Hi,
Using an old Dell Latitude 6400.
Everything has slowed down including searching on the internet.
Thank you experts for your help in advance!!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-10-2022 02
Ran by Admin (administrator) on E6400 (Dell Inc. Latitude E6400) (03-11-2022 20:02:57)
Running from C:\Users\Admin\Downloads
Loaded Profiles: Admin
Platform: Microsoft Windows 10 Pro Version 21H1 19043.2130 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE ->) (Dell Inc.) [File not signed] C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(C:\Program Files\DellTPad\Apoint.exe ->) (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(C:\Program Files\DellTPad\Apoint.exe ->) (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(explorer.exe ->) (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(explorer.exe ->) (Dell Inc.) [File not signed] [File is in use] C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <11>
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <6>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Broadcom Corp -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(services.exe ->) (Broadcom Corp -> Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(services.exe ->) (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dell Inc.) [File not signed] C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_e085d3cd5b474ba6\AESTSr64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_e085d3cd5b474ba6\stacsv64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> dasHost.exe
Failed to access process -> dwm.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> GoogleCrashHandler.exe
Failed to access process -> GoogleCrashHandler64.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> WUDFHost.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5712896 2010-02-01] (Dell Inc.) [File not signed] [File is in use]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-03-09] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [592240 2011-01-04] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2015-01-29] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4517376 2014-11-11] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [File not signed]
HKU\S-1-5-21-2494090995-947898825-4045838511-1003\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891624 2022-10-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2494090995-947898825-4045838511-1003\...\Run: [GoogleChromeAutoLaunch_A5B343D047FD8BD2F268B0EA0F8DBD7C] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [3217176 2022-10-26] (Google LLC -> Google LLC)
HKLM\...\Windows x64\Print Processors\sdb2MPC: C:\Windows\System32\spool\prtprocs\x64\sdb2mpc.dll [37376 2012-10-31] (Windows ® Server 2003 DDK provider) [File not signed]
HKLM\...\Print\Monitors\CutePDF Writer Monitor: C:\WINDOWS\SYSTEM32\cpwmon64.dll [89008 2016-01-22] (Acro Software Inc. -> )
HKLM\...\Print\Monitors\sdb2M Langmon: C:\WINDOWS\SYSTEM32\sdb2mlm.dll [34304 2011-09-26] () [File not signed]
HKLM\...\Print\Monitors\sdb2x Langmon: C:\WINDOWS\SYSTEM32\sdb2xlm.dll [34304 2011-09-25] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.88\Installer\chrmstp.exe [2022-11-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{31F6EB2D-A04B-401A-BE3B-0604C2462BA2}] -> MSPACredentialProvider_7.00.33.202204221301.dll
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03E76D3E-AC1D-4455-8EE9-A0031323BE1C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {07FF35EA-5C86-4A7D-8B61-85537E968680} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {0F2B86FB-2155-4393-B8E2-88EF5027860E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {15D6CE39-B88A-426E-9531-E17D4F3096FC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {241DE746-00E5-48F9-9AF1-C988CE3C0D89} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {2495F688-B89B-438D-9465-24CEA2D862D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31ED96E7-12E9-4AA3-AE48-AC9C15FEE7AA} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {326FFD04-FDDC-4069-8526-37D28F51DE2C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-14] (Adobe Inc. -> Adobe)
Task: {3700C63B-5EB8-4B85-A280-FE8B7D257EC9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {3755493B-8642-4A68-AF9F-F787ACB752D5} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {3B78CDC3-2C96-46D7-837A-E9C96BC2D4CB} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-24] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {3C3FAC5A-E147-48C0-A2D0-335892C70796} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {45DC34F0-04C3-4B74-9CD4-5D0C4FC2B5A6} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A3DC197-C032-4B15-BE7B-B217DFD03F39} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-13] (Google LLC -> Google LLC)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {7571DF58-458F-4222-A0B1-CBE2C1C7A4B4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {79D63C81-35B2-46A3-9B77-6770925A1C7D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {7C424160-6374-4E80-99C3-3BE7FE39B8B8} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {7EEF9173-B582-404A-9CCA-CDC12EF0D38E} - System32\Tasks\{F3035542-602D-49CC-A2A4-4B482E74AC02} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\USWRQITL\DELL_TOUCHPAD----POINTING-ST_A11_R231736[1].exe
Task: {7FA12F49-DE8E-4489-8B11-DA99077410F3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MpCmdRun.exe [1567336 2022-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8046BC1F-E1F8-4A48-B9E7-41E45AA2D3AD} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {858A0D97-E482-465D-888D-B999EDC10D68} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (No File)
Task: {90A3DA29-6DCE-4AB1-BB6B-AA178F8A06DF} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {94190FDA-B410-4BCE-ACD0-8CB85A6E0F04} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (No File)
Task: {98C88774-C977-4AA0-A1BC-B8A5D201D64C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)
Task: {9DFB6922-93F2-4644-B773-F5655BB2A0F6} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {A060F7BD-C8B0-44CF-A9FC-395D00C727E2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {A21DA9C6-2ECC-4B36-8A71-60009A9632C5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {A38731AE-0347-4979-AE17-9530C898BE7D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {A880B82B-B0F8-4AB9-8E9D-72EF2B01BDA4} - System32\Tasks\{230103E3-047F-442D-AEE7-2F9D5B3DB970} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Admin\Downloads\IDT_92HDXXX-HD-AUDIO_A04_R302809.exe -d C:\Users\Admin\Downloads
Task: {ADC26AFE-2902-405D-8218-EDC48FC52295} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B4961E1B-F09D-47E4-9068-F94596A60F53} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {B957A03C-659E-405A-A771-48787F7135E9} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {BC44CE4E-8493-4630-9BC3-06BBA86B706F} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {C6DBF053-00DC-4791-9111-7666AF62D189} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {CB531407-13FF-442C-B5D6-EC8E8CB7DE1A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {D3C8E979-F63D-40DA-95DA-5892BBA1082D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-13] (Google LLC -> Google LLC)
Task: {D742D6BF-24AC-40CC-B792-BB9AC755EF65} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {DBDB8660-66C6-4FE7-8487-D30E132E3CB7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-14] (Adobe Inc. -> Adobe)
Task: {E054FEAA-99C0-4997-9BEB-58B2BD6D5D7E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (No File)
Task: {E332D4E4-D60E-4362-B31B-A17C38E77B27} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {F14EEEB6-F872-47F9-9717-F8D8C001C0E9} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{48f90ba7-95c3-4707-9746-91302525f96b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9992bc72-c55a-4958-a302-4abb522d67bc}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{f3b88faf-88a6-416c-a28f-fcd4d871a462}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-03]
Edge Notifications: Default -> hxxps://www.facebook.com
FireFox:
========
FF DefaultProfile: bjfvrvhs.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\309n7l2u.default-release [2022-11-03]
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\bjfvrvhs.default [2022-10-21]
FF Homepage: Mozilla\Firefox\Profiles\bjfvrvhs.default -> hxxps://www.ixquick.com/
FF Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\bjfvrvhs.default\Extensions\[email protected] [2022-10-10]
FF Extension: (Startpage.com — Private Search Engine) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\bjfvrvhs.default\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2020-09-22]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-14] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2022-11-03]
CHR Notifications: Default -> hxxps://aloha-news.net; hxxps://newssysstem.net
CHR DefaultSearchURL: Default -> hxxps://www.startpage.com/do/dsearch?query={searchTerms}&cat=web&pl=ext-chrome&language=english&extVersion=1.1.2
CHR DefaultSearchKeyword: Default -> startpage.com
CHR Extension: (TikTok™ for Desktop & Downloader) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdphkkecaejjijafinepmkefiegpkdjf [2022-10-31]
CHR Extension: (Resizing App) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpiobpcinjhhemgobhjghkakdabddmg [2021-02-15]
CHR Extension: (Startpage - English) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgmjlmbojbkmdpofahffgcpkhkngfpef [2021-06-03]
CHR Extension: (Google Docs Offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-02]
CHR Extension: (Desktopify) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlhjgcligpbnjphflfdbmabbmjidnmek [2021-02-28]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-07]
CHR Extension: (Invite post likers for Facebook™) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobofacgjpheigmglnjjlhfolhcamaia [2022-10-19]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-15]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-14] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_e085d3cd5b474ba6\AESTSr64.exe [89600 2009-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [289792 2014-10-23] (Brother Industries, Ltd.) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 STacSV; C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_e085d3cd5b474ba6\STacSV64.exe [244736 2010-03-09] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\NisSrv.exe [3191224 2022-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.4-0\MsMpEng.exe [133536 2022-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5088256 2010-02-01] (Dell Inc.) [File not signed]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 BCM43XX; C:\WINDOWS\System32\drivers\bcmwl63al.sys [5170176 2019-12-07] (Microsoft Windows -> Broadcom Corporation)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 fanio; C:\Windows\system32\drivers\fanio.sys [23552 2016-06-11] (NGO -> Christian Diefer)
R3 MpKsl601978c3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{975E11CB-EBA7-419D-A205-1B1D1C43A6A7}\MpKslDrv.sys [228632 2022-11-03] (Microsoft Windows -> Microsoft Corporation)
R2 rimmptsk; C:\WINDOWS\System32\drivers\rimmpx64.sys [67584 2009-06-25] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [505856 2010-03-09] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-21] (Paragon Software GmbH -> )
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-21] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-21] (Paragon Software GmbH -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469280 2022-11-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-02] (Microsoft Windows -> Microsoft Corporation)
S3 btwaudio; \SystemRoot\system32\drivers\btwaudio.sys [X]
S3 btwavdt; \SystemRoot\system32\drivers\btwavdt.sys [X]
S3 btwl2cap; \SystemRoot\system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; \SystemRoot\System32\drivers\btwrchid.sys [X]
U3 idsvc; no ImagePath
S3 TASCAM_US1200_USB; \SystemRoot\System32\Drivers\tus1200u.sys [X]
S3 TASCAM_US1200_WDM; \SystemRoot\system32\drivers\tus1200a.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-11-03 20:02 - 2022-11-03 20:15 - 000024664 _____ C:\Users\Admin\Downloads\FRST.txt
2022-11-03 20:02 - 2022-11-03 20:02 - 000000000 ____D C:\Users\Admin\Downloads\FRST-OlderVersion
2022-11-03 20:00 - 2022-11-03 20:02 - 002374144 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2022-10-31 18:51 - 2022-11-02 13:16 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-25 13:28 - 2022-10-25 13:28 - 000000744 _____ C:\Users\Admin\Documents\Desktop - Shortcut.lnk
2022-10-23 18:50 - 2022-10-23 18:50 - 000913167 _____ C:\Users\Admin\Downloads\Tiszai_Luca_Preverbal_2019_net.pdf
2022-10-23 12:14 - 2022-10-23 12:14 - 000848539 _____ C:\Users\Admin\Downloads\Tiszai_Luca_Community_2019_net.pdf
2022-10-23 12:14 - 2022-10-23 12:14 - 000000000 _____ C:\Users\Admin\Downloads\JuxHxgwn.htm
2022-10-23 11:39 - 2022-10-23 11:40 - 000895789 _____ C:\Users\Admin\Downloads\TiszaiConsonante.pdf
2022-10-21 20:48 - 2022-11-02 13:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-21 20:48 - 2022-11-01 11:01 - 000000969 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-21 20:48 - 2022-10-28 13:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-10-21 20:48 - 2022-10-21 20:48 - 000000957 _____ C:\Users\Public\Desktop\Firefox.lnk
2022-10-21 20:38 - 2022-10-21 20:38 - 000351488 _____ (Mozilla) C:\Users\Admin\Downloads\Firefox Installer.exe
2022-10-21 08:13 - 2022-10-27 11:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-10-12 11:36 - 2022-10-12 11:36 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-12 11:35 - 2022-10-12 11:35 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-12 11:35 - 2022-10-12 11:35 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-12 11:33 - 2022-10-12 11:33 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-12 11:33 - 2022-10-12 11:33 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-12 11:31 - 2022-10-12 11:31 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-12 11:30 - 2022-10-12 11:30 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-12 10:04 - 2022-10-12 10:04 - 000000000 ___HD C:\$WinREAgent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-11-03 20:20 - 2019-12-07 05:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-03 20:12 - 2018-08-09 13:24 - 000000000 ____D C:\FRST
2022-11-03 20:01 - 2016-06-10 18:06 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-03 19:54 - 2020-09-05 19:44 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-03 19:54 - 2020-09-05 19:44 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-11-03 19:29 - 2022-03-28 18:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-11-03 19:27 - 2017-01-07 14:40 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2022-11-03 19:10 - 2016-09-20 14:33 - 000000000 ___RD C:\Users\Admin\OneDrive
2022-11-03 19:04 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-11-03 18:53 - 2020-09-03 13:42 - 000000000 ____D C:\Users\Admin
2022-11-03 17:44 - 2020-07-13 18:47 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-03 17:44 - 2020-07-13 18:47 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-03 14:04 - 2020-09-03 13:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-11-02 19:49 - 2020-10-05 16:13 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-02 19:49 - 2020-09-03 14:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-11-02 13:44 - 2018-06-23 22:18 - 000008051 _____ C:\WINDOWS\BRRBCOM.INI
2022-11-02 13:27 - 2019-12-07 05:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-02 13:24 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-11-02 13:15 - 2019-12-07 05:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-11-02 09:22 - 2018-04-14 00:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-01 12:13 - 2022-02-26 13:09 - 000002383 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-01 12:13 - 2021-12-16 19:07 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2494090995-947898825-4045838511-1003
2022-11-01 12:13 - 2020-09-03 14:18 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2494090995-947898825-4045838511-1003
2022-10-30 10:19 - 2020-11-06 13:25 - 000000000 ____D C:\Users\Admin\Desktop\iNDEPRENUER
2022-10-27 18:50 - 2017-03-07 20:31 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2022-10-21 09:42 - 2022-08-02 10:29 - 000050176 ____H C:\Users\Admin\Documents\~WRL3770.tmp
2022-10-14 20:18 - 2020-09-05 19:42 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-14 20:18 - 2020-09-05 19:42 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-13 07:47 - 2019-12-07 05:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-13 07:43 - 2020-09-03 13:56 - 000840602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-12 21:59 - 2020-09-03 13:31 - 000310360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-12 21:51 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-12 21:51 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-12 21:50 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-12 21:50 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-12 21:50 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-12 21:50 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-12 21:50 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-12 21:49 - 2019-12-07 05:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-10-12 21:49 - 2019-12-07 05:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-12 21:49 - 2019-12-07 05:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-12 12:08 - 2019-12-07 05:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-12 12:02 - 2019-12-07 05:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-12 12:02 - 2019-12-07 05:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-12 11:34 - 2016-05-12 14:32 - 000415690 __RSH C:\bootmgr
2022-10-12 11:27 - 2020-09-03 13:38 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-12 09:46 - 2016-06-12 17:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-12 09:25 - 2016-06-12 17:22 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
testsigning: ==> 'testsigning' is set. Check for possible unsigned driver <==== ATTENTION
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2022 02
Ran by Admin (03-11-2022 20:24:53)
Running from C:\Users\Admin\Downloads
Microsoft Windows 10 Pro Version 21H1 19043.2130 (X64) (2020-09-03 18:21:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-2494090995-947898825-4045838511-1003 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-2494090995-947898825-4045838511-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2494090995-947898825-4045838511-503 - Limited - Disabled)
Guest (S-1-5-21-2494090995-947898825-4045838511-501 - Limited - Disabled)
jadeh (S-1-5-21-2494090995-947898825-4045838511-1002 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2494090995-947898825-4045838511-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
BrLauncher (HKLM-x32\...\{C661197A-6B93-4E37-9E3F-2A1DFCD64234}) (Version: 1.1.15.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother PCFax Driver (HKLM-x32\...\{56BA05BD-7A67-4EF8-85A7-8C6528AEE2AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{A17C3197-24C9-493B-BB9A-A73800A0B61A}) (Version: 1.6.0.1 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{AE0056FC-36C2-4C09-B9BB-9111617914EA}) (Version: 1.0.11.11 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{F8F9EB58-33BA-4FF8-80E7-66D87D2E0C3C}) (Version: 1.0.9.0 - Brother Industries Ltd.) Hidden
CDBurnerXP (64 bit) (HKLM\...\{7B8B3EDE-B54A-4DF5-A689-0042ED2661CC}) (Version: 4.5.6.6059 - Canneverbe Limited)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Common Desktop Agent (HKLM\...\{2DBE349F-FF05-42FE-81A9-2B3A0EC22BBE}) (Version: 1.62.0 - OEM) Hidden
ControlCenter4 (HKLM-x32\...\{9ADB625A-7F6D-4C48-9058-4767A55D5424}) (Version: 4.2.438.1 - Brother Insutries Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1BAE50D4-5F2A-4E34-BD81-B4555109F7C2}) (Version: 4.2.3.1 - Brother Insutries Ltd.) Hidden
CutePDF Writer 3.1 (HKLM\...\CutePDF Writer Installation) (Version: 3.1 - Acro Software Inc.)
Dell ControlVault Host Components Installer 64 bit (HKLM\...\{55E79447-F6B0-46CB-9F58-F82DAC9C2286}) (Version: 2.1.2.187 - Broadcom Corporation)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1207.101.108 - ALPS ELECTRIC CO., LTD.)
DeviceDetect (HKLM-x32\...\{FF45CD35-CEAA-4B57-81DA-8F215B9249CB}) (Version: 1.4.2.0 - Brother Industries Ltd.) Hidden
DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 5.60.48.35 - Dell Inc.)
Easy Photo Scan (HKLM-x32\...\{61D1B0E8-8651-4AF3-8E8F-3EA3C0C9E8F7}) (Version: 1.00.0003 - Seiko Epson Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.88 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
I8kfanGUI V3.1 (x64) (HKLM-x32\...\I8kfanGUI) (Version: 3.1 - Christian Diefer)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6227.0 - IDT)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2869 - Intel Corporation)
Intel® Network Connections Drivers (HKLM\...\PROSet) (Version: 14.5 - Intel)
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64) (HKLM\...\{25E80DAA-FD87-DCE5-202C-CC02F6673002}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.35 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.26 - Microsoft Corporation)
Microsoft Office XP Professional with FrontPage (HKLM-x32\...\{90280409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.01 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2494090995-947898825-4045838511-1003\...\OneDriveSetup.exe) (Version: 22.217.1016.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.27.29016 (HKLM\...\{F07B1E25-5670-4556-9C7F-5A1966C83269}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.27.29016 (HKLM\...\{E493B8F4-E300-43EC-95D0-BDF3711297EA}) (Version: 14.27.29016 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 106.0.3 (x64 en-US)) (Version: 106.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 106.0.1 - Mozilla)
NetworkRepairTool (HKLM-x32\...\{4694AD3E-D4A2-4D98-9848-662A0475E872}) (Version: 1.2.11.0 - Brother Insutries Ltd.) Hidden
OpenOffice 4.1.7 (HKLM-x32\...\{A09D951F-4BA3-4383-97B3-D1B91835E779}) (Version: 4.17.9800 - Apache Software Foundation)
Paragon Backup and Recovery™ 14 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PC-FAXReceive (HKLM-x32\...\{DD40894F-7575-4905-90AB-695FD827E358}) (Version: 1.4.24.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (HKLM-x32\...\{63530B2D-3A34-4D79-A52D-F3EB5D99A7C1}) (Version: 1.1.1.1 - Brother Industries Ltd.) Hidden
RemoteSetup (HKLM-x32\...\{BDD8C463-1183-4A91-9EC8-BF68E4ECA9B6}) (Version: 3.9.2.1 - Brother Industries Ltd.) Hidden
RICOH Media Driver ver.2.07.01.01 (HKLM-x32\...\{2B818257-E6C7-4841-8C29-C5C9A982BCE5}) (Version: 2.07.01.01 - RICOH)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
Shotcut (HKLM-x32\...\Shotcut) (Version: - )
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
StatusMonitor (HKLM-x32\...\{86D16055-3C14-44C6-BCD7-5514B83BAD34}) (Version: 1.12.4.0 - Brother Insutries Ltd.) Hidden
Telegram Desktop (HKU\S-1-5-21-2494090995-947898825-4045838511-1003\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.1 - Telegram FZ-LLC)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
US-1200 drivers (HKLM\...\USB_AUDIO_DEusb-audio.deTascamUS1200) (Version: - )
UsbRepairTool (HKLM-x32\...\{523276A4-5779-4105-9163-CA1CF94EC533}) (Version: 1.4.0.0 - Brother Insutries Ltd.) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
XMind 6 (v3.5.2) (HKLM-x32\...\XMind_is1) (Version: 3.5.2.201504270119 - XMind Ltd.)
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-11] (Microsoft Corporation)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-06-12] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.voxacm160] => C:\WINDOWS\SYSTEM32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\WINDOWS\SYSTEM32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\WINDOWS\SYSTEM32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\SYSTEM32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\WINDOWS\SYSTEM32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\WINDOWS\SYSTEM32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\WINDOWS\SYSTEM32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\WINDOWS\SYSTEM32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\WINDOWS\SYSTEM32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\WINDOWS\SYSTEM32\xvidvfw.dll [139264 2004-07-03] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\WINDOWS\SYSTEM32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SYSTEM32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SYSTEM32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\WINDOWS\SYSTEM32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.LAGS] => C:\WINDOWS\SYSTEM32\lagarith.dll [216064 2011-12-07] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2013-04-16] (Belarc, Inc. -> Belarc, Inc.)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 22:34 - 2018-09-25 20:01 - 000000842 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2494090995-947898825-4045838511-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Desktop\4Slow Motion.jpg
DNS Servers: 75.75.75.75 - 75.75.76.76
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{33692514-9F66-477D-B585-0B100C838916}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CE5BA17F-170C-4D81-BF86-081CB9604A0F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F7E174D5-0472-484B-8C6B-0C211E136CB3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{35C84583-330A-43AE-8C58-C2CB9EC910AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{51DDEE1E-22B2-4D85-8D06-48ED181D0720}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{B7FBF0DF-FA7E-4F78-AAA0-E1002B119398}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{8A46E546-8071-438B-ACB0-C3EA746974E9}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe => No File
FirewallRules: [{0C286CAD-1205-442D-B0BB-FFF717E716CF}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe => No File
FirewallRules: [{3BDC4358-789A-4D3D-8EE7-51636159FF50}] => (Allow) C:\Program Files\PreSonus\Studio One 3\Studio One.exe => No File
FirewallRules: [{0A8C659A-D2C7-498F-BE09-75C8AA1A8865}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{8DE3E9E8-DC49-4014-AF85-EFD14F28E6D1}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C4265F33-FC3D-4288-9D2F-D0CFA046C2D4}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\uninstall.exe => No File
FirewallRules: [{1647560B-AE52-4A98-B9B5-4099F72BF5A2}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\uninstall.exe => No File
FirewallRules: [{F291C2B2-3437-490D-BBFC-956C51E065D2}] => (Allow) C:\Program Files (x86)\Dell\Dell B1160w Mono Laser Printer\TORDER\uninstall.exe => No File
FirewallRules: [{5FC54622-E36B-4C3E-88ED-3855D9232B5A}] => (Allow) C:\Program Files (x86)\Dell\Dell B1160w Mono Laser Printer\TORDER\uninstall.exe => No File
FirewallRules: [{3AD2B4F6-8713-485C-90C9-9FCDE91A1EFA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{87C22761-FE5C-4347-ACFE-E2B71B09D3FA}] => (Allow) C:\Program Files\PreSonus\Studio One 3\Studio One.exe => No File
FirewallRules: [{4E0A4BC7-CFF1-48E4-8559-955CD478F34A}] => (Allow) LPort=54925
FirewallRules: [{4DF1B6A4-2305-407F-BA77-0B631F20D4BB}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{A006EDAC-06DF-4D88-88A1-E6F571D4ECA3}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{450D4299-B455-4B7F-924E-A738C871E9A4}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe => No File
FirewallRules: [{6A419DF9-5A6A-435F-BEF2-DE53CBA4B70F}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe => No File
FirewallRules: [{BBEB3DA7-CC67-41E6-99FF-4DD192D70F89}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [{0AAC38FC-9084-4CEF-87EF-38E70871593A}] => (Allow) C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvc.exe (N-ABLE TECHNOLOGIES LTD -> N-able Take Control)
FirewallRules: [{1B582306-1A03-4580-A736-979B40D46A80}] => (Allow) C:\Program Files (x86)\BeAnywhere Support Express\GetSupportService\BASupSrvc.exe (N-ABLE TECHNOLOGIES LTD -> N-able Take Control)
FirewallRules: [{039CB3D8-6302-4D9C-8F7B-40340CE29955}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B5CDD456-7239-4141-BB0C-A84D3677B259}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B9BC198F-1F5D-4220-A4F7-EEC3384CA341}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.26\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2A1850AA-F620-4ADB-A502-6F6849B33ECA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:76.86 GB) (Free:23.78 GB) (31%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (11/03/2022 07:14:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: avguix.exe, version: 1.226.3.17610, time stamp: 0x59f890a3
Faulting module name: libcef.dll, version: 3.2623.1401.0, time stamp: 0x576c32c7
Exception code: 0x80000003
Fault offset: 0x00a9ccd7
Faulting process id: 0x23bc
Faulting application start time: 0x01d8efd88d47906c
Faulting application path: C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
Faulting module path: C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
Report Id: 72fb7f6d-c91b-4e6f-b04f-a86af0f31027
Faulting package full name:
Faulting package-relative application ID:
Error: (11/03/2022 08:53:40 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.2130 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 1578
Start Time: 01d8ef2032b8b81a
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: d7fe1b4a-3124-43be-b2e6-c382c877a74a
Faulting package full name: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
Error: (11/02/2022 08:39:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.2130 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: a78
Start Time: 01d8ef19670f0d0a
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: c94d5538-43bf-4997-a7e8-3e290d4c3217
Faulting package full name: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
Error: (11/02/2022 08:08:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: avguix.exe, version: 1.226.3.17610, time stamp: 0x59f890a3
Faulting module name: libcef.dll, version: 3.2623.1401.0, time stamp: 0x576c32c7
Exception code: 0x80000003
Fault offset: 0x00a9ccd7
Faulting process id: 0x1d58
Faulting application start time: 0x01d8ef16a6317da3
Faulting application path: C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
Faulting module path: C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
Report Id: 127ccbad-306f-437d-8746-a462a610d62b
Faulting package full name:
Faulting package-relative application ID:
Error: (11/02/2022 06:48:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.2130 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 1650
Start Time: 01d8ef0d212501dd
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: 71ee3ac3-e2a1-4177-8965-b2f07fd739b9
Faulting package full name: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
Error: (11/02/2022 06:10:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.2130 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 17bc
Start Time: 01d8eee284da8c57
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: 7ad2fd4c-0d6c-490f-b347-100892297f54
Faulting package full name: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: ShellFeedsUI
Hang type: Quiesce
Error: (11/02/2022 06:06:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SearchApp.exe version 10.0.19041.2130 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 1138
Start Time: 01d8ef07070cc475
Termination Time: 4294967295
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Report Id: dbeccbc8-fa1b-4c56-b8e1-f9a4307173ec
Faulting package full name: Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
Faulting package-relative application ID: CortanaUI
Hang type: Quiesce
Error: (11/02/2022 01:32:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: avguix.exe, version: 1.226.3.17610, time stamp: 0x59f890a3
Faulting module name: libcef.dll, version: 3.2623.1401.0, time stamp: 0x576c32c7
Exception code: 0x80000003
Fault offset: 0x00a9ccd7
Faulting process id: 0x1e74
Faulting application start time: 0x01d8eedfce44a82e
Faulting application path: C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
Faulting module path: C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
Report Id: dd0ab241-1faa-4bb6-84ca-363e8d959dac
Faulting package full name:
Faulting package-relative application ID:
System errors:
=============
Error: (11/03/2022 07:07:00 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe!App.AppXsaksz8g893wmfxp53kxywv7nedj5wtfh.mca did not register with DCOM within the required timeout.
Error: (11/03/2022 06:52:05 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (11/03/2022 06:52:02 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (11/03/2022 06:51:58 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (11/03/2022 06:51:56 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (11/03/2022 06:51:55 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (11/03/2022 06:51:53 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (11/03/2022 06:51:50 PM) (Source: DCOM) (EventID: 10010) (User: E6400)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Windows Defender:
================
Date: 2022-11-03 12:19:29
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-11-03 09:43:40
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-11-02 21:02:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-11-02 20:30:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-11-02 19:31:42
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2022-11-01 18:19:14
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.377.1084.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19700.3
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.
Date: 2022-10-26 20:52:07
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.377.859.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19700.3
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-10-07 15:09:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.1690.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-10-03 18:27:34
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.1451.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-09-23 13:41:46
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.375.854.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19600.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
CodeIntegrity:
===============
Date: 2022-11-02 20:22:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume1\Program Files\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements.
Date: 2022-11-02 20:22:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume1\Program Files\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements.
Date: 2022-10-19 11:32:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files (x86)\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements.
Date: 2022-10-19 11:32:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files (x86)\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. A34 06/04/2013
Motherboard: Dell Inc. 0U692R
Processor: Intel® Core2 Duo CPU P8600 @ 2.40GHz
Percentage of memory in use: 82%
Total physical RAM: 4047.91 MB
Available physical RAM: 705.94 MB
Total Virtual: 8143.91 MB
Available Virtual: 4029.12 MB
==================== Drives ================================
Drive c: (APPS) (Fixed) (Total:76.86 GB) (Free:23.78 GB) (Model: ST9160310AS ATA Device) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:65.99 GB) (Free:44.63 GB) (Model: ST9160310AS ATA Device) NTFS
\\?\Volume{3cfa46bc-0000-0000-0000-103713000000}\ () (Fixed) (Total:0.83 GB) (Free:0.4 GB) NTFS
\\?\Volume{3cfa46bc-0000-0000-0000-206c13000000}\ () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 3CFA46BC)
Partition 1: (Active) - (Size=76.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=848 MB) - (Type=27)
Partition 3: (Not Active) - (Size=449 MB) - (Type=27)
Partition 4: (Not Active) - (Size=66 GB) - (Type=0F Extended)
==================== End of Addition.txt =======================
Edited by monkeyboyblues, 03 November 2022 - 06:36 PM.