Dobrý den,
prosím po dlouhé době o pomoc, děkuji.
Po x letech jsem zkusil nějaké "cracknuté" aplikace a evidentně to nedopadlo dobře. V tuto chvíli mi nejde nainstalovat téměř žádný antivir a minimum aplikaci - aplikace během procesu instalace spadne, nebo skončí s nějakou chybou.
I s během FRST jse měl problém, zde je prosím nějaký bohužel minimální log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Ran by msuro (administrator) on LEGION (LENOVO 83DF) (05-09-2024 00:52:25)
Running from C:\Users\msuro\Downloads\FRST64.exe
Loaded Profiles: msuro
Platform: Microsoft Windows 11 Home Version 23H2 22631.4037 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\RunOnce: [AvRepair] => "C:\Program Files\Avast Software\Avast\setup\instup.exe" /instop:repair /wait (No File)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\Run: [com.evernote.Evernote] => C:\Users\msuro\AppData\Local\Programs\Evernote\Evernote.exe [166149200 2024-08-20] (Evernote Corporation -> Evernote Corporation)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\Run: [MicrosoftEdgeAutoLaunch_2C1E684CAD36948C9215B6B461E381FD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\RunOnce: [VI2_IntermediatReboot] => C:\Users\msuro\AppData\Local\Temp\nscD025.tmp\mcuicnt.exe [598232 2016-07-01] (McAfee, Inc. -> McAfee, Inc.) <==== ATTENTION
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\MountPoints2: {e4b6179d-5fba-11ef-af1b-60452e8e2c5d} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3248026489-3966559180-2484514055-1002\...\Run: [MicrosoftEdgeAutoLaunch_5CC61CA8BCD9CE5116A75CF2F9BE3097] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.115\Installer\chrmstp.exe [2024-09-04] (Google LLC -> Google LLC)
Startup: C:\Users\msuro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2024-09-04]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0113C7E0-95FB-46B4-B482-9F51A26A043C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {06636B77-EBD8-438A-ADA0-9F447270C216} - \McAfee\WPS\McAfee restart of PC -> No File <==== ATTENTION
Task: {0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63} - \Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001 -> No File <==== ATTENTION
Task: {0D0E2E0C-5ECA-4027-841B-41219B739AB4} - \Lenovo\Vantage\StartupFixPlan -> No File <==== ATTENTION
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nedokončí se téměř žádná instalace aplikace
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
-
Rudy
- Site Admin
- Příspěvky: 118957
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nedokončí se téměř žádná instalace aplikace
Zdravím!
Z tohoto logu nic neudělám. Udělejte sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 (neinstaluje se, jen se kopíruje). Pozn.: Popis v odkazu je na starší verzi.. Utilitu nakopírujte, spusťte, nechte pracocvat a po ukončení akce smažte vše, co najde.
Z tohoto logu nic neudělám. Udělejte sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 (neinstaluje se, jen se kopíruje). Pozn.: Popis v odkazu je na starší verzi.. Utilitu nakopírujte, spusťte, nechte pracocvat a po ukončení akce smažte vše, co najde.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nedokončí se téměř žádná instalace aplikace
Děkuji za pomoc.
Provedl jsem požadované kroky a přestože najde cca 10 objektů a smaže je i při případném restartu, tak při dalším scanu je najde opět..
Nyní už ale log z FRST vypadá komplexněji:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Ran by msuro (administrator) on LEGION (LENOVO 83DF) (05-09-2024 10:11:21)
Running from C:\Users\msuro\Downloads\FRST64.exe
Loaded Profiles: msuro & Admin_CZ
Platform: Microsoft Windows 11 Home Version 23H2 22631.4037 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Intel\logs\p6.exe
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe <8>
(AO Kaspersky Lab -> AO Kaspersky Lab) C:\Users\msuro\AppData\Local\Temp\{8e2cf745-04c5-43cf-9b06-f351886c4b7d}\ce4841de.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\aplikace\aplikace\avast\AvastUI.exe
(A-Volute SAS -> A-Volute) C:\Users\msuro\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe ->) (Datronicsoft Inc. -> datronicsoft) C:\Program Files\datronicsoft\spacedesk\spacedeskServiceTray.exe
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> ) C:\Program Files\Dell\Dell Peripheral Manager\DPMCrashHandler.exe <2>
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.63\msedgewebview2.exe <14>
(C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\SimulatedHidKeyboard.exe
(C:\Windows\SysWOW64\cmd.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_helper.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\waitfor.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\aplikace\aplikace\avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\aplikace\aplikace\avast\aswToolsSvc.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Datronicsoft Inc. -> ) C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe
(services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe
(services.exe ->) (Intel Corporation -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_1f12b9d026f63324\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_fe21a1d446afa67d\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e8d77b0dd4bff2b1\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_9d96bfc242ae9e60\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\lenovo\UDC\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.) C:\Windows\System32\ElevocInstallDriver\ElevocControlService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_524a1f08cfa14687\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe <2>
(services.exe ->) (Tobii AB -> ) C:\Windows\System32\DriverStore\FileRepository\lenovoyx80.inf_amd64_69311f2f4be30838\platform_runtime_ALENOVOYX80_service.exe
(services.exe ->) (Tobii AB -> ) C:\Windows\System32\DriverStore\FileRepository\lenovoyxx0.inf_amd64_295e04613a160957\platform_runtime_RGB_service.exe
(services.exe ->) (Tobii AB -> Tobii AB) C:\Program Files\Tobii\Tobii EyeX\Tobii.Service.exe
(services.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe
(services.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProviderService.exe
(services.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\ScannerService.exe
(sihost.exe ->) (61773884-FD83-4DAD-91D2-1ECD4DCEF5D4 -> ) C:\Program Files\WindowsApps\48405AmbientSoftware.DesktopGadgets_3.4.2.0_x64__agy8jafheqhng\WidgetsDesktop\WidgetsDesktop.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.126.3208.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.1.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2434.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\msuro\AppData\Local\Microsoft\OneDrive\24.161.0811.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (X-Rite, Incorporated -> X-Rite, Inc) C:\Program Files (x86)\X-Rite Color Assistant\XRiteColorAssistant.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\aplikace\aplikace\avast\AvLaunch.exe [427304 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\Run: [com.evernote.Evernote] => C:\Users\msuro\AppData\Local\Programs\Evernote\Evernote.exe [166149200 2024-08-20] (Evernote Corporation -> Evernote Corporation)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\Run: [MicrosoftEdgeAutoLaunch_2C1E684CAD36948C9215B6B461E381FD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\MountPoints2: {e4b6179d-5fba-11ef-af1b-60452e8e2c5d} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3248026489-3966559180-2484514055-1002\...\Run: [MicrosoftEdgeAutoLaunch_5CC61CA8BCD9CE5116A75CF2F9BE3097] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.115\Installer\chrmstp.exe [2024-09-04] (Google LLC -> Google LLC)
Startup: C:\Users\msuro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2024-09-04]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0113C7E0-95FB-46B4-B482-9F51A26A043C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {06636B77-EBD8-438A-ADA0-9F447270C216} - \McAfee\WPS\McAfee restart of PC -> No File <==== ATTENTION
Task: {0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63} - \Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001 -> No File <==== ATTENTION
Task: {0D0E2E0C-5ECA-4027-841B-41219B739AB4} - \Lenovo\Vantage\StartupFixPlan -> No File <==== ATTENTION
Task: {13A1BADB-2DD2-4BF0-9201-EFBEFF486B31} - \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {1BCC28F4-99C8-46D3-A1E3-EE531169B535} - \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {2624C1C1-2578-4218-BCBB-58DA52BFD7B6} - \McAfee\DAD.WPS.Execute.Updates -> No File <==== ATTENTION
Task: {322B38FB-A941-45C7-9084-C0F28873F42A} - \Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699 -> No File <==== ATTENTION
Task: {34097FB5-DF05-4096-ACA9-F438573E85A5} - \McAfee\WPS\McAfee Windows Notification Token -> No File <==== ATTENTION
Task: {37380302-B47F-449D-B576-21264D70EA2B} - \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance -> No File <==== ATTENTION
Task: {3B00E292-7EC9-4E85-B088-276399281A32} - \McAfee\WPS\McAfee Health Check -> No File <==== ATTENTION
Task: {3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {42675225-4978-48CD-A659-27DAE69D2772} - \McAfee\WPS\McAfee PC Optimizer Task -> No File <==== ATTENTION
Task: {48DD635A-1281-4C47-A644-7C1B9C49DD17} - \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask -> No File <==== ATTENTION
Task: {543502F2-C6BB-40EB-9F32-46F6452133F5} - \McAfee\WPS\McAfee Scheduled AV Scan -> No File <==== ATTENTION
Task: {552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519} - \Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea -> No File <==== ATTENTION
Task: {5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA} - \Lenovo\UDC\Lenovo UDC Diagnostic Scan -> No File <==== ATTENTION
Task: {5F831719-8913-4758-AE26-5A556B7B238C} - \McAfee\wps\McAfee Updater -> No File <==== ATTENTION
Task: {5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750} - \McAfee\WPS\McAfee Cloud Configuration Check -> No File <==== ATTENTION
Task: {75459AF0-EC9B-47A4-ABFB-6007BC3C254E} - \Lenovo\Vantage\Schedule\DailyTelemetryTransmission -> No File <==== ATTENTION
Task: {7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1} - \McAfee\WPS\McAfee Anti-Tracker Scanner -> No File <==== ATTENTION
Task: {A235129B-2306-4A7D-8E11-863282A6808B} - \McAfee Sustainability -> No File <==== ATTENTION
Task: {A90FC3D2-D25D-44CE-873E-0FF52193004F} - \Lenovo\LenovoNowQuarterlyLaunch -> No File <==== ATTENTION
Task: {AD37E874-E090-4765-94D7-BC3579720C8C} - \McAfee Remediation (Prepare) -> No File <==== ATTENTION
Task: {AFD97E0C-4332-45C8-B365-B4EAA7A0D17F} - \Lenovo\LenovoNowLauncher -> No File <==== ATTENTION
Task: {BCFEFA32-AF1D-4811-98A2-596B3AC58937} - \McAfee\WPS\McAfee Hotfix -> No File <==== ATTENTION
Task: {C6766456-FEFB-4658-AF2B-6C189331E5C3} - \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 -> No File <==== ATTENTION
Task: {CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23} - \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {CEBB8516-AFB2-4718-9655-D50CAF576A15} - \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent -> No File <==== ATTENTION
Task: {CF6E116D-B780-427E-92CE-AE1302DBCE3A} - \Lenovo\UDC\Lenovo UDC Monitor -> No File <==== ATTENTION
Task: {D1BEC5FC-5A05-4059-8C34-CB13C46E4773} - \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask -> No File <==== ATTENTION
Task: {D27D9399-406D-457E-9705-DBDD016F0ADE} - \McAfee\WPS\McAfee Scheduled Tracker Remover -> No File <==== ATTENTION
Task: {D54DAF3C-74CA-4C21-9D09-91671A7CA69F} - \McAfee\McAfee Auto Maintenance Task Agent -> No File <==== ATTENTION
Task: {D5FB5531-ED3C-4384-9B35-2101FEEFC160} - \McAfee\WPS\McAfee Virus Definition Update -> No File <==== ATTENTION
Task: {D7BE3570-FA07-457C-BCD6-82CB1B2AD144} - \Avira_Security_Installation -> No File <==== ATTENTION
Task: {D809E4E1-AEAA-4F31-80F4-B8426C39EA4E} - \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder -> No File <==== ATTENTION
Task: {D89AAA30-08BD-4C65-BBFE-55EA8B61655D} - \Lenovo\Vantage\Schedule\GenericMessagingAddin -> No File <==== ATTENTION
Task: {D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2} - \Lenovo\Vantage\Schedule\NightChargeToastEvent -> No File <==== ATTENTION
Task: {D9CB6CB2-B873-496A-A341-A12F589A1CDC} - \McAfee OEM Subscription job -> No File <==== ATTENTION
Task: {DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC} - \McAfee\WPS\McAfee Message Check -> No File <==== ATTENTION
Task: {E4B8A265-8A83-4F98-928C-6E786C2B52D8} - \Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3 -> No File <==== ATTENTION
Task: {E9C77797-A1C1-402A-9368-0EF5B9F797B5} - \McAfee\McAfee Idle Detection Task -> No File <==== ATTENTION
Task: {EE650A61-92EE-449D-B22D-CCB8169EF396} - \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport -> No File <==== ATTENTION
Task: {FB198AFB-C80F-4148-9517-AE977D936CF7} - \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B} - \Lenovo\LenovoNowTask -> No File <==== ATTENTION
Task: {FD97448B-F067-48D1-B0C4-A454B283DE0F} - \McAfee\WPS\McAfee Anti-tracker notification -> No File <==== ATTENTION
Task: {0DED5DD7-75FC-4155-974E-591F6EC52B35} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {1E376B7F-DAD4-4F11-B781-0A5C01F5D3DC} - System32\Tasks\Avast Software\Avast Emergency Update => C:\aplikace\aplikace\avast\AvEmUpdate.exe [5173032 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {ABACFD08-4F04-416A-82E4-708339E91F3B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2348952 2024-09-05] (Avast Software s.r.o. -> Avast Software)
Task: {F9857B94-26B3-4435-8CEE-1960BD66DB70} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2024-08-13] (Garmin International, Inc. -> )
Task: {0E1E744B-9A1C-4B81-ADC0-28467BDB613D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {7B7CB7A8-4D49-490B-8F53-7F073BB1B2D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570432 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {48BE54DF-D8B9-4E3D-B27F-EB5E91EF8628} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570432 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {A414F802-FA86-4E45-8470-B442283978B9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447432 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {860FE22B-9E97-4E76-AE4C-835E32A278A1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447432 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {43E6F2FB-531C-4A45-AC18-FC6B62EBB596} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2285128 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA2079E0-1DB2-487D-9C38-157A1D7A1557} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2285128 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {22178DA2-FBF0-4DE8-8ABB-0F563A47A77D} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager1 => C:\Intel\e.vbs [462 2024-09-05] () [File not signed]
Task: {72E76D23-E79A-46A7-B66A-BF57AACB0B06} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => C:\Intel\q2.exe [1173682054 2024-09-05] () [File not signed] <==== ATTENTION
Task: {59424829-1C30-4269-9F6C-09A72BFA52DD} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => C:\Intel\q2.exe [1173682054 2024-09-05] () [File not signed] <==== ATTENTION
Task: {10339E05-AD62-437B-A1CA-0953A7F8D4F7} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => C:\Intel\i2.exe [1207111974 2024-09-05] () [File not signed] <==== ATTENTION
Task: {1F38D218-C0F3-4A7E-AC0B-69E5F4D35DA5} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => C:\Intel\i2.exe [1207111974 2024-09-05] () [File not signed] <==== ATTENTION
Task: {25107B06-165A-4E9F-AF3E-C40BF37F65F2} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_1.log" <==== ATTENTION
Task: {D5C1A349-63CE-4FBE-BDCB-9199379CFB56} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_2.log" <==== ATTENTION
Task: {79C46A80-DB1C-4D68-AEB3-168CE228B3FA} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\p2.exe [1205950788 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p2_1.log" <==== ATTENTION
Task: {8E1456CE-4827-4DC6-BA4A-1910F9EED257} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => C:\Intel\logs\p2.exe [1205950788 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p2_2.log" <==== ATTENTION
Task: {8425F5FC-937D-43E5-AE9D-E7D9AC5E4930} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => C:\Intel\logs\p3.exe [1206091076 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p3_1.log" <==== ATTENTION
Task: {A06FD75C-99EB-44EC-B8DA-0E11CE3B0F48} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => C:\Intel\logs\p3.exe [1206091076 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p3_2.log" <==== ATTENTION
Task: {D576DC23-1EAD-4D0F-8A7E-D045FCF0C605} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\p6.exe [1206108484 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p6_1.log" <==== ATTENTION
Task: {3D274CB1-5A85-43C3-8845-10D0D168EA95} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => C:\Intel\logs\p6.exe [1206108484 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p6_2.log" <==== ATTENTION
Task: {BF3E23F4-F0E6-440E-8218-FED1F6DC7C1C} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\p7.exe [1206088516 2024-09-05] (Google LLC) [File not signed] -> /stab "C:\Intel\logs\p7_1.log" <==== ATTENTION
Task: {452B6881-B30C-40DE-BDC5-BB4DCD61FF2C} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => C:\Intel\logs\p7.exe [1206088516 2024-09-05] (Google LLC) [File not signed] -> /stab "C:\Intel\logs\p7_2.log" <==== ATTENTION
Task: {FC3DEAF3-D26A-4385-A70D-074277591A2B} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1117336 ] (A-Volute SAS -> Nahimic)
Task: {05EC3064-B44B-48C6-B2C4-12C2A21DF60F} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1437296 ] (A-Volute SAS -> Nahimic)
Task: {92812545-2DE7-47FE-B586-6F5AD449E9C2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62389724-622F-4928-8ACE-E6FD20579A6B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B52EF302-871B-4B52-B84A-50B6DEBCA188} - System32\Tasks\XRiteColorAssistantStartup => C:\Program Files (x86)\X-Rite Color Assistant\XRiteColorAssistant.exe [8603192 2024-07-22] (X-Rite, Incorporated -> X-Rite, Inc)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{0f69a75a-dc66-11ec-af08-806e6f6e6963}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{42ad1cf8-441d-41a9-9baf-abd0c558e584}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{910cee7e-8daa-4491-95df-e2d504fed462}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{b7da582e-52da-421b-80a8-b65cf82ac8f6}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{b7da582e-52da-421b-80a8-b65cf82ac8f6}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{e07fe675-0402-46ca-8b0e-385688ed1016}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{f1630e48-49c9-45d8-85e8-c42275c42975}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{f1630e48-49c9-45d8-85e8-c42275c42975}: [DhcpNameServer] 192.168.3.10 192.168.100.16 172.46.211.20
Tcpip\..\Interfaces\{f1630e48-49c9-45d8-85e8-c42275c42975}: [DhcpDomain] BERNEX.COM
Edge:
=======
Edge Profile: C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-05]
Edge HomePage: Default -> mysearch.avg.com
Edge StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://brnensky.denik ... ltura.html"
Edge DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
Edge DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
Edge Extension: (Avira Safe Shopping) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-09-05]
Edge Extension: (AVG Secure Search) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2024-08-21]
Edge Extension: (Elevate for Strava) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dhiaggccakkgdfcadnklkbljcgicpckn [2024-08-21]
Edge Extension: (Avira Password Manager) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-09-05]
Edge Extension: (Dokumenty Google offline) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-21]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-08-31]
Edge Extension: (Garmin activity downloader) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\himhggflahpnjikoddlngaopcigalcjh [2024-08-21]
Edge Extension: (JIRA Assistant) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iccfdkmiglokncbdheedflohigmijpdj [2024-08-21]
Edge Extension: (FormApps Extension) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-08-21]
Edge Extension: (Chrome Remote Desktop) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2024-08-21]
Edge Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jfcjijcigimhjjdimpghneggnegiphhh [2024-08-21]
Edge Extension: (Save to Pocket) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jicacccodjjgmghnmekophahpmddeemd [2024-08-21]
Edge Extension: (Cisco Webex Extension) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2024-08-21]
Edge Extension: (Edge relevant text changes) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-21]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-09-04]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default [2024-09-05]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://www.youtube.com
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://brnensky.denik ... lmtoro.cz/"
CHR Extension: (Překladač Google) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-08-21]
CHR Extension: (Sleep Timer) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aogefgiamlllkemngojodbhbdigamjkj [2024-08-21]
CHR Extension: (Avira Password Manager) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-09-05]
CHR Extension: (Avira Safe Shopping) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2024-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-08-31]
CHR Extension: (AVG Secure Search) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2024-09-05]
CHR Extension: (change-language) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2024-08-31]
CHR Extension: (Elevate for Strava) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhiaggccakkgdfcadnklkbljcgicpckn [2024-08-21]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-04]
CHR Extension: (Free VPN ZenMate-Best VPN for Chrome) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2024-08-21]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-08-21]
CHR Extension: (Avira Browser Safety) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-09-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-21]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-21]
CHR Extension: (OneNote Web Clipper) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2024-09-04]
CHR Extension: (IE Tab) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2024-08-21]
CHR Extension: (Garmin activity downloader) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\himhggflahpnjikoddlngaopcigalcjh [2024-08-21]
CHR Extension: (Video Downloader Plus) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdmdpdhfaamhgaojpelccmeehpfljgf [2024-08-21]
CHR Extension: (JIRA Assistant) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iccfdkmiglokncbdheedflohigmijpdj [2024-08-21]
CHR Extension: (APKCombo Downloader) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\idkigghdjmipnppaeahkpcoaiphjdccm [2024-08-21]
CHR Extension: (Text to Speech for Google Chrome™) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjphbgdciilclbpcmagkacpohgokpep [2024-08-21]
CHR Extension: (VratnePenize.cz Připomínáček) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiekfaemafmplemocgimeccahephhdgf [2024-08-21]
CHR Extension: (FormApps Extension) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-08-21]
CHR Extension: (Chrome Remote Desktop) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2024-08-21]
CHR Extension: (World Time Buddy) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2024-08-21]
CHR Extension: (Cisco Webex Extension) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2024-08-21]
CHR Extension: (Save as PDF) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2024-08-21]
CHR Extension: (Free VPN for Chrome - VPN Proxy VeePN) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\majdfhpaihoncoakbjgbdhglocklcgno [2024-09-05]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-08-21]
CHR Extension: (Save to Pocket) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2024-08-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-21]
CHR Extension: (Vertical Tabs) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pddljdmihkpdfpkgmbhdomeeifpklgnm [2024-08-21]
CHR Extension: (Avast AntiTrack) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2024-08-21]
CHR HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S3 aswbIDSAgent; C:\aplikace\aplikace\avast\aswidsagent.exe [7248680 2024-09-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\aplikace\aplikace\avast\AvastSvc.exe [771880 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\aplikace\aplikace\avast\aswToolsSvc.exe [1209640 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\aplikace\aplikace\avast\wsc_proxy.exe [56912 2024-09-05] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9498616 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 CoreScanner; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe [756224 2024-07-03] (Zebra Technologies) [File not signed]
S2 dg; C:\Intel\dg.exe [1166302394 2024-09-05] () [File not signed] <==== ATTENTION
R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [2198392 2024-07-19] (IndiLogic LLC -> Dell Inc.)
R2 dptftcs; C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_fe21a1d446afa67d\ipfsvc.exe [548528 2023-04-14] (Intel Corporation -> Intel Corporation)
R2 ElevocService; C:\Windows\system32\ElevocInstallDriver\ElevocControlService.exe [397232 2023-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_45efd8a6478e15ce\lib\PlatformLicenseManagerService.exe [746984 2022-12-06] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe [530520 2023-10-18] (Intel Corporation -> Intel)
R2 ipfsvc; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_uf.exe [2785952 2023-04-13] (Intel Corporation -> Intel Corporation)
R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2024-09-04] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-09-04] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-19] (McAfee, Inc. -> McAfee, Inc.)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1912472 2023-07-19] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_524a1f08cfa14687\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 rsmdriverproviderservice; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProviderService.exe [146432 2024-07-03] (Zebra Technologies) [File not signed]
R2 ScnSrvc; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\ScannerService.exe [296448 2024-07-03] (Zebra Technologies) [File not signed]
R2 spacedeskService; C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe [4836224 2024-08-20] (Datronicsoft Inc. -> )
R2 Tobii Service; C:\Program Files\Tobii\Tobii EyeX\Tobii.Service.exe [210856 2023-09-19] (Tobii AB -> Tobii AB)
R2 TobiiALENOVOYX80; C:\Windows\System32\DriverStore\FileRepository\lenovoyx80.inf_amd64_69311f2f4be30838\platform_runtime_ALENOVOYX80_service.exe [24544112 2023-03-20] (Tobii AB -> )
R2 TobiiRGB; C:\Windows\System32\DriverStore\FileRepository\lenovoyxx0.inf_amd64_295e04613a160957\platform_runtime_RGB_service.exe [79259128 2023-10-15] (Tobii AB -> )
R2 UDCService; C:\Windows\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 0254011725486339mcinstcleanup; C:\Users\msuro\AppData\Local\Temp\025401~1.EXE -cleanup -nolog [X] <==== ATTENTION
S2 bdredline_agent; "C:\Program Files\Bitdefender Agent\redline\bdredline.exe" [X]
S2 LenovoVantageService; "C:\Program Files (x86)\Lenovo\VantageService\\4.1.22.0\LenovoVantageService.exe" [X]
S2 mc-fw-host; "\\?\C:\Program Files\McAfee\WPS\1.21.162.1\mc-fw-host.exe" -service [X]
S3 mc-wps-update; "C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe" /runservice [X]
S2 ProductAgentService; "C:\Program Files\Bitdefender Agent\ProductAgentService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20536 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [229832 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [381400 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [293944 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84536 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [27744 2024-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R3 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28616 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [273456 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [549968 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [97736 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69176 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [949816 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1198648 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [203832 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [306744 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 atvi-randgrid_msstore; C:\XboxGames\Call of Duty\Content\Randgrid.sys [2981352 2024-09-01] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [544768 2024-02-26] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [188416 2024-02-26] (Microsoft Corporation) [File not signed]
R3 DPMDriver; C:\Windows\System32\drivers\DPMDriver.sys [142272 2024-06-24] (IndiLogic LLC -> Dell Inc.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2024-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 FBNetFilter; C:\Windows\System32\drivers\FBNetFlt.sys [59280 2023-06-13] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
R0 fse; C:\Windows\System32\drivers\fse.sys [218608 2024-08-21] (Microsoft Windows -> Microsoft Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\Windows\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_3e77ea8ce8c01463\ipf_acpi.sys [88784 2023-04-13] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_cpu.sys [82080 2023-04-13] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_lf.sys [446112 2023-04-13] (Intel Corporation -> Intel Corporation)
R0 klupd_aa8178d0a_arkmon; C:\Windows\System32\Drivers\klupd_aa8178d0a_arkmon.sys [396040 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klupd_aa8178d0a_klark; C:\Windows\System32\Drivers\klupd_aa8178d0a_klark.sys [362464 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_aa8178d0a_klbg; C:\Windows\System32\Drivers\klupd_aa8178d0a_klbg.sys [198720 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klupd_aa8178d0a_mark; C:\Windows\System32\Drivers\klupd_aa8178d0a_mark.sys [265416 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [231504 2024-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-09-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt11.sys [234168 2024-09-05] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78928 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [189776 2024-09-05] (Malwarebytes Inc. -> Malwarebytes)
S0 mfeelam; C:\Windows\System32\DRIVERS\mfeelam.sys [19536 2024-08-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R0 mfesec; C:\Windows\System32\DRIVERS\mfesec.sys [85296 2024-08-22] (McAfee, LLC -> McAfee, LLC)
R3 NahimicBTLink; C:\Windows\System32\drivers\NahimicBTLink.sys [86200 2023-05-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 NahimicXVAD; C:\Windows\System32\drivers\NahimicXVAD.sys [86216 2023-05-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [86224 2023-05-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [236696 2024-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt68cx21; C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_b2610356a0b4c400\rt68cx21x64.sys [742232 2023-07-20] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 spacedeskAndroidUsb; C:\Windows\System32\drivers\spacedeskDriverAndroidUsb.sys [43992 2024-08-19] (Datronicsoft Inc. -> datronicsoft Technology GmbH)
R3 spacedeskDriverAndroidControl; C:\Windows\System32\drivers\spacedeskDriverAndroidControl.sys [52296 2024-05-14] (Datronicsoft Inc. -> datronicsoft Technology GmbH)
R3 spacedeskDriverBus; C:\Windows\System32\drivers\spacedeskDriverBus.sys [114256 2024-07-04] (Datronicsoft Inc. -> datronicsoft Technology GmbH)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2024-02-26] (Microsoft Windows -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-21] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-21] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath
S3 klupd_aa8178d0a_arkmon_34105D16; \??\C:\KVRT2020_Data\Temp\34105D1614A078122BA1CE2FB62AD56C\klupd_aa8178d0a_arkmon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Provedl jsem požadované kroky a přestože najde cca 10 objektů a smaže je i při případném restartu, tak při dalším scanu je najde opět..
Nyní už ale log z FRST vypadá komplexněji:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Ran by msuro (administrator) on LEGION (LENOVO 83DF) (05-09-2024 10:11:21)
Running from C:\Users\msuro\Downloads\FRST64.exe
Loaded Profiles: msuro & Admin_CZ
Platform: Microsoft Windows 11 Home Version 23H2 22631.4037 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Intel\logs\p6.exe
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe <8>
(AO Kaspersky Lab -> AO Kaspersky Lab) C:\Users\msuro\AppData\Local\Temp\{8e2cf745-04c5-43cf-9b06-f351886c4b7d}\ce4841de.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\aplikace\aplikace\avast\AvastUI.exe
(A-Volute SAS -> A-Volute) C:\Users\msuro\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe ->) (Datronicsoft Inc. -> datronicsoft) C:\Program Files\datronicsoft\spacedesk\spacedeskServiceTray.exe
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> ) C:\Program Files\Dell\Dell Peripheral Manager\DPMCrashHandler.exe <2>
(C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.63\msedgewebview2.exe <14>
(C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\SimulatedHidKeyboard.exe
(C:\Windows\SysWOW64\cmd.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE
(DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_helper.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\FnHotkeyUtility.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\waitfor.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\aplikace\aplikace\avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\aplikace\aplikace\avast\aswToolsSvc.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Datronicsoft Inc. -> ) C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe
(services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe
(services.exe ->) (Intel Corporation -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_1f12b9d026f63324\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_fe21a1d446afa67d\ipfsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e8d77b0dd4bff2b1\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_9d96bfc242ae9e60\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\lenovo\UDC\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.) C:\Windows\System32\ElevocInstallDriver\ElevocControlService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_524a1f08cfa14687\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe <2>
(services.exe ->) (Tobii AB -> ) C:\Windows\System32\DriverStore\FileRepository\lenovoyx80.inf_amd64_69311f2f4be30838\platform_runtime_ALENOVOYX80_service.exe
(services.exe ->) (Tobii AB -> ) C:\Windows\System32\DriverStore\FileRepository\lenovoyxx0.inf_amd64_295e04613a160957\platform_runtime_RGB_service.exe
(services.exe ->) (Tobii AB -> Tobii AB) C:\Program Files\Tobii\Tobii EyeX\Tobii.Service.exe
(services.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe
(services.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProviderService.exe
(services.exe ->) (Zebra Technologies) [File not signed] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\ScannerService.exe
(sihost.exe ->) (61773884-FD83-4DAD-91D2-1ECD4DCEF5D4 -> ) C:\Program Files\WindowsApps\48405AmbientSoftware.DesktopGadgets_3.4.2.0_x64__agy8jafheqhng\WidgetsDesktop\WidgetsDesktop.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.126.3208.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.1.0_x64__w2gh52qy24etm\Nahimic3.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2434.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\msuro\AppData\Local\Microsoft\OneDrive\24.161.0811.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (X-Rite, Incorporated -> X-Rite, Inc) C:\Program Files (x86)\X-Rite Color Assistant\XRiteColorAssistant.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\aplikace\aplikace\avast\AvLaunch.exe [427304 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\Run: [com.evernote.Evernote] => C:\Users\msuro\AppData\Local\Programs\Evernote\Evernote.exe [166149200 2024-08-20] (Evernote Corporation -> Evernote Corporation)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\Run: [MicrosoftEdgeAutoLaunch_2C1E684CAD36948C9215B6B461E381FD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\MountPoints2: {e4b6179d-5fba-11ef-af1b-60452e8e2c5d} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3248026489-3966559180-2484514055-1002\...\Run: [MicrosoftEdgeAutoLaunch_5CC61CA8BCD9CE5116A75CF2F9BE3097] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741248 2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.115\Installer\chrmstp.exe [2024-09-04] (Google LLC -> Google LLC)
Startup: C:\Users\msuro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2024-09-04]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0113C7E0-95FB-46B4-B482-9F51A26A043C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {06636B77-EBD8-438A-ADA0-9F447270C216} - \McAfee\WPS\McAfee restart of PC -> No File <==== ATTENTION
Task: {0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63} - \Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001 -> No File <==== ATTENTION
Task: {0D0E2E0C-5ECA-4027-841B-41219B739AB4} - \Lenovo\Vantage\StartupFixPlan -> No File <==== ATTENTION
Task: {13A1BADB-2DD2-4BF0-9201-EFBEFF486B31} - \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {1BCC28F4-99C8-46D3-A1E3-EE531169B535} - \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {2624C1C1-2578-4218-BCBB-58DA52BFD7B6} - \McAfee\DAD.WPS.Execute.Updates -> No File <==== ATTENTION
Task: {322B38FB-A941-45C7-9084-C0F28873F42A} - \Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699 -> No File <==== ATTENTION
Task: {34097FB5-DF05-4096-ACA9-F438573E85A5} - \McAfee\WPS\McAfee Windows Notification Token -> No File <==== ATTENTION
Task: {37380302-B47F-449D-B576-21264D70EA2B} - \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance -> No File <==== ATTENTION
Task: {3B00E292-7EC9-4E85-B088-276399281A32} - \McAfee\WPS\McAfee Health Check -> No File <==== ATTENTION
Task: {3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {42675225-4978-48CD-A659-27DAE69D2772} - \McAfee\WPS\McAfee PC Optimizer Task -> No File <==== ATTENTION
Task: {48DD635A-1281-4C47-A644-7C1B9C49DD17} - \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask -> No File <==== ATTENTION
Task: {543502F2-C6BB-40EB-9F32-46F6452133F5} - \McAfee\WPS\McAfee Scheduled AV Scan -> No File <==== ATTENTION
Task: {552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519} - \Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea -> No File <==== ATTENTION
Task: {5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA} - \Lenovo\UDC\Lenovo UDC Diagnostic Scan -> No File <==== ATTENTION
Task: {5F831719-8913-4758-AE26-5A556B7B238C} - \McAfee\wps\McAfee Updater -> No File <==== ATTENTION
Task: {5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750} - \McAfee\WPS\McAfee Cloud Configuration Check -> No File <==== ATTENTION
Task: {75459AF0-EC9B-47A4-ABFB-6007BC3C254E} - \Lenovo\Vantage\Schedule\DailyTelemetryTransmission -> No File <==== ATTENTION
Task: {7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1} - \McAfee\WPS\McAfee Anti-Tracker Scanner -> No File <==== ATTENTION
Task: {A235129B-2306-4A7D-8E11-863282A6808B} - \McAfee Sustainability -> No File <==== ATTENTION
Task: {A90FC3D2-D25D-44CE-873E-0FF52193004F} - \Lenovo\LenovoNowQuarterlyLaunch -> No File <==== ATTENTION
Task: {AD37E874-E090-4765-94D7-BC3579720C8C} - \McAfee Remediation (Prepare) -> No File <==== ATTENTION
Task: {AFD97E0C-4332-45C8-B365-B4EAA7A0D17F} - \Lenovo\LenovoNowLauncher -> No File <==== ATTENTION
Task: {BCFEFA32-AF1D-4811-98A2-596B3AC58937} - \McAfee\WPS\McAfee Hotfix -> No File <==== ATTENTION
Task: {C6766456-FEFB-4658-AF2B-6C189331E5C3} - \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 -> No File <==== ATTENTION
Task: {CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23} - \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {CEBB8516-AFB2-4718-9655-D50CAF576A15} - \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent -> No File <==== ATTENTION
Task: {CF6E116D-B780-427E-92CE-AE1302DBCE3A} - \Lenovo\UDC\Lenovo UDC Monitor -> No File <==== ATTENTION
Task: {D1BEC5FC-5A05-4059-8C34-CB13C46E4773} - \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask -> No File <==== ATTENTION
Task: {D27D9399-406D-457E-9705-DBDD016F0ADE} - \McAfee\WPS\McAfee Scheduled Tracker Remover -> No File <==== ATTENTION
Task: {D54DAF3C-74CA-4C21-9D09-91671A7CA69F} - \McAfee\McAfee Auto Maintenance Task Agent -> No File <==== ATTENTION
Task: {D5FB5531-ED3C-4384-9B35-2101FEEFC160} - \McAfee\WPS\McAfee Virus Definition Update -> No File <==== ATTENTION
Task: {D7BE3570-FA07-457C-BCD6-82CB1B2AD144} - \Avira_Security_Installation -> No File <==== ATTENTION
Task: {D809E4E1-AEAA-4F31-80F4-B8426C39EA4E} - \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder -> No File <==== ATTENTION
Task: {D89AAA30-08BD-4C65-BBFE-55EA8B61655D} - \Lenovo\Vantage\Schedule\GenericMessagingAddin -> No File <==== ATTENTION
Task: {D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2} - \Lenovo\Vantage\Schedule\NightChargeToastEvent -> No File <==== ATTENTION
Task: {D9CB6CB2-B873-496A-A341-A12F589A1CDC} - \McAfee OEM Subscription job -> No File <==== ATTENTION
Task: {DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC} - \McAfee\WPS\McAfee Message Check -> No File <==== ATTENTION
Task: {E4B8A265-8A83-4F98-928C-6E786C2B52D8} - \Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3 -> No File <==== ATTENTION
Task: {E9C77797-A1C1-402A-9368-0EF5B9F797B5} - \McAfee\McAfee Idle Detection Task -> No File <==== ATTENTION
Task: {EE650A61-92EE-449D-B22D-CCB8169EF396} - \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport -> No File <==== ATTENTION
Task: {FB198AFB-C80F-4148-9517-AE977D936CF7} - \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B} - \Lenovo\LenovoNowTask -> No File <==== ATTENTION
Task: {FD97448B-F067-48D1-B0C4-A454B283DE0F} - \McAfee\WPS\McAfee Anti-tracker notification -> No File <==== ATTENTION
Task: {0DED5DD7-75FC-4155-974E-591F6EC52B35} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {1E376B7F-DAD4-4F11-B781-0A5C01F5D3DC} - System32\Tasks\Avast Software\Avast Emergency Update => C:\aplikace\aplikace\avast\AvEmUpdate.exe [5173032 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {ABACFD08-4F04-416A-82E4-708339E91F3B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2348952 2024-09-05] (Avast Software s.r.o. -> Avast Software)
Task: {F9857B94-26B3-4435-8CEE-1960BD66DB70} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2024-08-13] (Garmin International, Inc. -> )
Task: {0E1E744B-9A1C-4B81-ADC0-28467BDB613D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {7B7CB7A8-4D49-490B-8F53-7F073BB1B2D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570432 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {48BE54DF-D8B9-4E3D-B27F-EB5E91EF8628} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23570432 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {A414F802-FA86-4E45-8470-B442283978B9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447432 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {860FE22B-9E97-4E76-AE4C-835E32A278A1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447432 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {43E6F2FB-531C-4A45-AC18-FC6B62EBB596} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2285128 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA2079E0-1DB2-487D-9C38-157A1D7A1557} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2285128 2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {22178DA2-FBF0-4DE8-8ABB-0F563A47A77D} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager1 => C:\Intel\e.vbs [462 2024-09-05] () [File not signed]
Task: {72E76D23-E79A-46A7-B66A-BF57AACB0B06} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => C:\Intel\q2.exe [1173682054 2024-09-05] () [File not signed] <==== ATTENTION
Task: {59424829-1C30-4269-9F6C-09A72BFA52DD} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => C:\Intel\q2.exe [1173682054 2024-09-05] () [File not signed] <==== ATTENTION
Task: {10339E05-AD62-437B-A1CA-0953A7F8D4F7} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => C:\Intel\i2.exe [1207111974 2024-09-05] () [File not signed] <==== ATTENTION
Task: {1F38D218-C0F3-4A7E-AC0B-69E5F4D35DA5} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => C:\Intel\i2.exe [1207111974 2024-09-05] () [File not signed] <==== ATTENTION
Task: {25107B06-165A-4E9F-AF3E-C40BF37F65F2} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_1.log" <==== ATTENTION
Task: {D5C1A349-63CE-4FBE-BDCB-9199379CFB56} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_2.log" <==== ATTENTION
Task: {79C46A80-DB1C-4D68-AEB3-168CE228B3FA} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\p2.exe [1205950788 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p2_1.log" <==== ATTENTION
Task: {8E1456CE-4827-4DC6-BA4A-1910F9EED257} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => C:\Intel\logs\p2.exe [1205950788 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p2_2.log" <==== ATTENTION
Task: {8425F5FC-937D-43E5-AE9D-E7D9AC5E4930} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => C:\Intel\logs\p3.exe [1206091076 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p3_1.log" <==== ATTENTION
Task: {A06FD75C-99EB-44EC-B8DA-0E11CE3B0F48} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => C:\Intel\logs\p3.exe [1206091076 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p3_2.log" <==== ATTENTION
Task: {D576DC23-1EAD-4D0F-8A7E-D045FCF0C605} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\p6.exe [1206108484 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p6_1.log" <==== ATTENTION
Task: {3D274CB1-5A85-43C3-8845-10D0D168EA95} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => C:\Intel\logs\p6.exe [1206108484 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p6_2.log" <==== ATTENTION
Task: {BF3E23F4-F0E6-440E-8218-FED1F6DC7C1C} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\p7.exe [1206088516 2024-09-05] (Google LLC) [File not signed] -> /stab "C:\Intel\logs\p7_1.log" <==== ATTENTION
Task: {452B6881-B30C-40DE-BDC5-BB4DCD61FF2C} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => C:\Intel\logs\p7.exe [1206088516 2024-09-05] (Google LLC) [File not signed] -> /stab "C:\Intel\logs\p7_2.log" <==== ATTENTION
Task: {FC3DEAF3-D26A-4385-A70D-074277591A2B} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1117336 ] (A-Volute SAS -> Nahimic)
Task: {05EC3064-B44B-48C6-B2C4-12C2A21DF60F} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1437296 ] (A-Volute SAS -> Nahimic)
Task: {92812545-2DE7-47FE-B586-6F5AD449E9C2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62389724-622F-4928-8ACE-E6FD20579A6B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B52EF302-871B-4B52-B84A-50B6DEBCA188} - System32\Tasks\XRiteColorAssistantStartup => C:\Program Files (x86)\X-Rite Color Assistant\XRiteColorAssistant.exe [8603192 2024-07-22] (X-Rite, Incorporated -> X-Rite, Inc)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{0f69a75a-dc66-11ec-af08-806e6f6e6963}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{42ad1cf8-441d-41a9-9baf-abd0c558e584}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{910cee7e-8daa-4491-95df-e2d504fed462}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{b7da582e-52da-421b-80a8-b65cf82ac8f6}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{b7da582e-52da-421b-80a8-b65cf82ac8f6}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{e07fe675-0402-46ca-8b0e-385688ed1016}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{f1630e48-49c9-45d8-85e8-c42275c42975}: [NameServer] 8.8.8.8,1.1.1.1,76.76.2.0,9.9.9.10,94.140.14.140
Tcpip\..\Interfaces\{f1630e48-49c9-45d8-85e8-c42275c42975}: [DhcpNameServer] 192.168.3.10 192.168.100.16 172.46.211.20
Tcpip\..\Interfaces\{f1630e48-49c9-45d8-85e8-c42275c42975}: [DhcpDomain] BERNEX.COM
Edge:
=======
Edge Profile: C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-05]
Edge HomePage: Default -> mysearch.avg.com
Edge StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://brnensky.denik ... ltura.html"
Edge DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
Edge DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
Edge Extension: (Avira Safe Shopping) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-09-05]
Edge Extension: (AVG Secure Search) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2024-08-21]
Edge Extension: (Elevate for Strava) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dhiaggccakkgdfcadnklkbljcgicpckn [2024-08-21]
Edge Extension: (Avira Password Manager) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2024-09-05]
Edge Extension: (Dokumenty Google offline) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-21]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2024-08-31]
Edge Extension: (Garmin activity downloader) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\himhggflahpnjikoddlngaopcigalcjh [2024-08-21]
Edge Extension: (JIRA Assistant) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iccfdkmiglokncbdheedflohigmijpdj [2024-08-21]
Edge Extension: (FormApps Extension) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-08-21]
Edge Extension: (Chrome Remote Desktop) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2024-08-21]
Edge Extension: (Tlačítko „Uložit“ pro Pinterest) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jfcjijcigimhjjdimpghneggnegiphhh [2024-08-21]
Edge Extension: (Save to Pocket) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jicacccodjjgmghnmekophahpmddeemd [2024-08-21]
Edge Extension: (Cisco Webex Extension) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2024-08-21]
Edge Extension: (Edge relevant text changes) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-08-21]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\msuro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-09-04]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-09] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default [2024-09-05]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://www.youtube.com
CHR HomePage: Default -> mysearch.avg.com
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://brnensky.denik ... lmtoro.cz/"
CHR Extension: (Překladač Google) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-08-21]
CHR Extension: (Sleep Timer) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aogefgiamlllkemngojodbhbdigamjkj [2024-08-21]
CHR Extension: (Avira Password Manager) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2024-09-05]
CHR Extension: (Avira Safe Shopping) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2024-09-05]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-08-31]
CHR Extension: (AVG Secure Search) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2024-09-05]
CHR Extension: (change-language) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofdbpoegempjloogbagkncekinflcnj [2024-08-31]
CHR Extension: (Elevate for Strava) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhiaggccakkgdfcadnklkbljcgicpckn [2024-08-21]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-04]
CHR Extension: (Free VPN ZenMate-Best VPN for Chrome) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2024-08-21]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-08-21]
CHR Extension: (Avira Browser Safety) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2024-09-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-21]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-21]
CHR Extension: (OneNote Web Clipper) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2024-09-04]
CHR Extension: (IE Tab) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2024-08-21]
CHR Extension: (Garmin activity downloader) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\himhggflahpnjikoddlngaopcigalcjh [2024-08-21]
CHR Extension: (Video Downloader Plus) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdmdpdhfaamhgaojpelccmeehpfljgf [2024-08-21]
CHR Extension: (JIRA Assistant) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iccfdkmiglokncbdheedflohigmijpdj [2024-08-21]
CHR Extension: (APKCombo Downloader) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\idkigghdjmipnppaeahkpcoaiphjdccm [2024-08-21]
CHR Extension: (Text to Speech for Google Chrome™) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihjphbgdciilclbpcmagkacpohgokpep [2024-08-21]
CHR Extension: (VratnePenize.cz Připomínáček) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiekfaemafmplemocgimeccahephhdgf [2024-08-21]
CHR Extension: (FormApps Extension) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-08-21]
CHR Extension: (Chrome Remote Desktop) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2024-08-21]
CHR Extension: (World Time Buddy) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdhpjomiingppeefgnohkiapmnaeakoj [2024-08-21]
CHR Extension: (Cisco Webex Extension) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2024-08-21]
CHR Extension: (Save as PDF) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2024-08-21]
CHR Extension: (Free VPN for Chrome - VPN Proxy VeePN) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\majdfhpaihoncoakbjgbdhglocklcgno [2024-09-05]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2024-08-21]
CHR Extension: (Save to Pocket) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2024-08-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-21]
CHR Extension: (Vertical Tabs) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pddljdmihkpdfpkgmbhdomeeifpklgnm [2024-08-21]
CHR Extension: (Avast AntiTrack) - C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2024-08-21]
CHR HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S3 aswbIDSAgent; C:\aplikace\aplikace\avast\aswidsagent.exe [7248680 2024-09-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\aplikace\aplikace\avast\AvastSvc.exe [771880 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\aplikace\aplikace\avast\aswToolsSvc.exe [1209640 2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\aplikace\aplikace\avast\wsc_proxy.exe [56912 2024-09-05] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9498616 2024-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-09-21] (McAfee, Inc. -> McAfee, Inc.)
R2 CoreScanner; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\CoreScanner.exe [756224 2024-07-03] (Zebra Technologies) [File not signed]
S2 dg; C:\Intel\dg.exe [1166302394 2024-09-05] () [File not signed] <==== ATTENTION
R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [2198392 2024-07-19] (IndiLogic LLC -> Dell Inc.)
R2 dptftcs; C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_fe21a1d446afa67d\ipfsvc.exe [548528 2023-04-14] (Intel Corporation -> Intel Corporation)
R2 ElevocService; C:\Windows\system32\ElevocInstallDriver\ElevocControlService.exe [397232 2023-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Elevoc Technology Co.,Ltd.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_45efd8a6478e15ce\lib\PlatformLicenseManagerService.exe [746984 2022-12-06] (Intel Corporation -> Intel(R) Corporation)
R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_29fd1afabcf5470c\AS\IAS\IntelAudioService.exe [530520 2023-10-18] (Intel Corporation -> Intel)
R2 ipfsvc; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_uf.exe [2785952 2023-04-13] (Intel Corporation -> Intel Corporation)
R2 LenovoFnAndFunctionKeys; C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_1446a24b89ad2808\LenovoUtilityService.exe [178536 2024-05-24] (Lenovo -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8965728 2024-09-04] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-09-04] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1666224 2017-12-19] (McAfee, Inc. -> McAfee, Inc.)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1912472 2023-07-19] (A-Volute SAS -> Nahimic)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_524a1f08cfa14687\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 rsmdriverproviderservice; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProviderService.exe [146432 2024-07-03] (Zebra Technologies) [File not signed]
R2 ScnSrvc; C:\Program Files\Zebra Technologies\Barcode Scanners\Common\ScannerService.exe [296448 2024-07-03] (Zebra Technologies) [File not signed]
R2 spacedeskService; C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe [4836224 2024-08-20] (Datronicsoft Inc. -> )
R2 Tobii Service; C:\Program Files\Tobii\Tobii EyeX\Tobii.Service.exe [210856 2023-09-19] (Tobii AB -> Tobii AB)
R2 TobiiALENOVOYX80; C:\Windows\System32\DriverStore\FileRepository\lenovoyx80.inf_amd64_69311f2f4be30838\platform_runtime_ALENOVOYX80_service.exe [24544112 2023-03-20] (Tobii AB -> )
R2 TobiiRGB; C:\Windows\System32\DriverStore\FileRepository\lenovoyxx0.inf_amd64_295e04613a160957\platform_runtime_RGB_service.exe [79259128 2023-10-15] (Tobii AB -> )
R2 UDCService; C:\Windows\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72432 2024-04-07] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 0254011725486339mcinstcleanup; C:\Users\msuro\AppData\Local\Temp\025401~1.EXE -cleanup -nolog [X] <==== ATTENTION
S2 bdredline_agent; "C:\Program Files\Bitdefender Agent\redline\bdredline.exe" [X]
S2 LenovoVantageService; "C:\Program Files (x86)\Lenovo\VantageService\\4.1.22.0\LenovoVantageService.exe" [X]
S2 mc-fw-host; "\\?\C:\Program Files\McAfee\WPS\1.21.162.1\mc-fw-host.exe" -service [X]
S3 mc-wps-update; "C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe" /runservice [X]
S2 ProductAgentService; "C:\Program Files\Bitdefender Agent\ProductAgentService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20536 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [229832 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [381400 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [293944 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84536 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [27744 2024-09-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R3 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28616 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [273456 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [549968 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [97736 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69176 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [949816 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1198648 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [203832 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [306744 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 atvi-randgrid_msstore; C:\XboxGames\Call of Duty\Content\Randgrid.sys [2981352 2024-09-01] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [544768 2024-02-26] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [188416 2024-02-26] (Microsoft Corporation) [File not signed]
R3 DPMDriver; C:\Windows\System32\drivers\DPMDriver.sys [142272 2024-06-24] (IndiLogic LLC -> Dell Inc.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2024-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 FBNetFilter; C:\Windows\System32\drivers\FBNetFlt.sys [59280 2023-06-13] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
R0 fse; C:\Windows\System32\drivers\fse.sys [218608 2024-08-21] (Microsoft Windows -> Microsoft Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-24] (Intel Corporation -> Intel Corporation)
R3 ipf_acpi; C:\Windows\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_3e77ea8ce8c01463\ipf_acpi.sys [88784 2023-04-13] (Intel Corporation -> Intel Corporation)
R3 ipf_cpu; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_cpu.sys [82080 2023-04-13] (Intel Corporation -> Intel Corporation)
R3 ipf_lf; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_a232fd65d8604eb5\ipf_lf.sys [446112 2023-04-13] (Intel Corporation -> Intel Corporation)
R0 klupd_aa8178d0a_arkmon; C:\Windows\System32\Drivers\klupd_aa8178d0a_arkmon.sys [396040 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klupd_aa8178d0a_klark; C:\Windows\System32\Drivers\klupd_aa8178d0a_klark.sys [362464 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_aa8178d0a_klbg; C:\Windows\System32\Drivers\klupd_aa8178d0a_klbg.sys [198720 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 klupd_aa8178d0a_mark; C:\Windows\System32\Drivers\klupd_aa8178d0a_mark.sys [265416 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [231504 2024-09-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-09-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt11.sys [234168 2024-09-05] (Malwarebytes Inc. -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78928 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [189776 2024-09-05] (Malwarebytes Inc. -> Malwarebytes)
S0 mfeelam; C:\Windows\System32\DRIVERS\mfeelam.sys [19536 2024-08-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R0 mfesec; C:\Windows\System32\DRIVERS\mfesec.sys [85296 2024-08-22] (McAfee, LLC -> McAfee, LLC)
R3 NahimicBTLink; C:\Windows\System32\drivers\NahimicBTLink.sys [86200 2023-05-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 NahimicXVAD; C:\Windows\System32\drivers\NahimicXVAD.sys [86216 2023-05-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [86224 2023-05-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider)
R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [236696 2024-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt68cx21; C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_b2610356a0b4c400\rt68cx21x64.sys [742232 2023-07-20] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 spacedeskAndroidUsb; C:\Windows\System32\drivers\spacedeskDriverAndroidUsb.sys [43992 2024-08-19] (Datronicsoft Inc. -> datronicsoft Technology GmbH)
R3 spacedeskDriverAndroidControl; C:\Windows\System32\drivers\spacedeskDriverAndroidControl.sys [52296 2024-05-14] (Datronicsoft Inc. -> datronicsoft Technology GmbH)
R3 spacedeskDriverBus; C:\Windows\System32\drivers\spacedeskDriverBus.sys [114256 2024-07-04] (Datronicsoft Inc. -> datronicsoft Technology GmbH)
R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2024-02-26] (Microsoft Windows -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-21] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-21] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath
S3 klupd_aa8178d0a_arkmon_34105D16; \??\C:\KVRT2020_Data\Temp\34105D1614A078122BA1CE2FB62AD56C\klupd_aa8178d0a_arkmon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Re: Nedokončí se téměř žádná instalace aplikace
Na jiném PC jsem si udělal Rescue recovery USB z AVASTU a nejde mu nalezená havět rovněž odstranit, zde jsou aspoň 2 logy, třeba to pomůže:
AvastPE Antivirus
=======
This file is just temporary. Save this report to another location if you would like to keep it.
Scan begin: 05.09.2024 9:16:18
Attached to: C:\Windows (Windows 11 21H2 64bit)
VPS version: 24090500
C:\Intel\logs\p1.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p2.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p6.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\q.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q1.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q2.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q3.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q4.exe: MSIL:Quasar-A [Rat] (0)
Infected files: 8
nScanner result: 0
Scan end: 05.09.2024 9:19:13
AvastPE Antivirus
=======
This file is just temporary. Save this report to another location if you would like to keep it.
Scan begin: 05.09.2024 7:31:33
Attached to: C:\Windows (Windows 11 21H2 64bit)
VPS version: 24090500
C:\Intel\c.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p1.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p2.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p6.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\q.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q1.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q2.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q3.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q4.exe: MSIL:Quasar-A [Rat] (0)
C:\Users\msuro\AppData\Local\Temp\0j85ZhJ96IPf.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\4rh9GLPaD24f.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\9dEQmFLSRfbu.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\cG8rYaezF8P2.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\cuDzSgT12iOt.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\Dxpp4iIncstt.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\gH32YNzxAjiW.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\GRrCDJIrYuzq.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\LfVW2a9Jx2IS.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\MR83iSznq6hf.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\paEqfCuVwpfy.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\Tn2JnU9pSKJn.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\uIoqqKd86gp1.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\Wdx2wTbfp6Ae.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\x7gAOC8nlPWF.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\XyVCiGvqAYCG.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\YxZeTPqhcDES.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\126qsRc5vGJq.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\1BPkHxSxHPOf.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\2pZyrr1iJ2Kn.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\3GVhYqZibRGy.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\7QYryrV6W0Yr.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\9hMAAeYeQsBa.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\AzHQalQsGQ9p.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\CiChyFOZK8L6.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\dQYa7OOEfCqS.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\HhS1EPcPou3A.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\I4LpzPtYtv9x.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\J1XAADUvpQK9.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\lBMm8lTPS9SH.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\leTXqwKKRUza.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\LMhy33droFOm.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\nWWsHTZv9EWz.exe: Win32:Evo-gen [Trj] (0)
C:\Windows\SystemTemp\OcjwAGzdMBjs.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\oNpk3ZDBXteG.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\SCFLpus1XHAB.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\uQQNBaECRmEq.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\VICxIZqXCepl.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\yc8gWfXtKI1H.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\YsUVGt9IwLrb.bat: Script:SNH-gen [Trj] (0)
Infected files: 49
nScanner result: 0
Scan end: 05.09.2024 7:40:02
AvastPE Antivirus
=======
This file is just temporary. Save this report to another location if you would like to keep it.
Scan begin: 05.09.2024 9:16:18
Attached to: C:\Windows (Windows 11 21H2 64bit)
VPS version: 24090500
C:\Intel\logs\p1.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p2.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p6.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\q.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q1.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q2.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q3.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q4.exe: MSIL:Quasar-A [Rat] (0)
Infected files: 8
nScanner result: 0
Scan end: 05.09.2024 9:19:13
AvastPE Antivirus
=======
This file is just temporary. Save this report to another location if you would like to keep it.
Scan begin: 05.09.2024 7:31:33
Attached to: C:\Windows (Windows 11 21H2 64bit)
VPS version: 24090500
C:\Intel\c.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p1.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p2.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\logs\p6.exe: Win32:Evo-gen [Trj] (0)
C:\Intel\q.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q1.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q2.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q3.exe: MSIL:Quasar-A [Rat] (0)
C:\Intel\q4.exe: MSIL:Quasar-A [Rat] (0)
C:\Users\msuro\AppData\Local\Temp\0j85ZhJ96IPf.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\4rh9GLPaD24f.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\9dEQmFLSRfbu.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\cG8rYaezF8P2.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\cuDzSgT12iOt.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\Dxpp4iIncstt.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\gH32YNzxAjiW.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\GRrCDJIrYuzq.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\LfVW2a9Jx2IS.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\MR83iSznq6hf.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\paEqfCuVwpfy.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\Tn2JnU9pSKJn.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\uIoqqKd86gp1.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\Wdx2wTbfp6Ae.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\x7gAOC8nlPWF.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\XyVCiGvqAYCG.bat: Script:SNH-gen [Trj] (0)
C:\Users\msuro\AppData\Local\Temp\YxZeTPqhcDES.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\126qsRc5vGJq.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\1BPkHxSxHPOf.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\2pZyrr1iJ2Kn.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\3GVhYqZibRGy.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\7QYryrV6W0Yr.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\9hMAAeYeQsBa.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\AzHQalQsGQ9p.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\CiChyFOZK8L6.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\dQYa7OOEfCqS.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\HhS1EPcPou3A.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\I4LpzPtYtv9x.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\J1XAADUvpQK9.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\lBMm8lTPS9SH.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\leTXqwKKRUza.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\LMhy33droFOm.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\nWWsHTZv9EWz.exe: Win32:Evo-gen [Trj] (0)
C:\Windows\SystemTemp\OcjwAGzdMBjs.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\oNpk3ZDBXteG.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\SCFLpus1XHAB.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\uQQNBaECRmEq.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\VICxIZqXCepl.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\yc8gWfXtKI1H.bat: Script:SNH-gen [Trj] (0)
C:\Windows\SystemTemp\YsUVGt9IwLrb.bat: Script:SNH-gen [Trj] (0)
Infected files: 49
nScanner result: 0
Scan end: 05.09.2024 7:40:02
-
Rudy
- Site Admin
- Příspěvky: 118957
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nedokončí se téměř žádná instalace aplikace
Zadělal jste si na dost slušný problém. V PC je nějaká položka, která to svinstvo stáhne po restartu znovu. Zkuste ještě jednou AVPT, ale v nouz. režimu. Pak opět FRST, ale také Addition. Ten máte ve stejném adresáři, jak log FRST, jen je v souboru addition.txt.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nedokončí se téměř žádná instalace aplikace
Díky. Ano, jsem de*il, na podobný pokusy se už na vždy vykašlu 
V nouzáku se haveť odstranila, ale v normálním režimu se zase objevila. Jinak KVRT skenoval furt dokola, našel odstranil, po restartu dočistil, opět udělal scan a opět havět našel a opět čistil a opět restart a tak dokola...
V příloze najdete oba logy po odstranění v nouzáku a oba logy následně z normálního režimu.
Děkuji za pomoc.
V nouzáku se haveť odstranila, ale v normálním režimu se zase objevila. Jinak KVRT skenoval furt dokola, našel odstranil, po restartu dočistil, opět udělal scan a opět havět našel a opět čistil a opět restart a tak dokola...
V příloze najdete oba logy po odstranění v nouzáku a oba logy následně z normálního režimu.
Děkuji za pomoc.
- Přílohy
-
- Normal_rezim.zip
- (42.48 KiB) Staženo 66 x
Re: Nedokončí se téměř žádná instalace aplikace
A zde logy z nouzového režimu po vyčištění. Díky.
- Přílohy
-
- Nouzovy_rezim.zip
- (41.86 KiB) Staženo 65 x
-
Rudy
- Site Admin
- Příspěvky: 118957
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nedokončí se téměř žádná instalace aplikace
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\msuro\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
C:\Intel
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\MountPoints2: {e4b6179d-5fba-11ef-af1b-60452e8e2c5d} - "E:\WD SmartWare.exe" autoplay=true
Task: {0113C7E0-95FB-46B4-B482-9F51A26A043C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {06636B77-EBD8-438A-ADA0-9F447270C216} - \McAfee\WPS\McAfee restart of PC -> No File <==== ATTENTION
Task: {0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63} - \Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001 -> No File <==== ATTENTION
Task: {0D0E2E0C-5ECA-4027-841B-41219B739AB4} - \Lenovo\Vantage\StartupFixPlan -> No File <==== ATTENTION
Task: {13A1BADB-2DD2-4BF0-9201-EFBEFF486B31} - \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {1BCC28F4-99C8-46D3-A1E3-EE531169B535} - \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {2624C1C1-2578-4218-BCBB-58DA52BFD7B6} - \McAfee\DAD.WPS.Execute.Updates -> No File <==== ATTENTION
Task: {322B38FB-A941-45C7-9084-C0F28873F42A} - \Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699 -> No File <==== ATTENTION
Task: {34097FB5-DF05-4096-ACA9-F438573E85A5} - \McAfee\WPS\McAfee Windows Notification Token -> No File <==== ATTENTION
Task: {37380302-B47F-449D-B576-21264D70EA2B} - \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance -> No File <==== ATTENTION
Task: {3B00E292-7EC9-4E85-B088-276399281A32} - \McAfee\WPS\McAfee Health Check -> No File <==== ATTENTION
Task: {3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {42675225-4978-48CD-A659-27DAE69D2772} - \McAfee\WPS\McAfee PC Optimizer Task -> No File <==== ATTENTION
Task: {48DD635A-1281-4C47-A644-7C1B9C49DD17} - \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask -> No File <==== ATTENTION
Task: {543502F2-C6BB-40EB-9F32-46F6452133F5} - \McAfee\WPS\McAfee Scheduled AV Scan -> No File <==== ATTENTION
Task: {552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519} - \Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea -> No File <==== ATTENTION
Task: {5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA} - \Lenovo\UDC\Lenovo UDC Diagnostic Scan -> No File <==== ATTENTION
Task: {5F831719-8913-4758-AE26-5A556B7B238C} - \McAfee\wps\McAfee Updater -> No File <==== ATTENTION
Task: {5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750} - \McAfee\WPS\McAfee Cloud Configuration Check -> No File <==== ATTENTION
Task: {75459AF0-EC9B-47A4-ABFB-6007BC3C254E} - \Lenovo\Vantage\Schedule\DailyTelemetryTransmission -> No File <==== ATTENTION
Task: {7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1} - \McAfee\WPS\McAfee Anti-Tracker Scanner -> No File <==== ATTENTION
Task: {A235129B-2306-4A7D-8E11-863282A6808B} - \McAfee Sustainability -> No File <==== ATTENTION
Task: {A90FC3D2-D25D-44CE-873E-0FF52193004F} - \Lenovo\LenovoNowQuarterlyLaunch -> No File <==== ATTENTION
Task: {AD37E874-E090-4765-94D7-BC3579720C8C} - \McAfee Remediation (Prepare) -> No File <==== ATTENTION
Task: {AFD97E0C-4332-45C8-B365-B4EAA7A0D17F} - \Lenovo\LenovoNowLauncher -> No File <==== ATTENTION
Task: {BCFEFA32-AF1D-4811-98A2-596B3AC58937} - \McAfee\WPS\McAfee Hotfix -> No File <==== ATTENTION
Task: {C6766456-FEFB-4658-AF2B-6C189331E5C3} - \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 -> No File <==== ATTENTION
Task: {CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23} - \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {CEBB8516-AFB2-4718-9655-D50CAF576A15} - \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent -> No File <==== ATTENTION
Task: {CF6E116D-B780-427E-92CE-AE1302DBCE3A} - \Lenovo\UDC\Lenovo UDC Monitor -> No File <==== ATTENTION
Task: {D1BEC5FC-5A05-4059-8C34-CB13C46E4773} - \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask -> No File <==== ATTENTION
Task: {D27D9399-406D-457E-9705-DBDD016F0ADE} - \McAfee\WPS\McAfee Scheduled Tracker Remover -> No File <==== ATTENTION
Task: {D54DAF3C-74CA-4C21-9D09-91671A7CA69F} - \McAfee\McAfee Auto Maintenance Task Agent -> No File <==== ATTENTION
Task: {D5FB5531-ED3C-4384-9B35-2101FEEFC160} - \McAfee\WPS\McAfee Virus Definition Update -> No File <==== ATTENTION
Task: {D7BE3570-FA07-457C-BCD6-82CB1B2AD144} - \Avira_Security_Installation -> No File <==== ATTENTION
Task: {D809E4E1-AEAA-4F31-80F4-B8426C39EA4E} - \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder -> No File <==== ATTENTION
Task: {D89AAA30-08BD-4C65-BBFE-55EA8B61655D} - \Lenovo\Vantage\Schedule\GenericMessagingAddin -> No File <==== ATTENTION
Task: {D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2} - \Lenovo\Vantage\Schedule\NightChargeToastEvent -> No File <==== ATTENTION
Task: {D9CB6CB2-B873-496A-A341-A12F589A1CDC} - \McAfee OEM Subscription job -> No File <==== ATTENTION
Task: {DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC} - \McAfee\WPS\McAfee Message Check -> No File <==== ATTENTION
Task: {E4B8A265-8A83-4F98-928C-6E786C2B52D8} - \Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3 -> No File <==== ATTENTION
Task: {E9C77797-A1C1-402A-9368-0EF5B9F797B5} - \McAfee\McAfee Idle Detection Task -> No File <==== ATTENTION
Task: {EE650A61-92EE-449D-B22D-CCB8169EF396} - \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport -> No File <==== ATTENTION
Task: {FB198AFB-C80F-4148-9517-AE977D936CF7} - \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B} - \Lenovo\LenovoNowTask -> No File <==== ATTENTION
Task: {FD97448B-F067-48D1-B0C4-A454B283DE0F} - \McAfee\WPS\McAfee Anti-tracker notification -> No File <==== ATTENTION
Task: {DF98A6F4-5BC5-4655-B364-B72E79E29068} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => "C:\Intel\q2.exe" (No File)
Task: {CC208C84-481C-444E-98B1-6C5EC6ECF431} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => "C:\Intel\q2.exe" (No File)
Task: {B7E70255-B421-43B5-83AF-93AACD14DD05} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => "C:\Intel\i2.exe" (No File)
Task: {FD0E1549-FDDD-47C8-85DA-19E8E4E97C82} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => "C:\Intel\i2.exe" (No File)
Task: {0453512E-468D-4755-A1ED-09E3D2777C4D} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_1.log" <==== ATTENTION
Task: {C2F404A7-4F01-4586-AB20-7F438261A4BF} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_2.log" <==== ATTENTION
Task: {49F53B20-E45A-4F23-A7E2-3035B157100D} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1117336 ] (A-Volute SAS -> Nahimic)
S2 dg; C:\Intel\dg.exe [1166302459 2024-09-05] () [File not signed] <==== ATTENTION
S2 0254011725486339mcinstcleanup; C:\Users\msuro\AppData\Local\Temp\025401~1.EXE -cleanup -nolog [X] <==== ATTENTION
S2 bdredline_agent; "C:\Program Files\Bitdefender Agent\redline\bdredline.exe" [X]
S2 mc-fw-host; "\\?\C:\Program Files\McAfee\WPS\1.21.162.1\mc-fw-host.exe" -service [X]
S3 mc-wps-update; "C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe" /runservice [X]
S2 ProductAgentService; "C:\Program Files\Bitdefender Agent\ProductAgentService.exe" [X]
U3 aswbdisk; no ImagePath
C:\Program Files\360
C:\Program Files\360Qua
C:\Program Files\IOBit
C:\Program Files\IOBit Malware Fighter
c:\Program Files\IQBIT
AlternateDataStreams: C:\Users\msuro\Desktop\avg_antivirus_free_setup.exe:MBAM.Zone.Identifier [234]
FirewallRules: [{C614019A-84DD-4451-9C54-3841F531C1BE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{FB028431-F91D-49E7-A71A-A8CDF3BD3D14}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{A778B97E-1833-4205-A67D-50A634956BEB}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{139B13F1-5640-4A91-8AC3-BA2DD0253365}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{F931B0E3-7AB9-44CC-AE6C-E90D958716F9}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{DD797965-0131-43AB-98B7-FF09BF689B50}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{74E5C7DB-EE79-4430-85AF-073F8171ED48}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{6E1610C2-CA3C-4793-99BE-E775E5AB5604}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{5F7B5D6A-F9CB-40B1-9666-0F147C1D8E3E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{5CE80276-0777-4792-8975-50954A95D88D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E5CF7883-6EA8-4598-8FC1-FD05E1F93C76}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{CA3E48B6-318E-4D5E-9FEE-DAAC188354F5}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{C07514D0-AC83-4FE3-9D9A-3C03A1188B15}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{DBB81C47-4571-4C6A-A13F-41095CE2A07F}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{6EBEDDF8-2ED8-484F-8B6D-42438D67A3E4}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{1216382D-DAC1-4D4B-AA3F-1383601657EA}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{8E67D158-4DD5-4B3C-9135-3CAEC5641B93}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{40AD1D6A-0E95-4FD5-B9B7-F695173A2922}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{DE38C1A1-1867-4C39-84BA-3AF559930782}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{BEEA279D-C595-4B2D-AC82-A27488A397FE}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{D4E37F49-8209-444F-95E2-CF7F339DD978}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{2618D2EF-FE39-4464-8DD3-76DEAF3D5AD8}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{13CDDCC3-907D-4C0B-8CA3-78387448C6A1}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{535F09F3-2854-4245-BAAE-90C2FE00B8FE}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{38C98E3E-6D99-48C3-B658-6F61804141F8}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{01EE4F9B-327B-421A-B876-5477208997CE}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{6E07DB62-948A-4BA9-A3F2-461B79B11399}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{59A101B8-92E8-4BF7-B7E6-620B303F7EDB}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{A19D5B02-30AB-45C6-91BF-FBFC3C770889}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{95E5492A-75F2-4EBD-B767-E251B6934361}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{1DB93EAD-D228-4CD2-833F-F21B1E66AA4C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{4BEAA902-20AB-4A90-B633-DFA5DB18D711}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{77712089-41D8-45ED-A6A5-AF8C6B33CAEF}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{E5CC81F8-5087-45E1-B469-94399EABBBEE}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{C8F9F3B2-B17C-4B6A-BBD8-77D45851D384}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EB6BA69D-F21A-41F3-8F91-463E0275727B}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{B9DCF8CD-5D49-4A25-A784-69BFD3DD3AB6}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{DE744A43-0944-4F96-8796-B84E4045F0AC}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{B02F757A-07E6-496E-87BB-9B50F5D99C5C}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{FA2B728E-DB0D-49E5-9E2D-451EF89CB346}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{F5869C20-7C35-4064-8E6D-3A6E4B3C8CFA}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{3F38DD37-F1E8-4B80-AD50-454EDBBDB74C}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{6D634CCD-CD80-43AD-B98E-C23E2637A0A9}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{1E34A18E-D5B8-4611-9861-4FC8CD445744}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{11F045B9-25C6-4E8C-BB8D-54D853222C82}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{5D566053-3EE7-4648-BC88-7409398D4485}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{01614849-25FF-469B-B8A5-E6E212612140}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{8595CDF9-5614-4414-A3F6-06EE213566AF}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{7B78A07B-5D6A-432D-8ADD-9AF8ED99A994}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{078A19A4-91AB-4184-B63F-1CF748A7B412}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B8383871-4F1A-45C3-884B-BA57F33865E7}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{68F05F1C-2763-420C-8EB5-1FCBDE80A22C}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{D19E2787-D313-4269-BC67-1CCD75E2B11E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{ECF2DEFB-C65A-4576-9C71-3682A8A7C87B}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E7088062-3D20-4586-9599-D4F7EC5CB3F7}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{0ADEF289-BAC9-42F8-9BB6-910FB5B253B9}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{75F99E68-28F8-427C-847A-64F0A74059CA}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{0EDB00C9-FFC4-4291-A0BF-0D0F042F7971}] => (Allow) C:\Intel\m\sbr.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nedokončí se téměř žádná instalace aplikace
Po provedení akce se provedl restart a tady je vytvořený log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 22-08.2024
Ran by msuro (05-09-2024 19:56:57) Run:1
Running from C:\Users\msuro\Downloads
Loaded Profiles: msuro & Admin_CZ
Boot Mode: Normal
==============================================
fixlist content:
*****************
tart
CloseProcesses:
C:\Intel
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\MountPoints2: {e4b6179d-5fba-11ef-af1b-60452e8e2c5d} - "E:\WD SmartWare.exe" autoplay=true
Task: {0113C7E0-95FB-46B4-B482-9F51A26A043C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {06636B77-EBD8-438A-ADA0-9F447270C216} - \McAfee\WPS\McAfee restart of PC -> No File <==== ATTENTION
Task: {0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63} - \Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001 -> No File <==== ATTENTION
Task: {0D0E2E0C-5ECA-4027-841B-41219B739AB4} - \Lenovo\Vantage\StartupFixPlan -> No File <==== ATTENTION
Task: {13A1BADB-2DD2-4BF0-9201-EFBEFF486B31} - \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {1BCC28F4-99C8-46D3-A1E3-EE531169B535} - \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {2624C1C1-2578-4218-BCBB-58DA52BFD7B6} - \McAfee\DAD.WPS.Execute.Updates -> No File <==== ATTENTION
Task: {322B38FB-A941-45C7-9084-C0F28873F42A} - \Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699 -> No File <==== ATTENTION
Task: {34097FB5-DF05-4096-ACA9-F438573E85A5} - \McAfee\WPS\McAfee Windows Notification Token -> No File <==== ATTENTION
Task: {37380302-B47F-449D-B576-21264D70EA2B} - \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance -> No File <==== ATTENTION
Task: {3B00E292-7EC9-4E85-B088-276399281A32} - \McAfee\WPS\McAfee Health Check -> No File <==== ATTENTION
Task: {3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {42675225-4978-48CD-A659-27DAE69D2772} - \McAfee\WPS\McAfee PC Optimizer Task -> No File <==== ATTENTION
Task: {48DD635A-1281-4C47-A644-7C1B9C49DD17} - \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask -> No File <==== ATTENTION
Task: {543502F2-C6BB-40EB-9F32-46F6452133F5} - \McAfee\WPS\McAfee Scheduled AV Scan -> No File <==== ATTENTION
Task: {552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519} - \Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea -> No File <==== ATTENTION
Task: {5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA} - \Lenovo\UDC\Lenovo UDC Diagnostic Scan -> No File <==== ATTENTION
Task: {5F831719-8913-4758-AE26-5A556B7B238C} - \McAfee\wps\McAfee Updater -> No File <==== ATTENTION
Task: {5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750} - \McAfee\WPS\McAfee Cloud Configuration Check -> No File <==== ATTENTION
Task: {75459AF0-EC9B-47A4-ABFB-6007BC3C254E} - \Lenovo\Vantage\Schedule\DailyTelemetryTransmission -> No File <==== ATTENTION
Task: {7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1} - \McAfee\WPS\McAfee Anti-Tracker Scanner -> No File <==== ATTENTION
Task: {A235129B-2306-4A7D-8E11-863282A6808B} - \McAfee Sustainability -> No File <==== ATTENTION
Task: {A90FC3D2-D25D-44CE-873E-0FF52193004F} - \Lenovo\LenovoNowQuarterlyLaunch -> No File <==== ATTENTION
Task: {AD37E874-E090-4765-94D7-BC3579720C8C} - \McAfee Remediation (Prepare) -> No File <==== ATTENTION
Task: {AFD97E0C-4332-45C8-B365-B4EAA7A0D17F} - \Lenovo\LenovoNowLauncher -> No File <==== ATTENTION
Task: {BCFEFA32-AF1D-4811-98A2-596B3AC58937} - \McAfee\WPS\McAfee Hotfix -> No File <==== ATTENTION
Task: {C6766456-FEFB-4658-AF2B-6C189331E5C3} - \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 -> No File <==== ATTENTION
Task: {CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23} - \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {CEBB8516-AFB2-4718-9655-D50CAF576A15} - \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent -> No File <==== ATTENTION
Task: {CF6E116D-B780-427E-92CE-AE1302DBCE3A} - \Lenovo\UDC\Lenovo UDC Monitor -> No File <==== ATTENTION
Task: {D1BEC5FC-5A05-4059-8C34-CB13C46E4773} - \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask -> No File <==== ATTENTION
Task: {D27D9399-406D-457E-9705-DBDD016F0ADE} - \McAfee\WPS\McAfee Scheduled Tracker Remover -> No File <==== ATTENTION
Task: {D54DAF3C-74CA-4C21-9D09-91671A7CA69F} - \McAfee\McAfee Auto Maintenance Task Agent -> No File <==== ATTENTION
Task: {D5FB5531-ED3C-4384-9B35-2101FEEFC160} - \McAfee\WPS\McAfee Virus Definition Update -> No File <==== ATTENTION
Task: {D7BE3570-FA07-457C-BCD6-82CB1B2AD144} - \Avira_Security_Installation -> No File <==== ATTENTION
Task: {D809E4E1-AEAA-4F31-80F4-B8426C39EA4E} - \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder -> No File <==== ATTENTION
Task: {D89AAA30-08BD-4C65-BBFE-55EA8B61655D} - \Lenovo\Vantage\Schedule\GenericMessagingAddin -> No File <==== ATTENTION
Task: {D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2} - \Lenovo\Vantage\Schedule\NightChargeToastEvent -> No File <==== ATTENTION
Task: {D9CB6CB2-B873-496A-A341-A12F589A1CDC} - \McAfee OEM Subscription job -> No File <==== ATTENTION
Task: {DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC} - \McAfee\WPS\McAfee Message Check -> No File <==== ATTENTION
Task: {E4B8A265-8A83-4F98-928C-6E786C2B52D8} - \Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3 -> No File <==== ATTENTION
Task: {E9C77797-A1C1-402A-9368-0EF5B9F797B5} - \McAfee\McAfee Idle Detection Task -> No File <==== ATTENTION
Task: {EE650A61-92EE-449D-B22D-CCB8169EF396} - \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport -> No File <==== ATTENTION
Task: {FB198AFB-C80F-4148-9517-AE977D936CF7} - \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B} - \Lenovo\LenovoNowTask -> No File <==== ATTENTION
Task: {FD97448B-F067-48D1-B0C4-A454B283DE0F} - \McAfee\WPS\McAfee Anti-tracker notification -> No File <==== ATTENTION
Task: {DF98A6F4-5BC5-4655-B364-B72E79E29068} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => "C:\Intel\q2.exe" (No File)
Task: {CC208C84-481C-444E-98B1-6C5EC6ECF431} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => "C:\Intel\q2.exe" (No File)
Task: {B7E70255-B421-43B5-83AF-93AACD14DD05} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => "C:\Intel\i2.exe" (No File)
Task: {FD0E1549-FDDD-47C8-85DA-19E8E4E97C82} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => "C:\Intel\i2.exe" (No File)
Task: {0453512E-468D-4755-A1ED-09E3D2777C4D} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_1.log" <==== ATTENTION
Task: {C2F404A7-4F01-4586-AB20-7F438261A4BF} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_2.log" <==== ATTENTION
Task: {49F53B20-E45A-4F23-A7E2-3035B157100D} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1117336 ] (A-Volute SAS -> Nahimic)
S2 dg; C:\Intel\dg.exe [1166302459 2024-09-05] () [File not signed] <==== ATTENTION
S2 0254011725486339mcinstcleanup; C:\Users\msuro\AppData\Local\Temp\025401~1.EXE -cleanup -nolog [X] <==== ATTENTION
S2 bdredline_agent; "C:\Program Files\Bitdefender Agent\redline\bdredline.exe" [X]
S2 mc-fw-host; "\\?\C:\Program Files\McAfee\WPS\1.21.162.1\mc-fw-host.exe" -service [X]
S3 mc-wps-update; "C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe" /runservice [X]
S2 ProductAgentService; "C:\Program Files\Bitdefender Agent\ProductAgentService.exe" [X]
U3 aswbdisk; no ImagePath
C:\Program Files\360
C:\Program Files\360Qua
C:\Program Files\IOBit
C:\Program Files\IOBit Malware Fighter
c:\Program Files\IQBIT
AlternateDataStreams: C:\Users\msuro\Desktop\avg_antivirus_free_setup.exe:MBAM.Zone.Identifier [234]
FirewallRules: [{C614019A-84DD-4451-9C54-3841F531C1BE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{FB028431-F91D-49E7-A71A-A8CDF3BD3D14}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{A778B97E-1833-4205-A67D-50A634956BEB}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{139B13F1-5640-4A91-8AC3-BA2DD0253365}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{F931B0E3-7AB9-44CC-AE6C-E90D958716F9}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{DD797965-0131-43AB-98B7-FF09BF689B50}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{74E5C7DB-EE79-4430-85AF-073F8171ED48}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{6E1610C2-CA3C-4793-99BE-E775E5AB5604}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{5F7B5D6A-F9CB-40B1-9666-0F147C1D8E3E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{5CE80276-0777-4792-8975-50954A95D88D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E5CF7883-6EA8-4598-8FC1-FD05E1F93C76}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{CA3E48B6-318E-4D5E-9FEE-DAAC188354F5}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{C07514D0-AC83-4FE3-9D9A-3C03A1188B15}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{DBB81C47-4571-4C6A-A13F-41095CE2A07F}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{6EBEDDF8-2ED8-484F-8B6D-42438D67A3E4}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{1216382D-DAC1-4D4B-AA3F-1383601657EA}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{8E67D158-4DD5-4B3C-9135-3CAEC5641B93}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{40AD1D6A-0E95-4FD5-B9B7-F695173A2922}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{DE38C1A1-1867-4C39-84BA-3AF559930782}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{BEEA279D-C595-4B2D-AC82-A27488A397FE}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{D4E37F49-8209-444F-95E2-CF7F339DD978}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{2618D2EF-FE39-4464-8DD3-76DEAF3D5AD8}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{13CDDCC3-907D-4C0B-8CA3-78387448C6A1}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{535F09F3-2854-4245-BAAE-90C2FE00B8FE}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{38C98E3E-6D99-48C3-B658-6F61804141F8}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{01EE4F9B-327B-421A-B876-5477208997CE}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{6E07DB62-948A-4BA9-A3F2-461B79B11399}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{59A101B8-92E8-4BF7-B7E6-620B303F7EDB}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{A19D5B02-30AB-45C6-91BF-FBFC3C770889}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{95E5492A-75F2-4EBD-B767-E251B6934361}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{1DB93EAD-D228-4CD2-833F-F21B1E66AA4C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{4BEAA902-20AB-4A90-B633-DFA5DB18D711}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{77712089-41D8-45ED-A6A5-AF8C6B33CAEF}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{E5CC81F8-5087-45E1-B469-94399EABBBEE}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{C8F9F3B2-B17C-4B6A-BBD8-77D45851D384}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EB6BA69D-F21A-41F3-8F91-463E0275727B}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{B9DCF8CD-5D49-4A25-A784-69BFD3DD3AB6}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{DE744A43-0944-4F96-8796-B84E4045F0AC}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{B02F757A-07E6-496E-87BB-9B50F5D99C5C}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{FA2B728E-DB0D-49E5-9E2D-451EF89CB346}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{F5869C20-7C35-4064-8E6D-3A6E4B3C8CFA}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{3F38DD37-F1E8-4B80-AD50-454EDBBDB74C}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{6D634CCD-CD80-43AD-B98E-C23E2637A0A9}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{1E34A18E-D5B8-4611-9861-4FC8CD445744}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{11F045B9-25C6-4E8C-BB8D-54D853222C82}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{5D566053-3EE7-4648-BC88-7409398D4485}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{01614849-25FF-469B-B8A5-E6E212612140}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{8595CDF9-5614-4414-A3F6-06EE213566AF}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{7B78A07B-5D6A-432D-8ADD-9AF8ED99A994}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{078A19A4-91AB-4184-B63F-1CF748A7B412}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B8383871-4F1A-45C3-884B-BA57F33865E7}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{68F05F1C-2763-420C-8EB5-1FCBDE80A22C}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{D19E2787-D313-4269-BC67-1CCD75E2B11E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{ECF2DEFB-C65A-4576-9C71-3682A8A7C87B}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E7088062-3D20-4586-9599-D4F7EC5CB3F7}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{0ADEF289-BAC9-42F8-9BB6-910FB5B253B9}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{75F99E68-28F8-427C-847A-64F0A74059CA}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{0EDB00C9-FFC4-4291-A0BF-0D0F042F7971}] => (Allow) C:\Intel\m\sbr.exe => No File
EmptyTemp:
End
*****************
tart => Error: No automatic fix found for this entry.
Processes closed successfully.
"C:\Intel" Folder move:
C:\Intel => moved successfully
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4b6179d-5fba-11ef-af1b-60452e8e2c5d} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0113C7E0-95FB-46B4-B482-9F51A26A043C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0113C7E0-95FB-46B4-B482-9F51A26A043C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{06636B77-EBD8-438A-ADA0-9F447270C216}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{06636B77-EBD8-438A-ADA0-9F447270C216}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee restart of PC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0D0E2E0C-5ECA-4027-841B-41219B739AB4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D0E2E0C-5ECA-4027-841B-41219B739AB4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\StartupFixPlan" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13A1BADB-2DD2-4BF0-9201-EFBEFF486B31}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13A1BADB-2DD2-4BF0-9201-EFBEFF486B31}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1BCC28F4-99C8-46D3-A1E3-EE531169B535}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BCC28F4-99C8-46D3-A1E3-EE531169B535}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2624C1C1-2578-4218-BCBB-58DA52BFD7B6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2624C1C1-2578-4218-BCBB-58DA52BFD7B6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\DAD.WPS.Execute.Updates" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{322B38FB-A941-45C7-9084-C0F28873F42A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{322B38FB-A941-45C7-9084-C0F28873F42A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{34097FB5-DF05-4096-ACA9-F438573E85A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34097FB5-DF05-4096-ACA9-F438573E85A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Windows Notification Token" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{37380302-B47F-449D-B576-21264D70EA2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37380302-B47F-449D-B576-21264D70EA2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B00E292-7EC9-4E85-B088-276399281A32}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B00E292-7EC9-4E85-B088-276399281A32}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Health Check" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{42675225-4978-48CD-A659-27DAE69D2772}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42675225-4978-48CD-A659-27DAE69D2772}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee PC Optimizer Task" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48DD635A-1281-4C47-A644-7C1B9C49DD17}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48DD635A-1281-4C47-A644-7C1B9C49DD17}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{543502F2-C6BB-40EB-9F32-46F6452133F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{543502F2-C6BB-40EB-9F32-46F6452133F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Scheduled AV Scan" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\UDC\Lenovo UDC Diagnostic Scan" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F831719-8913-4758-AE26-5A556B7B238C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F831719-8913-4758-AE26-5A556B7B238C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\wps\McAfee Updater" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Cloud Configuration Check" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75459AF0-EC9B-47A4-ABFB-6007BC3C254E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75459AF0-EC9B-47A4-ABFB-6007BC3C254E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\DailyTelemetryTransmission" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Anti-Tracker Scanner" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A235129B-2306-4A7D-8E11-863282A6808B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A235129B-2306-4A7D-8E11-863282A6808B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee Sustainability" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A90FC3D2-D25D-44CE-873E-0FF52193004F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A90FC3D2-D25D-44CE-873E-0FF52193004F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LenovoNowQuarterlyLaunch" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD37E874-E090-4765-94D7-BC3579720C8C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD37E874-E090-4765-94D7-BC3579720C8C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee Remediation (Prepare)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFD97E0C-4332-45C8-B365-B4EAA7A0D17F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFD97E0C-4332-45C8-B365-B4EAA7A0D17F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LenovoNowLauncher" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BCFEFA32-AF1D-4811-98A2-596B3AC58937}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCFEFA32-AF1D-4811-98A2-596B3AC58937}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Hotfix" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C6766456-FEFB-4658-AF2B-6C189331E5C3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6766456-FEFB-4658-AF2B-6C189331E5C3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CEBB8516-AFB2-4718-9655-D50CAF576A15}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CEBB8516-AFB2-4718-9655-D50CAF576A15}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF6E116D-B780-427E-92CE-AE1302DBCE3A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF6E116D-B780-427E-92CE-AE1302DBCE3A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\UDC\Lenovo UDC Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1BEC5FC-5A05-4059-8C34-CB13C46E4773}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1BEC5FC-5A05-4059-8C34-CB13C46E4773}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D27D9399-406D-457E-9705-DBDD016F0ADE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D27D9399-406D-457E-9705-DBDD016F0ADE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Scheduled Tracker Remover" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D54DAF3C-74CA-4C21-9D09-91671A7CA69F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D54DAF3C-74CA-4C21-9D09-91671A7CA69F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\McAfee Auto Maintenance Task Agent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5FB5531-ED3C-4384-9B35-2101FEEFC160}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5FB5531-ED3C-4384-9B35-2101FEEFC160}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Virus Definition Update" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D7BE3570-FA07-457C-BCD6-82CB1B2AD144}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D7BE3570-FA07-457C-BCD6-82CB1B2AD144}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avira_Security_Installation" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D809E4E1-AEAA-4F31-80F4-B8426C39EA4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D809E4E1-AEAA-4F31-80F4-B8426C39EA4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D89AAA30-08BD-4C65-BBFE-55EA8B61655D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D89AAA30-08BD-4C65-BBFE-55EA8B61655D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\GenericMessagingAddin" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\NightChargeToastEvent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D9CB6CB2-B873-496A-A341-A12F589A1CDC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9CB6CB2-B873-496A-A341-A12F589A1CDC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee OEM Subscription job" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Message Check" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4B8A265-8A83-4F98-928C-6E786C2B52D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4B8A265-8A83-4F98-928C-6E786C2B52D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E9C77797-A1C1-402A-9368-0EF5B9F797B5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9C77797-A1C1-402A-9368-0EF5B9F797B5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\McAfee Idle Detection Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE650A61-92EE-449D-B22D-CCB8169EF396}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE650A61-92EE-449D-B22D-CCB8169EF396}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB198AFB-C80F-4148-9517-AE977D936CF7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB198AFB-C80F-4148-9517-AE977D936CF7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LenovoNowTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FD97448B-F067-48D1-B0C4-A454B283DE0F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD97448B-F067-48D1-B0C4-A454B283DE0F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Anti-tracker notification" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF98A6F4-5BC5-4655-B364-B72E79E29068}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC208C84-481C-444E-98B1-6C5EC6ECF431}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7E70255-B421-43B5-83AF-93AACD14DD05}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD0E1549-FDDD-47C8-85DA-19E8E4E97C82}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0453512E-468D-4755-A1ED-09E3D2777C4D}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2F404A7-4F01-4586-AB20-7F438261A4BF}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49F53B20-E45A-4F23-A7E2-3035B157100D}" => not found
C:\Windows\System32\Tasks\NahimicTask32 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NahimicTask32" => removed successfully
HKLM\System\CurrentControlSet\Services\dg => removed successfully
dg => service removed successfully
HKLM\System\CurrentControlSet\Services\0254011725486339mcinstcleanup => removed successfully
0254011725486339mcinstcleanup => service removed successfully
HKLM\System\CurrentControlSet\Services\bdredline_agent => removed successfully
bdredline_agent => service removed successfully
"HKLM\System\CurrentControlSet\Services\mc-fw-host" => removed successfully
mc-fw-host => service removed successfully
"HKLM\System\CurrentControlSet\Services\mc-wps-update" => removed successfully
mc-wps-update => service removed successfully
HKLM\System\CurrentControlSet\Services\ProductAgentService => removed successfully
ProductAgentService => service removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
C:\Program Files\360 => moved successfully
C:\Program Files\360Qua => moved successfully
C:\Program Files\IOBit => moved successfully
C:\Program Files\IOBit Malware Fighter => moved successfully
c:\Program Files\IQBIT => moved successfully
C:\Users\msuro\Desktop\avg_antivirus_free_setup.exe => ":MBAM.Zone.Identifier" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C614019A-84DD-4451-9C54-3841F531C1BE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB028431-F91D-49E7-A71A-A8CDF3BD3D14}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A778B97E-1833-4205-A67D-50A634956BEB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{139B13F1-5640-4A91-8AC3-BA2DD0253365}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F931B0E3-7AB9-44CC-AE6C-E90D958716F9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DD797965-0131-43AB-98B7-FF09BF689B50}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74E5C7DB-EE79-4430-85AF-073F8171ED48}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E1610C2-CA3C-4793-99BE-E775E5AB5604}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F7B5D6A-F9CB-40B1-9666-0F147C1D8E3E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5CE80276-0777-4792-8975-50954A95D88D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E5CF7883-6EA8-4598-8FC1-FD05E1F93C76}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CA3E48B6-318E-4D5E-9FEE-DAAC188354F5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C07514D0-AC83-4FE3-9D9A-3C03A1188B15}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DBB81C47-4571-4C6A-A13F-41095CE2A07F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6EBEDDF8-2ED8-484F-8B6D-42438D67A3E4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1216382D-DAC1-4D4B-AA3F-1383601657EA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8E67D158-4DD5-4B3C-9135-3CAEC5641B93}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{40AD1D6A-0E95-4FD5-B9B7-F695173A2922}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DE38C1A1-1867-4C39-84BA-3AF559930782}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BEEA279D-C595-4B2D-AC82-A27488A397FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D4E37F49-8209-444F-95E2-CF7F339DD978}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2618D2EF-FE39-4464-8DD3-76DEAF3D5AD8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{13CDDCC3-907D-4C0B-8CA3-78387448C6A1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{535F09F3-2854-4245-BAAE-90C2FE00B8FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{38C98E3E-6D99-48C3-B658-6F61804141F8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01EE4F9B-327B-421A-B876-5477208997CE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E07DB62-948A-4BA9-A3F2-461B79B11399}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{59A101B8-92E8-4BF7-B7E6-620B303F7EDB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A19D5B02-30AB-45C6-91BF-FBFC3C770889}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95E5492A-75F2-4EBD-B767-E251B6934361}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1DB93EAD-D228-4CD2-833F-F21B1E66AA4C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BEAA902-20AB-4A90-B633-DFA5DB18D711}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{77712089-41D8-45ED-A6A5-AF8C6B33CAEF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E5CC81F8-5087-45E1-B469-94399EABBBEE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8F9F3B2-B17C-4B6A-BBD8-77D45851D384}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB6BA69D-F21A-41F3-8F91-463E0275727B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B9DCF8CD-5D49-4A25-A784-69BFD3DD3AB6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DE744A43-0944-4F96-8796-B84E4045F0AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B02F757A-07E6-496E-87BB-9B50F5D99C5C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FA2B728E-DB0D-49E5-9E2D-451EF89CB346}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5869C20-7C35-4064-8E6D-3A6E4B3C8CFA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F38DD37-F1E8-4B80-AD50-454EDBBDB74C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D634CCD-CD80-43AD-B98E-C23E2637A0A9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1E34A18E-D5B8-4611-9861-4FC8CD445744}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11F045B9-25C6-4E8C-BB8D-54D853222C82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D566053-3EE7-4648-BC88-7409398D4485}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01614849-25FF-469B-B8A5-E6E212612140}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8595CDF9-5614-4414-A3F6-06EE213566AF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B78A07B-5D6A-432D-8ADD-9AF8ED99A994}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{078A19A4-91AB-4184-B63F-1CF748A7B412}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8383871-4F1A-45C3-884B-BA57F33865E7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68F05F1C-2763-420C-8EB5-1FCBDE80A22C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D19E2787-D313-4269-BC67-1CCD75E2B11E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECF2DEFB-C65A-4576-9C71-3682A8A7C87B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E7088062-3D20-4586-9599-D4F7EC5CB3F7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0ADEF289-BAC9-42F8-9BB6-910FB5B253B9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75F99E68-28F8-427C-847A-64F0A74059CA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0EDB00C9-FFC4-4291-A0BF-0D0F042F7971}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8465111 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 325297427 B
Windows/system/drivers => 1373143931 B
Edge => 0 B
Chrome => 843089278 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 5254 B
systemprofile32 => 5254 B
LocalService => 344534 B
NetworkService => 386960 B
msuro => 17387911457 B
Admin_CZ => 17707360933 B
RecycleBin => 0 B
EmptyTemp: => 35.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 05-09-2024 19:59:37)
Result of scheduled keys to remove after reboot:
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
==== End of Fixlog 19:59:37 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 22-08.2024
Ran by msuro (05-09-2024 19:56:57) Run:1
Running from C:\Users\msuro\Downloads
Loaded Profiles: msuro & Admin_CZ
Boot Mode: Normal
==============================================
fixlist content:
*****************
tart
CloseProcesses:
C:\Intel
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\MountPoints2: {e4b6179d-5fba-11ef-af1b-60452e8e2c5d} - "E:\WD SmartWare.exe" autoplay=true
Task: {0113C7E0-95FB-46B4-B482-9F51A26A043C} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {06636B77-EBD8-438A-ADA0-9F447270C216} - \McAfee\WPS\McAfee restart of PC -> No File <==== ATTENTION
Task: {0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63} - \Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001 -> No File <==== ATTENTION
Task: {0D0E2E0C-5ECA-4027-841B-41219B739AB4} - \Lenovo\Vantage\StartupFixPlan -> No File <==== ATTENTION
Task: {13A1BADB-2DD2-4BF0-9201-EFBEFF486B31} - \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {1BCC28F4-99C8-46D3-A1E3-EE531169B535} - \Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {2624C1C1-2578-4218-BCBB-58DA52BFD7B6} - \McAfee\DAD.WPS.Execute.Updates -> No File <==== ATTENTION
Task: {322B38FB-A941-45C7-9084-C0F28873F42A} - \Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699 -> No File <==== ATTENTION
Task: {34097FB5-DF05-4096-ACA9-F438573E85A5} - \McAfee\WPS\McAfee Windows Notification Token -> No File <==== ATTENTION
Task: {37380302-B47F-449D-B576-21264D70EA2B} - \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance -> No File <==== ATTENTION
Task: {3B00E292-7EC9-4E85-B088-276399281A32} - \McAfee\WPS\McAfee Health Check -> No File <==== ATTENTION
Task: {3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {42675225-4978-48CD-A659-27DAE69D2772} - \McAfee\WPS\McAfee PC Optimizer Task -> No File <==== ATTENTION
Task: {48DD635A-1281-4C47-A644-7C1B9C49DD17} - \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask -> No File <==== ATTENTION
Task: {543502F2-C6BB-40EB-9F32-46F6452133F5} - \McAfee\WPS\McAfee Scheduled AV Scan -> No File <==== ATTENTION
Task: {552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519} - \Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea -> No File <==== ATTENTION
Task: {5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA} - \Lenovo\UDC\Lenovo UDC Diagnostic Scan -> No File <==== ATTENTION
Task: {5F831719-8913-4758-AE26-5A556B7B238C} - \McAfee\wps\McAfee Updater -> No File <==== ATTENTION
Task: {5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750} - \McAfee\WPS\McAfee Cloud Configuration Check -> No File <==== ATTENTION
Task: {75459AF0-EC9B-47A4-ABFB-6007BC3C254E} - \Lenovo\Vantage\Schedule\DailyTelemetryTransmission -> No File <==== ATTENTION
Task: {7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1} - \McAfee\WPS\McAfee Anti-Tracker Scanner -> No File <==== ATTENTION
Task: {A235129B-2306-4A7D-8E11-863282A6808B} - \McAfee Sustainability -> No File <==== ATTENTION
Task: {A90FC3D2-D25D-44CE-873E-0FF52193004F} - \Lenovo\LenovoNowQuarterlyLaunch -> No File <==== ATTENTION
Task: {AD37E874-E090-4765-94D7-BC3579720C8C} - \McAfee Remediation (Prepare) -> No File <==== ATTENTION
Task: {AFD97E0C-4332-45C8-B365-B4EAA7A0D17F} - \Lenovo\LenovoNowLauncher -> No File <==== ATTENTION
Task: {BCFEFA32-AF1D-4811-98A2-596B3AC58937} - \McAfee\WPS\McAfee Hotfix -> No File <==== ATTENTION
Task: {C6766456-FEFB-4658-AF2B-6C189331E5C3} - \Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 -> No File <==== ATTENTION
Task: {CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23} - \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {CEBB8516-AFB2-4718-9655-D50CAF576A15} - \Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent -> No File <==== ATTENTION
Task: {CF6E116D-B780-427E-92CE-AE1302DBCE3A} - \Lenovo\UDC\Lenovo UDC Monitor -> No File <==== ATTENTION
Task: {D1BEC5FC-5A05-4059-8C34-CB13C46E4773} - \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask -> No File <==== ATTENTION
Task: {D27D9399-406D-457E-9705-DBDD016F0ADE} - \McAfee\WPS\McAfee Scheduled Tracker Remover -> No File <==== ATTENTION
Task: {D54DAF3C-74CA-4C21-9D09-91671A7CA69F} - \McAfee\McAfee Auto Maintenance Task Agent -> No File <==== ATTENTION
Task: {D5FB5531-ED3C-4384-9B35-2101FEEFC160} - \McAfee\WPS\McAfee Virus Definition Update -> No File <==== ATTENTION
Task: {D7BE3570-FA07-457C-BCD6-82CB1B2AD144} - \Avira_Security_Installation -> No File <==== ATTENTION
Task: {D809E4E1-AEAA-4F31-80F4-B8426C39EA4E} - \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder -> No File <==== ATTENTION
Task: {D89AAA30-08BD-4C65-BBFE-55EA8B61655D} - \Lenovo\Vantage\Schedule\GenericMessagingAddin -> No File <==== ATTENTION
Task: {D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2} - \Lenovo\Vantage\Schedule\NightChargeToastEvent -> No File <==== ATTENTION
Task: {D9CB6CB2-B873-496A-A341-A12F589A1CDC} - \McAfee OEM Subscription job -> No File <==== ATTENTION
Task: {DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC} - \McAfee\WPS\McAfee Message Check -> No File <==== ATTENTION
Task: {E4B8A265-8A83-4F98-928C-6E786C2B52D8} - \Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3 -> No File <==== ATTENTION
Task: {E9C77797-A1C1-402A-9368-0EF5B9F797B5} - \McAfee\McAfee Idle Detection Task -> No File <==== ATTENTION
Task: {EE650A61-92EE-449D-B22D-CCB8169EF396} - \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport -> No File <==== ATTENTION
Task: {FB198AFB-C80F-4148-9517-AE977D936CF7} - \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask -> No File <==== ATTENTION
Task: {FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B} - \Lenovo\LenovoNowTask -> No File <==== ATTENTION
Task: {FD97448B-F067-48D1-B0C4-A454B283DE0F} - \McAfee\WPS\McAfee Anti-tracker notification -> No File <==== ATTENTION
Task: {DF98A6F4-5BC5-4655-B364-B72E79E29068} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => "C:\Intel\q2.exe" (No File)
Task: {CC208C84-481C-444E-98B1-6C5EC6ECF431} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => "C:\Intel\q2.exe" (No File)
Task: {B7E70255-B421-43B5-83AF-93AACD14DD05} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => "C:\Intel\i2.exe" (No File)
Task: {FD0E1549-FDDD-47C8-85DA-19E8E4E97C82} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => "C:\Intel\i2.exe" (No File)
Task: {0453512E-468D-4755-A1ED-09E3D2777C4D} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_1.log" <==== ATTENTION
Task: {C2F404A7-4F01-4586-AB20-7F438261A4BF} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => C:\Intel\logs\p1.exe [1205936452 2024-09-05] () [File not signed] -> /stab "C:\Intel\logs\p1_2.log" <==== ATTENTION
Task: {49F53B20-E45A-4F23-A7E2-3035B157100D} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1117336 ] (A-Volute SAS -> Nahimic)
S2 dg; C:\Intel\dg.exe [1166302459 2024-09-05] () [File not signed] <==== ATTENTION
S2 0254011725486339mcinstcleanup; C:\Users\msuro\AppData\Local\Temp\025401~1.EXE -cleanup -nolog [X] <==== ATTENTION
S2 bdredline_agent; "C:\Program Files\Bitdefender Agent\redline\bdredline.exe" [X]
S2 mc-fw-host; "\\?\C:\Program Files\McAfee\WPS\1.21.162.1\mc-fw-host.exe" -service [X]
S3 mc-wps-update; "C:\Program Files\McAfee\wps\1.21.162.1\mc-update.exe" /runservice [X]
S2 ProductAgentService; "C:\Program Files\Bitdefender Agent\ProductAgentService.exe" [X]
U3 aswbdisk; no ImagePath
C:\Program Files\360
C:\Program Files\360Qua
C:\Program Files\IOBit
C:\Program Files\IOBit Malware Fighter
c:\Program Files\IQBIT
AlternateDataStreams: C:\Users\msuro\Desktop\avg_antivirus_free_setup.exe:MBAM.Zone.Identifier [234]
FirewallRules: [{C614019A-84DD-4451-9C54-3841F531C1BE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{FB028431-F91D-49E7-A71A-A8CDF3BD3D14}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{A778B97E-1833-4205-A67D-50A634956BEB}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{139B13F1-5640-4A91-8AC3-BA2DD0253365}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{F931B0E3-7AB9-44CC-AE6C-E90D958716F9}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{DD797965-0131-43AB-98B7-FF09BF689B50}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{74E5C7DB-EE79-4430-85AF-073F8171ED48}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{6E1610C2-CA3C-4793-99BE-E775E5AB5604}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{5F7B5D6A-F9CB-40B1-9666-0F147C1D8E3E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{5CE80276-0777-4792-8975-50954A95D88D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E5CF7883-6EA8-4598-8FC1-FD05E1F93C76}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{CA3E48B6-318E-4D5E-9FEE-DAAC188354F5}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{C07514D0-AC83-4FE3-9D9A-3C03A1188B15}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{DBB81C47-4571-4C6A-A13F-41095CE2A07F}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{6EBEDDF8-2ED8-484F-8B6D-42438D67A3E4}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{1216382D-DAC1-4D4B-AA3F-1383601657EA}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{8E67D158-4DD5-4B3C-9135-3CAEC5641B93}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{40AD1D6A-0E95-4FD5-B9B7-F695173A2922}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{DE38C1A1-1867-4C39-84BA-3AF559930782}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{BEEA279D-C595-4B2D-AC82-A27488A397FE}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{D4E37F49-8209-444F-95E2-CF7F339DD978}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{2618D2EF-FE39-4464-8DD3-76DEAF3D5AD8}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{13CDDCC3-907D-4C0B-8CA3-78387448C6A1}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{535F09F3-2854-4245-BAAE-90C2FE00B8FE}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{38C98E3E-6D99-48C3-B658-6F61804141F8}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{01EE4F9B-327B-421A-B876-5477208997CE}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{6E07DB62-948A-4BA9-A3F2-461B79B11399}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{59A101B8-92E8-4BF7-B7E6-620B303F7EDB}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{A19D5B02-30AB-45C6-91BF-FBFC3C770889}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{95E5492A-75F2-4EBD-B767-E251B6934361}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{1DB93EAD-D228-4CD2-833F-F21B1E66AA4C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{4BEAA902-20AB-4A90-B633-DFA5DB18D711}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{77712089-41D8-45ED-A6A5-AF8C6B33CAEF}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{E5CC81F8-5087-45E1-B469-94399EABBBEE}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{C8F9F3B2-B17C-4B6A-BBD8-77D45851D384}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EB6BA69D-F21A-41F3-8F91-463E0275727B}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{B9DCF8CD-5D49-4A25-A784-69BFD3DD3AB6}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{DE744A43-0944-4F96-8796-B84E4045F0AC}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{B02F757A-07E6-496E-87BB-9B50F5D99C5C}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{FA2B728E-DB0D-49E5-9E2D-451EF89CB346}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{F5869C20-7C35-4064-8E6D-3A6E4B3C8CFA}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{3F38DD37-F1E8-4B80-AD50-454EDBBDB74C}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{6D634CCD-CD80-43AD-B98E-C23E2637A0A9}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{1E34A18E-D5B8-4611-9861-4FC8CD445744}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{11F045B9-25C6-4E8C-BB8D-54D853222C82}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{5D566053-3EE7-4648-BC88-7409398D4485}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{01614849-25FF-469B-B8A5-E6E212612140}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{8595CDF9-5614-4414-A3F6-06EE213566AF}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{7B78A07B-5D6A-432D-8ADD-9AF8ED99A994}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{078A19A4-91AB-4184-B63F-1CF748A7B412}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B8383871-4F1A-45C3-884B-BA57F33865E7}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{68F05F1C-2763-420C-8EB5-1FCBDE80A22C}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{D19E2787-D313-4269-BC67-1CCD75E2B11E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{ECF2DEFB-C65A-4576-9C71-3682A8A7C87B}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E7088062-3D20-4586-9599-D4F7EC5CB3F7}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{0ADEF289-BAC9-42F8-9BB6-910FB5B253B9}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{75F99E68-28F8-427C-847A-64F0A74059CA}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{0EDB00C9-FFC4-4291-A0BF-0D0F042F7971}] => (Allow) C:\Intel\m\sbr.exe => No File
EmptyTemp:
End
*****************
tart => Error: No automatic fix found for this entry.
Processes closed successfully.
"C:\Intel" Folder move:
C:\Intel => moved successfully
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4b6179d-5fba-11ef-af1b-60452e8e2c5d} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0113C7E0-95FB-46B4-B482-9F51A26A043C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0113C7E0-95FB-46B4-B482-9F51A26A043C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{06636B77-EBD8-438A-ADA0-9F447270C216}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{06636B77-EBD8-438A-ADA0-9F447270C216}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee restart of PC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0916EE0C-CA9A-4E2A-A8ED-7C482F39CF63}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Lenovo Service Bridge\S-1-5-21-3248026489-3966559180-2484514055-1001" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0D0E2E0C-5ECA-4027-841B-41219B739AB4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D0E2E0C-5ECA-4027-841B-41219B739AB4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\StartupFixPlan" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13A1BADB-2DD2-4BF0-9201-EFBEFF486B31}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13A1BADB-2DD2-4BF0-9201-EFBEFF486B31}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1BCC28F4-99C8-46D3-A1E3-EE531169B535}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BCC28F4-99C8-46D3-A1E3-EE531169B535}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2624C1C1-2578-4218-BCBB-58DA52BFD7B6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2624C1C1-2578-4218-BCBB-58DA52BFD7B6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\DAD.WPS.Execute.Updates" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{322B38FB-A941-45C7-9084-C0F28873F42A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{322B38FB-A941-45C7-9084-C0F28873F42A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\e6613d97-149f-446e-a951-1927ba853699" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{34097FB5-DF05-4096-ACA9-F438573E85A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34097FB5-DF05-4096-ACA9-F438573E85A5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Windows Notification Token" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{37380302-B47F-449D-B576-21264D70EA2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37380302-B47F-449D-B576-21264D70EA2B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B00E292-7EC9-4E85-B088-276399281A32}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B00E292-7EC9-4E85-B088-276399281A32}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Health Check" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3ECF9B2D-FE41-4C1F-92FD-9E59598EC4A7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{42675225-4978-48CD-A659-27DAE69D2772}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42675225-4978-48CD-A659-27DAE69D2772}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee PC Optimizer Task" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48DD635A-1281-4C47-A644-7C1B9C49DD17}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48DD635A-1281-4C47-A644-7C1B9C49DD17}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{543502F2-C6BB-40EB-9F32-46F6452133F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{543502F2-C6BB-40EB-9F32-46F6452133F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Scheduled AV Scan" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{552A7DA8-1CA8-4E30-BCBD-B0A4B92BC519}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\e124ffe6-6e42-4ae9-8e08-da820d7a30ea" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F19B9E2-2B7A-415B-B95B-48D8DEC58BBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\UDC\Lenovo UDC Diagnostic Scan" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F831719-8913-4758-AE26-5A556B7B238C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F831719-8913-4758-AE26-5A556B7B238C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\wps\McAfee Updater" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5FD94DE1-5EA1-4DFD-B0D5-017EE9FBF750}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Cloud Configuration Check" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75459AF0-EC9B-47A4-ABFB-6007BC3C254E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75459AF0-EC9B-47A4-ABFB-6007BC3C254E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\DailyTelemetryTransmission" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F2FC7A7-58FF-47A1-BB6E-BAD0D5EC78A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Anti-Tracker Scanner" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A235129B-2306-4A7D-8E11-863282A6808B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A235129B-2306-4A7D-8E11-863282A6808B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee Sustainability" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A90FC3D2-D25D-44CE-873E-0FF52193004F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A90FC3D2-D25D-44CE-873E-0FF52193004F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LenovoNowQuarterlyLaunch" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD37E874-E090-4765-94D7-BC3579720C8C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD37E874-E090-4765-94D7-BC3579720C8C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee Remediation (Prepare)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFD97E0C-4332-45C8-B365-B4EAA7A0D17F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFD97E0C-4332-45C8-B365-B4EAA7A0D17F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LenovoNowLauncher" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BCFEFA32-AF1D-4811-98A2-596B3AC58937}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BCFEFA32-AF1D-4811-98A2-596B3AC58937}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Hotfix" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C6766456-FEFB-4658-AF2B-6C189331E5C3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6766456-FEFB-4658-AF2B-6C189331E5C3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC4B7A7F-3C3D-47F7-BA52-8B8F002F5C23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CEBB8516-AFB2-4718-9655-D50CAF576A15}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CEBB8516-AFB2-4718-9655-D50CAF576A15}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF6E116D-B780-427E-92CE-AE1302DBCE3A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF6E116D-B780-427E-92CE-AE1302DBCE3A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\UDC\Lenovo UDC Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1BEC5FC-5A05-4059-8C34-CB13C46E4773}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1BEC5FC-5A05-4059-8C34-CB13C46E4773}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D27D9399-406D-457E-9705-DBDD016F0ADE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D27D9399-406D-457E-9705-DBDD016F0ADE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Scheduled Tracker Remover" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D54DAF3C-74CA-4C21-9D09-91671A7CA69F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D54DAF3C-74CA-4C21-9D09-91671A7CA69F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\McAfee Auto Maintenance Task Agent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5FB5531-ED3C-4384-9B35-2101FEEFC160}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5FB5531-ED3C-4384-9B35-2101FEEFC160}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Virus Definition Update" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D7BE3570-FA07-457C-BCD6-82CB1B2AD144}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D7BE3570-FA07-457C-BCD6-82CB1B2AD144}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avira_Security_Installation" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D809E4E1-AEAA-4F31-80F4-B8426C39EA4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D809E4E1-AEAA-4F31-80F4-B8426C39EA4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D89AAA30-08BD-4C65-BBFE-55EA8B61655D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D89AAA30-08BD-4C65-BBFE-55EA8B61655D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\GenericMessagingAddin" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8D2C7A1-C5AD-4CB0-9EC8-06FCE18BA0D2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\NightChargeToastEvent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D9CB6CB2-B873-496A-A341-A12F589A1CDC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9CB6CB2-B873-496A-A341-A12F589A1CDC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee OEM Subscription job" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DFE51EC5-0AE4-4755-A058-BF7D0F87CDFC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Message Check" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4B8A265-8A83-4F98-928C-6E786C2B52D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4B8A265-8A83-4F98-928C-6E786C2B52D8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\2eeaae83-73e9-45cb-a19f-a273686b98f3" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E9C77797-A1C1-402A-9368-0EF5B9F797B5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E9C77797-A1C1-402A-9368-0EF5B9F797B5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\McAfee Idle Detection Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE650A61-92EE-449D-B22D-CCB8169EF396}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE650A61-92EE-449D-B22D-CCB8169EF396}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FB198AFB-C80F-4148-9517-AE977D936CF7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB198AFB-C80F-4148-9517-AE977D936CF7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FCCA3A92-6018-4D2B-9C2B-C7AC3F88094B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\LenovoNowTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FD97448B-F067-48D1-B0C4-A454B283DE0F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD97448B-F067-48D1-B0C4-A454B283DE0F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\McAfee\WPS\McAfee Anti-tracker notification" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DF98A6F4-5BC5-4655-B364-B72E79E29068}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC208C84-481C-444E-98B1-6C5EC6ECF431}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7E70255-B421-43B5-83AF-93AACD14DD05}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD0E1549-FDDD-47C8-85DA-19E8E4E97C82}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0453512E-468D-4755-A1ED-09E3D2777C4D}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2F404A7-4F01-4586-AB20-7F438261A4BF}" => not found
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49F53B20-E45A-4F23-A7E2-3035B157100D}" => not found
C:\Windows\System32\Tasks\NahimicTask32 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NahimicTask32" => removed successfully
HKLM\System\CurrentControlSet\Services\dg => removed successfully
dg => service removed successfully
HKLM\System\CurrentControlSet\Services\0254011725486339mcinstcleanup => removed successfully
0254011725486339mcinstcleanup => service removed successfully
HKLM\System\CurrentControlSet\Services\bdredline_agent => removed successfully
bdredline_agent => service removed successfully
"HKLM\System\CurrentControlSet\Services\mc-fw-host" => removed successfully
mc-fw-host => service removed successfully
"HKLM\System\CurrentControlSet\Services\mc-wps-update" => removed successfully
mc-wps-update => service removed successfully
HKLM\System\CurrentControlSet\Services\ProductAgentService => removed successfully
ProductAgentService => service removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
C:\Program Files\360 => moved successfully
C:\Program Files\360Qua => moved successfully
C:\Program Files\IOBit => moved successfully
C:\Program Files\IOBit Malware Fighter => moved successfully
c:\Program Files\IQBIT => moved successfully
C:\Users\msuro\Desktop\avg_antivirus_free_setup.exe => ":MBAM.Zone.Identifier" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C614019A-84DD-4451-9C54-3841F531C1BE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB028431-F91D-49E7-A71A-A8CDF3BD3D14}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A778B97E-1833-4205-A67D-50A634956BEB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{139B13F1-5640-4A91-8AC3-BA2DD0253365}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F931B0E3-7AB9-44CC-AE6C-E90D958716F9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DD797965-0131-43AB-98B7-FF09BF689B50}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74E5C7DB-EE79-4430-85AF-073F8171ED48}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E1610C2-CA3C-4793-99BE-E775E5AB5604}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5F7B5D6A-F9CB-40B1-9666-0F147C1D8E3E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5CE80276-0777-4792-8975-50954A95D88D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E5CF7883-6EA8-4598-8FC1-FD05E1F93C76}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CA3E48B6-318E-4D5E-9FEE-DAAC188354F5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C07514D0-AC83-4FE3-9D9A-3C03A1188B15}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DBB81C47-4571-4C6A-A13F-41095CE2A07F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6EBEDDF8-2ED8-484F-8B6D-42438D67A3E4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1216382D-DAC1-4D4B-AA3F-1383601657EA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8E67D158-4DD5-4B3C-9135-3CAEC5641B93}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{40AD1D6A-0E95-4FD5-B9B7-F695173A2922}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DE38C1A1-1867-4C39-84BA-3AF559930782}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BEEA279D-C595-4B2D-AC82-A27488A397FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D4E37F49-8209-444F-95E2-CF7F339DD978}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2618D2EF-FE39-4464-8DD3-76DEAF3D5AD8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{13CDDCC3-907D-4C0B-8CA3-78387448C6A1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{535F09F3-2854-4245-BAAE-90C2FE00B8FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{38C98E3E-6D99-48C3-B658-6F61804141F8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01EE4F9B-327B-421A-B876-5477208997CE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E07DB62-948A-4BA9-A3F2-461B79B11399}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{59A101B8-92E8-4BF7-B7E6-620B303F7EDB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A19D5B02-30AB-45C6-91BF-FBFC3C770889}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95E5492A-75F2-4EBD-B767-E251B6934361}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1DB93EAD-D228-4CD2-833F-F21B1E66AA4C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4BEAA902-20AB-4A90-B633-DFA5DB18D711}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{77712089-41D8-45ED-A6A5-AF8C6B33CAEF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E5CC81F8-5087-45E1-B469-94399EABBBEE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8F9F3B2-B17C-4B6A-BBD8-77D45851D384}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB6BA69D-F21A-41F3-8F91-463E0275727B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B9DCF8CD-5D49-4A25-A784-69BFD3DD3AB6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DE744A43-0944-4F96-8796-B84E4045F0AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B02F757A-07E6-496E-87BB-9B50F5D99C5C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FA2B728E-DB0D-49E5-9E2D-451EF89CB346}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5869C20-7C35-4064-8E6D-3A6E4B3C8CFA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3F38DD37-F1E8-4B80-AD50-454EDBBDB74C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D634CCD-CD80-43AD-B98E-C23E2637A0A9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1E34A18E-D5B8-4611-9861-4FC8CD445744}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11F045B9-25C6-4E8C-BB8D-54D853222C82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D566053-3EE7-4648-BC88-7409398D4485}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01614849-25FF-469B-B8A5-E6E212612140}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8595CDF9-5614-4414-A3F6-06EE213566AF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B78A07B-5D6A-432D-8ADD-9AF8ED99A994}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{078A19A4-91AB-4184-B63F-1CF748A7B412}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8383871-4F1A-45C3-884B-BA57F33865E7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68F05F1C-2763-420C-8EB5-1FCBDE80A22C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D19E2787-D313-4269-BC67-1CCD75E2B11E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECF2DEFB-C65A-4576-9C71-3682A8A7C87B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E7088062-3D20-4586-9599-D4F7EC5CB3F7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0ADEF289-BAC9-42F8-9BB6-910FB5B253B9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{75F99E68-28F8-427C-847A-64F0A74059CA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0EDB00C9-FFC4-4291-A0BF-0D0F042F7971}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8465111 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 325297427 B
Windows/system/drivers => 1373143931 B
Edge => 0 B
Chrome => 843089278 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 5254 B
systemprofile32 => 5254 B
LocalService => 344534 B
NetworkService => 386960 B
msuro => 17387911457 B
Admin_CZ => 17707360933 B
RecycleBin => 0 B
EmptyTemp: => 35.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 05-09-2024 19:59:37)
Result of scheduled keys to remove after reboot:
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
==== End of Fixlog 19:59:37 ====
-
Rudy
- Site Admin
- Příspěvky: 118957
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nedokončí se téměř žádná instalace aplikace
Mělo by být smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nedokončí se téměř žádná instalace aplikace
změna rozhodně nastala - KVRT už nic nenachází, malwarebytes už nemusí blokovat pokusy o odchozí komunikaci z adresáře C:\Intel\, takže tohle je pozitivní, děkuji.
Instalace se zlepšila, např. AVAST free se nainstaloval, ale i po několika restartech se mu nedaří spusit a ani ESET online skener nejde spustit. Lenovo Ventage má také stále problém, ale to může být v něčem jiném.
Mohu poprosit jeste o kontrolu logů z FRST ? Děkuji
Instalace se zlepšila, např. AVAST free se nainstaloval, ale i po několika restartech se mu nedaří spusit a ani ESET online skener nejde spustit. Lenovo Ventage má také stále problém, ale to může být v něčem jiném.
Mohu poprosit jeste o kontrolu logů z FRST ? Děkuji
- Přílohy
-
- nakonec.zip
- (38.12 KiB) Staženo 65 x
-
Rudy
- Site Admin
- Příspěvky: 118957
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nedokončí se téměř žádná instalace aplikace
OK. Otevřte poznámkový blok a zkopírujte do něj:
Ano, byl to adresář C:\Intel. Název má zmást uživatele, ale tím, že není v system32 , nebo v syswow64 není regulérní. Chvíli to sledujte, zda se ještě něco neobjeví.
Uložte do C:\Users\msuro\Downloads plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Task: {030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 -> No File <==== ATTENTION
Task: {2A0C4C32-67AF-4DA6-80AD-9950E9AD5122} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 -> No File <==== ATTENTION
Task: {8E847636-5898-46A0-9344-C84CD875B495} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 -> No File <==== ATTENTION
Task: {A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB} - \Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 -> No File <==== ATTENTION
Task: {B88E2263-DAB1-4229-899F-78BE661439BD} - \Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 -> No File <==== ATTENTION
Task: {BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 -> No File <==== ATTENTION
Task: {0E1E744B-9A1C-4B81-ADC0-28467BDB613D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {24D3F20D-8A30-4135-9139-F757F5F19EB4} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\p2.exe -> /stab "C:\Intel\logs\p2_1.log"
Task: {D4D2D867-5C25-4664-9E80-DAC97F1AF679} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => C:\Intel\logs\p2.exe -> /stab "C:\Intel\logs\p2_2.log"
Task: {C611939F-D8EB-44D3-B7A2-92F707C6E737} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => C:\Intel\logs\p3.exe -> /stab "C:\Intel\logs\p3_1.log"
Task: {607FA5A1-4DDC-47BA-8363-F9D323CCAB5A} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => C:\Intel\logs\p3.exe -> /stab "C:\Intel\logs\p3_2.log"
Task: {7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\p6.exe -> /stab "C:\Intel\logs\p6_1.log"
Task: {BA6B221D-1F1A-4923-90F7-16BFA050D9AF} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => C:\Intel\logs\p6.exe -> /stab "C:\Intel\logs\p6_2.log"
Task: {25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\p7.exe -> /stab "C:\Intel\logs\p7_1.log"
Task: {73F438F2-A82D-4CE9-A796-BC7FE9050019} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => C:\Intel\logs\p7.exe -> /stab "C:\Intel\logs\p7_2.log"
C:\Intel
U3 aswbdisk; no ImagePath
C:\Windows\360Qua
C:\Windows\360
C:\DumpStack.log.tmp
C:\Program Files (x86)\360
C:\Program Files (x86)\360Qua
AlternateDataStreams: C:\Users\msuro\Downloads\bitdefender_antivirus.exe:MBAM.Zone.Identifier [184]
AlternateDataStreams: C:\Users\msuro\Downloads\LenovoVantageServiceSetup.exe:MBAM.Zone.Identifier [123]
FirewallRules: [{102C0817-4172-4929-A3F9-F303DE8E70A6}] => (Allow) C:\Intel\i.exe => No File
FirewallRules: [{1345D722-B4D3-471D-A5BF-5D3ADB423752}] => (Allow) C:\Intel\i.exe => No File
FirewallRules: [{FF1268E8-E56C-405C-8A7E-EFE457A10925}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{C6616E73-881B-47FB-99D0-09256CD423C5}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{E873FD42-96E9-4639-A29C-26141E2A30A2}] => (Allow) C:\Intel\q1.exe => No File
FirewallRules: [{D7B057DD-70A1-4B1B-8BE1-B7F1E3C50568}] => (Allow) C:\Intel\q1.exe => No File
EmptyTemp:
End
Ano, byl to adresář C:\Intel. Název má zmást uživatele, ale tím, že není v system32 , nebo v syswow64 není regulérní. Chvíli to sledujte, zda se ještě něco neobjeví.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nedokončí se téměř žádná instalace aplikace
Provedeno a vkládám výsledek z FRST. Současně opět děkuji za skvělou práci, velkou pomoc a opět jdu přispět na provoz fóra, díky ! 
Fix result of Farbar Recovery Scan Tool (x64) Version: 22-08.2024
Ran by msuro (05-09-2024 21:38:56) Run:2
Running from C:\Users\msuro\Downloads
Loaded Profiles: msuro & Admin_CZ
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 -> No File <==== ATTENTION
Task: {2A0C4C32-67AF-4DA6-80AD-9950E9AD5122} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 -> No File <==== ATTENTION
Task: {8E847636-5898-46A0-9344-C84CD875B495} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 -> No File <==== ATTENTION
Task: {A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB} - \Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 -> No File <==== ATTENTION
Task: {B88E2263-DAB1-4229-899F-78BE661439BD} - \Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 -> No File <==== ATTENTION
Task: {BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 -> No File <==== ATTENTION
Task: {0E1E744B-9A1C-4B81-ADC0-28467BDB613D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {24D3F20D-8A30-4135-9139-F757F5F19EB4} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\p2.exe -> /stab "C:\Intel\logs\p2_1.log"
Task: {D4D2D867-5C25-4664-9E80-DAC97F1AF679} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => C:\Intel\logs\p2.exe -> /stab "C:\Intel\logs\p2_2.log"
Task: {C611939F-D8EB-44D3-B7A2-92F707C6E737} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => C:\Intel\logs\p3.exe -> /stab "C:\Intel\logs\p3_1.log"
Task: {607FA5A1-4DDC-47BA-8363-F9D323CCAB5A} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => C:\Intel\logs\p3.exe -> /stab "C:\Intel\logs\p3_2.log"
Task: {7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\p6.exe -> /stab "C:\Intel\logs\p6_1.log"
Task: {BA6B221D-1F1A-4923-90F7-16BFA050D9AF} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => C:\Intel\logs\p6.exe -> /stab "C:\Intel\logs\p6_2.log"
Task: {25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\p7.exe -> /stab "C:\Intel\logs\p7_1.log"
Task: {73F438F2-A82D-4CE9-A796-BC7FE9050019} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => C:\Intel\logs\p7.exe -> /stab "C:\Intel\logs\p7_2.log"
C:\Intel
U3 aswbdisk; no ImagePath
C:\Windows\360Qua
C:\Windows\360
C:\DumpStack.log.tmp
C:\Program Files (x86)\360
C:\Program Files (x86)\360Qua
AlternateDataStreams: C:\Users\msuro\Downloads\bitdefender_antivirus.exe:MBAM.Zone.Identifier [184]
AlternateDataStreams: C:\Users\msuro\Downloads\LenovoVantageServiceSetup.exe:MBAM.Zone.Identifier [123]
FirewallRules: [{102C0817-4172-4929-A3F9-F303DE8E70A6}] => (Allow) C:\Intel\i.exe => No File
FirewallRules: [{1345D722-B4D3-471D-A5BF-5D3ADB423752}] => (Allow) C:\Intel\i.exe => No File
FirewallRules: [{FF1268E8-E56C-405C-8A7E-EFE457A10925}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{C6616E73-881B-47FB-99D0-09256CD423C5}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{E873FD42-96E9-4639-A29C-26141E2A30A2}] => (Allow) C:\Intel\q1.exe => No File
FirewallRules: [{D7B057DD-70A1-4B1B-8BE1-B7F1E3C50568}] => (Allow) C:\Intel\q1.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2A0C4C32-67AF-4DA6-80AD-9950E9AD5122}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A0C4C32-67AF-4DA6-80AD-9950E9AD5122}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8E847636-5898-46A0-9344-C84CD875B495}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E847636-5898-46A0-9344-C84CD875B495}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B88E2263-DAB1-4229-899F-78BE661439BD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B88E2263-DAB1-4229-899F-78BE661439BD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0E1E744B-9A1C-4B81-ADC0-28467BDB613D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E1E744B-9A1C-4B81-ADC0-28467BDB613D}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{24D3F20D-8A30-4135-9139-F757F5F19EB4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{24D3F20D-8A30-4135-9139-F757F5F19EB4}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D4D2D867-5C25-4664-9E80-DAC97F1AF679}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D4D2D867-5C25-4664-9E80-DAC97F1AF679}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C611939F-D8EB-44D3-B7A2-92F707C6E737}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C611939F-D8EB-44D3-B7A2-92F707C6E737}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{607FA5A1-4DDC-47BA-8363-F9D323CCAB5A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{607FA5A1-4DDC-47BA-8363-F9D323CCAB5A}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA6B221D-1F1A-4923-90F7-16BFA050D9AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA6B221D-1F1A-4923-90F7-16BFA050D9AF}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73F438F2-A82D-4CE9-A796-BC7FE9050019}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73F438F2-A82D-4CE9-A796-BC7FE9050019}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2" => removed successfully
"C:\Intel" => not found
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
C:\Windows\360Qua => moved successfully
C:\Windows\360 => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Program Files (x86)\360 => moved successfully
C:\Program Files (x86)\360Qua => moved successfully
C:\Users\msuro\Downloads\bitdefender_antivirus.exe => ":MBAM.Zone.Identifier" ADS removed successfully
C:\Users\msuro\Downloads\LenovoVantageServiceSetup.exe => ":MBAM.Zone.Identifier" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{102C0817-4172-4929-A3F9-F303DE8E70A6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1345D722-B4D3-471D-A5BF-5D3ADB423752}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FF1268E8-E56C-405C-8A7E-EFE457A10925}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6616E73-881B-47FB-99D0-09256CD423C5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E873FD42-96E9-4639-A29C-26141E2A30A2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D7B057DD-70A1-4B1B-8BE1-B7F1E3C50568}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9531022 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 7815737 B
Edge => 0 B
Chrome => 215885564 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 96864 B
NetworkService => 96864 B
msuro => 2610062201 B
Admin_CZ => 2610062201 B
RecycleBin => 0 B
EmptyTemp: => 5.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 05-09-2024 21:39:48)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 21:39:48 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 22-08.2024
Ran by msuro (05-09-2024 21:38:56) Run:2
Running from C:\Users\msuro\Downloads
Loaded Profiles: msuro & Admin_CZ
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 -> No File <==== ATTENTION
Task: {2A0C4C32-67AF-4DA6-80AD-9950E9AD5122} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2 -> No File <==== ATTENTION
Task: {8E847636-5898-46A0-9344-C84CD875B495} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2 -> No File <==== ATTENTION
Task: {A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB} - \Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1 -> No File <==== ATTENTION
Task: {B88E2263-DAB1-4229-899F-78BE661439BD} - \Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2 -> No File <==== ATTENTION
Task: {BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14} - \Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1 -> No File <==== ATTENTION
Task: {0E1E744B-9A1C-4B81-ADC0-28467BDB613D} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {24D3F20D-8A30-4135-9139-F757F5F19EB4} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\p2.exe -> /stab "C:\Intel\logs\p2_1.log"
Task: {D4D2D867-5C25-4664-9E80-DAC97F1AF679} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => C:\Intel\logs\p2.exe -> /stab "C:\Intel\logs\p2_2.log"
Task: {C611939F-D8EB-44D3-B7A2-92F707C6E737} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => C:\Intel\logs\p3.exe -> /stab "C:\Intel\logs\p3_1.log"
Task: {607FA5A1-4DDC-47BA-8363-F9D323CCAB5A} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => C:\Intel\logs\p3.exe -> /stab "C:\Intel\logs\p3_2.log"
Task: {7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\p6.exe -> /stab "C:\Intel\logs\p6_1.log"
Task: {BA6B221D-1F1A-4923-90F7-16BFA050D9AF} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => C:\Intel\logs\p6.exe -> /stab "C:\Intel\logs\p6_2.log"
Task: {25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\p7.exe -> /stab "C:\Intel\logs\p7_1.log"
Task: {73F438F2-A82D-4CE9-A796-BC7FE9050019} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => C:\Intel\logs\p7.exe -> /stab "C:\Intel\logs\p7_2.log"
C:\Intel
U3 aswbdisk; no ImagePath
C:\Windows\360Qua
C:\Windows\360
C:\DumpStack.log.tmp
C:\Program Files (x86)\360
C:\Program Files (x86)\360Qua
AlternateDataStreams: C:\Users\msuro\Downloads\bitdefender_antivirus.exe:MBAM.Zone.Identifier [184]
AlternateDataStreams: C:\Users\msuro\Downloads\LenovoVantageServiceSetup.exe:MBAM.Zone.Identifier [123]
FirewallRules: [{102C0817-4172-4929-A3F9-F303DE8E70A6}] => (Allow) C:\Intel\i.exe => No File
FirewallRules: [{1345D722-B4D3-471D-A5BF-5D3ADB423752}] => (Allow) C:\Intel\i.exe => No File
FirewallRules: [{FF1268E8-E56C-405C-8A7E-EFE457A10925}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{C6616E73-881B-47FB-99D0-09256CD423C5}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{E873FD42-96E9-4639-A29C-26141E2A30A2}] => (Allow) C:\Intel\q1.exe => No File
FirewallRules: [{D7B057DD-70A1-4B1B-8BE1-B7F1E3C50568}] => (Allow) C:\Intel\q1.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{030DF51C-8DC0-4447-BD0E-5F5EF51BB9B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2A0C4C32-67AF-4DA6-80AD-9950E9AD5122}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A0C4C32-67AF-4DA6-80AD-9950E9AD5122}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8E847636-5898-46A0-9344-C84CD875B495}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E847636-5898-46A0-9344-C84CD875B495}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A9BDC7FA-3140-48A7-AA3B-E9B1B2FD2BAB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B88E2263-DAB1-4229-899F-78BE661439BD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B88E2263-DAB1-4229-899F-78BE661439BD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx2x2" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA81A0DB-FB94-4D90-8C2D-BE1A1716EE14}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3q1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0E1E744B-9A1C-4B81-ADC0-28467BDB613D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E1E744B-9A1C-4B81-ADC0-28467BDB613D}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F9AF6005-0142-41DA-BE0E-756E18290651}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{24D3F20D-8A30-4135-9139-F757F5F19EB4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{24D3F20D-8A30-4135-9139-F757F5F19EB4}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D4D2D867-5C25-4664-9E80-DAC97F1AF679}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D4D2D867-5C25-4664-9E80-DAC97F1AF679}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C611939F-D8EB-44D3-B7A2-92F707C6E737}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C611939F-D8EB-44D3-B7A2-92F707C6E737}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{607FA5A1-4DDC-47BA-8363-F9D323CCAB5A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{607FA5A1-4DDC-47BA-8363-F9D323CCAB5A}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx4x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7D77DDF5-C7D8-42EA-B371-5F2F9BA8AEF0}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA6B221D-1F1A-4923-90F7-16BFA050D9AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA6B221D-1F1A-4923-90F7-16BFA050D9AF}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25DCFDAD-EEF8-47B1-837D-8C8AC5DE2DA7}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73F438F2-A82D-4CE9-A796-BC7FE9050019}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73F438F2-A82D-4CE9-A796-BC7FE9050019}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x2" => removed successfully
"C:\Intel" => not found
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
C:\Windows\360Qua => moved successfully
C:\Windows\360 => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Program Files (x86)\360 => moved successfully
C:\Program Files (x86)\360Qua => moved successfully
C:\Users\msuro\Downloads\bitdefender_antivirus.exe => ":MBAM.Zone.Identifier" ADS removed successfully
C:\Users\msuro\Downloads\LenovoVantageServiceSetup.exe => ":MBAM.Zone.Identifier" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{102C0817-4172-4929-A3F9-F303DE8E70A6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1345D722-B4D3-471D-A5BF-5D3ADB423752}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FF1268E8-E56C-405C-8A7E-EFE457A10925}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6616E73-881B-47FB-99D0-09256CD423C5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E873FD42-96E9-4639-A29C-26141E2A30A2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D7B057DD-70A1-4B1B-8BE1-B7F1E3C50568}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9531022 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 7815737 B
Edge => 0 B
Chrome => 215885564 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 96864 B
NetworkService => 96864 B
msuro => 2610062201 B
Admin_CZ => 2610062201 B
RecycleBin => 0 B
EmptyTemp: => 5.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 05-09-2024 21:39:48)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 21:39:48 ====
-
Rudy
- Site Admin
- Příspěvky: 118957
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nedokončí se téměř žádná instalace aplikace
Bylo smazáno a za příspěvek děkujeme. Je vše v pořádku?. Do nedělního večera tu nebudu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nedokončí se téměř žádná instalace aplikace
NB se chová už lépe, ale Antiviry mi nainstalovat nejdou, resketive AVAST třeba ano, ale nespustí se a chtěl restart, ale ani po Xtém restartu nic, přitom ale třeba doprovodná aplikace od ESETU - ESET Home portal ano. Když se dívám do win eventlogu po neúspěšném instalaci ESETU, tak:
Product: ESET Security -- Chyba 1312. Složku 'C:\Program Files\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.
přitom ale takový adresář neexistuje a ani jsem ESET na NB nikdy neměl.
KVRT nic nenajde a AdwCleaner jen v Chrome Daemon plugin, kterej jsem poléčil, jinak nenajde nic.
NB se ale jinak chová korektně.. divnéé
Product: ESET Security -- Chyba 1312. Složku 'C:\Program Files\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.
přitom ale takový adresář neexistuje a ani jsem ESET na NB nikdy neměl.
KVRT nic nenajde a AdwCleaner jen v Chrome Daemon plugin, kterej jsem poléčil, jinak nenajde nic.
NB se ale jinak chová korektně.. divnéé
Přispějete na provoz fóra?