View Single Post
  #16  
Old January 26th, 2022, 06:45 PM
Jintan's Avatar
Jintan Jintan is offline
Cyber Tech Help Moderator
 
Join Date: Dec 2004
Posts: 52,284
[*]Please open notepad (Start > All Programs > Accessories > Notepad)[*]Copy the entire contents of the code box below (Do not copy the word 'Code') to Notepad.[*]Save it to the Desktop, and name it: fixlist.txt


Code:
start:
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 19.7.0.632 - AVG Technologies)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-1674777451-104060087-3308858430-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [9250224 2021-11-19] (Lavasoft Software Canada Inc. -> Lavasoft)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {1EBD3074-9F59-4AA3-813B-EE9E525CB6F8} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe $(Arg0) (No File)
Task: {29619E57-65F3-47AC-91F4-28E2573EDEF9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {06C749F5-F390-47ED-A9F4-567A2D5A32D1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {412901A3-E641-4DFF-B845-96ACF8904E85} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {48BB0DD4-40EE-42F7-B60A-DDA9C3DA0260} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {54941C50-84C7-4AA2-B585-D55B0F299961} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxcon fig-B -> No File <==== ATTENTION
Task: {551DEED5-DE2E-43D4-BB83-45B3E365A17E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5CD193FA-43CC-42ED-A43C-55F52B7A8DE0} - \WPD\SqmUpload_S-1-5-21-1674777451-104060087-3308858430-1001 -> No File <==== ATTENTION
Task: {C25DD8C7-C3EE-4893-A58A-F7689535C990} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\Backgro undConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CEAD830B-B3DD-4611-B7A9-367DF41603EF} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {D09E295C-A59B-4D10-92AE-1F16F5F4B944} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {D1C4FF04-0B7C-4BC6-96E1-1F7ED96435A2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandco ntent -> No File <==== ATTENTION
Task: {DD2C952B-6BD3-43AA-B136-B5BC50724FC3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FE743BA9-6233-459D-A62F-BF3B67949D88} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Edge HomePage: Default -> hxxps://?
Edge StartupUrls: Default -> "hxxps://?"
FF NewTabOverride: Mozilla\Firefox\Profiles\c5z23n9s.default -> Disabled: avg@safeguard
CHR HomePage: Default -> hxxps://?
CHR StartupUrls: Default -> "hxxps://?"
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-11-16] (Bitdefender SRL -> Bitdefender)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc. -> McAfee, Inc.)
S3 mfeapfk; C:\WINDOWS\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc. -> McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc. -> McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [69352 2014-04-03] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc. -> McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc. -> McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc. -> McAfee, Inc.)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2020-09-24] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
2022-01-25 08:14 - 2021-11-16 12:28 - 000000000 ____D C:\Users\Jill\AppData\Roaming\Lavasoftf
2022-01-25 08:13 - 2021-11-16 12:28 - 000000000 ____D C:\Users\Jill\AppData\Local\Lavasoft
2022-01-25 08:13 - 2021-11-16 12:25 - 000000000 ____D C:\ProgramData\Lavasoft
finish:
[*]Running this on another computer may cause damage to the Operating System.[*]Now, please run FRST, and press theFix button, just once, and wait.[*]When done, the tool creates a report on the Desktop called: Fixlog.txt[/LIST]>> Please post the Fixlog.txt in your reply.
Reply With Quote