How to use this fixlist Download as fixlist.txt (or copy and save manually as fixlist.txt - not fixlist.txt.txt)same folder as FRST.exe / FRST64.exeSave all open work and close all applications - FRST may close running programs and unsaved work will be lostFix Fixlog.txt back in the thread
Warning: Only run a fixlist prepared specifically for your system. Running someone else's fixlist will not work effectively even if you have similiar infection symptoms and may cause removal of legitimate entries or even system damage.
Copy to clipboard
Download as fixlist.txt
Start::
SystemRestore: On
CreateRestorePoint:
CloseProcesses:
(wscript.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe <2>
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {168BC1F2-6978-4FA8-B0BE-5B2B9EBE9793} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {619B7BB3-1765-4902-B1A7-B93CC1785502} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {DBA8C76E-DC9E-4E1D-AB44-9A310EB89033} - \Lenovo\ImController\TimeBasedEvents\020cb29f-9fba-4c51-9999-89153e44a434 -> No File <==== ATTENTION
Task: {88773976-998C-4006-B6C5-644567BE4E8A} - System32\Tasks\GameSettingsDLC => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [454656 2025-09-11] (Microsoft Windows -> Microsoft Corporation) -> -ExecutionPolicy Bypass -WindowStyle Hidden -File "%PROGRAMDATA%\UpdatesWin\updater.ps1"
Task: {64A98036-71A3-40FE-8C46-41A306CDDDE1} - System32\Tasks\GameUpdaterDLC => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [454656 2025-09-11] (Microsoft Windows -> Microsoft Corporation) -> -ExecutionPolicy Bypass -WindowStyle Hidden -File "%PROGRAMDATA%\UpdatesWin\update.ps1"
Task: {14B93323-14EE-4DDC-A988-F30FFA5D3DC3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem143.0.7482.0{A6E939C6-2A41-46C9-9A2D-C9724BA6C7BD} => "C:\Program Files (x86)\Google\GoogleUpdater\143.0.7482.0\updater.exe" --wake --system (No File)
Task: {90CB52E1-160C-4CD4-A511-61307DFC84EA} - System32\Tasks\IEPackages => C:\WINDOWS\system32\wscript.exe [200704 2025-12-10] (Microsoft Windows -> Microsoft Corporation) -> "%PROGRAMDATA%\WinPackages\update.vbs"
Task: {FF981074-45A1-40FA-84B3-F4B5FED217A4} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.2.24.0\\uninstall.exe /repair (No File)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {F3C735A5-0392-4276-9C79-25CE836CB122} - System32\Tasks\SystemCacheMaintenance => C:\WINDOWS\system32\wscript.exe [200704 2025-12-10] (Microsoft Windows -> Microsoft Corporation) -> "%PROGRAMDATA%\SdkWin\updater.vbs"
S4 GoogleUpdaterInternalService143.0.7482.0; "C:\Program Files (x86)\Google\GoogleUpdater\143.0.7482.0\updater.exe" --system --windows-service --service=update-internal [X]
S4 GoogleUpdaterService143.0.7482.0; "C:\Program Files (x86)\Google\GoogleUpdater\143.0.7482.0\updater.exe" --system --windows-service --service=update [X]
S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
S3 ace-game-0; \SystemRoot\System32\drivers\ace-game-0.sys [X]
C:\Users\muham\AppData\Local\cache.ps1
C:\ProgramData\UpdatesWin
C:\ProgramData\WinPackages
C:\ProgramData\SdkWin
C:\ProgramData\DiagnosticsNET
EmptyTemp:
End::