Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 
Greetings
Computer has been slow and a bit "iffy" for couple-three months. Sometimes new Firefox tabs rather slow coming up.
Thunderbird in particular opens then goes through a minute or more of "not responding."
Occasionally there's a hangup before typed letters appear onscreenn.
Getting worse: Music video playback on YouTube is sometimes messy-sounding; and as of tonight it speeds up and down. (Doesn't seem to change pitch.)
Also today got in a big mess trying to install an app to make typing sounds.
PER HERE:
https://forums.whatt...opic=132492&hl=
Addendum later same day: Open Office will open, slowly enough; but now i cannot type anything in it nor paste from the clipboard.
Was working earlier today.
Anyhow, looks like time for a checkup.
TIA
-------------------------------------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Ran by miekro s dallallio (administrator) on MARLOWE (Dell Inc. Inspiron 5579) (23-10-2024 22:04:18)
Running from C:\Users\miekro s dallallio\Downloads\FRST64.exe
Loaded Profiles: miekro s dallallio
Platform: Microsoft Windows 10 Home Version 22H2 19045.5011 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(C:\Program Files (x86)\IDriveWindows\IDriveE Service.exe ->) (Pro Softnet Corporation -> ) C:\Program Files (x86)\IDriveWindows\IDrivePlugin.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe ->) (Rivet Networks LLC) [File not signed] C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <8>
(explorer.exe ->) (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering, Ltd.) C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe
(explorer.exe ->) (Invention Pilot, Inc) [File not signed] C:\Program Files (x86)\Invention Pilot\Home Typist\HTypist.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <33>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe
(IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_tray.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(services.exe ->) (Dell Inc -> Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Focusrite Audio Engineering Ltd.) [File not signed] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(services.exe ->) (IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4de65d949492707a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_4de65d949492707a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_ece153ca769ec179\aesm_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel® Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ffd80069472091bc\RstMwService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Pro Softnet Corporation -> Pro Softnet Corporation) C:\Program Files (x86)\IDriveWindows\IDriveE Service.exe
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(services.exe ->) (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(services.exe ->) (Rivet Networks, LLC.) [File not signed] C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(services.exe ->) (Western Digital Technologies, Inc.) [File not signed] C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\miekro s dallallio\AppData\Local\Microsoft\OneDrive\24.186.0915.0004\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228776 2017-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489896 2017-06-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1189744 2017-06-27] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe [767552 2022-05-20] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering, Ltd.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2014-07-30] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9235336 2024-10-16] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [IDrive Background process] => C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe [81960 2024-07-19] (IDrive, Inc. -> Prosoftnet)
HKLM-x32\...\Run: [IDrive Tray] => C:\Program Files (x86)\IDriveWindows\id_tray.exe [2003496 2024-07-19] (IDrive, Inc. -> Prosoftnet)
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Run: [A2B5869FD8B8006EE9E82A907CC275E910961241._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8 [3865656 2024-10-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements 11 Organizer\CAHeadless\ElementsAutoAnalyzer.exe [840784 2012-09-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Run: [MicrosoftEdgeAutoLaunch_01611662136DC587A20B72E272DE64DC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3865656 2024-10-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Run: [Home Typist] => C:\Program Files (x86)\Invention Pilot\Home Typist\HTypist.exe [404992 2002-12-19] (Invention Pilot, Inc) [File not signed]
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\MountPoints2: {00d015e3-a79a-11ea-8a07-9c305bd3ae4a} - "E:\CDLaunchApp.exe"
HKLM\...\Windows x64\Print Processors\Canon G6000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDFJ.DLL [482816 2019-02-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MP490 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9Y.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon MX490 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCK.DLL [30208 2014-09-10] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MX490 series: C:\WINDOWS\system32\CNCALCK.DLL [303104 2014-09-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor G6000 series: C:\WINDOWS\system32\CNMLMFJ.DLL [1309696 2019-02-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP490 series: C:\WINDOWS\system32\CNMLM9Y.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MX490 series: C:\WINDOWS\system32\CNMLMCK.DLL [406528 2014-09-10] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MX490 series XPS: C:\WINDOWS\system32\CNMXLMCK.DLL [409088 2014-09-10] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2014-08-06] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\130.0.6723.59\Installer\chrmstp.exe [2024-10-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.61\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {91C2F9A7-518A-4912-AAA1-E1DF4E584057} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {1AC2274F-0D9F-423C-932E-88558188BD44} - System32\Tasks\AdobeAAMUpdater-1.0-MARLOWE-miekro s dallallio => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {C113D01A-0763-4481-8070-06F1226235EF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {DAF44296-95D3-4CFD-A8F3-41CB5740A91E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A17BCF39-3CEF-4930-A032-21BE470F69BB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {1B1DE82A-E3BD-4A90-9967-9740A74342A6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{A75189B4-F988-4493-8775-27CAF185379E} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {AD20C37C-4E3D-4DAF-97C7-E79221C4F83B} - System32\Tasks\IDriveServiceHealthCheck => C:\Program Files (x86)\IDriveWindows\id_healthcheck.exe [85544 2024-07-19] (IDrive, Inc. -> Prosoftnet)
Task: {E92F49CE-BD0D-4076-921C-999A1066CA40} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel® Corporation)
Task: {52520CB9-7C32-4496-9ABF-CDC65E0A3D9F} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\WINDOWS\system32\clipesu.exe [221680 2024-10-11] (Microsoft Windows -> Microsoft Corporation)
Task: {C516A58F-4BD5-4F2F-A93F-A95EC54D0263} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {092DA0EE-BE5B-42B2-90AC-7875BCD4CF22} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8EAC14E3-D47F-4109-B80D-2170E4B1C377} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AA84E4F1-9428-4CDB-8D44-99120A3BE444} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30D858CB-6E16-487B-B5C5-706D08E98207} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-10-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {35A6E671-62C2-47F7-830E-78F0CAA363EE} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [87040 2022-07-28] (DELL) [File not signed]
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{156de029-5fa1-4384-a05b-c3f8f39f0767}: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{156de029-5fa1-4384-a05b-c3f8f39f0767}: [DhcpDomain] home
Tcpip\..\Interfaces\{156de029-5fa1-4384-a05b-c3f8f39f0767}\46162727F6772697D253: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{156de029-5fa1-4384-a05b-c3f8f39f0767}\46162727F6772697D253: [DhcpDomain] home
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}: [DhcpDomain] home
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\46162727F6772697D25374: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\46162727F6772697D25374: [DhcpDomain] home
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\758696475672370234964797027457563747: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\758696475672370234964797027457563747: [DhcpDomain] Guest
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\E45445745414254373: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\E45445745414254373: [DhcpDomain] hsd1.nm.comcast.net.
Tcpip\..\Interfaces\{70e6058b-ebbf-43b9-9b1e-faaf0fdd7bbe}\F616B6160713: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7842eb40-396f-465d-bf77-cba426c0a7ce}: [DhcpNameServer] 192.168.172.1 64.22.32.8 192.168.172.1
Tcpip\..\Interfaces\{7b231694-e60b-4539-a941-8a82796218dc}: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{7b231694-e60b-4539-a941-8a82796218dc}: [DhcpDomain] home
Tcpip\..\Interfaces\{7b231694-e60b-4539-a941-8a82796218dc}\14554555D4E4F594E423: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{7b231694-e60b-4539-a941-8a82796218dc}\46162727F6772697D253: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{7b231694-e60b-4539-a941-8a82796218dc}\46162727F6772697D253: [DhcpDomain] home
Tcpip\..\Interfaces\{8aebe390-acab-444d-869d-6b76825314f6}: [DhcpNameServer] 192.168.172.1 64.22.32.8 192.168.172.1
Tcpip\..\Interfaces\{d735c648-edcc-40be-aa73-25851077760a}: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{d735c648-edcc-40be-aa73-25851077760a}: [DhcpDomain] home
Tcpip\..\Interfaces\{d735c648-edcc-40be-aa73-25851077760a}\46162727F6772697F523E243: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{d735c648-edcc-40be-aa73-25851077760a}\46162727F6772697F523E243: [DhcpDomain] home
Tcpip\..\Interfaces\{d735c648-edcc-40be-aa73-25851077760a}\E45445745414253393D25374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fc0d542f-e6ed-44f5-8305-ef16334d3aaf}: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{fc0d542f-e6ed-44f5-8305-ef16334d3aaf}: [DhcpDomain] home
Tcpip\..\Interfaces\{fc0d542f-e6ed-44f5-8305-ef16334d3aaf}\46162727F6772697F523E243: [DhcpNameServer] 192.168.172.1
Tcpip\..\Interfaces\{fc0d542f-e6ed-44f5-8305-ef16334d3aaf}\46162727F6772697F523E243: [DhcpDomain] home
Tcpip\..\Interfaces\{fc0d542f-e6ed-44f5-8305-ef16334d3aaf}\65D453237343939323D2537686A7: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fc0d542f-e6ed-44f5-8305-ef16334d3aaf}\96C64777962756C6563737: [DhcpNameServer] 192.168.177.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\miekro s dallallio\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-23]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Google Docs Offline) - C:\Users\miekro s dallallio\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-22]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\miekro s dallallio\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2024-10-23]
Edge Extension: (Edge relevant text changes) - C:\Users\miekro s dallallio\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-23]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: xy80m7xl.default
FF DefaultProfile: b1fl6hgv.default
FF ProfilePath: C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\xy80m7xl.default [2021-04-18]
FF ProfilePath: C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release [2024-10-23]
FF Homepage: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> hxxps://www.google.com/
FF Notifications: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> hxxps://www.space.com; hxxps://calendar.google.com; hxxps://www.duolingo.com; hxxps://fightingillini.com
FF NewTabOverride: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> Enabled: newtaboverride@agenedia.com
FF NewTabOverride: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> Enabled: bing@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\dhzs86vy.default-release -> Enabled: google@search.mozilla.org
FF Extension: (I don't care about cookies) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-12-06]
FF Extension: (New Tab Override) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\newtaboverride@agenedia.com.xpi [2024-06-20]
FF Extension: (Worldwide Radio) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\worldwide@radio.xpi [2022-01-13]
FF Extension: (Social Video Downloader) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\{00e68183-fc7d-4a91-b5cc-f7f8272386db}.xpi [2021-06-21]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-10-11]
FF Extension: (Capital One Shopping: Save Now) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\{aff8af88-06a9-4eee-b383-3af08c47b8c8}.xpi [2024-08-22]
FF Extension: (Video DownloadHelper) - C:\Users\miekro s dallallio\AppData\Roaming\Mozilla\Firefox\Profiles\dhzs86vy.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-09-10]
FF ProfilePath: C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default [2020-11-17]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-cs@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-de@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (English (US) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-en-US@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Español (España) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-es-ES@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Finnish Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-fi@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Français Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-fr@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Galego (España) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-gl@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-he@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-hu@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-it@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Japanese Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-ja@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Korean (KR) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-ko@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Nederlands (NL) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-nl@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Polski Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-pl@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Russian (RU) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-ru@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Slovenski jezik Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-sl@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (српски (sr) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-sr@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Svenska (SE) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-sv-SE@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-zh-CN@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\miekro s dallallio\AppData\Roaming\Disruptive Innovations SARL\BlueGriffon\Profiles\b1fl6hgv.default\Extensions\langpack-zh-TW@bluegriffon.org.xpi [2020-11-16] [Legacy] [not signed]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\miekro s dallallio\AppData\Local\Google\Chrome\User Data\Default [2023-10-16]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Google Docs Offline) - C:\Users\miekro s dallallio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-03]
CHR Extension: (Video Downloader PLUS) - C:\Users\miekro s dallallio\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgehaondchbmjmajphnhlojfnbfokng [2023-05-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\miekro s dallallio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-16]
CHR HKU\S-1-5-21-1725785269-512999547-2818236412-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-10-15] (Microsoft Windows -> )
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-10-16] (Dropbox, Inc -> Dropbox, Inc.)
S2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [47320 2022-11-18] (Dell Inc -> )
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\210.4.4854\DropboxElevationService.exe [1659280 2024-10-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1449472 2022-05-26] (Focusrite Audio Engineering Ltd.) [File not signed]
R2 IDriveE Service; C:\Program Files (x86)\IDriveWindows\IDriveE Service.exe [157336 2018-02-12] (Pro Softnet Corporation -> Pro Softnet Corporation)
R2 IDriveService; C:\Program Files (x86)\IDriveWindows\id_service.exe [428584 2024-07-19] (IDrive, Inc. -> Prosoftnet)
S3 Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [68096 2020-05-22] () [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9319296 2024-10-19] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-05-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [188728 2022-01-24] (Qualcomm Atheros, Inc. -> )
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [56832 2022-07-28] (Rivet Networks, LLC.) [File not signed]
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [56832 2022-07-28] (Rivet Networks, LLC.) [File not signed]
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1623552 2022-07-28] (Rivet Networks) [File not signed]
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2381824 2022-07-28] (Rivet Networks) [File not signed]
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [372736 2024-01-03] (Western Digital Technologies, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-16] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2017-12-14] (Techporch Incorporated -> Dell Computer Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FocusritePCIeSwRoot; C:\WINDOWS\System32\drivers\FocusritePCIeSwRoot.sys [105192 2022-05-20] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUsb; C:\WINDOWS\System32\drivers\FocusriteUsb.sys [197280 2022-05-20] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUsbAudio; C:\WINDOWS\System32\drivers\FocusriteUsbAudio.sys [97952 2022-05-20] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsbSwRoot; C:\WINDOWS\System32\drivers\FocusriteUsbSwRoot.sys [110864 2022-05-20] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2024-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-11-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [201280 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [80448 2024-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2024-10-23] (Malwarebytes Inc. -> Malwarebytes)
R3 MpKslf55686cb; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D5611F59-C4AE-49C6-BA95-71A4701E208E}\MpKslDrv.sys [267552 2024-10-23] (Microsoft Windows -> Microsoft Corporation)
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation -> Corel Corporation)
S3 ScrHIDDriver3; C:\WINDOWS\System32\drivers\ScrHIDDriver3.sys [63296 2021-10-01] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [167080 2022-07-28] (Intel Corporation -> Rivet Networks, LLC.)
R2 UI5IFS; C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 8\IFS64.sys [40520 2019-01-17] (Ashampoo GmbH & Co. KG -> )
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2021-03-18] (Microsoft Corporation) [File not signed]
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2021-03-18] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-16] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsled0032a8; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{84094374-4A03-489E-AD3A-AFF5A7008531}\MpKslDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-10-23 22:04 - 2024-10-23 22:08 - 000037012 _____ C:\Users\miekro s dallallio\Downloads\FRST.txt
2024-10-23 22:02 - 2024-10-23 22:07 - 000000000 ____D C:\FRST
2024-10-23 21:57 - 2024-10-23 22:02 - 002397696 _____ (Farbar) C:\Users\miekro s dallallio\Downloads\FRST64.exe
2024-10-23 10:38 - 2024-10-23 10:38 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-10-23 10:14 - 2024-10-23 10:14 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Typist
2024-10-23 10:14 - 2024-10-23 10:14 - 000000000 ____D C:\Program Files (x86)\Invention Pilot
2024-10-23 10:13 - 2024-10-23 10:14 - 000349635 _____ C:\Users\miekro s dallallio\Downloads\htypist.exe
2024-10-22 16:05 - 2024-10-23 14:25 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-10-17 23:18 - 2024-10-17 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-10-16 10:24 - 2024-10-22 21:28 - 000001766 _____ C:\Users\miekro s dallallio\Desktop\DAILY 5-YR-PLAN.txt
2024-10-16 06:56 - 2024-10-16 06:56 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2024-10-15 21:01 - 2024-10-15 21:01 - 000025147 _____ C:\Users\miekro s dallallio\AppData\Local\recently-used.xbel
2024-10-15 20:32 - 2024-10-15 20:32 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1725785269-512999547-2818236412-1001
2024-10-15 20:32 - 2024-10-15 20:32 - 000002418 _____ C:\Users\miekro s dallallio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-13 12:51 - 2024-10-22 21:28 - 000003436 _____ C:\Users\miekro s dallallio\Desktop\SUNDAY MONDAY PLAN.txt
2024-10-11 02:24 - 2024-10-11 02:24 - 000000000 ___HD C:\$WinREAgent
2024-10-09 22:17 - 2024-10-09 22:17 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2024-10-03 11:11 - 2024-10-03 11:16 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\ASTRONOMY
2024-10-03 01:13 - 2024-10-03 01:13 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Roaming\DesktopOK
2024-10-03 01:12 - 2024-10-03 01:12 - 000000000 ____D C:\Users\miekro s dallallio\Downloads\DesktopOK
2024-10-03 01:11 - 2024-10-03 01:11 - 000608382 _____ C:\Users\miekro s dallallio\Downloads\DesktopOK.zip
2024-10-02 01:32 - 2024-10-23 10:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-09-23 02:02 - 2024-10-13 22:25 - 000000000 ____D C:\Users\miekro s dallallio\Documents\e
2024-09-23 02:01 - 2024-09-23 02:01 - 000000000 ____D C:\Users\miekro s dallallio\Documents\xxxxxxxx
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-10-23 22:13 - 2020-08-26 08:28 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\CrashDumps
2024-10-23 22:11 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-23 22:08 - 2023-05-01 01:25 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\Malwarebytes
2024-10-23 20:53 - 2021-03-18 15:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-10-23 17:34 - 2022-02-10 21:53 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-10-23 16:53 - 2023-09-16 23:04 - 000004176 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1BC41CF1-F32B-4885-9134-E05204039E5D}
2024-10-23 15:18 - 2020-05-14 14:55 - 000000000 ____D C:\ProgramData\IDrive
2024-10-23 14:25 - 2021-07-09 16:46 - 000001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-10-23 14:25 - 2020-05-13 18:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-10-23 10:45 - 2021-03-18 16:15 - 000777862 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-23 10:45 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2024-10-23 10:39 - 2021-10-15 15:57 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Roaming\Dropbox
2024-10-23 10:39 - 2021-10-15 15:56 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\Dropbox
2024-10-23 10:38 - 2021-05-02 19:35 - 000000000 ____D C:\Users\miekro s dallallio\AppData\LocalLow\IGDump
2024-10-23 10:38 - 2020-05-13 17:38 - 000000000 __SHD C:\Users\miekro s dallallio\IntelGraphicsProfiles
2024-10-23 10:37 - 2022-07-20 09:36 - 000008192 ___SH C:\DumpStack.log.tmp
2024-10-23 10:37 - 2021-12-17 01:32 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-23 10:37 - 2021-03-18 16:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-23 10:37 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-10-23 10:37 - 2019-12-07 05:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2024-10-23 10:37 - 2018-02-17 02:56 - 000000000 ___HD C:\Intel
2024-10-23 10:36 - 2021-03-18 16:01 - 000000000 ____D C:\Users\miekro s dallallio
2024-10-23 10:11 - 2024-04-28 21:09 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Roaming\Mechvibes
2024-10-23 03:47 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-10-23 03:24 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-23 03:24 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-23 01:48 - 2020-05-13 18:04 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-10-22 16:45 - 2020-05-20 22:53 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-10-19 23:17 - 2022-11-01 13:48 - 000000000 _____ C:\Users\miekro s dallallio\Documents\X nuttin.txt
2024-10-19 06:13 - 2020-07-17 18:11 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-10-17 23:18 - 2021-10-15 15:56 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-10-15 21:23 - 2020-05-21 07:34 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\babl-0.1
2024-10-15 21:01 - 2020-05-21 07:40 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\gtk-2.0
2024-10-15 20:32 - 2021-12-11 11:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1725785269-512999547-2818236412-1001
2024-10-13 00:05 - 2022-02-17 19:07 - 000000000 ____D C:\Program Files\RUXIM
2024-10-11 23:28 - 2021-03-18 15:49 - 003390712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-10-11 23:27 - 2019-12-07 05:50 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-10-11 23:27 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-10-11 12:22 - 2020-05-23 03:20 - 000060478 _____ C:\Users\miekro s dallallio\Desktop\Phone Numbers.txt
2024-10-11 02:37 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-10-11 02:33 - 2021-03-18 15:55 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-10-11 02:18 - 2020-05-13 18:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-10-11 02:15 - 2020-05-13 18:05 - 201324920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-10-10 05:04 - 2020-05-23 03:26 - 000000000 ___RD C:\Users\miekro s dallallio\Desktop\things on hand to watch and read
2024-10-10 02:15 - 2020-05-13 17:38 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\Packages
2024-10-10 02:13 - 2024-06-15 10:45 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\WORK OUTA HERE
2024-10-08 14:12 - 2024-09-18 17:01 - 000000148 _____ C:\Users\miekro s dallallio\Desktop\MARTY-THON.txt
2024-10-08 14:06 - 2021-03-18 16:51 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-08 14:06 - 2021-03-18 16:51 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-04 13:14 - 2020-05-14 14:55 - 000000000 ____D C:\Program Files (x86)\IDriveWindows
2024-10-03 11:21 - 2022-01-02 22:39 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\HEALTH
2024-10-03 11:21 - 2021-07-24 13:26 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\TECH
2024-10-03 11:15 - 2020-06-01 10:48 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\STRAY PROGRAMS
2024-10-03 01:54 - 2022-11-07 21:58 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\STRAY FILES
2024-10-03 01:47 - 2024-03-11 14:48 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\EIRE
2024-10-03 01:46 - 2021-07-24 13:15 - 000000000 ____D C:\Users\miekro s dallallio\Desktop\POLITICS
2024-10-02 20:32 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-10-01 20:37 - 2020-05-22 19:54 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Roaming\FileZilla
2024-09-29 14:12 - 2020-10-06 12:23 - 000000000 _____ C:\Users\miekro s dallallio\Documents\nu.txt
2024-09-29 13:22 - 2023-10-17 15:29 - 000000000 _____ C:\Users\miekro s dallallio\Documents\nowt.txt
2024-09-26 13:14 - 2022-08-30 22:17 - 000000000 _____ C:\Users\miekro s dallallio\Documents\nope.txt
2024-09-23 21:53 - 2020-05-15 21:57 - 000000000 ____D C:\Users\miekro s dallallio\AppData\Local\PlaceholderTileLogoFolder
2024-09-23 21:53 - 2020-05-13 21:24 - 000000000 ____D C:\ProgramData\Packages
==================== Files in the root of some directories ========
2021-04-23 23:12 - 2021-04-23 23:12 - 000000000 _____ () C:\Users\miekro s dallallio\DISM.exe
2024-10-15 21:01 - 2024-10-15 21:01 - 000025147 _____ () C:\Users\miekro s dallallio\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by miekro s dallallio (23-10-2024 22:14:11)
Running from C:\Users\miekro s dallallio\Downloads
Microsoft Windows 10 Home Version 22H2 19045.5011 (X64) (2021-03-18 20:53:11)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1725785269-512999547-2818236412-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1725785269-512999547-2818236412-503 - Limited - Disabled)
Guest (S-1-5-21-1725785269-512999547-2818236412-501 - Limited - Disabled)
miekro s dallallio (S-1-5-21-1725785269-512999547-2818236412-1001 - Administrator - Enabled) => C:\Users\miekro s dallallio
WDAGUtilityAccount (S-1-5-21-1725785269-512999547-2818236412-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 24.003.20180 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (HKLM-x32\...\Adobe Photoshop Elements 11) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 11 (HKLM\...\{66CF1DF9-1715-4325-89BC-76B1CA2EE3BE}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Premiere Elements 11 (HKLM\...\PremElem110) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Amazon Kindle (HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Amazon Kindle) (Version: 1.28.0.57030 - Amazon)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo Burning Studio FREE (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.21.3 - Ashampoo GmbH & Co. KG)
Ashampoo Office FREE (HKLM-x32\...\{8EBB8452-274B-465D-8324-00B0832FBB02}) (Version: 12.0.2521 - ashampoo GmbH & Co. KG)
Ashampoo UnInstaller 8 (HKLM-x32\...\{4209F371-D192-F401-E058-BBF7CF126AEA}_is1) (Version: 8.00.12 - Ashampoo GmbH & Co. KG)
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
azzCardfile 4.1 (HKLM-x32\...\azzCardfile_is1) (Version: - Antanas Zdramys)
Bitberry File Opener (HKLM-x32\...\BitberryFileOpener_is1) (Version: 2023.2 - Bitberry Software)
BlueGriffon version 3.1 (HKLM\...\{A9015334-10BE-4D64-A776-203336EFE806}_is1) (Version: 3.1 - Disruptive Innovations SAS)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.3.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.6.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.15.23 - Canon Inc.)
Canon MP490 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP490_series) (Version: - Canon Inc.)
Canon MX490 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX490_series) (Version: 1.02 - Canon Inc.)
Canon MX490 series User Registration (HKLM-x32\...\Canon MX490 series User Registration) (Version: - Canon Inc.)
Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 7.39 - NCH Software)
Dell Digital Delivery (HKLM-x32\...\{1B706C33-57B3-411B-BB6E-C4A2CF38AF35}) (Version: 3.4.1002.0 - Dell Products, LP)
Dell Mobile Connect Driver (HKLM\...\{6F9CB82D-BC34-4FC1-B90D-AFFAC5C85E7B}) (Version: 4.1.7498 - Screenovate Technologies Ltd.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{5B678BC6-D551-458B-893D-B442B21ECD21}) (Version: 5.5.4.16189 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{dc44ee3f-d6c1-444d-a660-b0f1ac90b51d}) (Version: 5.5.4.16189 - Dell Inc.)
Dell Update for Windows Universal (HKLM\...\{E5C8AC27-6F8A-4D9C-A239-8673A6CA9570}) (Version: 4.7.1 - Dell Inc.)
Doxillion Document Converter (HKLM-x32\...\Doxillion) (Version: 6.10 - NCH Software)
DRmare Audio Capture 1.6.0.13 (HKLM-x32\...\DRmare Audio Capture_is1) (Version: - DRmare, Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 210.4.4854 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.911.1 - Dropbox, Inc.) Hidden
DSC/AA Factory Installer (HKLM\...\{F7A70D00-F283-45C8-B163-49EC365D7E27}) (Version: 2.0.6875.402 - PC-Doctor, Inc.) Hidden
Express Zip File Compression (HKLM-x32\...\ExpressZip) (Version: 10.09 - NCH Software)
FFmpeg (Windows) for Audacity version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
File Analyzer (HKLM-x32\...\FileAnalyzer_is1) (Version: 2021.3.19.0 - Bitberry Software)
FileZilla 3.66.1 (HKLM-x32\...\FileZilla Client) (Version: 3.66.1 - Tim Kosse)
Focusrite Audio Drivers 4.102.4.735 (HKLM\...\Focusrite Audio Drivers_is1) (Version: 4.102.4.735 - Focusrite Audio Engineering, Ltd.)
Focusrite Control 3.11.0.1983 (HKLM\...\Focusrite Control_is1) (Version: 3.11.0.1983 - Focusrite Audio Engineering Ltd.)
GIMP 2.10.38 (HKLM\...\GIMP-2_is1) (Version: 2.10.38 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 130.0.6723.59 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Home Typist (HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Home Typist) (Version: - )
IDrive version 6.7.4.60 (HKLM-x32\...\IDrive_is1) (Version: 6.7.4.60 - Pro Softnet Corp)
Intel® Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10209.6897 - Intel Corporation)
Intel® HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.377 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{12608A44-F264-42E2-B458-0F87E324057A}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2141.15.0.2511 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{97C59670-D20F-4FF0-AB3D-9F58938D45B9}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Driver (HKLM\...\{AE124AA8-923E-48AB-9D56-9D615A028B46}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel® Serial IO (HKLM\...\{75000D29-0D43-467B-84AC-12EB33DA1F14}) (Version: 30.100.1943.2 - Intel Corporation) Hidden
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1943.2 - Intel Corporation)
Intel® Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.63.1155.1 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.63.1155.1 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{1abcb68a-399f-47fe-aa39-6da46522db0b}) (Version: 1.63.1155.1 - Intel Corporation) Hidden
Intel® Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.1.22 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{98970ddc-844d-4ec3-b93e-52f5f693b305}) (Version: 3.10.100.3429 - Intel Corporation)
ISS_Drivers_x64 (HKLM\...\{9315B8DE-B183-4126-A69E-150B8ABF3690}) (Version: 3.10.100.3429 - Intel Corporation) Hidden
KeyBlaze Typing Tutor (HKLM-x32\...\KeyBlaze) (Version: 3.03 - NCH Software)
Macromedia Dreamweaver MX 2004 (HKLM-x32\...\{05BB2EC5-6BEF-4DDC-9E75-BEE7B161157A}) (Version: 7.0.1 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
Malwarebytes version 5.1.11.139 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.11.139 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9233.1 - Waves Audio Ltd.) Hidden
Messenger 83.5.128 (HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 83.5.128 - Facebook, Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 130.0.2849.46 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 129.0.2792.89 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\OneDriveSetup.exe) (Version: 24.186.0915.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{DCC23296-C2DB-43AA-9424-934649EF52F5}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{EBF615F0-0A5A-4F05-AFF0-5C96386BFF15}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30037 (HKLM-x32\...\{4b2f3795-f407-415e-88d5-8c8ab322909d}) (Version: 14.29.30037.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30037 (HKLM-x32\...\{dfea0fad-88b2-4a1f-8536-3f8f9391f4ef}) (Version: 14.29.30037.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30037 (HKLM\...\{529D20E8-132A-4F1A-A25F-9211B8C943AC}) (Version: 14.29.30037 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30037 (HKLM\...\{C874FB5A-1C85-460A-A4A9-CBCC3FAE7880}) (Version: 14.29.30037 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30037 (HKLM-x32\...\{01FAEC41-B3BC-44F4-B185-5E8475AEB855}) (Version: 14.29.30037 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30037 (HKLM-x32\...\{7D75664A-6C04-424C-82A1-EE88913E5F16}) (Version: 14.29.30037 - Microsoft Corporation) Hidden
Movavi Video Editor Plus 2021 (HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\Movavi Video Editor Plus 2021) (Version: 21.3.0 - Movavi)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 131.0.3 (x64 en-US)) (Version: 131.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.11.0 - Mozilla)
Mozilla Thunderbird (x64 en-US) (HKLM\...\Mozilla Thunderbird 128.3.3 (x64 en-US)) (Version: 128.3.3 - Mozilla)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenOffice 4.1.10 (HKLM-x32\...\{D909483F-780E-4232-9313-4C24A1B09BE8}) (Version: 4.110.9807 - Apache Software Foundation)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
PRE11 STI 64Installer (HKLM-x32\...\{B614E5FA-6DA4-45A1-845C-52F870240A89}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
PSE11 STI Installer (HKLM-x32\...\{98CE8819-87AA-4814-8167-ADDDD513485F}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Qualcomm 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{E7086B15-806E-4519-A876-DBA9FDDE9A13}) (Version: 11.0.0.10531 - Qualcomm)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.18362.31252 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8184 - Realtek Semiconductor Corp.)
Realtek PC Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.15063.11275 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
SanDisk Security (HKLM-x32\...\{bc908198-a6ae-490e-9025-b4d947c35564}) (Version: 1.0.0.32 - Western Digital Technologies, Inc.)
SanDisk Security (HKLM-x32\...\{D3EBAF67-C357-4146-AB6F-B2BE9A2DC56A}) (Version: 1.0.0.32 - Western Digital Technologies, Inc.) Hidden
SmartByte Drivers and Services (HKLM\...\{19A754FE-0343-4311-835F-33EAB7ADEA7B}) (Version: 3.1122.728.7 - Rivet Networks)
Typing Master 10 (HKLM-x32\...\{19B5F18A-1638-4037-AD44-CF7D0EEAB875}_is1) (Version: 10.00 - Typing Innovation Group Ltd)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WD Security (HKLM-x32\...\{25649429-63dd-467a-8a1d-307f55129fdf}) (Version: 2.1.2.167 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{7F35D417-3F46-4A90-BED3-D72C7695EF28}) (Version: 2.1.2.167 - Western Digital Technologies, Inc.) Hidden
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Video Editor 2020 (HKLM\...\{9CC29C6A-B5FE-497B-8F23-52A2557A92D9}}_is1) (Version: - VideoWin)
Wondershare Filmora X(Build 10.1.4.7) (HKLM\...\Wondershare Filmora X_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Zoom (HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\ZoomUMX) (Version: 5.16.2 (22807) - Zoom Video Communications, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC [2023-11-17] ()
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.2331.0_x64__8wekyb3d8bbwe [2024-09-13] (Microsoft Corporation)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Classic FreeCell -> C:\Program Files\WindowsApps\19789RossBor.ClassicFreeCell_5.0.8.0_x64__bckpywbq9b7yj [2023-02-17] (RossBor)
Copilot -> C:\Program Files\WindowsApps\Microsoft.Copilot_1.1.8.0_neutral__8wekyb3d8bbwe [2024-10-21] (Microsoft Corporation)
Cross Device Experience Host -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24092.24.0_x64__cw5n1h2txyewy [2024-10-23] (Microsoft Windows) [Startup Task]
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.5.5.0_x64__htrsf667h5kn2 [2024-05-18] (Dell Inc)
Dell Help & Support -> C:\Program Files\WindowsApps\DellInc.DellHelpSupport_3.2.1.0_x64__htrsf667h5kn2 [2020-05-13] (Dell Inc)
Dell Mobile Connect 3.3 -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnect_3.3.9809.0_x64__0vhbc3ng4wbp0 [2023-02-17] (Screenovate Technologies) [Startup Task]
Dell Product Registration -> C:\Program Files\WindowsApps\DellInc.DellProductRegistration_3.4.6.0_x64__htrsf667h5kn2 [2020-05-13] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.7.5.0_x86__htrsf667h5kn2 [2022-12-05] (Dell Inc)
Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2024-10-17] (Dropbox Inc.)
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5635.0_x64__8j3eq9eme6ctt [2024-09-16] (INTEL CORP) [Startup Task]
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1041.0_x64__8j3eq9eme6ctt [2024-03-09] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-18] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_54.20907.567.0_x64__8wekyb3d8bbwe [2024-09-10] (Microsoft Corporation)
Movie Maker - Video Editor -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_3.7.5.0_x64__bzg06mxvgh4fa [2024-06-09] (V3TApps)
Movie Maker - Video Editor PRO -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-PRO_3.7.10.0_x64__bzg06mxvgh4fa [2024-09-16] (V3TApps)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-26] (Microsoft Corporation)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-18] (Netflix, Inc.)
Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation)
Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.161.0_x64__pwbj9vvecjh7j [2024-10-05] (Amazon Development Centre (London) Ltd)
ProjectReunion.0.5 -> C:\Program Files\WindowsApps\Microsoft.ProjectReunion.0.5_0.52107.26000.0_x64__8wekyb3d8bbwe [2021-08-10] (Microsoft Corporation)
ProjectReunion.0.5 -> C:\Program Files\WindowsApps\Microsoft.ProjectReunion.0.5_0.52107.26000.0_x86__8wekyb3d8bbwe [2021-08-10] (Microsoft Corporation)
Sketchable -> C:\Program Files\WindowsApps\SiliconBendersLLC.Sketchable_5.6.2.0_x64__r2kxzpx527qgj [2023-02-17] (Silicon Benders LLC)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.1002.0_x64__rh07ty8m5nkag [2023-06-08] (Rivet Networks LLC)
Translator -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2023-02-17] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1725785269-512999547-2818236412-1001_Classes\CLSID\{0f9f6c4e-bbfa-4550-b15b-ad83841b1df5}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-1725785269-512999547-2818236412-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
CustomCLSID: HKU\S-1-5-21-1725785269-512999547-2818236412-1001_Classes\CLSID\{D6FC87DF-9651-41C2-B3A5-CA37DE4A3F3E}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-1725785269-512999547-2818236412-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\miekro s dallallio\Dropbox [2021-10-15 16:04]
ShellIconOverlayIdentifiers: [ 0001IDSIcon1] -> {0FA6DCC0-CF0B-427D-A8AF-97C466AB5769} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2024-06-10] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [ 0001IDSIcon2] -> {66357BBE-D2E5-453C-95FF-8102EB32419D} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2024-06-10] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [ 0001IDSIcon3] -> {904E6336-8B13-43FA-B4C3-5B62C1C91971} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2024-06-10] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [ 0001IDSIcon1] -> {0FA6DCC0-CF0B-427D-A8AF-97C466AB5769} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2024-06-10] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [ 0001IDSIcon2] -> {66357BBE-D2E5-453C-95FF-8102EB32419D} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2024-06-10] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [ 0001IDSIcon3] -> {904E6336-8B13-43FA-B4C3-5B62C1C91971} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2024-06-10] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b31ddd6f2a24807e\OptaneShellExt.dll [2021-02-09] (Intel® Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2023-06-15] () [File not signed]
ContextMenuHandlers1: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2024-05-02] () [File not signed]
ContextMenuHandlers2: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2024-05-02] () [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-02] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b31ddd6f2a24807e\OptaneShellExt.dll [2021-02-09] (Intel® Rapid Storage Technology -> )
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2024-05-02] () [File not signed]
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.76.0.dll [2024-07-23] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2023-06-15] () [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-02] (Malwarebytes Inc. -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-07-24 01:28 - 2024-05-02 17:11 - 005034496 _____ () [File not signed] C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll
2024-07-24 01:28 - 2024-05-02 17:11 - 000834048 _____ () [File not signed] C:\Program Files (x86)\IDriveWindows\sqlite3.dll
2023-06-15 22:02 - 2023-06-15 22:02 - 000105984 _____ () [File not signed] C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll
2021-09-17 23:52 - 2014-07-30 14:49 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ENU.DLL
2021-09-17 23:52 - 2014-07-30 14:47 - 000104960 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2021-09-17 23:51 - 2014-08-06 13:25 - 000375296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2002-12-19 12:13 - 2002-12-19 12:13 - 000004608 ____N (Invention Pilot, Inc) [File not signed] C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
2024-07-19 04:37 - 2024-06-10 11:56 - 003475456 _____ (Pro-Softnet Corporation, U.S.A) [File not signed] C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\Calendar.url:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\FACEBOOK.url:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\Getting Started.pdf:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\Images.url:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\NOAA.url:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\Phone Numbers.txt:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\POLITICS:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\STRAY FILES:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\STRAY PROGRAMS:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\TECH:com.dropbox.attrs [54]
AlternateDataStreams: C:\Users\miekro s dallallio\Desktop\WWW:com.dropbox.attrs [52]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\Apache_OpenOffice_4.1.14_Win_x86_install_en-US.exe:MBAM.Zone.Identifier [214]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\BitberryFileOpenerSetup.exe:MBAM.Zone.Identifier [141]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\FileAnalyzerSetup.exe:MBAM.Zone.Identifier [127]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\FRST64.exe:MBAM.Zone.Identifier [193]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\gimp-2.10.34-setup-2.exe:MBAM.Zone.Identifier [144]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\gimp-2.10.36-setup-1.exe:MBAM.Zone.Identifier [144]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\gimp-2.10.38-setup.exe:MBAM.Zone.Identifier [140]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\htypist.exe:MBAM.Zone.Identifier [273]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\Mechvibes.Setup.2.3.4.exe:MBAM.Zone.Identifier [168]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\monotype-corsiva.zip:MBAM.Zone.Identifier [211]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\SanDiskSecureAccessV3_win.exe:MBAM.Zone.Identifier [137]
AlternateDataStreams: C:\Users\miekro s dallallio\Downloads\winzip28-pp.exe:MBAM.Zone.Identifier [124]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17swin10.msn.com/?pc=DSJE
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17swin10.msn.com/?pc=DSJE
SearchScopes: HKU\S-1-5-21-1725785269-512999547-2818236412-1001 -> DefaultScope {74F41844-25BD-4A8D-8D76-12E0485A4E10} URL =
SearchScopes: HKU\S-1-5-21-1725785269-512999547-2818236412-1001 -> {74F41844-25BD-4A8D-8D76-12E0485A4E10} URL =
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2023-10-16 22:49 - 2023-10-16 22:49 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2021-06-23 21:41 - 2021-06-23 21:41 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.172.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Qualcomm QCA61x4A 802.11ac Wireless Adapter -> Qcamain10x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-1725785269-512999547-2818236412-1001\...\StartupApproved\Run: => "A2B5869FD8B8006EE9E82A907CC275E910961241._service_run"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C2DFCE91-CD03-44E3-9490-2A05DF047606}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F9251ACB-AB4E-4A0C-89BA-328C02909B8C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2F1D90BE-B6E7-49E6-982A-84FA39A454A0}] => (Allow) C:\Users\miekro s dallallio\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8754F902-EB46-4946-9441-DE7D3B39B749}] => (Allow) C:\Users\miekro s dallallio\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{DF50E0C2-1C17-41DE-BDB5-B2D54813C874}] => (Allow) C:\Users\miekro s dallallio\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{72D7686D-A673-48B4-97F2-A51A85ECA19C}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.89\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F2AC3AB-A4B8-48B6-91CB-3616A326A1FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.130.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DB0F6AD-3D97-4EBE-AC96-1C6E622C7C32}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.130.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4BAD7C6C-E77E-4407-8EEB-6FA2564E7FFC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.130.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7B96E6E0-D796-4F34-B26E-78CAF625211E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.130.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4CAF0B37-60E4-48C1-9FF7-430E91004121}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{E73B232F-B5F3-4A2C-8DBC-7475272586E4}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{FBA2D8B9-08DC-48A1-B5B2-BAB2F1195AC5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
19-10-2024 17:24:10 Scheduled Checkpoint
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/23/2024 10:20:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CNMNSST.exe, version: 1.5.3.235, time stamp: 0x53d886e4
Faulting module name: ClavHook.dll, version: 1.0.3.0, time stamp: 0x3e01f02e
Exception code: 0xc0000005
Fault offset: 0x00001044
Faulting process id: 0x3914
Faulting application start time: 0x01db2559440af5cf
Faulting application path: C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
Faulting module path: C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
Report Id: 45a8f7f0-ae68-49f9-b795-82f726961c7b
Faulting package full name:
Faulting package-relative application ID:
Error: (10/23/2024 10:20:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CNMNSST.exe, version: 1.5.3.235, time stamp: 0x53d886e4
Faulting module name: ClavHook.dll, version: 1.0.3.0, time stamp: 0x3e01f02e
Exception code: 0xc0000005
Fault offset: 0x00001044
Faulting process id: 0x3914
Faulting application start time: 0x01db2559440af5cf
Faulting application path: C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
Faulting module path: C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
Report Id: 55e169eb-af47-47bb-a30d-89f7698ba293
Faulting package full name:
Faulting package-relative application ID:
Error: (10/23/2024 10:20:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CNMNSST.exe, version: 1.5.3.235, time stamp: 0x53d886e4
Faulting module name: ClavHook.dll, version: 1.0.3.0, time stamp: 0x3e01f02e
Exception code: 0xc0000005
Fault offset: 0x00001044
Faulting process id: 0x3914
Faulting application start time: 0x01db2559440af5cf
Faulting application path: C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
Faulting module path: C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
Report Id: 6e0a7003-d5a3-477c-be86-43808a5dfefb
Faulting package full name:
Faulting package-relative application ID:
Error: (10/23/2024 10:20:00 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (5128,D,23) SRUJet: Database C:\WINDOWS\system32\SRU\SRUDB.dat: Index UserIdTimeStamp of table {973F5D5C-1D90-4944-BE8E-24B94231A174} is corrupted (0).
Error: (10/23/2024 10:20:00 PM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (5128,D,22) SRUJet: A request for a node on an empty page (Pgno: 9612, Flags: 0x1280a) has been made (error -351) for a B-Tree (ObjectId: 40, PgnoRoot: 239) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.
Error: (10/23/2024 10:19:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CNMNSST.exe, version: 1.5.3.235, time stamp: 0x53d886e4
Faulting module name: ClavHook.dll, version: 1.0.3.0, time stamp: 0x3e01f02e
Exception code: 0xc0000005
Fault offset: 0x00001044
Faulting process id: 0x3914
Faulting application start time: 0x01db2559440af5cf
Faulting application path: C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
Faulting module path: C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
Report Id: e5d2ea34-a8c9-4c2d-b59d-1f488c153ba2
Faulting package full name:
Faulting package-relative application ID:
Error: (10/23/2024 10:19:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CNMNSST.exe, version: 1.5.3.235, time stamp: 0x53d886e4
Faulting module name: ClavHook.dll, version: 1.0.3.0, time stamp: 0x3e01f02e
Exception code: 0xc0000005
Fault offset: 0x00001044
Faulting process id: 0x3914
Faulting application start time: 0x01db2559440af5cf
Faulting application path: C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
Faulting module path: C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
Report Id: c9f83524-7ac8-41c5-a8cd-79e9f6757160
Faulting package full name:
Faulting package-relative application ID:
Error: (10/23/2024 10:19:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CNMNSST.exe, version: 1.5.3.235, time stamp: 0x53d886e4
Faulting module name: ClavHook.dll, version: 1.0.3.0, time stamp: 0x3e01f02e
Exception code: 0xc0000005
Fault offset: 0x00001044
Faulting process id: 0x3914
Faulting application start time: 0x01db2559440af5cf
Faulting application path: C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
Faulting module path: C:\Program Files (x86)\Invention Pilot\Home Typist\ClavHook.dll
Report Id: 7c6dcac0-754d-4c9d-9f41-1c0747a8d29f
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (10/23/2024 06:00:01 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft...?linkid=2169931
Error: (10/23/2024 10:46:52 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft...?linkid=2169931
Error: (10/23/2024 10:40:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Dell Client Management Service service failed to start due to the following error:
The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.
Error: (10/23/2024 10:39:53 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft...?linkid=2169931
Error: (10/23/2024 10:37:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The LMS service failed to start due to the following error:
The system cannot find the file specified.
Error: (10/23/2024 06:00:00 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft...?linkid=2169931
Error: (10/23/2024 01:48:49 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Mozilla Maintenance Service service terminated with the following error:
Incorrect function.
Error: (10/22/2024 06:00:00 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft...?linkid=2169931
Windows Defender:
================
Date: 2024-10-22 23:32:44
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-10-21 22:46:22
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-10-20 23:17:53
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-10-18 21:57:11
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2024-10-17 22:52:45
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2023-12-09 01:35:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.403.143.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23110.2
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2023-11-23 13:15:42
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.401.937.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23100.2009
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.
Date: 2023-11-23 13:15:42
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.401.937.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23100.2009
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.
Date: 2023-11-23 13:15:42
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.401.937.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23100.2009
Error code: 0x80070020
Error description: The process cannot access the file because it is being used by another process.
CodeIntegrity:
===============
Date: 2024-10-23 10:40:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
Date: 2024-10-23 10:39:03
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\Dropbox.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\210.4.4854\vulkan-1.dll that did not meet the Microsoft signing level requirements.
Date: 2024-10-23 00:52:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.19.0 12/15/2021
Motherboard: Dell Inc. 0T9FN2
Processor: Intel® Core™ i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 84%
Total physical RAM: 8025.25 MB
Available physical RAM: 1237.43 MB
Total Virtual: 22873.25 MB
Available Virtual: 12500.24 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:929.93 GB) (Free:548.39 GB) (Model: ADATA SU740) NTFS
Drive d: () (Removable) (Total:119.05 GB) (Free:118.17 GB) exFAT
\\?\Volume{10e1dbc6-aa4b-4b39-a845-b3bd78b45006}\ (WINRETOOLS) (Fixed) (Total:0.97 GB) (Free:0.33 GB) NTFS
\\?\Volume{38e2abf7-ef9a-4e3a-8161-27caea9242f5}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.45 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 119.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Edited by denno, 24 October 2024 - 12:15 AM.
