search

dragokas / hijackthis

A free utility that finds malware, adware and other security threats
http://hjt.sf.net
GNU General Public License v2.0
686 stars 108 forks source link

Hijack this log, please help,thank you #255

Open vincetheprince316 opened 1 month ago

vincetheprince316 commented 1 month ago

Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.13

Platform: x64 Windows 10 (Home), 10.0.19045.4717 (ReleaseId: 2009, 22H2), Service Pack: 0 Time: 10.08.2024 - 08:32 (UTC-04:00) Language: OS: English (0x409). Display: English (0x409). Non-Unicode: English (0x409) Elevated: Yes Ran by: Vincent (group: Administrators) on DESKTOP-087AEBJ, FirstRun: yes

Chrome: 127.0.6533.100 Firefox: 129.0.0.2295 Internet Explorer: 11.0.19041.4355 Default: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes: Number | Path 1 C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe 1 C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe 1 C:\Program Files (x86)\CA\SharedComponents\CA_LIC\lic98rmt.exe 1 C:\Program Files (x86)\CA\SharedComponents\CA_LIC\LogWatNT.exe 1 C:\Program Files (x86)\CleanMyPC\Registry Cleaner\RCScheduler.exe 1 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 1 C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe 1 C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe 1 C:\Program Files (x86)\iolo\Common\Lib\ioloDMVSvc.exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(GenericMessagingAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(GenericTelemetryAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(LenovoAccountAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(LenovoServiceBridgeAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(ModernPreloadAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(SmartPerformanceAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantage-(VantageCoreAddin).exe 1 C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe 8 C:\Program Files (x86)\Microsoft\EdgeWebView\Application\126.0.2592.113\msedgewebview2.exe 19 C:\Program Files (x86)\Mozilla Firefox\firefox.exe 1 C:\Program Files (x86)\Nero\Update\NASvc.exe 1 C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe 1 C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe 1 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe 1 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDSpybotLab.exe 1 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe 1 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe 2 C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe 1 C:\Program Files\Bonjour\mDNSResponder.exe 1 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 1 C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe 1 C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe 1 C:\Program Files\HP\HP Enabling Services\DiagsCap.exe 1 C:\Program Files\HP\HP Enabling Services\NetworkCap.exe 1 C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe 1 C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\HPNetworkCommunicatorCom.exe 1 C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe 1 C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe 1 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 1 C:\Program Files\Lenovo\LiveStorage\Server\LiveStorageServer.exe 1 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 1 C:\Program Files\Trend Micro\HouseCall\CleanerOne\CleanerOneChecker.exe 1 C:\Program Files\Trend Micro\HouseCall\housecall.bin 1 C:\Program Files\Trend Micro\HouseCall\HouseCallX_x64\HouseCallX.exe 1 C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64k1h2ywk1493x8\LenovoVantage\LenovoVantage.exe 1 C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2405.2.0_x648wekyb3d8bbwe\CalculatorApp.exe 1 C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2406.13.0_x648wekyb3d8bbwe\Microsoft.Media.Player.exe 1 C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86e1rzdqpraam7r\AcrobatNotificationClient.exe 1 C:\Users\Vincent\Downloads\HiJackThis(1).exe 1 C:\Windows\explorer.exe 1 C:\Windows\ImmersiveControlPanel\SystemSettings.exe 1 C:\Windows\jmesoft\Service.exe 1 C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe 1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 1 C:\Windows\System32\AggregatorHost.exe 1 C:\Windows\System32\ApplicationFrameHost.exe 1 C:\Windows\System32\backgroundTaskHost.exe 2 C:\Windows\System32\conhost.exe 2 C:\Windows\System32\csrss.exe 1 C:\Windows\System32\ctfmon.exe 2 C:\Windows\System32\dasHost.exe 1 C:\Windows\System32\DataExchangeHost.exe 1 C:\Windows\System32\dllhost.exe 1 C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe 1 C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\igfxCUIService.exe 1 C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\igfxEM.exe 1 C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\IntelCpHDCPSvc.exe 1 C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\IntelCpHeciSvc.exe 1 C:\Windows\System32\dwm.exe 2 C:\Windows\System32\fontdrvhost.exe 1 C:\Windows\System32\Locator.exe 1 C:\Windows\System32\lsass.exe 1 C:\Windows\System32\oobe\UserOOBEBroker.exe 6 C:\Windows\System32\RuntimeBroker.exe 1 C:\Windows\System32\SearchFilterHost.exe 1 C:\Windows\System32\SearchIndexer.exe 1 C:\Windows\System32\SearchProtocolHost.exe 1 C:\Windows\System32\SecurityHealthService.exe 1 C:\Windows\System32\SecurityHealthSystray.exe 1 C:\Windows\System32\services.exe 1 C:\Windows\System32\SgrmBroker.exe 1 C:\Windows\System32\sihost.exe 1 C:\Windows\System32\smartscreen.exe 1 C:\Windows\System32\smss.exe 1 C:\Windows\System32\spoolsv.exe 78 C:\Windows\System32\svchost.exe 3 C:\Windows\System32\taskhostw.exe 1 C:\Windows\System32\wbem\WmiApSrv.exe 2 C:\Windows\System32\wbem\WmiPrvSE.exe 1 C:\Windows\System32\wininit.exe 1 C:\Windows\System32\winlogon.exe 2 C:\Windows\System32\WUDFHost.exe 1 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe 1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe 1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe 1 C:\Windows\SysWOW64\UMonit64.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://lenovo17win10.msn.com/?pc=LCTE R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxyOverride] = *.local O1 - Hosts: is empty O4 - HKCU..\Run: [HP462F7F (HP ENVY Photo 6200 series) (Copy 3)] = C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe -deviceID "TH943CX0MY:NW" -scfn "HP462F7F (HP ENVY Photo 6200 series) (Copy 3)" -AutoStart 1 O4 - HKCU..\Run: [Registry Cleaner Scheduler] = C:\Program Files (x86)\CleanMyPC\Registry Cleaner\RCScheduler.exe /startup O4 - HKCU..\StartupApproved\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\95.0.2.0\GoogleDriveFS.exe --startup_mode (2021/10/13) O4 - HKCU..\StartupApproved\Run: [HP ENVY Photo 6200 (NET)] = C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\ScanToPCActivationApp.exe -deviceID "TH943CX0MY:NW" -scfn "HP ENVY Photo 6200 (NET)" -AutoStart 1 (2024/08/08) O4 - HKCU..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_F565DC96960A0AE63C6A99FD8327DF1A] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (2024/07/12) O4 - HKLM..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s O4 - HKLM..\StartupApproved\Run: [Seagate Scheduler2 Service] = C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe (2021/10/13) O4 - HKLM..\StartupApproved\Run32: [iolo AntiVirus®] = C:\Program Files (x86)\iolo\System Mechanic Professional 7\AntiVirus\ioloAV.exe (2024/08/07) O4 - HKLM..\StartupApproved\Run32: [iolo Personal Firewall®] = C:\Program Files (x86)\iolo\System Mechanic Professional 7\Personal Firewall\ioloFW.exe (2024/08/07) O4 - HKLM..\StartupApproved\Run32: [iolo Startup] = C:\Program Files (x86)\iolo\Common\Lib\iStartupStub.exe (2024/08/07) O4 - HKLM..\StartupApproved\Run32: [TeamsMachineUninstallerLocalAppData] = C:\Users\Vincent\AppData\Local\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (2023/01/10) O4 - HKU\S-1-5-18..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\95.0.0.0\GoogleDriveFS.exe --startup_mode (file missing) (User 'LocalSystem') O4 - HKU\S-1-5-19..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\95.0.0.0\GoogleDriveFS.exe --startup_mode (file missing) (User 'Local service') O4 - HKU\S-1-5-19..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Local service') O4 - HKU\S-1-5-20..\Run: [GoogleDriveFS] = C:\Program Files\Google\Drive File Stream\95.0.0.0\GoogleDriveFS.exe --startup_mode (file missing) (User 'Network service') O4 - HKU\S-1-5-20..\RunOnce: [WAB Migrate] = C:\Program Files\Windows Mail\wab.exe /Upgrade (User 'Network service') O8 - Context menu item: HKCU..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE (file missing) O8 - Context menu item: HKCU..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll (file missing) O10 - Broken Internet access because of LSP provider 'C:\WINDOWS\system32\iavlsp.dll' missing O10 - Unknown file in Winsock LSP: C:\Program Files (x86)\iolo\Common\Firewall\iFW_Xfilter.dll O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{146ac1b4-1392-442a-8e39-593484ef3598}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{392be37f-fc1d-49c9-82e0-a9a4407df5be}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{39D0E9C5-9234-4580-B76C-922CD05D60E3}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{49e567ba-c17b-4f6e-a38e-a696ebc913d5}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{5807d778-87da-4467-a078-813c2e703308}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{d21eff56-c4da-40e5-82c1-9805f58f1312}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O17 - HKLM\System\CCS\Services\Tcpip..{e24527d5-55b9-11e6-83cf-806e6f6e6963}: [NameServer] = 8.8.8.8 (Well-known DNS: Google) O18 - HKLM\Software\Classes\Protocols\Handler\wlpg: [CLSID] = {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20-32 - HKLM..\Winlogon\Notify\SDWinLogon: [DllName] = SDWinLogon.dll (file missing) O21 - HKLM..\ShellIconOverlayIdentifiers\ - C:\Program Files\Google\Drive File Stream\95.0.2.0\drivefsext.dll O21 - HKLM..\ShellIconOverlayIdentifiers\ - C:\Program Files\Google\Drive\googledrivesync64.dll O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe O22 - Task: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (Microsoft) (user missing) O22 - Task: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (Microsoft) (user missing) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{273390D0-D7A2-42BA-AB25-B5FA8CFCE63F} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask (no xml) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{35281FBF-BB08-4EC5-87D9-1B2F2047CAB7} - \Microsoft\Windows\UNP\RunCampaignManager (no xml) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{35281FBF-BB08-4EC5-87D9-1B2F2047CAB7} (no key) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{3E4F4080-D4F6-440E-80D1-D51DD87A9AFA} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance (no xml) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks{73306300-4418-4ABC-B81E-BF23631F1CBC} - \Lenovo\ImController\Lenovo iM Controller Monitor (no xml) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HP (empty) O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\BatteryGauge (empty) O22 - Task: (disabled) \Agent Activation Runtime\S-1-5-21-4275547559-1480287150-459759315-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe O22 - Task: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft) O22 - Task: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft) O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft) O22 - Task: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft) O22 - Task: (disabled) \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask - {D2CBF5F7-5702-440B-8D8F-8203034A6B82},$(Arg0) - (no file) O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft) O22 - Task: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft) O22 - Task: (disabled) \S-1-5-21-4275547559-1480287150-459759315-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe O22 - Task: (telemetry) \Lenovo\Vantage\Schedule\DailyTelemetryTransmission - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe DailyTelemetryTransmission O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (Microsoft) O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (Microsoft) O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\WINDOWS\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (Microsoft) O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft) O22 - Task: \GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6597.0{2B758D2B-AE9B-4592-8EA0-F37F5F816C79} - C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe --wake --system O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe /send O22 - Task: \Hewlett-Packard\HP Support Assistant\HPPrinterLowInk - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe /show O22 - Task: \Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 O22 - Task: \Hewlett-Packard\HP Support Assistant\WarrantyChecker_TH943CX0MY - C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /ForDevice:TH943CX0MY O22 - Task: \Lenovo\ImController\TimeBasedEvents\30382a15-e134-46b1-b603-2566416e4a76 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 30382a15-e134-46b1-b603-2566416e4a76 O22 - Task: \Lenovo\ImController\TimeBasedEvents\4e1a504f-394d-43a4-8be4-384b29f447bb - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger 4e1a504f-394d-43a4-8be4-384b29f447bb O22 - Task: \Lenovo\ImController\TimeBasedEvents\b579f2f3-d29f-4091-809d-d244d7054f5b - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger b579f2f3-d29f-4091-809d-d244d7054f5b O22 - Task: \Lenovo\ImController\TimeBasedEvents\b8abc89e-e2cc-4b2c-a15f-5a12a2304f48 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger b8abc89e-e2cc-4b2c-a15f-5a12a2304f48 O22 - Task: \Lenovo\ImController\TimeBasedEvents\f5399fd8-048e-4219-b8b7-7c8aada897f0 - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe /timebasedeventtrigger f5399fd8-048e-4219-b8b7-7c8aada897f0 O22 - Task: \Lenovo\Lenovo Service Bridge\S-1-5-21-4275547559-1480287150-459759315-1001 - C:\Users\Vincent\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (file missing) O22 - Task: \Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance - C:\WINDOWS\system32\sc.exe start LenovoVantageService O22 - Task: \Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe BatteryGaugeAddinDailyScheduleTask O22 - Task: \Lenovo\Vantage\Schedule\GenericMessagingAddin - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe GenericMessagingAddin O22 - Task: \Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe HeartbeatAddinDailyScheduleTask O22 - Task: \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe Lenovo.Vantage.SmartPerformance.MonthlyReport O22 - Task: \Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.SScan - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe Lenovo.Vantage.SmartPerformance.SScan O22 - Task: \Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe LenovoCompanionAppAddinDailyScheduleTask O22 - Task: \Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe LenovoSystemUpdateAddin_WeeklyTask O22 - Task: \Lenovo\Vantage\Schedule\NotificationCenter - C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe NotificationCenter (file missing) O22 - Task: \Lenovo\Vantage\Schedule\SmartLock.ExpireReminder - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe SmartLock.ExpireReminder O22 - Task: \Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe SmartPerformance.ExpireReminder O22 - Task: \Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\ScheduleEventAction.exe VantageCoreAddinWeekScheduleTask O22 - Task: \Lenovo\Vantage\StartupFixPlan - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\uninstall.exe /repair O22 - Task: \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task - {3519154C-227E-47F3-9CC9-12C3F05817F1} - (no file) O22 - Task: \Microsoft\Windows\AppListBackup\BackupNonMaintenance - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\WINDOWS\system32\AppListBackupLauncher.dll (Microsoft) O22 - Task: \Microsoft\Windows\AppxDeploymentClient\UCPD velocity - C:\WINDOWS\system32\UCPDMgr.exe (Microsoft) O22 - Task: \Microsoft\Windows\CloudRestore\Backup - {722D0F89-B69C-4700-AE8C-4A44350E4876},$(Arg0) - C:\WINDOWS\System32\CloudRestoreLauncher.dll (Microsoft) O22 - Task: \Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask - {82aa0895-198a-4c1b-b2d1-c16894218afb} - C:\WINDOWS\System32\unifiedconsent.dll (Microsoft) O22 - Task: \Microsoft\Windows\PI\SecureBootEncodeUEFI - C:\WINDOWS\system32\SecureBootEncodeUEFI.exe (Microsoft) O22 - Task: \Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache - {07369A67-07A6-4608-ABEA-379491CB7C46} - C:\Windows\System32\UpdatePolicy.dll (Microsoft) O22 - Task: \Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler - C:\Program Files\RUXIM\PLUGscheduler.exe (Microsoft) O22 - Task: \Mozilla\Firefox Background Update E7CF176E110C211B - C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate O22 - Task: \Mozilla\Firefox Background Update S-1-5-21-4275547559-1480287150-459759315-1001 E7CF176E110C211B - C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate O22 - Task: \Mozilla\Firefox Default Browser Agent E7CF176E110C211B - C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" O22 - Task: \Nero\Nero Info - C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe -shedul O22 - Task: \Safer-Networking\Spybot - Search and Destroy\Check for updates - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe /autoupdate /silent /autoclose /background O22 - Task: \Safer-Networking\Spybot - Search and Destroy\Refresh immunization - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe /immunize /silent /autoclose O22 - Task: \Safer-Networking\Spybot - Search and Destroy\Scan the system - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe /scan /cleanclose O22 - Task: \TVT\TVSUUpdateTask - C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (file missing) O22 - Task: \TVT\TVSUUpdateTask_UserLogOn - C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe PendingTask (file missing) O22 - Task: {8B42D592-0E21-4ABA-81A7-50F954680CEB} - C:\Windows\system32\pcalua.exe -a "C:\Users\Vincent\Downloads\Microsoft Office 2016 Pro_Visio_Project 16.0.4366.1000 x86.x64 RePack by KpoJIuK\AutorunHelper.exe" -d "C:\Users\Vincent\Downloads\Microsoft Office 2016 Pro_Visio_Project 16.0.4366.1000 x86.x64 RePack by KpoJIuK" O22 - Task: Ad-Aware Update (Weekly) - C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe update all silent repair (file missing) O22 - Task: Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O22 - Task: AMDAutoUpdate - C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe (file missing) O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe (file missing) O22 - Task: Intel PTT EK Recertification - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe O22 - Task: ioloSmartUpdater - C:\Program Files (x86)\System Mechanic\ioloSmartUpdater.exe -scheduler (file missing) O22 - Task: ioloToaster - C:\Program Files (x86)\System Mechanic\ioloToaster.exe (file missing) O22 - Task: OneDrive Reporting Task-S-1-5-21-4275547559-1480287150-459759315-1002 - C:\Users\Vincent\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (file missing) O22 - Task: OneDrive Standalone Update Task-S-1-5-21-4275547559-1480287150-459759315-1002 - C:\Users\Vincent\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (file missing) O22 - Task: Opera scheduled Autoupdate 1670555286 - C:\Users\Vincent\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (file missing) O22 - Task: UMonitor Task - C:\WINDOWS\SysWOW64\UMonit64.exe O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service R2: Apple Mobile Device Service - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service R2: Ashampoo LiveTuner Service - (WO_LiveService) - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\LiveTunerService.exe O23 - Service R2: ASUS Com Service - (asComSvc) - C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service R2: CA License Client - (CA_LIC_CLNT) - C:\Program Files (x86)\CA\SharedComponents\CA_LIC\lic98rmt.exe O23 - Service R2: Event Log Watch - (LogWatch) - C:\Program Files (x86)\CA\SharedComponents\CA_LIC\LogWatNT.exe O23 - Service R2: HP App Helper HSA Service - (HPAppHelperCap) - C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe O23 - Service R2: HP Diagnostics HSA Service - (HPDiagsCap) - C:\Program Files\HP\HP Enabling Services\DiagsCap.exe O23 - Service R2: HP Network HSA Service - (HPNetworkCap) - C:\Program Files\HP\HP Enabling Services\NetworkCap.exe O23 - Service R2: HP Print Scan Doctor Service - (HPPrintScanDoctorService) - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe O23 - Service R2: HP System Info HSA Service - (HPSysInfoCap) - C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\IntelCpHDCPSvc.exe O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\igfxCUIService.exe O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service R2: iolo DMV Service - (ioloDMV) - C:\Program Files (x86)\iolo\Common\Lib\ioloDMVSvc.exe O23 - Service R2: JME Keyboard Driver - (JME Keyboard) - C:\Windows\jmesoft\Service.exe O23 - Service R2: LenovoVantageService - C:\Program Files (x86)\Lenovo\VantageService\4.1.22.0\LenovoVantageService.exe O23 - Service R2: LiveStorageService - C:\Program Files\Lenovo\LiveStorage\Server\LiveStorageServer.exe O23 - Service R2: Nero Update - (NAUpdate) - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service R2: SAMSUNG Mobile Connectivity Service - (ss_conn_service) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe O23 - Service R2: SAMSUNG Mobile Connectivity Service V2 - (ss_conn_service2) - C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe O23 - Service R2: Seagate Scheduler2 Service - (SgtSch2Svc) - C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe O23 - Service R2: Spybot Security Center Integration Service - (SDWSCService) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service R2: Spybot-S&D 2 Scanner Service - (SDScannerService) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service R2: System Interface Foundation Service - (ImControllerService) - C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b1a3f27d79c02635\IntelCpHeciSvc.exe O23 - Service R3: Intel(R) Security Assist - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe O23 - Service S2: GoogleUpdater InternalService 128.0.6597.0 (GoogleUpdaterInternalService128.0.6597.0) - (GoogleUpdaterInternalService128.0.6597.0) - C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe --system --windows-service --service=update-internal O23 - Service S2: GoogleUpdater Service 128.0.6597.0 (GoogleUpdaterService128.0.6597.0) - (GoogleUpdaterService128.0.6597.0) - C:\Program Files (x86)\Google\GoogleUpdater\128.0.6597.0\updater.exe --system --windows-service --service=update O23 - Service S2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\WINDOWS\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe O23 - Service S2: Intel(R) Security Assist Helper - (isaHelperSvc) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe O23 - Service S2: Intel(R) TPM Provisioning Service - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\TPMProvisioningService.exe O23 - Service S2: Spybot-S&D 2 Updating Service - (SDUpdateService) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service S3: Defragmentation-Service - (DfSdkS) - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 8\DfsdkS64.exe O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\127.0.6533.100\elevation_service.exe O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe O23 - Service S3: Microsoft Defender Core Service - (MDCoreSvc) - C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service S3: System Update - (SUService) - (no file)

Debug information:

GUID: {137613C6-9AB4-4DF8-9EF1-11F5D96CE3B2} DISPLAY: 'MicrosoftMapsBingGeoStore' TYPE: DOWNLOAD STATE: SUSPENDED OWNER: NT AUTHORITY\NETWORK SERVICE PRIORITY: NORMAL FILES: 0 / 0 BYTES: 0 / 0 CREATION TIME: 8/10/2024 12:49:17 AM MODIFICATION TIME: 8/10/2024 12:49:17 AM COMPLETION TIME: UNKNOWN ACL FLAGS: NOTIFY INTERFACE: UNREGISTERED NOTIFICATION FLAGS: 3 RETRY DELAY: 600 NO PROGRESS TIMEOUT: 1209600 ERROR COUNT: 0 PROXY USAGE: PRECONFIG PROXY LIST: NULL PROXY BYPASS LIST: NULL DESCRIPTION: JOB FILES: NOTIFICATION COMMAND LINE: none owner MIC integrity level: SYSTEM owner elevated ? true This job is read-only to the current CMD window because the job's mandatory integrity level of SYSTEM is higher than the window's level of HIGH. Peercaching flags Enable download from peers :false Enable serving to peers :false

CUSTOM HEADERS: NULL

Listed 1 job(s).

-- End of file - Time spent: 22.9 sec. - 64192 bytes, CRC32: FFFFFFFF. Sign: ᜸䬚

Sandor-Helper commented 1 month ago

Hi, If you need our assistance:

Please, note that only members of VIRUSNET-Association are allowed to respond to PC cure topics. Ignore any recommendations given by other users, including PM !!!

Assistance is provided free of charge in our free time. If you found our help useful, you can thank us with any amount using this form or you can leave feedback in Guestbook.