35:25.080363 [ 1952] [INF] [components] SpamFilter (55) changed state to unknown
2022-Jul-08 17:35:25.080420 [ 1952] [INF] [components] SpIDerGuardG3 (57) changed state to started
2022-Jul-08 17:35:25.112066 [ 1952] [INF] [components] OutlookPlugin (103) changed state to started
2022-Jul-08 17:35:25.146980 [ 1952] [INF] [components] DwProt (124) changed state to started
2022-Jul-08 17:35:25.189155 [ 1952] [INF] [components] PreventiveProtection (144) changed state to started
2022-Jul-08 17:35:25.230306 [ 1952] [INF] [components] Appcontrol (154) changed state to started
2022-Jul-08 17:35:25.264297 [ 1952] [INF] [components] MeshClient (156) changed state to paused
2022-Jul-08 17:35:25.338613 [ 1952] [INF] [components] process installed components
2022-Jul-08 17:35:25.355775 [ 1960] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:35:25.372384 [ 1952] [INF] [components] comp: Scanner, date: 20210207184755000(1612723675)
2022-Jul-08 17:35:25.413824 [ 1952] [INF] [components] comp: NetFilterMail, date: 20210207184756000(1612723676)
2022-Jul-08 17:35:25.464512 [ 1952] [INF] [components] comp: AvService, date: 20210207184752000(1612723672)
2022-Jul-08 17:35:25.505223 [ 1952] [INF] [components] comp: EScanner, date: 20210207184752000
2022-Jul-08 17:35:25.538905 [ 1952] [INF] [components] comp: Appcontrol, date: 20210207184752000
2022-Jul-08 17:35:25.571944 [ 1952] [INF] [components] comp: MeshClient, date: 20210207184752000
2022-Jul-08 17:35:25.615645 [ 1952] [INF] [components] comp: NetFilterHttp, date: 20210207184752000(1612723672)
2022-Jul-08 17:35:25.655363 [ 1952] [INF] [components] comp: NetFilterParentalControl, date: 20210207184755000(1612723675)
2022-Jul-08 17:35:25.695544 [ 1952] [INF] [components] comp: SpamFilter, date: 20210207184749000(1612723669)
2022-Jul-08 17:35:25.711878 [ 1964] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:35:25.738906 [ 1952] [INF] [components] comp: SpIDerGuardG3, date: 20210207184755000(1612723675)
2022-Jul-08 17:35:25.781051 [ 1952] [INF] [components] comp: OutlookPlugin, date: 20210207184756000(1612723676)
2022-Jul-08 17:35:25.812240 [ 1952] [INF] [components] comp: DwProt, date: 20210207184756000(1612723676)
2022-Jul-08 17:35:25.855657 [ 1952] [INF] [components] comp: PreventiveProtection, date: 20201105142908000(1604586548)
2022-Jul-08 17:35:26.523611 [ 1960] [INF] [esupdate] Recieve new policies.
2022-Jul-08 17:35:26.523809 [ 1980] [INF] [esupdate] Processing policies.
2022-Jul-08 17:35:26.524427 [ 1980] [INF] [esupdate] Run changing policies (change composition of components)
2022-Jul-08 17:35:26.524680 [ 1980] [INF] [esupdate] Product = Bases                     Revision = 20220708081025
2022-Jul-08 17:35:26.524694 [ 1980] [INF] [esupdate] Product = DrWebAgent                Revision = 20220707111549
2022-Jul-08 17:35:26.524700 [ 1980] [INF] [esupdate] Product = DrWebEsAgent              Revision = 20220707111549
2022-Jul-08 17:35:26.524706 [ 1980] [INF] [esupdate] Product = DrwBase                   Revision = 20220708081025
2022-Jul-08 17:35:26.524711 [ 1980] [INF] [esupdate] Product = DwsNetFilter              Revision = 20220708082251
2022-Jul-08 17:35:26.524716 [ 1980] [INF] [esupdate] Product = DwsParentalControl        Revision = 20220708082251
2022-Jul-08 17:35:26.524721 [ 1980] [INF] [esupdate] Product = ESAgentSetup              Revision = 20220707111549
2022-Jul-08 17:35:26.524726 [ 1980] [INF] [esupdate] Product = NetFilterHttp             Revision = 20220707111549
2022-Jul-08 17:35:26.524731 [ 1980] [INF] [esupdate] Product = NetFilterMail             Revision = 20220707111549
2022-Jul-08 17:35:26.524736 [ 1980] [INF] [esupdate] Product = NetFilterParentalControl  Revision = 20220707111549
2022-Jul-08 17:35:26.524741 [ 1980] [INF] [esupdate] Product = OutlookPlugin             Revision = 20220707111549
2022-Jul-08 17:35:26.524746 [ 1980] [INF] [esupdate] Product = ScannerSE                 Revision = 20220707111549
2022-Jul-08 17:35:26.524751 [ 1980] [INF] [esupdate] Product = SpamFilterOutlook         Revision = 20220707220434
2022-Jul-08 17:35:26.524756 [ 1980] [INF] [esupdate] Product = SpamFilterSpiderMail      Revision = 20220707220434
2022-Jul-08 17:35:26.524761 [ 1980] [INF] [esupdate] Product = SpiderG3Ws                Revision = 20220707111549
2022-Jul-08 17:35:26.524766 [ 1980] [INF] [esupdate] Product = Updater                   Revision = 20220707111549
2022-Jul-08 17:35:26.524773 [ 1980] [INF] [esupdate] new product policies:
2022-Jul-08 17:35:26.524784 [ 1980] [INF] [esupdate]  Product = AVDAgentSetup             ( EsId =  503) CANNOT be installed! (0) (not suitable type)
2022-Jul-08 17:35:26.524792 [ 1980] [INF] [esupdate]  Product = AntispamForExchangePlugin ( EsId =   55) MAY    be installed! (1) 
2022-Jul-08 17:35:26.524799 [ 1980] [INF] [esupdate]  Product = AntispamForLotusPlugin    ( EsId =   55) MAY    be installed! (1) 
2022-Jul-08 17:35:26.524806 [ 1980] [INF] [esupdate]  Product = Bases                     ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:35:26.524815 [ 1980] [INF] [esupdate]  Product = DrWebAgent                ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:35:26.524822 [ 1980] [INF] [esupdate]  Product = DrWebAvdAgent             ( EsId =   30) CANNOT be installed! (0) (not suitable type)
2022-Jul-08 17:35:26.524829 [ 1980] [INF] [esupdate]  Product = DrWebEsAgent              ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:35:26.524836 [ 1980] [INF] [esupdate]  Product = DrwBase                   ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:35:26.524844 [ 1980] [INF] [esupdate]  Product = DwsNetFilter              ( EsId =   38) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524851 [ 1980] [INF] [esupdate]  Product = DwsParentalControl        ( EsId =   54) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524858 [ 1980] [INF] [esupdate]  Product = ESAgentSetup              ( EsId =  502) MUST   be installed! (2) (installed)
2022-Jul-08 17:35:26.524867 [ 1980] [INF] [esupdate]  Product = Firewall                  ( EsId =  105) MAY    be installed! (1) 
2022-Jul-08 17:35:26.524875 [ 1980] [INF] [esupdate]  Product = NetFilterHttp             ( EsId =   38) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524883 [ 1980] [INF] [esupdate]  Product = NetFilterMail             ( EsId =   14) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524894 [ 1980] [INF] [esupdate]  Product = NetFilterParentalControl  ( EsId =   54) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524901 [ 1980] [INF] [esupdate]  Product = OutlookPlugin             ( EsId =  103) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524908 [ 1980] [INF] [esupdate]  Product = ScannerSE                 ( EsId =    4) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524916 [ 1980] [INF] [esupdate]  Product = SpamFilterOutlook         ( EsId =   55) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524923 [ 1980] [INF] [esupdate]  Product = SpamFilterSpiderMail      ( EsId =   55) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524930 [ 1980] [INF] [esupdate]  Product = SpiderG3Ws                ( EsId =   57) MAY    be installed! (1) (installed)
2022-Jul-08 17:35:26.524937 [ 1980] [INF] [esupdate]  Product = Updater                   ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:35:26.524953 [ 1980] [INF] [esupdate] nothing to change configuration
2022-Jul-08 17:35:26.524981 [ 1980] [INF] [esupdate] Run changing policies for proxy
2022-Jul-08 17:35:26.537501 [ 1952] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:35:26.962415 [ 1964] [INF] [es-config] Apply for user S-1-5-21-3326103006-631055663-701107830-1003 common settings
2022-Jul-08 17:35:29.119115 [ 1968] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:35:29.228677 [ 1952] [INF] [Scheduler] SCHEDULE: 8 Action Class a566be50-2d6d-11e9-7a13-008b7a170eed 0 escan_job_t 0 Action Name a566be50-2d6d-11e9-7a13-008b7a170eed 0 Daily%Sscan 0 Action ScanMode a566be50-2d6d-11e9-7a13-008b7a170eed 0 ScanStartups%S1%SActionJokes%S2%SActionInfectedMail%S2%SMaxSizeToExtract%S524288%SRatioCheckThreshold%S1024%SScanNonet%S0%SScanIdle%S2%SActionDialers%S2%SActionInfectedBoot%S0%SScanHeuristic%S1%SActionHacktools%S2%SScanRootkit%S1%SActionAdware%S2%SActionInfectedContainer%S2%SScanRemovable%S0%SActionRiskware%S2%SIncurableFiles%S2%SActionInfectedArchive%S2%SMaxArchSize%S0%SScanShutdown%S0%SScanInteractive%S0%SScanMemory%S1%SInfectedFiles%S1%SCheckContainer%S1%SAutoAction%S0%SFollowSymbolicLinks%S0%SRebootMode%S0%SPauseOnBattery%S0%SCheckArchives%S1%SMaxArchLevel%S16%SMaxTimeMills%S0%SCheckEMailFiles%S1%SScanBoot%S1%SMaxCompressionRatio%S1000%SScanPriority%S50%SMaxEngineToUse%S0%SScanFixed%S1%SSuspiciousFiles%S2 0 Action ScanType a566be50-2d6d-11e9-7a13-008b7a170eed 0 full 0 Job State a566be50-2d6d-11e9-7a13-008b7a170eed 1 %Z 0 Time Class a566be50-2d6d-11e9-7a13-008b7a170eed 0 daily_job_t 0 Time Hour a566be50-2d6d-11e9-7a13-008b7a170eed 1 %Z 16 Time Minute a566be50-2d6d-11e9-7a13-008b7a170eed 1 %Z 0
2022-Jul-08 17:35:29.260796 [ 1952] [INF] [Scheduler] Restart enterprise scheduler
2022-Jul-08 17:35:29.261641 [ 1952] [INF] [Scheduler] Skipping disabled job with id a566be50-2d6d-11e9-7a13-008b7a170eed
2022-Jul-08 17:35:29.261856 [ 1952] [INF] [Scheduler] starting scheduler, now: 2022-Jul-08 17:35:29
2022-Jul-08 17:36:21.488056 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:36:54.460040 [ 1952] [INF] [esloader] start downloading products: 10-drwbases; 10-drwgatedb; 10-drwspamdb; 
2022-Jul-08 17:36:54.460860 [ 1968] [INF] [es-client] [TextProto/Client/C2S] "ssl://192.168.0.18:2193/dead" disconnected
2022-Jul-08 17:36:54.460943 [ 1968] [INF] [es-client] [TextProto/Client/A2S/Session] "ssl://192.168.0.18:2193/dead" disconnected
2022-Jul-08 17:36:54.461101 [ 1968] [INF] [esloader] Disconnected from es server
2022-Jul-08 17:36:54.461147 [ 1968] [WRN] [esupdate] Error occurred while download: disconnected from es server
2022-Jul-08 17:36:54.461164 [ 1968] [ERR] [esupdate] Error occurred before updater started: disconnected from es server
2022-Jul-08 17:36:54.461797 [ 1968] [INF] [esloader] Update products-revisions map
2022-Jul-08 17:36:54.461838 [ 1968] [INF] [esloader]  ESproduct = 10-drwbases; revision = 130'20220708081025
2022-Jul-08 17:36:54.461866 [ 1968] [INF] [esloader]  ESproduct = 10-drwgatedb; revision = 130'20220708082251
2022-Jul-08 17:36:54.461888 [ 1968] [INF] [esloader]  ESproduct = 10-drwspamdb; revision = 130'20220707220434
2022-Jul-08 17:36:54.461902 [ 1968] [INF] [esloader]  ESproduct = 20-drwagent; revision = 130'20220707111549
2022-Jul-08 17:36:54.461923 [ 1968] [INF] [esloader] Unable send ANF_STATE: ES disconnect!
2022-Jul-08 17:36:54.464828 [ 1968] [INF] [esloader] Stop was called
2022-Jul-08 17:36:54.464877 [ 1968] [WRN] [esloader] Error: download interrupted by call stop
2022-Jul-08 17:36:54.465213 [ 1968] [INF] [reconnector] ES disconnected
2022-Jul-08 17:36:54.478833 [ 1968] [INF] [reconnector] retry ... 120 seconds
2022-Jul-08 17:37:21.488721 [ 1968] [INF] [event-processor] Accumulate event because of not connected to server (0 events pending)
2022-Jul-08 17:37:21.488879 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:38:21.489531 [ 1960] [INF] [event-processor] Accumulate event because of not connected to server (0 events pending)
2022-Jul-08 17:38:21.489693 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:38:54.481865 [ 1960] [INF] [es-client] [TextProto/Client/A2S/Session] Connected to "tcp://192.168.0.18:2193"
2022-Jul-08 17:38:54.503216 [ 1952] [INF] [reconnector] ES connected to 192.168.0.18:2193 'connected successfully'
2022-Jul-08 17:38:54.503866 [ 1952] [INF] [reconnector] request settings for 4
2022-Jul-08 17:38:54.503959 [ 1952] [INF] [reconnector] request settings for 14
2022-Jul-08 17:38:54.504095 [ 1952] [INF] [reconnector] request settings for 30
2022-Jul-08 17:38:54.504227 [ 1952] [INF] [reconnector] request settings for 38
2022-Jul-08 17:38:54.504347 [ 1952] [INF] [reconnector] request settings for 54
2022-Jul-08 17:38:54.504406 [ 1952] [INF] [reconnector] request settings for 57
2022-Jul-08 17:38:54.504469 [ 1952] [INF] [reconnector] request settings for 103
2022-Jul-08 17:38:54.504605 [ 1952] [INF] [reconnector] request settings for 124
2022-Jul-08 17:38:54.504669 [ 1952] [INF] [reconnector] request settings for 144
2022-Jul-08 17:38:54.504676 [ 1952] [INF] [reconnector] request settings for 145
2022-Jul-08 17:38:54.504742 [ 1952] [INF] [reconnector] request settings for 149
2022-Jul-08 17:38:54.504814 [ 1952] [INF] [reconnector] request settings for 154
2022-Jul-08 17:38:54.504882 [ 1952] [INF] [reconnector] request settings for 156
2022-Jul-08 17:38:54.504897 [ 1952] [INF] [components] on_connected
2022-Jul-08 17:38:54.504916 [ 1964] [INF] [components] Scanner (4) changed state to unknown
2022-Jul-08 17:38:54.504920 [ 1952] [INF] [event-processor] Flush events on connect (0 events pending)
2022-Jul-08 17:38:54.504933 [ 1964] [INF] [components] NetFilterMail (14) changed state to started
2022-Jul-08 17:38:54.504979 [ 1952] [INF] [reboot-manager] notify es of no restart required
2022-Jul-08 17:38:54.504993 [ 1952] [INF] [VdbCache] wait ANF_STATE for send vdb info
2022-Jul-08 17:38:54.505072 [ 1952] [INF] [Scheduler] Need schedule cause connect
2022-Jul-08 17:38:54.505082 [ 1952] [INF] [Scheduler] Get schedule request
2022-Jul-08 17:38:54.506713 [ 1952] [INF] [esloader] Connected to es server
2022-Jul-08 17:38:54.506867 [ 1952] [INF] [esloader] Update products-revisions map
2022-Jul-08 17:38:54.506883 [ 1952] [INF] [esloader]  ESproduct = 10-drwbases; revision = 130'20220708081025
2022-Jul-08 17:38:54.506889 [ 1952] [INF] [esloader]  ESproduct = 10-drwgatedb; revision = 130'20220708082251
2022-Jul-08 17:38:54.506893 [ 1952] [INF] [esloader]  ESproduct = 10-drwspamdb; revision = 130'20220707220434
2022-Jul-08 17:38:54.506898 [ 1952] [INF] [esloader]  ESproduct = 20-drwagent; revision = 130'20220707111549
2022-Jul-08 17:38:54.506971 [ 1952] [INF] [esloader] Sending ANF_STATE to server ...
2022-Jul-08 17:38:54.507784 [ 1952] [INF] [esloader]  EsProduct = 10-drwbases ; revision = 13020220708081025; state = S; force_update = no
2022-Jul-08 17:38:54.507816 [ 1952] [INF] [esloader]  EsProduct = 10-drwgatedb; revision = 13020220708082251; state = S; force_update = no
2022-Jul-08 17:38:54.507827 [ 1952] [INF] [esloader]  EsProduct = 10-drwspamdb; revision = 13020220707220434; state = S; force_update = no
2022-Jul-08 17:38:54.507832 [ 1952] [INF] [esloader]  EsProduct = 20-drwagent ; revision = 13020220707111549; state = S; force_update = no
2022-Jul-08 17:38:54.507846 [ 1952] [INF] [VdbCache] send vdb info after ANF_STATE
2022-Jul-08 17:38:54.512226 [ 1960] [INF] [reconnector] New Rights
2022-Jul-08 17:38:54.513841 [ 6680] [INF] [quarantine] Quarantine digest calculation started
2022-Jul-08 17:38:54.520103 [ 1964] [INF] [components] AvService (30) changed state to started
2022-Jul-08 17:38:54.520845 [ 1980] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:38:54.523020 [ 1980] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:38:54.527818 [ 6680] [INF] [quarantine] Quarantine digest sent
2022-Jul-08 17:38:54.527847 [ 6680] [INF] [quarantine] Quarantine digest calculation finished
2022-Jul-08 17:38:54.578138 [ 1964] [INF] [components] EScanner (37) changed state to unknown
2022-Jul-08 17:38:54.578170 [ 1964] [INF] [components] NetFilterHttp (38) changed state to started
2022-Jul-08 17:38:54.706644 [ 1964] [INF] [components] NetFilterParentalControl (54) changed state to started
2022-Jul-08 17:38:54.794824 [ 1964] [INF] [components] SpamFilter (55) changed state to unknown
2022-Jul-08 17:38:54.794851 [ 1964] [INF] [components] SpIDerGuardG3 (57) changed state to started
2022-Jul-08 17:38:54.811764 [ 1964] [INF] [components] OutlookPlugin (103) changed state to started
2022-Jul-08 17:38:54.828134 [ 1964] [INF] [components] DwProt (124) changed state to started
2022-Jul-08 17:38:54.845131 [ 1964] [INF] [components] PreventiveProtection (144) changed state to started
2022-Jul-08 17:38:54.861476 [ 1964] [INF] [components] Appcontrol (154) changed state to started
2022-Jul-08 17:38:54.878443 [ 1964] [INF] [components] MeshClient (156) changed state to paused
2022-Jul-08 17:38:54.894812 [ 1964] [INF] [components] process installed components
2022-Jul-08 17:38:54.911835 [ 1964] [INF] [components] comp: Scanner, date: 20210207184755000(1612723675)
2022-Jul-08 17:38:54.928202 [ 1964] [INF] [components] comp: NetFilterMail, date: 20210207184756000(1612723676)
2022-Jul-08 17:38:54.945172 [ 1964] [INF] [components] comp: AvService, date: 20210207184752000(1612723672)
2022-Jul-08 17:38:54.961469 [ 1964] [INF] [components] comp: EScanner, date: 20210207184752000
2022-Jul-08 17:38:54.978428 [ 1964] [INF] [components] comp: Appcontrol, date: 20210207184752000
2022-Jul-08 17:38:54.994808 [ 1964] [INF] [components] comp: MeshClient, date: 20210207184752000
2022-Jul-08 17:38:54.999714 [ 1952] [INF] [esupdate] Recieve new policies.
2022-Jul-08 17:38:54.999756 [ 1960] [INF] [esupdate] Processing policies.
2022-Jul-08 17:38:55.000050 [ 1960] [INF] [esupdate] Run changing policies (change composition of components)
2022-Jul-08 17:38:55.007067 [ 1972] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:38:55.011780 [ 1964] [INF] [components] comp: NetFilterHttp, date: 20210207184752000(1612723672)
2022-Jul-08 17:38:55.033299 [ 1972] [INF] [es-config] Apply for user S-1-5-21-3326103006-631055663-701107830-1003 common settings
2022-Jul-08 17:38:55.054665 [ 1964] [INF] [components] comp: NetFilterParentalControl, date: 20210207184755000(1612723675)
2022-Jul-08 17:38:55.068792 [ 1960] [INF] [esupdate] Product = Bases                     Revision = 20220708081025
2022-Jul-08 17:38:55.068828 [ 1960] [INF] [esupdate] Product = DrWebAgent                Revision = 20220707111549
2022-Jul-08 17:38:55.068834 [ 1960] [INF] [esupdate] Product = DrWebEsAgent              Revision = 20220707111549
2022-Jul-08 17:38:55.068839 [ 1960] [INF] [esupdate] Product = DrwBase                   Revision = 20220708081025
2022-Jul-08 17:38:55.068844 [ 1960] [INF] [esupdate] Product = DwsNetFilter              Revision = 20220708082251
2022-Jul-08 17:38:55.068854 [ 1960] [INF] [esupdate] Product = DwsParentalControl        Revision = 20220708082251
2022-Jul-08 17:38:55.068861 [ 1960] [INF] [esupdate] Product = ESAgentSetup              Revision = 20220707111549
2022-Jul-08 17:38:55.068867 [ 1960] [INF] [esupdate] Product = NetFilterHttp             Revision = 20220707111549
2022-Jul-08 17:38:55.068871 [ 1960] [INF] [esupdate] Product = NetFilterMail             Revision = 20220707111549
2022-Jul-08 17:38:55.068876 [ 1960] [INF] [esupdate] Product = NetFilterParentalControl  Revision = 20220707111549
2022-Jul-08 17:38:55.068880 [ 1960] [INF] [esupdate] Product = OutlookPlugin             Revision = 20220707111549
2022-Jul-08 17:38:55.068885 [ 1960] [INF] [esupdate] Product = ScannerSE                 Revision = 20220707111549
2022-Jul-08 17:38:55.068890 [ 1960] [INF] [esupdate] Product = SpamFilterOutlook         Revision = 20220707220434
2022-Jul-08 17:38:55.068895 [ 1960] [INF] [esupdate] Product = SpamFilterSpiderMail      Revision = 20220707220434
2022-Jul-08 17:38:55.068899 [ 1960] [INF] [esupdate] Product = SpiderG3Ws                Revision = 20220707111549
2022-Jul-08 17:38:55.068904 [ 1960] [INF] [esupdate] Product = Updater                   Revision = 20220707111549
2022-Jul-08 17:38:55.068912 [ 1960] [INF] [esupdate] new product policies:
2022-Jul-08 17:38:55.068923 [ 1960] [INF] [esupdate]  Product = AVDAgentSetup             ( EsId =  503) CANNOT be installed! (0) (not suitable type)
2022-Jul-08 17:38:55.068930 [ 1960] [INF] [esupdate]  Product = AntispamForExchangePlugin ( EsId =   55) MAY    be installed! (1) 
2022-Jul-08 17:38:55.068936 [ 1960] [INF] [esupdate]  Product = AntispamForLotusPlugin    ( EsId =   55) MAY    be installed! (1) 
2022-Jul-08 17:38:55.068943 [ 1960] [INF] [esupdate]  Product = Bases                     ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:38:55.068952 [ 1960] [INF] [esupdate]  Product = DrWebAgent                ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:38:55.068958 [ 1960] [INF] [esupdate]  Product = DrWebAvdAgent             ( EsId =   30) CANNOT be installed! (0) (not suitable type)
2022-Jul-08 17:38:55.068964 [ 1960] [INF] [esupdate]  Product = DrWebEsAgent              ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:38:55.068971 [ 1960] [INF] [esupdate]  Product = DrwBase                   ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:38:55.068977 [ 1960] [INF] [esupdate]  Product = DwsNetFilter              ( EsId =   38) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.068984 [ 1960] [INF] [esupdate]  Product = DwsParentalControl        ( EsId =   54) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.068990 [ 1960] [INF] [esupdate]  Product = ESAgentSetup              ( EsId =  502) MUST   be installed! (2) (installed)
2022-Jul-08 17:38:55.068998 [ 1960] [INF] [esupdate]  Product = Firewall                  ( EsId =  105) MAY    be installed! (1) 
2022-Jul-08 17:38:55.069006 [ 1960] [INF] [esupdate]  Product = NetFilterHttp             ( EsId =   38) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069027 [ 1960] [INF] [esupdate]  Product = NetFilterMail             ( EsId =   14) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069035 [ 1960] [INF] [esupdate]  Product = NetFilterParentalControl  ( EsId =   54) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069041 [ 1960] [INF] [esupdate]  Product = OutlookPlugin             ( EsId =  103) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069048 [ 1960] [INF] [esupdate]  Product = ScannerSE                 ( EsId =    4) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069055 [ 1960] [INF] [esupdate]  Product = SpamFilterOutlook         ( EsId =   55) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069061 [ 1960] [INF] [esupdate]  Product = SpamFilterSpiderMail      ( EsId =   55) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069068 [ 1960] [INF] [esupdate]  Product = SpiderG3Ws                ( EsId =   57) MAY    be installed! (1) (installed)
2022-Jul-08 17:38:55.069077 [ 1960] [INF] [esupdate]  Product = Updater                   ( EsId =   30) MUST   be installed! (2) (installed)
2022-Jul-08 17:38:55.069093 [ 1960] [INF] [esupdate] nothing to change configuration
2022-Jul-08 17:38:55.069133 [ 1960] [INF] [esupdate] Run changing policies for proxy
2022-Jul-08 17:38:55.113072 [ 1964] [INF] [components] comp: SpamFilter, date: 20210207184749000(1612723669)
2022-Jul-08 17:38:55.145078 [ 1964] [INF] [components] comp: SpIDerGuardG3, date: 20210207184755000(1612723675)
2022-Jul-08 17:38:55.188017 [ 1964] [INF] [components] comp: OutlookPlugin, date: 20210207184756000(1612723676)
2022-Jul-08 17:38:55.229719 [ 1964] [INF] [components] comp: DwProt, date: 20210207184756000(1612723676)
2022-Jul-08 17:38:55.271405 [ 1964] [INF] [components] comp: PreventiveProtection, date: 20201105142908000(1604586548)
2022-Jul-08 17:38:55.916234 [ 1960] [INF] [config] Rewrite es default connection settings
2022-Jul-08 17:38:55.926271 [ 1972] [INF] [Scheduler] SCHEDULE: 8 Action Class a566be50-2d6d-11e9-7a13-008b7a170eed 0 escan_job_t 0 Action Name a566be50-2d6d-11e9-7a13-008b7a170eed 0 Daily%Sscan 0 Action ScanMode a566be50-2d6d-11e9-7a13-008b7a170eed 0 ScanStartups%S1%SActionJokes%S2%SActionInfectedMail%S2%SMaxSizeToExtract%S524288%SRatioCheckThreshold%S1024%SScanNonet%S0%SScanIdle%S2%SActionDialers%S2%SActionInfectedBoot%S0%SScanHeuristic%S1%SActionHacktools%S2%SScanRootkit%S1%SActionAdware%S2%SActionInfectedContainer%S2%SScanRemovable%S0%SActionRiskware%S2%SIncurableFiles%S2%SActionInfectedArchive%S2%SMaxArchSize%S0%SScanShutdown%S0%SScanInteractive%S0%SScanMemory%S1%SInfectedFiles%S1%SCheckContainer%S1%SAutoAction%S0%SFollowSymbolicLinks%S0%SRebootMode%S0%SPauseOnBattery%S0%SCheckArchives%S1%SMaxArchLevel%S16%SMaxTimeMills%S0%SCheckEMailFiles%S1%SScanBoot%S1%SMaxCompressionRatio%S1000%SScanPriority%S50%SMaxEngineToUse%S0%SScanFixed%S1%SSuspiciousFiles%S2 0 Action ScanType a566be50-2d6d-11e9-7a13-008b7a170eed 0 full 0 Job State a566be50-2d6d-11e9-7a13-008b7a170eed 1 %Z 0 Time Class a566be50-2d6d-11e9-7a13-008b7a170eed 0 daily_job_t 0 Time Hour a566be50-2d6d-11e9-7a13-008b7a170eed 1 %Z 16 Time Minute a566be50-2d6d-11e9-7a13-008b7a170eed 1 %Z 0
2022-Jul-08 17:38:55.926454 [ 1972] [INF] [Scheduler] Restart enterprise scheduler
2022-Jul-08 17:38:55.926647 [ 1972] [INF] [Scheduler] Skipping disabled job with id a566be50-2d6d-11e9-7a13-008b7a170eed
2022-Jul-08 17:38:55.926717 [ 1972] [INF] [Scheduler] starting scheduler, now: 2022-Jul-08 17:38:55
2022-Jul-08 17:39:21.490226 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:39:24.504650 [ 1952] [INF] [esloader] start downloading products: 10-drwbases; 10-drwgatedb; 10-drwspamdb; 
2022-Jul-08 17:39:24.512282 [ 1972] [INF] [esloader] Product: 10-drwbases. Current revision = 130'20220708081025. New revision = 130'20220708121201.
2022-Jul-08 17:39:24.563382 [ 1960] [INF] [esloader] Product: 10-drwgatedb. Current revision = 130'20220708082251. New revision = 130'20220708121201.
2022-Jul-08 17:39:24.563598 [ 1960] [INF] [esloader] Product: 10-drwspamdb. Current revision = 130'20220707220434. New revision = 130'20220708084717.
2022-Jul-08 17:39:24.645726 [ 1980] [INF] [esloader] We have nothing to download for product: 10-drwbases
2022-Jul-08 17:39:24.645752 [ 1980] [INF] [esloader] Download complete for Product = 10-drwbases. Revision = 130'20220708121201. Downloaded Size = 0
2022-Jul-08 17:39:24.723967 [ 1960] [INF] [esloader] We have nothing to download for product: 10-drwgatedb
2022-Jul-08 17:39:24.723997 [ 1960] [INF] [esloader] Download complete for Product = 10-drwgatedb. Revision = 130'20220708121201. Downloaded Size = 0
2022-Jul-08 17:39:24.910602 [ 1980] [INF] [esloader] We have nothing to download for product: 10-drwspamdb
2022-Jul-08 17:39:24.910627 [ 1980] [INF] [esloader] Download complete for Product = 10-drwspamdb. Revision = 130'20220708084717. Downloaded Size = 0
2022-Jul-08 17:39:24.910661 [ 1960] [INF] [esloader] All files downloaded
2022-Jul-08 17:39:25.061009 [ 1960] [INF] [updater] Updater started: stage 'Updating Products' (1/2)
2022-Jul-08 17:39:39.154875 [ 5196] [INF] [VdbCache] Dr.Web Engine virus bases has been reloaded
2022-Jul-08 17:39:39.563294 [ 1960] [INF] [updater] Updater stage 'Updating Products' completed successfully, ret = 0, err = 0
2022-Jul-08 17:39:48.642074 [ 1980] [INF] [updater] Updater stage 'Postupdating' completed successfully, ret = 0, err = 0
2022-Jul-08 17:39:48.643161 [ 1980] [INF] [esupdate] Reload updater configuration
2022-Jul-08 17:39:48.643528 [ 1980] [INF] [esupdate] Load products.xml from "C:/ProgramData/Doctor Web/Updater/repo/90\products.xml"
2022-Jul-08 17:39:48.645376 [ 1980] [INF] [esupdate] Products.xml contains 4 groups, 26 products, 38 components
2022-Jul-08 17:39:49.370714 [ 1980] [INF] [esloader] Update products-revisions map
2022-Jul-08 17:39:49.370754 [ 1980] [INF] [esloader]  ESproduct = 10-drwbases; revision = 130'20220708121201
2022-Jul-08 17:39:49.370761 [ 1980] [INF] [esloader]  ESproduct = 10-drwgatedb; revision = 130'20220708121201
2022-Jul-08 17:39:49.370765 [ 1980] [INF] [esloader]  ESproduct = 10-drwspamdb; revision = 130'20220708084717
2022-Jul-08 17:39:49.370769 [ 1980] [INF] [esloader]  ESproduct = 20-drwagent; revision = 130'20220707111549
2022-Jul-08 17:39:49.370839 [ 1980] [INF] [esloader] Sending ANF_STATE to server ...
2022-Jul-08 17:39:49.372135 [ 1980] [INF] [esloader]  EsProduct = 10-drwbases ; revision = 13020220708121201; state = S; force_update = no
2022-Jul-08 17:39:49.372262 [ 1980] [INF] [esloader]  EsProduct = 10-drwgatedb; revision = 13020220708121201; state = S; force_update = no
2022-Jul-08 17:39:49.372272 [ 1980] [INF] [esloader]  EsProduct = 10-drwspamdb; revision = 13020220708084717; state = S; force_update = no
2022-Jul-08 17:39:49.372281 [ 1980] [INF] [esloader]  EsProduct = 20-drwagent ; revision = 13020220707111549; state = S; force_update = no
2022-Jul-08 17:39:49.379223 [ 1972] [INF] [esupdate] Updating repo info ...
2022-Jul-08 17:39:49.817169 [ 1972] [INF] [esupdate] Repo info updated successfully: 18 add(update) files, 1 remove files.
2022-Jul-08 17:39:50.859192 [ 1972] [INF] [components] process installed components
2022-Jul-08 17:39:50.923890 [ 1972] [INF] [components] comp: Scanner, date: 20210207184755000(1612723675)
2022-Jul-08 17:39:50.940166 [ 1972] [INF] [components] comp: NetFilterMail, date: 20210207184756000(1612723676)
2022-Jul-08 17:39:50.957380 [ 1972] [INF] [components] comp: AvService, date: 20210207184752000(1612723672)
2022-Jul-08 17:39:50.973261 [ 1972] [INF] [components] comp: EScanner, date: 20210207184752000
2022-Jul-08 17:39:50.990295 [ 1972] [INF] [components] comp: Appcontrol, date: 20210207184752000
2022-Jul-08 17:39:51.006525 [ 1972] [INF] [components] comp: MeshClient, date: 20210207184752000
2022-Jul-08 17:39:51.023619 [ 1972] [INF] [components] comp: NetFilterHttp, date: 20210207184752000(1612723672)
2022-Jul-08 17:39:51.040326 [ 1972] [INF] [components] comp: NetFilterParentalControl, date: 20210207184755000(1612723675)
2022-Jul-08 17:39:51.057364 [ 1972] [INF] [components] comp: SpamFilter, date: 20210207184749000(1612723669)
2022-Jul-08 17:39:51.073458 [ 1972] [INF] [components] comp: SpIDerGuardG3, date: 20210207184755000(1612723675)
2022-Jul-08 17:39:51.090578 [ 1972] [INF] [components] comp: OutlookPlugin, date: 20210207184756000(1612723676)
2022-Jul-08 17:39:51.107477 [ 1972] [INF] [components] comp: DwProt, date: 20210207184756000(1612723676)
2022-Jul-08 17:39:51.123627 [ 1972] [INF] [components] comp: PreventiveProtection, date: 20201105142908000(1604586548)
2022-Jul-08 17:40:21.490701 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:41:21.491503 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:42:21.492089 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:43:21.492732 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:44:21.493934 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:45:21.495088 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:46:21.495796 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:47:21.496436 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:48:21.497142 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:49:21.498493 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:50:21.499469 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:51:21.500194 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:52:21.500852 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:53:21.501600 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:54:21.503123 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:55:21.503854 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:56:21.504540 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:57:21.505190 [ 1952] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:57:22.372918 [ 1952] [WRN] [statistics] failed to process statistics for 103: Object was not found; (OutlookPlugin:Statistics)
2022-Jul-08 17:58:21.505867 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 17:59:21.506814 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:00:21.507496 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:01:21.508891 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:02:21.509562 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:02:24.472291 [ 1964] [INF] [esloader] start downloading products: 10-drwgatedb; 
2022-Jul-08 18:02:24.476736 [ 1964] [INF] [esloader] Product: 10-drwgatedb. Current revision = 130'20220708121201. New revision = 130'20220708124236.
2022-Jul-08 18:02:24.537542 [ 1972] [INF] [esloader] We have nothing to download for product: 10-drwgatedb
2022-Jul-08 18:02:24.537568 [ 1972] [INF] [esloader] Download complete for Product = 10-drwgatedb. Revision = 130'20220708124236. Downloaded Size = 0
2022-Jul-08 18:02:24.537653 [ 1980] [INF] [esloader] All files downloaded
2022-Jul-08 18:02:24.842625 [ 1980] [INF] [updater] Updater started: stage 'Updating Products' (1/2)
2022-Jul-08 18:02:32.011000 [ 1980] [INF] [updater] Updater stage 'Updating Products' completed successfully, ret = 0, err = 0
2022-Jul-08 18:02:41.004179 [ 1972] [INF] [updater] Updater stage 'Postupdating' completed successfully, ret = 0, err = 0
2022-Jul-08 18:02:41.005297 [ 1972] [INF] [esupdate] Reload updater configuration
2022-Jul-08 18:02:41.005659 [ 1972] [INF] [esupdate] Load products.xml from "C:/ProgramData/Doctor Web/Updater/repo/90\products.xml"
2022-Jul-08 18:02:41.007419 [ 1972] [INF] [esupdate] Products.xml contains 4 groups, 26 products, 38 components
2022-Jul-08 18:02:41.260546 [ 1980] [INF] [components] process installed components
2022-Jul-08 18:02:41.286343 [ 1980] [INF] [components] comp: Scanner, date: 20210207184755000(1612723675)
2022-Jul-08 18:02:41.302018 [ 1980] [INF] [components] comp: NetFilterMail, date: 20210207184756000(1612723676)
2022-Jul-08 18:02:41.318179 [ 1980] [INF] [components] comp: AvService, date: 20210207184752000(1612723672)
2022-Jul-08 18:02:41.335075 [ 1980] [INF] [components] comp: EScanner, date: 20210207184752000
2022-Jul-08 18:02:41.351448 [ 1980] [INF] [components] comp: Appcontrol, date: 20210207184752000
2022-Jul-08 18:02:41.368430 [ 1980] [INF] [components] comp: MeshClient, date: 20210207184752000
2022-Jul-08 18:02:41.384907 [ 1980] [INF] [components] comp: NetFilterHttp, date: 20210207184752000(1612723672)
2022-Jul-08 18:02:41.401803 [ 1980] [INF] [components] comp: NetFilterParentalControl, date: 20210207184755000(1612723675)
2022-Jul-08 18:02:41.418182 [ 1980] [INF] [components] comp: SpamFilter, date: 20210207184749000(1612723669)
2022-Jul-08 18:02:41.435251 [ 1980] [INF] [components] comp: SpIDerGuardG3, date: 20210207184755000(1612723675)
2022-Jul-08 18:02:41.451990 [ 1980] [INF] [components] comp: OutlookPlugin, date: 20210207184756000(1612723676)
2022-Jul-08 18:02:41.468476 [ 1980] [INF] [components] comp: DwProt, date: 20210207184756000(1612723676)
2022-Jul-08 18:02:41.484843 [ 1980] [INF] [components] comp: PreventiveProtection, date: 20201105142908000(1604586548)
2022-Jul-08 18:02:41.652994 [ 1972] [INF] [esloader] Update products-revisions map
2022-Jul-08 18:02:41.653024 [ 1972] [INF] [esloader]  ESproduct = 10-drwbases; revision = 130'20220708121201
2022-Jul-08 18:02:41.653030 [ 1972] [INF] [esloader]  ESproduct = 10-drwgatedb; revision = 130'20220708124236
2022-Jul-08 18:02:41.653035 [ 1972] [INF] [esloader]  ESproduct = 10-drwspamdb; revision = 130'20220708084717
2022-Jul-08 18:02:41.653039 [ 1972] [INF] [esloader]  ESproduct = 20-drwagent; revision = 130'20220707111549
2022-Jul-08 18:02:41.653111 [ 1972] [INF] [esloader] Sending ANF_STATE to server ...
2022-Jul-08 18:02:41.653622 [ 1972] [INF] [esloader]  EsProduct = 10-drwbases ; revision = 13020220708121201; state = S; force_update = no
2022-Jul-08 18:02:41.653638 [ 1972] [INF] [esloader]  EsProduct = 10-drwgatedb; revision = 13020220708124236; state = S; force_update = no
2022-Jul-08 18:02:41.653645 [ 1972] [INF] [esloader]  EsProduct = 10-drwspamdb; revision = 13020220708084717; state = S; force_update = no
2022-Jul-08 18:02:41.653650 [ 1972] [INF] [esloader]  EsProduct = 20-drwagent ; revision = 13020220707111549; state = S; force_update = no
2022-Jul-08 18:02:41.657904 [ 1968] [INF] [esupdate] Updating repo info ...
2022-Jul-08 18:02:41.690394 [ 1968] [INF] [esupdate] Repo info updated successfully: 4 add(update) files, 0 remove files.
2022-Jul-08 18:03:21.510220 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:04:21.511211 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:05:21.513462 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:06:21.514367 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:07:21.514972 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:08:21.515664 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:09:21.516314 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:10:21.517032 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:11:21.517713 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:12:21.518405 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:13:21.519007 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:14:21.519802 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:15:21.520368 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:16:21.520999 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:17:21.521685 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:18:21.522443 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:19:21.523105 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:20:21.523744 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:21:21.524481 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:22:21.525141 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:23:21.525747 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:24:21.526423 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:25:21.527049 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:26:21.527726 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:27:21.528505 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:28:21.529119 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:29:21.529820 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:30:21.530652 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:31:21.531226 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:32:21.532063 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:33:21.532541 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:33:54.445874 [ 1964] [INF] [esloader] start downloading products: 10-drwgatedb; 
2022-Jul-08 18:33:54.450470 [ 1980] [INF] [esloader] Product: 10-drwgatedb. Current revision = 130'20220708124236. New revision = 130'20220708125850.
2022-Jul-08 18:33:54.504535 [ 1964] [INF] [esloader] We have nothing to download for product: 10-drwgatedb
2022-Jul-08 18:33:54.504561 [ 1964] [INF] [esloader] Download complete for Product = 10-drwgatedb. Revision = 130'20220708125850. Downloaded Size = 0
2022-Jul-08 18:33:54.504592 [ 1980] [INF] [esloader] All files downloaded
2022-Jul-08 18:33:54.668233 [ 1964] [INF] [updater] Updater started: stage 'Updating Products' (1/2)
2022-Jul-08 18:33:59.178260 [ 1980] [INF] [updater] Updater stage 'Updating Products' completed successfully, ret = 0, err = 0
2022-Jul-08 18:34:07.728401 [ 1980] [INF] [updater] Updater stage 'Postupdating' completed successfully, ret = 0, err = 0
2022-Jul-08 18:34:07.730111 [ 1964] [INF] [esupdate] Reload updater configuration
2022-Jul-08 18:34:07.730496 [ 1964] [INF] [esupdate] Load products.xml from "C:/ProgramData/Doctor Web/Updater/repo/90\products.xml"
2022-Jul-08 18:34:07.732265 [ 1964] [INF] [esupdate] Products.xml contains 4 groups, 26 products, 38 components
2022-Jul-08 18:34:08.370490 [ 1964] [INF] [esloader] Update products-revisions map
2022-Jul-08 18:34:08.370519 [ 1964] [INF] [esloader]  ESproduct = 10-drwbases; revision = 130'20220708121201
2022-Jul-08 18:34:08.370524 [ 1964] [INF] [esloader]  ESproduct = 10-drwgatedb; revision = 130'20220708125850
2022-Jul-08 18:34:08.370529 [ 1964] [INF] [esloader]  ESproduct = 10-drwspamdb; revision = 130'20220708084717
2022-Jul-08 18:34:08.370533 [ 1964] [INF] [esloader]  ESproduct = 20-drwagent; revision = 130'20220707111549
2022-Jul-08 18:34:08.370605 [ 1964] [INF] [esloader] Sending ANF_STATE to server ...
2022-Jul-08 18:34:08.371197 [ 1964] [INF] [esloader]  EsProduct = 10-drwbases ; revision = 13020220708121201; state = S; force_update = no
2022-Jul-08 18:34:08.371217 [ 1964] [INF] [esloader]  EsProduct = 10-drwgatedb; revision = 13020220708125850; state = S; force_update = no
2022-Jul-08 18:34:08.371224 [ 1964] [INF] [esloader]  EsProduct = 10-drwspamdb; revision = 13020220708084717; state = S; force_update = no
2022-Jul-08 18:34:08.371229 [ 1964] [INF] [esloader]  EsProduct = 20-drwagent ; revision = 13020220707111549; state = S; force_update = no
2022-Jul-08 18:34:08.394995 [ 1964] [INF] [esupdate] Updating repo info ...
2022-Jul-08 18:34:08.422008 [ 1964] [INF] [esupdate] Repo info updated successfully: 5 add(update) files, 0 remove files.
2022-Jul-08 18:34:08.581499 [ 1980] [INF] [components] process installed components
2022-Jul-08 18:34:08.610631 [ 1980] [INF] [components] comp: Scanner, date: 20210207184755000(1612723675)
2022-Jul-08 18:34:08.625218 [ 1980] [INF] [components] comp: NetFilterMail, date: 20210207184756000(1612723676)
2022-Jul-08 18:34:08.642193 [ 1980] [INF] [components] comp: AvService, date: 20210207184752000(1612723672)
2022-Jul-08 18:34:08.658469 [ 1980] [INF] [components] comp: EScanner, date: 20210207184752000
2022-Jul-08 18:34:08.694285 [ 1980] [INF] [components] comp: Appcontrol, date: 20210207184752000
2022-Jul-08 18:34:08.708534 [ 1980] [INF] [components] comp: MeshClient, date: 20210207184752000
2022-Jul-08 18:34:08.725657 [ 1980] [INF] [components] comp: NetFilterHttp, date: 20210207184752000(1612723672)
2022-Jul-08 18:34:08.742010 [ 1980] [INF] [components] comp: NetFilterParentalControl, date: 20210207184755000(1612723675)
2022-Jul-08 18:34:08.758968 [ 1980] [INF] [components] comp: SpamFilter, date: 20210207184749000(1612723669)
2022-Jul-08 18:34:08.775578 [ 1980] [INF] [components] comp: SpIDerGuardG3, date: 20210207184755000(1612723675)
2022-Jul-08 18:34:08.792626 [ 1980] [INF] [components] comp: OutlookPlugin, date: 20210207184756000(1612723676)
2022-Jul-08 18:34:08.808648 [ 1980] [INF] [components] comp: DwProt, date: 20210207184756000(1612723676)
2022-Jul-08 18:34:08.825652 [ 1980] [INF] [components] comp: PreventiveProtection, date: 20201105142908000(1604586548)
2022-Jul-08 18:34:21.533227 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:35:21.533844 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:36:21.534441 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:37:21.535165 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:38:21.535873 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:39:21.536509 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:40:21.537222 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:41:21.538120 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:42:21.538653 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:43:21.539249 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:44:21.539913 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:45:21.540673 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:46:21.541372 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:47:21.542797 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:48:21.543699 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:49:21.544308 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:50:21.545004 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:51:21.545684 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:52:21.546426 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:53:21.547107 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:54:21.548646 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:55:21.549362 [ 1980] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:56:21.550024 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:57:21.550575 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:57:22.361962 [ 1968] [WRN] [statistics] failed to process statistics for 103: Object was not found; (OutlookPlugin:Statistics)
2022-Jul-08 18:58:21.552081 [ 1964] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:59:21.553793 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 18:59:22.328128 [ 1968] [INF] [es-client] [TextProto/Client/C2S] "ssl://192.168.0.18:2193/dead" disconnected
2022-Jul-08 18:59:22.328200 [ 1968] [INF] [es-client] [TextProto/Client/A2S/Session] "ssl://192.168.0.18:2193/dead" disconnected
2022-Jul-08 18:59:22.328307 [ 1968] [INF] [esloader] Disconnected from es server
2022-Jul-08 18:59:22.328327 [ 1968] [INF] [reconnector] ES disconnected
2022-Jul-08 18:59:22.336462 [ 1968] [INF] [reconnector] retry ... 120 seconds
2022-Jul-08 19:00:21.554659 [ 1960] [INF] [event-processor] Accumulate event because of not connected to server (0 events pending)
2022-Jul-08 19:00:21.554793 [ 1960] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 19:01:21.555325 [ 1968] [INF] [event-processor] Accumulate event because of not connected to server (0 events pending)
2022-Jul-08 19:01:21.555477 [ 1968] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 19:01:22.347018 [ 1964] [INF] [es-client] [TextProto/Client/A2S/Session] Connected to "tcp://192.168.0.18:2193"
2022-Jul-08 19:01:22.350945 [ 1968] [INF] [es-client] [TextProto/Client/C2S] tcp://192.168.0.18:2193/dead: There is an error in previous connection, automatically try next server if it is
2022-Jul-08 19:01:22.351214 [ 1972] [ERR] [es-client] [TextProto/Client/A2S/Session] Unable to connect to "192.168.0.18" because of  (error: 1)
2022-Jul-08 19:01:22.351344 [ 1972] [WRN] [reconnector] ES connection error 1 ''
2022-Jul-08 19:01:22.352278 [ 1972] [INF] [reconnector] retry ... 120 seconds
2022-Jul-08 19:01:22.352327 [ 1972] [INF] [components] on_connected
2022-Jul-08 19:01:22.352342 [ 1972] [INF] [components] on_connected error: 
2022-Jul-08 19:02:21.556718 [ 1972] [INF] [event-processor] Accumulate event because of not connected to server (0 events pending)
2022-Jul-08 19:02:21.557219 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 19:03:21.557683 [ 1972] [INF] [event-processor] Accumulate event because of not connected to server (0 events pending)
2022-Jul-08 19:03:21.557840 [ 1972] [INF] [event-processor] Starting timer (0 events pending)
2022-Jul-08 19:03:22.354510 [ 1964] [INF] [es-client] [TextProto/Client/A2S/Session] <unbound>: there is an error in previous connection, will try next server if it is
2022-Jul-08 19:03:22.358808 [ 1964] [INF] [es-client] [TextProto/Client/A2S/Session] Connected to "tcp://192.168.0.18:2193"
2022-Jul-08 19:03:22.359462 [ 1972] [INF] [es-client] [TextProto/Client/C2S] tcp://192.168.0.18:2193/dead: There is an error in previous connection, automatically try next server if it is
2022-Jul-08 19:03:22.359717 [ 1968] [ERR] [es-client] [TextProto/Client/A2S/Session] Unable to connect to "192.168.0.18" because of  (error: 1)
2022-Jul-08 19:03:22.359880 [ 1968] [WRN] [reconnector] ES connection error 1 ''
2022-Jul-08 19:03:22.360744 [ 1968] [INF] [reconnector] retry ... 120 seconds
2022-Jul-08 19:03:22.360793 [ 1968] [INF] [components] on_connected
2022-Jul-08 19:03:22.360810 [ 1968] [INF] [components] on_connected error: 
2022-Jul-08 19:03:59.445161 [ 1964] [INF] [updater] Updater started: stage 'Updating Products' (1/2)

Т.е. видим, что клиент то ловит "unable to connect", то через какое-то время подключается и даже "зелененьким" становится в ESS. Сейчас опять отключен. В какую сторону вообще идти ковырять?

Сообщение было изменено VVS: 08 Июль 2022 - 17:43
Для таких простыней нужно использовать спойлер.

Наверх

#11 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 17:20

Может ли это быть связано как-то с новой версией самого агента ? Может для старых ОС (Win 7 - 8.1) лучше поставить старые версии агентов? Такое возможно вообще?

Сообщение было изменено Zenw1e: 08 Июль 2022 - 17:20

Наверх

#12 Afalin

Guru

Dr.Web Staff
5 858 Сообщений:

Отправлено 08 Июль 2022 - 17:38

Тут бы не повредил лог уровня "ALL".

Семь раз отрежь – один раз проверь

Наверх

#13 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 17:55

Тут бы не повредил лог уровня "ALL".

Прилагаю логи во вложении:
1) со стороны сервера ESS за все время (из директории: /var/opt/drwcs/log/)
2) со стороны клиента №1 на Win 7 (из директории: C:\ProgramData\Doctor Web\Logs)
3) со стороны клиента №2 на Win 8.1 (из директории: C:\ProgramData\Doctor Web\Logs)
Надеюсь, они что-то подскажут о возможной проблеме

Прикрепленные файлы:

со стороны клиента №1 на Win 7.rar 1,69Мб 1 Скачано раз
со стороны клиента №2 на Win 8.1.rar 2,69Мб 1 Скачано раз
со стороны сервера ESS.rar 297,58К 2 Скачано раз

Наверх

#14 Kirill Polubelov

Hr. Schreibikus

Dr.Web Staff
4 362 Сообщений:

Отправлено 08 Июль 2022 - 19:31

Логи и сервера и агента не уровня ALL, но по ним кое-что проясняется.
В логе сервера:

20220708.193214.69 ERR [00473 00487] wrk:3 [Server] Unable to create listener for endpoint "tcp://192.168.0.18:2193" because of
20220708.193214.69 ERR [00473 00487] wrk:3 [Server] \ bind: Address already in use

Таких сообщений, только по IPv4 и IPv6 в drwcsd.log:

grep -ac "bind: Address already in use" drwcsd.log 
12457

На сервере конфликт с чем-то за этот порт на интерфейсе 192.168.0.18.
Видимо, есть ещё один, на который часть агентов цепляется. А "неудачники" ломятся на 192.168.0.18

Поскольку есть такие записи:

20220708.175714.65 ERR [00473 00488] wrk:4 [Server] Unable to create listener for endpoint "tcp://192.168.0.18:2193" because of
20220708.175714.65 ERR [00473 00488] wrk:4 [Server] \ bind: Address already in use
20220708.175730.79 ERR [00473 00489] wrk:5 [Proto/Common] ssl://192.168.0.151:53699/st: will disconnect due to violation no ping response
20220708.175744.65 ERR [00473 00485] wrk:1 [Server] Unable to create listener for endpoint "tcp://192.168.0.18:2193" because of
20220708.175744.65 ERR [00473 00485] wrk:1 [Server] \ bind: Address already in use

Хотя других интерфейсов в этом логе я не увидел.

(exit 0)

Наверх

#15 Kirill Polubelov

Hr. Schreibikus

Dr.Web Staff
4 362 Сообщений:

Отправлено 08 Июль 2022 - 19:32

Хм, а может несколько экземпляров drwcs запущено?

(exit 0)

Наверх

#16 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 20:31

Хм, а может несколько экземпляров drwcs запущено?

root@drwebess:~# /sbin/service drwcsd status
● drwcsd.service - LSB: Control Dr.Web(R) Enterprise Suite
     Loaded: loaded (/etc/init.d/drwcsd; generated)
     Active: active (running) since Thu 2022-07-07 19:30:41 +05; 1 day 2h ago
       Docs: man:systemd-sysv-generator(8)
    Process: 379 ExecStart=/etc/init.d/drwcsd start (code=exited, status=0/SUCCESS)
      Tasks: 32 (limit: 4679)
     Memory: 2.1G
        CPU: 9min 15.420s
     CGroup: /system.slice/drwcsd.service
             └─1358 /opt/drwcs/bin/drwcsd -home=/opt/drwcs -var-root=/var/opt/drwcs -etc=/var/opt/drwcs/etc -rotate=10z,10m -verbosity=INFO -log=/var/opt/drwcs/log/drwcsd.log -conf=/var/opt/drwcs/etc/drwcsd.conf -pid=/var/opt/drwcs/run/>


Jul 07 19:30:41 drwebess systemd[1]: Starting LSB: Control Dr.Web(R) Enterprise Suite...
Jul 07 19:30:41 drwebess systemd[1]: Started LSB: Control Dr.Web(R) Enterprise Suite.
lines 1-13/13 (END)

Вроде бы одна

Сообщение было изменено Zenw1e: 08 Июль 2022 - 20:32

Наверх

#17 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 20:49


root@drwebess:~# ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: ens18: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether c6:90:ec:1d:0b:e5 brd ff:ff:ff:ff:ff:ff
    altname enp0s18
    inet 192.168.0.18/24 brd 192.168.0.255 scope global ens18
       valid_lft forever preferred_lft forever
    inet6 fe80::c490:ecff:fe1d:be5/64 scope link
       valid_lft forever preferred_lft forever

root@drwebess:~# cat /etc/network/interfaces
# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).


source /etc/network/interfaces.d/*


# The loopback network interface
auto lo
iface lo inet loopback


# The primary network interface
allow-hotplug ens18
iface ens18 inet static
address 192.168.0.18
netmask 255.255.255.0
gateway 192.168.0.1
dns-nameservers 192.168.0.1 8.8.8.8

Сообщение было изменено Zenw1e: 08 Июль 2022 - 20:50

Наверх

#18 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 21:02


root@drwebess:~# netstat -l
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State
tcp        0      0 0.0.0.0:ssh             0.0.0.0:*               LISTEN
tcp        0      0 0.0.0.0:9080            0.0.0.0:*               LISTEN
tcp        0      0 0.0.0.0:9081            0.0.0.0:*               LISTEN
tcp        0      0 0.0.0.0:http            0.0.0.0:*               LISTEN
tcp        0      0 0.0.0.0:2193            0.0.0.0:*               LISTEN
tcp6       0      0 [::]:ssh                [::]:*                  LISTEN
udp        0      0 0.0.0.0:2193            0.0.0.0:*
udp        0      0 drwebess.mydomain.loc:2197 0.0.0.0:*

Наверх

#19 Zenw1e

Newbie

Posters
43 Сообщений:

Отправлено 08 Июль 2022 - 21:14

Ребят, кажется, я нашёл косяк, причем жесткий свой :-)
IP 192.168.0.18 уже был назначен другому устройству (точке доступа), из-за этого и был конфликт ESS сервера с точкой...

Наверх

#20 Afalin

Guru

Dr.Web Staff
5 858 Сообщений:

Отправлено 11 Июль 2022 - 10:05

Логи и сервера и агента не уровня ALL, но по ним кое-что проясняется.
В логе сервера:

20220708.193214.69 ERR [00473 00487] wrk:3 [Server] Unable to create listener for endpoint "tcp://192.168.0.18:2193" because of
20220708.193214.69 ERR [00473 00487] wrk:3 [Server] \ bind: Address already in use

Таких сообщений, только по IPv4 и IPv6 в drwcsd.log:
grep -ac "bind: Address already in use" drwcsd.log 
12457
На сервере конфликт с чем-то за этот порт на интерфейсе 192.168.0.18.
Видимо, есть ещё один, на который часть агентов цепляется. А "неудачники" ломятся на 192.168.0.18

Поскольку есть такие записи:

20220708.175714.65 ERR [00473 00488] wrk:4 [Server] Unable to create listener for endpoint "tcp://192.168.0.18:2193" because of
20220708.175714.65 ERR [00473 00488] wrk:4 [Server] \ bind: Address already in use
20220708.175730.79 ERR [00473 00489] wrk:5 [Proto/Common] ssl://192.168.0.151:53699/st: will disconnect due to violation no ping response
20220708.175744.65 ERR [00473 00485] wrk:1 [Server] Unable to create listener for endpoint "tcp://192.168.0.18:2193" because of
20220708.175744.65 ERR [00473 00485] wrk:1 [Server] \ bind: Address already in use

Хотя других интерфейсов в этом логе я не увидел.

Судя по прослушиваемому 0.0.0.0:2193 – транспорт настроен сразу и на 0.0.0.0, и на 192.168.0.18. И само собой, так работать не может.

Семь раз отрежь – один раз проверь

Наверх

След.

Назад к Dr.Web Enterprise Suite

Читают тему: 0

0 пользователей, 0 гостей, 0 скрытых

Проблема с агентом.

#1 Zenw1e

Прикрепленные файлы:

#2 VVS

#3 Zenw1e

#4 VVS

#5 NickM

#6 Zenw1e

#7 Zenw1e

#8 Zenw1e

#9 VVS

#10 Zenw1e

#11 Zenw1e

#12 Afalin

#13 Zenw1e

Прикрепленные файлы:

#14 Kirill Polubelov

#15 Kirill Polubelov

#16 Zenw1e

#17 Zenw1e

#18 Zenw1e

#19 Zenw1e

#20 Afalin

Читают тему: 0

Войти