Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer started running slow

Started by OCman , Jul 24 2023 09:08 PM

  • Please log in to reply

#1
OCman
Posted 24 July 2023 - 09:08 PM

OCman

    Member

  • Member
  • PipPipPip
  • 130 posts

especially on Youtube & Facebook. I deleted the cache in Google Chrome a couple of times and it didn't help.

 

This started about 5 or 6 days ago.

 

This is my first attempt at the problem.

 

Thanks!

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-07-2023
Ran by Jerry (administrator) on DESKTOP-N7SGSE8 (Dell Inc. XPS 8900) (24-07-2023 20:00:41)
Running from C:\Users\Jerry\Desktop\FRST64.exe
Loaded Profiles: Jerry
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ACD Systems International Inc. -> ACD Systems) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\acdIDInTouch2.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7>
(C:\Users\Jerry\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Jerry\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(cmd.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudPasswordsExtensionHelper.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (ACD Systems International Inc. -> ) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Jerry\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\LogiBolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe
(IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_tray.exe
(Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PaperPort\pptd40nt.exe
(Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PDFViewer\PdfPro7Hook.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Cisco WebEx LLC -> Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PaperPort\PDFProFiltSrvPP.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
 
==================== Registry (Whitelisted) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8852512 2016-09-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1471512 2016-09-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [724400 2016-07-24] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-04-24] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1690368 2022-07-22] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Kofax\PaperPort\IndexSearch.exe [26392 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Kofax\PaperPort\pptd40nt.exe [44624 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
HKLM-x32\...\Run: [PPort14reminder] => C:\Program Files (x86)\Kofax\PaperPort\Ereg\Ereg.exe [3495672 2019-03-26] (Kofax, Inc. -> Kofax, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Kofax\PDFViewer\pdfpro7hook.exe [658624 2019-09-09] (Kofax, Inc. -> Kofax Inc.)
HKLM-x32\...\Run: [ACSW21EN] => C:\Program Files (x86)\ACD Systems\ACDSee\21.0\acdIDInTouch2.exe [1854392 2017-12-21] (ACD Systems International Inc. -> ACD Systems)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\Jerry\AppData\Local\Microsoft\Teams\Update.exe [2587320 2023-05-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM-x32\...\Run: [IDrive Background process] => C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe [81920 2023-07-11] (IDrive, Inc. -> Prosoftnet)
HKLM-x32\...\Run: [IDrive Tray] => C:\Program Files (x86)\IDriveWindows\id_tray.exe [2001408 2023-07-11] (IDrive, Inc. -> Prosoftnet)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [ACDSeeCommanderStd20] => C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe [4816848 2018-03-02] (ACD Systems International Inc. -> )
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [ACDSeeCommander21] => C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe [4816848 2018-03-02] (ACD Systems International Inc. -> )
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Jerry\AppData\Local\WebEx\WebexHost.exe [8080480 2023-07-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.102\Installer\chrmstp.exe [2023-07-24] (Google LLC -> Google LLC)
 
==================== Scheduled Tasks (Whitelisted) =================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {24312A7F-18D3-411E-9730-453A98C6A3D1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {717A6812-A26F-4D06-8EDF-6F2D89E9D22A} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [738144 2023-04-07] (Dell Inc -> Dell Inc.)
Task: {8BCD865E-89FF-4FC7-ADDB-2C2198D05CDD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-19] (Google LLC -> Google LLC)
Task: {EB7BA6E8-B240-4496-B21B-782676E68A23} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-19] (Google LLC -> Google LLC)
Task: {28A3116F-1B7A-4CC5-9457-002C2913B8B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513320 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D8D8C01-DE68-4C8A-9969-9B5BA0595C49} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513320 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {77FB5DD7-61F1-468A-9DF6-3FBB71CBB71C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157664 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {04FF8F57-E88C-475B-A1B0-97DB8961EA2C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157664 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {935C5014-44B7-4247-A9A1-3D5E8975302A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [190816 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD982B86-198E-49B9-9220-5F58F294B004} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {58A806A1-4721-4C86-9828-FEDB10A490FC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1429643274-3220507178-1999652844-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ca396956-34cf-4c92-b987-77f1b428dfd9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d210ef7b-2c22-48b4-b932-845708b63f4c}: [DhcpNameServer] 192.168.1.1
 
Edge: 
=======
Edge Profile: C:\Users\Jerry\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-08]
 
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-07-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-10-31] (Microsoft Corporation -> Microsoft Corporation)
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default [2023-07-24]
CHR HomePage: Default -> about:blank
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (iCloud Bookmarks) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-11-26]
CHR Extension: (Google Docs Offline) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-19]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2021-11-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-19]
CHR Extension: (iCloud Passwords) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pejdijmoenmkgeppbflobdenhhabjlaj [2023-07-19]
CHR Profile: C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-13]
CHR Profile: C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-01]
 
==================== Services (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11749288 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2023-03-14] (Dell Inc -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2023-03-14] (Dell Inc -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2023-03-14] (Dell Inc -> Dell Technologies Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-01-19] (Dell Inc -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-12-09] (Dell Inc -> Dell)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2509944 2023-04-24] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3650416 2023-04-24] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3650416 2023-04-24] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncHelper.exe [3447712 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
R2 IDriveService; C:\Program Files (x86)\IDriveWindows\id_service.exe [421888 2023-07-11] (IDrive, Inc. -> Prosoftnet)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\OneDriveUpdaterService.exe [3783584 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Kofax\PaperPort\PDFProFiltSrvPP.exe [86632 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2023-04-07] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
 
===================== Drivers (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
R3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [46528 2023-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [198448 2023-04-24] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [244920 2023-04-24] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [123008 2023-04-24] (ESET, spol. s r.o. -> ESET)
R3 IntelReadyModeDriver; C:\Windows\System32\drivers\IntelReadyModeDriver.sys [34712 2016-11-25] (Intel Corporation -> Intel Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48520 2021-11-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [435424 2021-11-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-19] (Microsoft Windows -> Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) (Whitelisted) =========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2023-07-24 20:00 - 2023-07-24 20:01 - 000023894 _____ C:\Users\Jerry\Desktop\FRST.txt
2023-07-24 20:00 - 2023-07-24 20:00 - 000000000 ____D C:\Users\Jerry\Desktop\FRST-OlderVersion
2023-07-24 19:59 - 2023-07-24 20:00 - 000000000 ____D C:\FRST
2023-07-24 19:56 - 2023-07-24 20:00 - 002384384 _____ (Farbar) C:\Users\Jerry\Desktop\FRST64.exe
2023-07-12 07:35 - 2023-07-12 07:35 - 000000000 ___HD C:\$WinREAgent
2023-07-12 02:39 - 2023-07-12 02:39 - 000001133 _____ C:\Users\Public\Desktop\IDrive.lnk
2023-07-12 02:39 - 2023-07-12 02:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDrive
2023-07-11 14:29 - 2023-07-11 14:29 - 000617067 _____ C:\Users\Jerry\Downloads\WB Retainer_181-1-2570.pdf
2023-07-10 18:12 - 2023-07-10 18:12 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2023-07-06 13:32 - 2023-07-06 13:32 - 000030382 _____ C:\Users\Jerry\Desktop\arizona charlies.pdf
2023-07-03 17:11 - 2023-05-17 07:12 - 002172472 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 002172472 _____ C:\Windows\system32\vulkaninfo.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 001607776 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 001607776 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 001479216 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-07-03 17:11 - 2023-05-17 07:12 - 001479216 _____ C:\Windows\system32\vulkan-1.dll
2023-07-03 17:11 - 2023-05-17 07:12 - 001211448 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-07-03 17:11 - 2023-05-17 07:12 - 001211448 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-07-03 17:11 - 2023-05-17 07:10 - 001487872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-07-03 17:11 - 2023-05-17 07:10 - 001226736 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-07-03 17:11 - 2023-05-17 07:02 - 000851968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-07-03 17:11 - 2023-05-17 07:02 - 000671216 _____ C:\Windows\system32\nvofapi64.dll
2023-07-03 17:11 - 2023-05-17 07:02 - 000506352 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 002166256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 001620968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 001536512 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 001194480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 000979456 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 000758760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 000741360 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-07-03 17:11 - 2023-05-17 07:00 - 000457752 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-07-03 17:11 - 2023-05-17 06:59 - 013769216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 011650088 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 006083560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 005911016 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 003430400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-07-03 17:11 - 2023-05-17 06:58 - 005835288 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-07-03 17:11 - 2023-05-17 06:56 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-07-03 17:11 - 2023-05-17 06:47 - 006798784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-07-03 17:11 - 2023-05-17 06:12 - 000104369 _____ C:\Windows\system32\nvinfo.pb
2023-06-29 19:05 - 2023-06-29 19:05 - 000120703 _____ C:\Users\Jerry\Downloads\20230626-statements-3832-.pdf
2023-06-26 14:04 - 2023-06-26 14:03 - 000018754 _____ C:\Users\Jerry\Desktop\SFP.pdf
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2023-07-24 19:57 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\Documents\Outlook Files
2023-07-24 19:46 - 2019-12-07 02:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-24 19:09 - 2021-11-30 14:37 - 000004168 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{76C45BC1-8090-4524-B7AC-9FDC23482A7C}
2023-07-24 19:07 - 2021-12-14 16:29 - 000000000 ____D C:\Windows\SystemTemp
2023-07-24 19:07 - 2021-11-19 15:47 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-24 19:05 - 2021-11-19 15:07 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-24 17:54 - 2019-12-07 02:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-24 17:54 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-24 17:20 - 2021-11-19 15:14 - 000795738 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-24 17:20 - 2019-12-07 02:13 - 000000000 ____D C:\Windows\INF
2023-07-24 17:16 - 2022-08-06 06:03 - 000000000 ____D C:\ProgramData\NVIDIA
2023-07-24 17:16 - 2021-11-19 18:42 - 000000000 ____D C:\Users\Jerry\AppData\Local\LogiBolt
2023-07-24 17:16 - 2021-11-19 18:11 - 000000000 __SHD C:\Users\Jerry\IntelGraphicsProfiles
2023-07-24 17:16 - 2021-11-19 18:10 - 000000000 ____D C:\Intel
2023-07-24 17:16 - 2021-11-19 15:10 - 000000000 ____D C:\Users\Jerry
2023-07-24 17:16 - 2021-11-19 15:07 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-24 17:16 - 2021-11-19 15:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-24 17:15 - 2019-12-07 02:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-07-24 17:14 - 2021-11-19 15:49 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-07-24 17:14 - 2021-11-19 15:49 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-07-24 16:51 - 2021-12-08 18:58 - 000000000 ____D C:\Users\Jerry\AppData\Local\WebEx
2023-07-23 22:01 - 2021-11-20 16:53 - 000000000 ____D C:\ProgramData\IDrive
2023-07-23 19:33 - 2021-12-12 23:46 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-07-23 19:19 - 2021-11-20 20:30 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Microsoft\Word
2023-07-23 19:19 - 2021-11-19 15:45 - 000000000 ____D C:\Users\Jerry\Documents\JERRY
2023-07-23 18:04 - 2021-12-04 11:00 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Microsoft\Excel
2023-07-23 14:11 - 2021-12-12 23:46 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1429643274-3220507178-1999652844-1001
2023-07-23 14:11 - 2021-11-20 17:39 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-07-23 14:11 - 2021-11-20 17:39 - 000002092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-23 14:10 - 2021-11-19 15:10 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-23 14:10 - 2021-11-19 15:10 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-19 12:09 - 2021-11-19 15:15 - 000000000 ____D C:\ProgramData\Realtek
2023-07-18 11:07 - 2021-11-19 15:45 - 000000000 ____D C:\Users\Jerry\Documents\2007 Camry
2023-07-18 10:55 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\Documents\MEDICAL
2023-07-17 14:56 - 2022-05-31 14:33 - 000000000 ____D C:\Users\Jerry\Documents\RETIREMENT
2023-07-13 16:05 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\AppData\Local\D3DSCache
2023-07-12 08:05 - 2022-05-11 03:42 - 000305416 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-12 07:42 - 2019-12-07 02:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-12 07:39 - 2021-11-19 15:09 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-12 07:32 - 2021-11-19 15:15 - 000000000 ____D C:\Windows\system32\MRT
2023-07-12 07:30 - 2021-11-19 15:15 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-12 02:39 - 2021-11-20 16:53 - 000000000 ____D C:\Program Files (x86)\IDriveWindows
2023-07-12 01:53 - 2021-12-05 10:24 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-07-12 01:52 - 2022-10-13 17:02 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-07-12 01:52 - 2022-10-13 17:02 - 000002021 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-07-11 20:00 - 2021-11-19 15:09 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-11 20:00 - 2021-11-19 15:09 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-11 14:29 - 2021-12-18 09:35 - 000000000 ____D C:\Users\Jerry\Documents\HEDLAUND - lawsuit
2023-07-10 18:12 - 2022-05-05 15:06 - 000001931 _____ C:\Users\Jerry\Desktop\Zoom.lnk
2023-07-10 18:12 - 2021-12-14 10:48 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Zoom
2023-07-10 14:59 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\Documents\My PaperPort Documents
2023-07-10 14:54 - 2021-12-03 12:27 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\.oit
2023-07-10 14:54 - 2021-12-03 12:27 - 000000000 ____D C:\ProgramData\TEMP
2023-07-10 14:37 - 2021-11-20 21:04 - 000000000 ____D C:\Users\Jerry\AppData\Local\SquirrelTemp
2023-07-08 12:09 - 2021-11-19 15:10 - 000000000 ____D C:\Users\Jerry\AppData\Local\Packages
2023-07-08 09:10 - 2023-01-08 13:28 - 000000000 ____D C:\Users\Jerry\Documents\Quicken
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ========================
 
 
 
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-07-2023
Ran by Jerry (24-07-2023 20:01:30)
Running from C:\Users\Jerry\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) (2021-11-19 22:08:56)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
 
(If an entry is included in the fixlist, it will be removed.)
 
Administrator (S-1-5-21-1429643274-3220507178-1999652844-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1429643274-3220507178-1999652844-503 - Limited - Disabled)
Guest (S-1-5-21-1429643274-3220507178-1999652844-501 - Limited - Disabled)
Jerry (S-1-5-21-1429643274-3220507178-1999652844-1001 - Administrator - Enabled) => C:\Users\Jerry
WDAGUtilityAccount (S-1-5-21-1429643274-3220507178-1999652844-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
ACDSee Photo Studio Standard 2018 (HKLM\...\{A1E4FA4A-2B1F-453F-820D-3268632A8434}) (Version: 21.2.0.818 - ACD Systems International Inc.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 23.003.20244 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-8460N (HKLM-x32\...\{9211CCBB-BEFE-4A0C-9199-D7A535DBFE5F}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
Cisco Webex Meetings (HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\ActiveTouchMeetingClient) (Version: 41.12.4 - Cisco Webex LLC)
Dell SupportAssist (HKLM\...\{6D3561B7-19AA-438B-9C83-CD2CED199472}) (Version: 3.14.0.91 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{FFFED431-EF80-4C39-A66E-E11BC7413D33}) (Version: 5.5.5.16206 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{cff56899-3afb-4fe1-aeec-a0474836d1cd}) (Version: 5.5.5.16206 - Dell Inc.)
ESET Security (HKLM\...\{4DB10B50-978B-4DB0-8127-79F8D302AC5A}) (Version: 16.1.14.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.102 - Google LLC)
iCloud Outlook (HKLM\...\{F054257C-600A-4918-B730-F6829E491781}) (Version: 13.0.0.201 - Apple Inc.)
IDrive version 6.7.4.46 (HKLM-x32\...\IDrive_is1) (Version: 6.7.4.46 - Pro Softnet Corp)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2036.15.0.1835 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{485C0285-31CE-41A4-A763-6DEBCD77C2E6}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{FEAA68D6-DA1D-4440-91B6-43906444FA49}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Driver (HKLM\...\{F9790CBE-C3E6-4565-A1A2-17DD480ECF39}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{69bc85f1-55f9-44f2-b5df-3840fe07854c}) (Version: 1.61.251.0 - Intel Corporation) Hidden
iSEEK AnswerWorks English Runtime (HKLM-x32\...\{18A8E78B-9EF2-496E-B310-BCD8E4C1DAB3}) (Version: 010.000.0101 - Vantage Linguistics)
Kofax PaperPort 14 (HKLM-x32\...\{51769CA6-A998-4C49-AFCF-90C517E1B9D9}) (Version: 14.7.0000 - Kofax Inc.)
Kofax PDF Viewer Plus (HKLM-x32\...\{870C26E8-DEC9-4F61-96A8-2426F10A4040}) (Version: 7.21.3208 - Kofax Inc.)
Logi Bolt (HKLM\...\LogiBolt) (Version: 1.2.6024.0 - Logi)
Logitech Camera Settings (HKLM-x32\...\LogiUCDPP) (Version: 2.12.20.0 - Logitech Europe S.A.)
Logitech Options (HKLM\...\LogiOptions) (Version: 9.70.68 - Logitech)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.14 (x64) (HKLM\...\{40D4EC44-91F8-4EEE-869E-F4B3E90E6688}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.14 (x64) (HKLM\...\{D1726E78-81F3-40A2-A7AF-6286BAA49B1C}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM-x32\...\{a699b48e-5748-4980-ad92-0b61b1d9d718}) (Version: 5.0.17.31213 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM\...\{61202CF9-3B84-4E5A-91A1-2984FAE38259}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM-x32\...\{a75f0c38-355e-478f-b573-1dbc42915c5c}) (Version: 6.0.14.32123 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Office Home and Business 2021 - en-us (HKLM\...\HomeBusiness2021Retail - en-us) (Version: 16.0.16327.20214 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.137.0702.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{F0C8928A-BF8F-4AAF-B8BF-9CE865DBC711}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{847625FA-89A7-4EE0-8494-68A49BF977D6}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.24.28127 (HKLM\...\{8678BA04-D161-45BE-ACA4-CC5D13073F35}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.24.28127 (HKLM\...\{7DC387B8-E6A2-480C-8EF9-A6E51AE81C19}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
NVIDIA Graphics Driver 531.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.79 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16327.20200 - Microsoft Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{D158E731-114A-4F82-988C-67D43E5C3668}) (Version: 14.00.0003 - Kofax Inc.)
Personal Ancestral File 5 (HKLM-x32\...\{D94A8E22-DF2B-4107-9E51-608A60A7671D}) (Version:  - )
Quicken (HKLM-x32\...\{62D93E3E-2F8E-42BD-9343-896F4F0031D3}) (Version: 27.1.50.16 - Quicken)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7908 - Realtek Semiconductor Corp.)
Sidekick 98 (HKLM-x32\...\Sidekick 98) (Version:  - )
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\ZoomUMX) (Version: 5.14.11 (17466) - Zoom Video Communications, Inc.)
 
Packages:
=========
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.14.4.0_x64__htrsf667h5kn2 [2023-05-07] (Dell Inc)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.2.0_x64__6rarf9sa4v8jt [2023-07-20] (Disney)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-07-24] (Microsoft Corporation)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa [2023-06-08] (Apple Inc.) [Startup Task]
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-01] (INTEL CORP) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-09] (NVIDIA Corp.)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-12-26] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-19] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0 [2023-07-19] (Spotify AB) [Startup Task]
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\Jerry\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\Users\Jerry\AppData\Local\WebEx\WebEx64\Meetings\atucfobj.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{E93B1FD6-97E5-4538-8663-EC8C0103141B} -> [iCloud Photos] => C:\Users\Jerry\Pictures\iCloud Photos\Photos [2022-01-14 14:09]
ShellIconOverlayIdentifiers: [           OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [          0001IDSIcon1] -> {0FA6DCC0-CF0B-427D-A8AF-97C466AB5769} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2023-07-05] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [          0001IDSIcon2] -> {66357BBE-D2E5-453C-95FF-8102EB32419D} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2023-07-05] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [          0001IDSIcon3] -> {904E6336-8B13-43FA-B4C3-5B62C1C91971} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2023-07-05] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers-x32: [           OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-04-24] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2023-07-05] () [File not signed]
ContextMenuHandlers1: [PicaViewCtxMenuShlExt] -> {F3CBBA61-EE3F-4D6D-B1C6-B3474E579936} => C:\Program Files\Common Files\ACD Systems\PicaView\ACDSeePV.dll [2015-08-28] (ACD Systems International -> ACD Systems International Inc.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-04-24] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2023-07-05] () [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2023-07-05] () [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\nvshext.dll [2023-05-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-04-24] (ESET, spol. s r.o. -> ESET)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
==================== Loaded Modules (Whitelisted) =============
 
2021-11-20 21:01 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2021-11-20 16:53 - 2023-07-05 13:35 - 005034496 _____ () [File not signed] C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll
2021-11-22 15:13 - 2023-07-05 13:35 - 000834048 _____ () [File not signed] C:\Program Files (x86)\IDriveWindows\sqlite3.dll
2019-09-14 03:02 - 2019-09-14 03:02 - 004883456 ____R (BCGSoft Ltd) [File not signed] C:\Program Files (x86)\Kofax\PaperPort\BCGCBPRO1100u100.dll
2019-09-14 03:03 - 2019-09-14 03:03 - 000036864 ____R (Black Ice Software, Inc.) [File not signed] C:\Program Files (x86)\Kofax\PaperPort\blicectr.dll
2021-11-20 21:01 - 2009-03-06 13:51 - 000770048 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2021-11-20 21:01 - 2008-10-21 20:52 - 000151552 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcceng.dll
2021-11-20 21:01 - 2009-05-11 14:48 - 000372736 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2021-11-20 21:01 - 2008-07-22 22:24 - 005390336 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2021-11-20 21:01 - 2003-06-30 01:00 - 000259584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2021-11-20 21:01 - 2005-07-05 01:00 - 000131584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2021-11-20 21:01 - 2003-06-30 01:00 - 000406016 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2021-11-20 17:38 - 2021-11-20 17:38 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2021-11-20 17:38 - 2021-11-20 17:38 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2018-03-08 07:18 - 2018-03-08 07:18 - 000015360 _____ (NHibernate community) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Iesi.Collections.dll
2020-11-11 20:57 - 2020-11-11 20:57 - 000537088 _____ (NHibernate.info) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\FluentNHibernate.dll
2021-11-20 16:53 - 2023-07-05 13:35 - 000874496 _____ (Pro-Softnet Corporation, U.S.A) [File not signed] C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll
2022-02-28 16:42 - 2023-07-05 13:35 - 001663488 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\IDriveWindows\SQLite.Interop.dll
2018-02-06 17:25 - 2018-02-06 17:25 - 000176640 _____ (rubicon IT GmbH) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.dll
2018-03-23 12:10 - 2018-03-23 12:10 - 000028160 _____ (rubicon IT GmbH) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.EagerFetching.dll
2021-02-17 04:19 - 2021-02-17 04:19 - 000124928 _____ (Stateless Contributors) [File not signed] [File is in use] C:\Program Files\Dell\SupportAssistAgent\bin\stateless.dll
2021-12-17 05:45 - 2021-12-17 05:45 - 000258048 _____ (The Apache Software Foundation) [File not signed] [File is in use] C:\Program Files\Dell\SupportAssistAgent\bin\log4net.dll
2016-12-18 08:55 - 2016-12-18 08:55 - 000097280 _____ (Tunnel Vision Laboratories, LLC) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Antlr3.Runtime.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:FD9CE1F3 [722]
 
==================== Safe Mode (Whitelisted) ==================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer (Whitelisted) ==========
 
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
 
==================== Hosts content: =========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2019-12-07 02:14 - 2019-12-07 02:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{2096F013-5ABB-488F-8DFC-D81E6EB64223}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{84FE3C15-AF16-4036-9F8C-4DAEF9092A48}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{78AA48E2-8E13-4957-BAC3-1DC395FA16B1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{806FE95F-DFFC-4CBC-A5D1-D40E4CD80226}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP - Installer for ACDSee Commander Standard 2018] => (Allow) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe (ACD Systems International Inc. -> )
FirewallRules: [UDP - Installer for ACDSee Commander Standard 2018] => (Allow) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe (ACD Systems International Inc. -> )
FirewallRules: [{08D5B9A2-6CA6-48E5-B510-8FF6D001420D}] => (Allow) C:\Users\Jerry\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F33FFD5E-E0A4-476F-BB3A-AB285FE8AD0E}] => (Allow) C:\Users\Jerry\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B8ABE1E0-2059-4F96-8E92-3E8A7FDE2E9D}] => (Allow) C:\Users\Jerry\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{66D43A50-1E55-41BB-BA5F-E4F94539B518}C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe] => (Allow) C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe => No File
FirewallRules: [UDP Query User{E4D95C43-8680-4280-A802-7487ACE3D408}C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe] => (Allow) C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe => No File
FirewallRules: [{4C1C7725-2FAC-474F-8449-6169D1B48D3B}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{A3B6CA82-D2DE-4297-A143-2082FF5147BE}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{9666A3CD-DE59-4539-BDE1-4DE186C7CFA2}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{D3691AED-A266-4E07-B8ED-8D7EABD41B67}C:\program files (x86)\quicken\qwsubprocess.exe] => (Allow) C:\program files (x86)\quicken\qwsubprocess.exe (Quicken Inc. -> Quicken Inc.)
FirewallRules: [UDP Query User{C5AAF50A-0AF9-4940-BAA0-C9BB38D8656A}C:\program files (x86)\quicken\qwsubprocess.exe] => (Allow) C:\program files (x86)\quicken\qwsubprocess.exe (Quicken Inc. -> Quicken Inc.)
FirewallRules: [{D10C8B24-2331-4C30-BAB2-311737D3D346}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6D952D64-5BC1-4B45-B78F-5F7DB627ECA5}C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{69D0A283-E779-4463-B0B6-743BC7B76561}C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{20C21365-D3F4-4014-AB0E-DE24FF001270}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{282854DD-AA5D-4EBF-AA0E-D45A248157F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82A03B23-3B92-4245-AEB2-718B053D7EBA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B314A9CC-126D-4816-B0A7-0855B4A0C621}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4411BB03-D657-444A-BE29-2FE779DE6AFF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C5B95337-CC25-4675-A06E-4D8B2AFE2297}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E9B0472A-A9A5-46A5-9B18-0381E41CD560}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FEEE7434-2AAB-4596-BB10-00B4EB67FBC4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{882D35AA-820C-42A9-98B8-6632A152EF4D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CADFAFB1-E5B7-4063-B96E-90BC2C21A04B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D11B739A-0490-486A-B520-46F9357C0F58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7DE80C6A-A186-442C-8655-635538E927A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5307123A-313D-455A-8B2E-DB56C3BB81CA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3ED80D76-D693-4195-B343-9F43076590CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FBC98520-4FAF-4C74-9000-F86A58A7EABD}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.183\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D5BE039-3A22-4B1B-AA00-7D754CF82667}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 
==================== Restore Points =========================
 
24-07-2023 00:00:15 Windows Backup
 
==================== Faulty Device Manager Devices ============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 
 
 
==================== Event log errors: ========================
 
Application errors:
==================
Error: (07/23/2023 10:17:37 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on My Book (D:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)
 
Error: (07/23/2023 10:16:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: The storage optimizer couldn't complete retrim on My Passport (J:) because: The operation requested is not supported by the hardware backing the volume. (0x8900002A)
 
Error: (07/23/2023 07:32:29 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
 
Error: (07/23/2023 07:19:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-N7SGSE8.local already in use; will try DESKTOP-N7SGSE8-2.local instead
 
Error: (07/23/2023 07:19:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 DESKTOP-N7SGSE8.local. Addr 192.168.1.232
 
Error: (07/23/2023 07:19:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.232:5353   16 DESKTOP-N7SGSE8.local. AAAA 2603:8000:10F0:7280:A2CC:1483:3BB8:C2A0
 
Error: (07/23/2023 07:19:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Resetting to Probing:   16 DESKTOP-N7SGSE8.local. AAAA FE80:0000:0000:0000:9A2C:D15F:1087:1B56
 
Error: (07/23/2023 07:19:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.39:5353   16 DESKTOP-N7SGSE8.local. AAAA 2603:8000:10F0:7280:F10A:F3BD:276A:C5D5
 
 
System errors:
=============
Error: (07/24/2023 05:15:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-N7SGSE8)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.
 
Error: (07/23/2023 10:17:36 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
Error: (07/23/2023 10:17:34 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
Error: (07/23/2023 10:17:31 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
Error: (07/23/2023 10:17:28 PM) (Source: disk) (EventID: 154) (User: )
Description: The IO operation at logical block address 0x3c4a78b8 for Disk 2 (PDO name: \Device\00000040) failed due to a hardware error.
 
Error: (07/23/2023 10:17:25 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
Error: (07/23/2023 10:17:22 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
Error: (07/23/2023 10:17:20 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
 
Windows Defender:
================Event[0]:
 
Date: 2021-11-19 17:03:42
Description: 
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 
Previous security intelligence Version: 1.353.1286.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.18700.4
Error code: 0x80240438
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 
 
CodeIntegrity:
===============
Date: 2023-07-24 20:00:02
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
BIOS: Dell Inc. 2.9.1 12/22/2020
Motherboard: Dell Inc. 0XJ8C4
Processor: Intel® Core™ i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 12%
Total physical RAM: 63318.78 MB
Available physical RAM: 55232.47 MB
Total Virtual: 72534.78 MB
Available Virtual: 64706.8 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:232.28 GB) (Free:71.78 GB) (Model: WDC WDBNCE2500PNC) NTFS
Drive d: (My Book) (Fixed) (Total:930.86 GB) (Free:481.34 GB) (Model: WD My Book 1110 USB Device) NTFS
Drive j: (My Passport) (Fixed) (Total:2794.49 GB) (Free:1513.82 GB) (Model: WD My Passport 259B USB Device) NTFS
 
\\?\Volume{f4158377-44d0-4037-9c89-2ef6c54f0273}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{f7457341-43a8-42d0-aaf0-4cd48f58f2ff}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 179EAE4B)
 
Partition: GPT.
 
==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
 
Partition: GPT.
 
==========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 930.9 GB) (Disk ID: 0002AE3F)
Partition 1: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt =======================

 


  • 0

Advertisements

#2
RKinner
Posted 25 July 2023 - 06:31 AM

RKinner

    Malware Expert

  • Expert
  • 24,731 posts
  • MVP
Error: (07/23/2023 10:17:31 PM) (Source: disk) (EventID: 7) (User: )
Description: The device, \Device\Harddisk2\DR2, has a bad block.
 
Error: (07/23/2023 10:17:28 PM) (Source: disk) (EventID: 154) (User: )
Description: The IO operation at logical block address 0x3c4a78b8 for Disk 2 (PDO name: \Device\00000040) failed due to a hardware error.
 

 

 

Looks like one of your hard drives is acting up.  There is also a Device Driver problem which might be the cause of the problem as I assume your D and J drives are USB connected:

 

Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 

 

 

 
 
 

 

I'd start by trying to fix the driver.  Search for Device Manager and hit Enter.  Click on View, Show Hidden Devices.  Usually there will be a yellow or red flag next to a defective device.  Sometimes it is enough to just right click on the device and Uninstall.  (Do not let it remove files if it asks)  Then Reboot.  Windows will reinstall the device which sometimes fixes the problem.  If not then Right click on one and select properties then click on the Details tab.  

Change Property to Hardware IDs.  Click on the top one then right click and copy.  Paste that into a reply.  Repeat for all yellow flagged devices and any devices under Unknown Devices.  I will try and find you a better driver for the device.
 
You can also have the system check the hard drives for errors.  Sometimes it will find the bad spots on the drive and lock them out so that they can't cause problems.  Search for CMD which should find Command Prompt.  Right click on Command Prompt and Run as Admin.  Then type:
 
chkdsk  /r  d:

hit Enter.  Since it's not the C: drive it shouldn't need to reboot.  Once it finishes repeat for

chkdsk  /r  j:

Since the bad spot is not on the c: drive it shouldn't have any effect on your Windows files but it wouldn't hurt to check them.

 

Download the attached fixlist.txt to the same location as FRST
 
Attached File  fixlist.txt   414bytes   108 downloads
 
Run FRST and press Fix  The checks usually take about 25 minutes on a reasonably fast system but if the system is really slow will time out in an hour.  Be patient.
A fix log will be generated please post that 
 
Reboot if the fix doesn't reboot it for you
 
Run FRST again but make sure Addition.txt is checked and hit Scan.  Post both logs.
 
Finally let's check the health of your drives to see if they are failing.
 
 
Get the free version of Speccy:
 
 
(Look in the upper right for the Download Free Version
 button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.  (If it installs CCleaner you can uninstall it later)    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), 
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.
 
First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.
 
 
 
 

 


  • 0

#3
OCman
Posted 25 July 2023 - 12:43 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts
USB\VID_04F9&PID_01A5&REV_0100&MI_02
USBSTOR\OtherWD______SES_Device______1015
USBSTOR\OtherWD______SES_Device______1032
USB\DEVICE_DESCRIPTOR_FAILURE
 
Will post FRST & fixlist.txt logs shortly, also running CHKDSK now, hopefully it won't reboot in the middle of CHKDSK

  • 0

#4
RKinner
Posted 25 July 2023 - 02:52 PM

RKinner

    Malware Expert

  • Expert
  • 24,731 posts
  • MVP

The top device is just a fax driver for your Brother printer and isn't important.

 

The other two are for your My Passport drives.  The Windows catalog has a problem with the file.  It offers it and then says there is a problem with the website when you try to download it.  That may be why Windows Update doesn't get a good copy.

 

I found another source but it's an msi file so a bit more trouble to work with but let's try.

 

Download the attached file:

 

Attached File  WD_SES_Driver_Setup_x64.zip   369.68KB   250 downloads

 

Go to the download folder and right click on the file and Extract All.  Save the extracted file somewhere you can find it again.

Rightclick on WD SES Driver Setup (x64).msi file and rename it to setup.msi  (You may not be able to see the msi part of the file name.)

 

Search for 

CMD and when it finds Command Prompt, right click and Run as Admin.

 

Then type:

 

msiexec  /i  “path\setup.msi“

 

 

where path is the full path to the setup.msi file.  ( if you put setup.msi on your desktop then the full command would be

msiexec  /i  “C:\Users\Jerry\Desktop\setup.msi“

.)

 

 

 

 

 


  • 0

#5
OCman
Posted 25 July 2023 - 06:01 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts
Did you want the fixlog.txt file too?
 
 
 
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-07-2023 01
Ran by Jerry (administrator) on DESKTOP-N7SGSE8 (Dell Inc. XPS 8900) (25-07-2023 16:56:01)
Running from C:\Users\Jerry\Desktop\FRST64.exe
Loaded Profiles: Jerry
Platform: Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(ACD Systems International Inc. -> ACD Systems) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\acdIDInTouch2.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7>
(C:\Users\Jerry\AppData\Local\WebEx\WebexHost.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Jerry\AppData\Local\WebEx\WebEx64\Meetings\atmgr.exe
(cmd.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudPasswordsExtensionHelper.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (ACD Systems International Inc. -> ) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe
(explorer.exe ->) (Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Jerry\AppData\Local\WebEx\WebexHost.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\LogiBolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe
(IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_tray.exe
(Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PaperPort\pptd40nt.exe
(Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PDFViewer\PdfPro7Hook.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Cisco WebEx LLC -> Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe
(services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (IDrive, Inc. -> Prosoftnet) C:\Program Files (x86)\IDriveWindows\id_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PaperPort\PDFProFiltSrvPP.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
 
==================== Registry (Whitelisted) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8852512 2016-09-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1471512 2016-09-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [724400 2016-07-24] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-04-24] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1690368 2022-07-22] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Kofax\PaperPort\IndexSearch.exe [26392 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Kofax\PaperPort\pptd40nt.exe [44624 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
HKLM-x32\...\Run: [PPort14reminder] => C:\Program Files (x86)\Kofax\PaperPort\Ereg\Ereg.exe [3495672 2019-03-26] (Kofax, Inc. -> Kofax, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Kofax\PDFViewer\pdfpro7hook.exe [658624 2019-09-09] (Kofax, Inc. -> Kofax Inc.)
HKLM-x32\...\Run: [ACSW21EN] => C:\Program Files (x86)\ACD Systems\ACDSee\21.0\acdIDInTouch2.exe [1854392 2017-12-21] (ACD Systems International Inc. -> ACD Systems)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\Jerry\AppData\Local\Microsoft\Teams\Update.exe [2587320 2023-05-08] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM-x32\...\Run: [IDrive Background process] => C:\Program Files (x86)\IDriveWindows\id_bglaunch.exe [81920 2023-07-11] (IDrive, Inc. -> Prosoftnet)
HKLM-x32\...\Run: [IDrive Tray] => C:\Program Files (x86)\IDriveWindows\id_tray.exe [2001408 2023-07-11] (IDrive, Inc. -> Prosoftnet)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [ACDSeeCommanderStd20] => C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe [4816848 2018-03-02] (ACD Systems International Inc. -> )
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [ACDSeeCommander21] => C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe [4816848 2018-03-02] (ACD Systems International Inc. -> )
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\Jerry\AppData\Local\WebEx\WebexHost.exe [8080480 2023-07-12] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.102\Installer\chrmstp.exe [2023-07-24] (Google LLC -> Google LLC)
 
==================== Scheduled Tasks (Whitelisted) =================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {24312A7F-18D3-411E-9730-453A98C6A3D1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {717A6812-A26F-4D06-8EDF-6F2D89E9D22A} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [738144 2023-04-07] (Dell Inc -> Dell Inc.)
Task: {8BCD865E-89FF-4FC7-ADDB-2C2198D05CDD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-19] (Google LLC -> Google LLC)
Task: {EB7BA6E8-B240-4496-B21B-782676E68A23} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-19] (Google LLC -> Google LLC)
Task: {28A3116F-1B7A-4CC5-9457-002C2913B8B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513320 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D8D8C01-DE68-4C8A-9969-9B5BA0595C49} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513320 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {77FB5DD7-61F1-468A-9DF6-3FBB71CBB71C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157664 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {04FF8F57-E88C-475B-A1B0-97DB8961EA2C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157664 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {935C5014-44B7-4247-A9A1-3D5E8975302A} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [190816 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD982B86-198E-49B9-9220-5F58F294B004} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {58A806A1-4721-4C86-9828-FEDB10A490FC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1429643274-3220507178-1999652844-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ca396956-34cf-4c92-b987-77f1b428dfd9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d210ef7b-2c22-48b4-b932-845708b63f4c}: [DhcpNameServer] 192.168.1.1
 
Edge: 
=======
Edge Profile: C:\Users\Jerry\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-08]
 
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-07-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-10-31] (Microsoft Corporation -> Microsoft Corporation)
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default [2023-07-25]
CHR HomePage: Default -> about:blank
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (iCloud Bookmarks) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2022-11-26]
CHR Extension: (Google Docs Offline) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-19]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2021-11-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-19]
CHR Extension: (iCloud Passwords) - C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pejdijmoenmkgeppbflobdenhhabjlaj [2023-07-19]
CHR Profile: C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-13]
CHR Profile: C:\Users\Jerry\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-01]
 
==================== Services (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11749288 2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2023-03-14] (Dell Inc -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2023-03-14] (Dell Inc -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2023-03-14] (Dell Inc -> Dell Technologies Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-01-19] (Dell Inc -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-12-09] (Dell Inc -> Dell)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2509944 2023-04-24] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3650416 2023-04-24] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3650416 2023-04-24] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncHelper.exe [3447712 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
R2 IDriveService; C:\Program Files (x86)\IDriveWindows\id_service.exe [421888 2023-07-11] (IDrive, Inc. -> Prosoftnet)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\OneDriveUpdaterService.exe [3783584 2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Kofax\PaperPort\PDFProFiltSrvPP.exe [86632 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2023-04-07] (Dell Inc -> Dell Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
 
===================== Drivers (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
R3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [46528 2023-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [198448 2023-04-24] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [244920 2023-04-24] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [123008 2023-04-24] (ESET, spol. s r.o. -> ESET)
R3 IntelReadyModeDriver; C:\Windows\System32\drivers\IntelReadyModeDriver.sys [34712 2016-11-25] (Intel Corporation -> Intel Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48520 2021-11-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [435424 2021-11-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-19] (Microsoft Windows -> Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) (Whitelisted) =========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2023-07-25 11:38 - 2023-07-25 11:44 - 000153980 _____ C:\Users\Jerry\Desktop\Fixlog.txt
2023-07-25 11:35 - 2023-07-25 11:35 - 000000414 _____ C:\Users\Jerry\Downloads\fixlist.txt
2023-07-25 11:35 - 2023-07-25 11:35 - 000000414 _____ C:\Users\Jerry\Downloads\fixlist (1).txt
2023-07-24 20:01 - 2023-07-24 20:02 - 000041491 _____ C:\Users\Jerry\Desktop\Addition.txt
2023-07-24 20:00 - 2023-07-25 16:56 - 000023530 _____ C:\Users\Jerry\Desktop\FRST.txt
2023-07-24 20:00 - 2023-07-25 11:38 - 000000000 ____D C:\Users\Jerry\Desktop\FRST-OlderVersion
2023-07-24 19:59 - 2023-07-25 16:56 - 000000000 ____D C:\FRST
2023-07-24 19:56 - 2023-07-25 11:38 - 002383872 _____ (Farbar) C:\Users\Jerry\Desktop\FRST64.exe
2023-07-12 07:35 - 2023-07-12 07:35 - 000000000 ___HD C:\$WinREAgent
2023-07-12 02:39 - 2023-07-12 02:39 - 000001133 _____ C:\Users\Public\Desktop\IDrive.lnk
2023-07-12 02:39 - 2023-07-12 02:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDrive
2023-07-11 14:29 - 2023-07-11 14:29 - 000617067 _____ C:\Users\Jerry\Downloads\WB Retainer_181-1-2570.pdf
2023-07-10 18:12 - 2023-07-10 18:12 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2023-07-06 13:32 - 2023-07-06 13:32 - 000030382 _____ C:\Users\Jerry\Desktop\arizona charlies.pdf
2023-07-03 17:11 - 2023-05-17 07:12 - 002172472 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 002172472 _____ C:\Windows\system32\vulkaninfo.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 001607776 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 001607776 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-07-03 17:11 - 2023-05-17 07:12 - 001479216 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-07-03 17:11 - 2023-05-17 07:12 - 001479216 _____ C:\Windows\system32\vulkan-1.dll
2023-07-03 17:11 - 2023-05-17 07:12 - 001211448 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-07-03 17:11 - 2023-05-17 07:12 - 001211448 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-07-03 17:11 - 2023-05-17 07:10 - 001487872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-07-03 17:11 - 2023-05-17 07:10 - 001226736 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-07-03 17:11 - 2023-05-17 07:02 - 000851968 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-07-03 17:11 - 2023-05-17 07:02 - 000671216 _____ C:\Windows\system32\nvofapi64.dll
2023-07-03 17:11 - 2023-05-17 07:02 - 000506352 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 002166256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 001620968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 001536512 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 001194480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 000979456 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 000758760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-07-03 17:11 - 2023-05-17 07:01 - 000741360 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-07-03 17:11 - 2023-05-17 07:00 - 000457752 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-07-03 17:11 - 2023-05-17 06:59 - 013769216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 011650088 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 006083560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 005911016 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-07-03 17:11 - 2023-05-17 06:59 - 003430400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-07-03 17:11 - 2023-05-17 06:58 - 005835288 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-07-03 17:11 - 2023-05-17 06:56 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-07-03 17:11 - 2023-05-17 06:47 - 006798784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-07-03 17:11 - 2023-05-17 06:12 - 000104369 _____ C:\Windows\system32\nvinfo.pb
2023-06-29 19:05 - 2023-06-29 19:05 - 000120703 _____ C:\Users\Jerry\Downloads\20230626-statements-3832-.pdf
2023-06-26 14:04 - 2023-06-26 14:03 - 000018754 _____ C:\Users\Jerry\Desktop\SFP.pdf
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2023-07-25 16:55 - 2021-11-19 15:14 - 000795738 _____ C:\Windows\system32\PerfStringBackup.INI
2023-07-25 16:55 - 2019-12-07 02:13 - 000000000 ____D C:\Windows\INF
2023-07-25 16:52 - 2021-12-14 16:29 - 000000000 ____D C:\Windows\SystemTemp
2023-07-25 16:52 - 2021-12-08 18:58 - 000000000 ____D C:\Users\Jerry\AppData\Local\WebEx
2023-07-25 16:52 - 2021-11-19 18:42 - 000000000 ____D C:\Users\Jerry\AppData\Local\LogiBolt
2023-07-25 16:52 - 2021-11-19 18:11 - 000000000 __SHD C:\Users\Jerry\IntelGraphicsProfiles
2023-07-25 16:52 - 2021-11-19 15:47 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-25 16:52 - 2021-11-19 15:10 - 000000000 ____D C:\Users\Jerry
2023-07-25 16:52 - 2019-12-07 02:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-25 16:50 - 2022-08-06 06:03 - 000000000 ____D C:\ProgramData\NVIDIA
2023-07-25 16:50 - 2021-11-19 18:10 - 000000000 ____D C:\Intel
2023-07-25 16:50 - 2021-11-19 15:07 - 000008192 ___SH C:\DumpStack.log.tmp
2023-07-25 16:50 - 2021-11-19 15:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-07-25 16:49 - 2019-12-07 02:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-07-25 16:48 - 2021-11-30 14:37 - 000004168 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{76C45BC1-8090-4524-B7AC-9FDC23482A7C}
2023-07-25 16:45 - 2021-11-19 15:07 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-07-25 11:42 - 2019-12-07 02:03 - 000000000 ____D C:\Windows\CbsTemp
2023-07-25 11:39 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\Documents\Outlook Files
2023-07-25 06:02 - 2021-11-20 20:30 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Microsoft\Word
2023-07-24 22:01 - 2021-11-20 16:53 - 000000000 ____D C:\ProgramData\IDrive
2023-07-24 17:54 - 2019-12-07 02:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-24 17:54 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\AppReadiness
2023-07-24 17:14 - 2021-11-19 15:49 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-07-24 17:14 - 2021-11-19 15:49 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-07-23 19:33 - 2021-12-12 23:46 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-07-23 19:19 - 2021-11-19 15:45 - 000000000 ____D C:\Users\Jerry\Documents\JERRY
2023-07-23 18:04 - 2021-12-04 11:00 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Microsoft\Excel
2023-07-23 14:11 - 2021-12-12 23:46 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1429643274-3220507178-1999652844-1001
2023-07-23 14:11 - 2021-11-20 17:39 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-07-23 14:11 - 2021-11-20 17:39 - 000002092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-23 14:10 - 2021-11-19 15:10 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-23 14:10 - 2021-11-19 15:10 - 000002276 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-07-19 12:09 - 2021-11-19 15:15 - 000000000 ____D C:\ProgramData\Realtek
2023-07-18 11:07 - 2021-11-19 15:45 - 000000000 ____D C:\Users\Jerry\Documents\2007 Camry
2023-07-18 10:55 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\Documents\MEDICAL
2023-07-17 14:56 - 2022-05-31 14:33 - 000000000 ____D C:\Users\Jerry\Documents\RETIREMENT
2023-07-13 16:05 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\AppData\Local\D3DSCache
2023-07-12 08:05 - 2022-05-11 03:42 - 000305416 _____ C:\Windows\system32\FNTCACHE.DAT
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\SystemResources
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\system32\setup
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\system32\oobe
2023-07-12 08:03 - 2019-12-07 02:14 - 000000000 ____D C:\Windows\bcastdvr
2023-07-12 07:39 - 2021-11-19 15:09 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-07-12 07:32 - 2021-11-19 15:15 - 000000000 ____D C:\Windows\system32\MRT
2023-07-12 07:30 - 2021-11-19 15:15 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-07-12 02:39 - 2021-11-20 16:53 - 000000000 ____D C:\Program Files (x86)\IDriveWindows
2023-07-12 01:53 - 2021-12-05 10:24 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2023-07-12 01:52 - 2022-10-13 17:02 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-07-12 01:52 - 2022-10-13 17:02 - 000002021 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-07-11 20:00 - 2021-11-19 15:09 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-11 20:00 - 2021-11-19 15:09 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-11 14:29 - 2021-12-18 09:35 - 000000000 ____D C:\Users\Jerry\Documents\HEDLAUND - lawsuit
2023-07-10 18:12 - 2022-05-05 15:06 - 000001931 _____ C:\Users\Jerry\Desktop\Zoom.lnk
2023-07-10 18:12 - 2021-12-14 10:48 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\Zoom
2023-07-10 14:59 - 2021-11-19 15:49 - 000000000 ____D C:\Users\Jerry\Documents\My PaperPort Documents
2023-07-10 14:54 - 2021-12-03 12:27 - 000000000 ____D C:\Users\Jerry\AppData\Roaming\.oit
2023-07-10 14:54 - 2021-12-03 12:27 - 000000000 ____D C:\ProgramData\TEMP
2023-07-10 14:37 - 2021-11-20 21:04 - 000000000 ____D C:\Users\Jerry\AppData\Local\SquirrelTemp
2023-07-08 12:09 - 2021-11-19 15:10 - 000000000 ____D C:\Users\Jerry\AppData\Local\Packages
2023-07-08 09:10 - 2023-01-08 13:28 - 000000000 ____D C:\Users\Jerry\Documents\Quicken
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ========================
 
 
 
 
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-07-2023 01
Ran by Jerry (25-07-2023 16:56:55)
Running from C:\Users\Jerry\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3208 (X64) (2021-11-19 22:08:56)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
 
(If an entry is included in the fixlist, it will be removed.)
 
Administrator (S-1-5-21-1429643274-3220507178-1999652844-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1429643274-3220507178-1999652844-503 - Limited - Disabled)
Guest (S-1-5-21-1429643274-3220507178-1999652844-501 - Limited - Disabled)
Jerry (S-1-5-21-1429643274-3220507178-1999652844-1001 - Administrator - Enabled) => C:\Users\Jerry
WDAGUtilityAccount (S-1-5-21-1429643274-3220507178-1999652844-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
ACDSee Photo Studio Standard 2018 (HKLM\...\{A1E4FA4A-2B1F-453F-820D-3268632A8434}) (Version: 21.2.0.818 - ACD Systems International Inc.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 23.003.20244 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-8460N (HKLM-x32\...\{9211CCBB-BEFE-4A0C-9199-D7A535DBFE5F}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
Cisco Webex Meetings (HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\ActiveTouchMeetingClient) (Version: 41.12.4 - Cisco Webex LLC)
Dell SupportAssist (HKLM\...\{6D3561B7-19AA-438B-9C83-CD2CED199472}) (Version: 3.14.0.91 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{FFFED431-EF80-4C39-A66E-E11BC7413D33}) (Version: 5.5.5.16206 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{cff56899-3afb-4fe1-aeec-a0474836d1cd}) (Version: 5.5.5.16206 - Dell Inc.)
ESET Security (HKLM\...\{4DB10B50-978B-4DB0-8127-79F8D302AC5A}) (Version: 16.1.14.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.102 - Google LLC)
iCloud Outlook (HKLM\...\{F054257C-600A-4918-B730-F6829E491781}) (Version: 13.0.0.201 - Apple Inc.)
IDrive version 6.7.4.46 (HKLM-x32\...\IDrive_is1) (Version: 6.7.4.46 - Pro Softnet Corp)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2036.15.0.1835 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{485C0285-31CE-41A4-A763-6DEBCD77C2E6}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{FEAA68D6-DA1D-4440-91B6-43906444FA49}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Driver (HKLM\...\{F9790CBE-C3E6-4565-A1A2-17DD480ECF39}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.61.251.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{69bc85f1-55f9-44f2-b5df-3840fe07854c}) (Version: 1.61.251.0 - Intel Corporation) Hidden
iSEEK AnswerWorks English Runtime (HKLM-x32\...\{18A8E78B-9EF2-496E-B310-BCD8E4C1DAB3}) (Version: 010.000.0101 - Vantage Linguistics)
Kofax PaperPort 14 (HKLM-x32\...\{51769CA6-A998-4C49-AFCF-90C517E1B9D9}) (Version: 14.7.0000 - Kofax Inc.)
Kofax PDF Viewer Plus (HKLM-x32\...\{870C26E8-DEC9-4F61-96A8-2426F10A4040}) (Version: 7.21.3208 - Kofax Inc.)
Logi Bolt (HKLM\...\LogiBolt) (Version: 1.2.6024.0 - Logi)
Logitech Camera Settings (HKLM-x32\...\LogiUCDPP) (Version: 2.12.20.0 - Logitech Europe S.A.)
Logitech Options (HKLM\...\LogiOptions) (Version: 9.70.68 - Logitech)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.14 (x64) (HKLM\...\{40D4EC44-91F8-4EEE-869E-F4B3E90E6688}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.14 (x64) (HKLM\...\{D1726E78-81F3-40A2-A7AF-6286BAA49B1C}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM-x32\...\{a699b48e-5748-4980-ad92-0b61b1d9d718}) (Version: 5.0.17.31213 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM\...\{61202CF9-3B84-4E5A-91A1-2984FAE38259}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM-x32\...\{a75f0c38-355e-478f-b573-1dbc42915c5c}) (Version: 6.0.14.32123 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.183 - Microsoft Corporation)
Microsoft Office Home and Business 2021 - en-us (HKLM\...\HomeBusiness2021Retail - en-us) (Version: 16.0.16327.20214 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.137.0702.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{F0C8928A-BF8F-4AAF-B8BF-9CE865DBC711}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{847625FA-89A7-4EE0-8494-68A49BF977D6}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.24.28127 (HKLM\...\{8678BA04-D161-45BE-ACA4-CC5D13073F35}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.24.28127 (HKLM\...\{7DC387B8-E6A2-480C-8EF9-A6E51AE81C19}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
NVIDIA Graphics Driver 531.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.79 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16327.20200 - Microsoft Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{D158E731-114A-4F82-988C-67D43E5C3668}) (Version: 14.00.0003 - Kofax Inc.)
Personal Ancestral File 5 (HKLM-x32\...\{D94A8E22-DF2B-4107-9E51-608A60A7671D}) (Version:  - )
Quicken (HKLM-x32\...\{62D93E3E-2F8E-42BD-9343-896F4F0031D3}) (Version: 27.1.50.16 - Quicken)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7908 - Realtek Semiconductor Corp.)
Sidekick 98 (HKLM-x32\...\Sidekick 98) (Version:  - )
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Zoom (HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\...\ZoomUMX) (Version: 5.14.11 (17466) - Zoom Video Communications, Inc.)
 
Packages:
=========
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.14.4.0_x64__htrsf667h5kn2 [2023-05-07] (Dell Inc)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.2.0_x64__6rarf9sa4v8jt [2023-07-20] (Disney)
HEVC Video Extensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-07-24] (Microsoft Corporation)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa [2023-06-08] (Apple Inc.) [Startup Task]
Intel® Graphics Command Center -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-01] (INTEL CORP) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-09] (NVIDIA Corp.)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-12-26] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-19] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0 [2023-07-19] (Spotify AB) [Startup Task]
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\Jerry\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\Users\Jerry\AppData\Local\WebEx\WebEx64\Meetings\atucfobj.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-1429643274-3220507178-1999652844-1001_Classes\CLSID\{E93B1FD6-97E5-4538-8663-EC8C0103141B} -> [iCloud Photos] => C:\Users\Jerry\Pictures\iCloud Photos\Photos [2022-01-14 14:09]
ShellIconOverlayIdentifiers: [           OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [           OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [          0001IDSIcon1] -> {0FA6DCC0-CF0B-427D-A8AF-97C466AB5769} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2023-07-05] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [          0001IDSIcon2] -> {66357BBE-D2E5-453C-95FF-8102EB32419D} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2023-07-05] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers: [          0001IDSIcon3] -> {904E6336-8B13-43FA-B4C3-5B62C1C91971} => C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll [2023-07-05] (Pro-Softnet Corporation, U.S.A) [File not signed]
ShellIconOverlayIdentifiers-x32: [           OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [           OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-04-24] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2023-07-05] () [File not signed]
ContextMenuHandlers1: [PicaViewCtxMenuShlExt] -> {F3CBBA61-EE3F-4D6D-B1C6-B3474E579936} => C:\Program Files\Common Files\ACD Systems\PicaView\ACDSeePV.dll [2015-08-28] (ACD Systems International -> ACD Systems International Inc.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-04-24] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2023-07-05] () [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [IDriveMenu] -> {AFBFEC11-0FD5-48ED-B8AF-315197F09A82} => C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll [2023-07-05] () [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncShell64.dll [2023-07-23] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\nvshext.dll [2023-05-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-04-24] (ESET, spol. s r.o. -> ESET)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
==================== Loaded Modules (Whitelisted) =============
 
2021-11-20 21:01 - 2009-02-27 17:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2021-11-20 16:53 - 2023-07-05 13:35 - 005034496 _____ () [File not signed] C:\Program Files (x86)\IDriveWindows\IDContextMenu.dll
2021-11-22 15:13 - 2023-07-05 13:35 - 000834048 _____ () [File not signed] C:\Program Files (x86)\IDriveWindows\sqlite3.dll
2019-09-14 03:02 - 2019-09-14 03:02 - 004883456 ____R (BCGSoft Ltd) [File not signed] C:\Program Files (x86)\Kofax\PaperPort\BCGCBPRO1100u100.dll
2019-09-14 03:03 - 2019-09-14 03:03 - 000036864 ____R (Black Ice Software, Inc.) [File not signed] C:\Program Files (x86)\Kofax\PaperPort\blicectr.dll
2021-11-20 21:01 - 2009-03-06 13:51 - 000770048 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2021-11-20 21:01 - 2008-10-21 20:52 - 000151552 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brcceng.dll
2021-11-20 21:01 - 2009-05-11 14:48 - 000372736 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2021-11-20 21:01 - 2008-07-22 22:24 - 005390336 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2021-11-20 21:01 - 2003-06-30 01:00 - 000259584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2021-11-20 21:01 - 2005-07-05 01:00 - 000131584 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2021-11-20 21:01 - 2003-06-30 01:00 - 000406016 ____N (LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2018-03-08 07:18 - 2018-03-08 07:18 - 000015360 _____ (NHibernate community) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Iesi.Collections.dll
2020-11-11 20:57 - 2020-11-11 20:57 - 000537088 _____ (NHibernate.info) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\FluentNHibernate.dll
2021-11-20 16:53 - 2023-07-05 13:35 - 000874496 _____ (Pro-Softnet Corporation, U.S.A) [File not signed] C:\Program Files (x86)\IDriveWindows\IDSyncIntIcon64.dll
2022-02-28 16:42 - 2023-07-05 13:35 - 001663488 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\IDriveWindows\SQLite.Interop.dll
2018-02-06 17:25 - 2018-02-06 17:25 - 000176640 _____ (rubicon IT GmbH) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.dll
2018-03-23 12:10 - 2018-03-23 12:10 - 000028160 _____ (rubicon IT GmbH) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.EagerFetching.dll
2021-02-17 04:19 - 2021-02-17 04:19 - 000124928 _____ (Stateless Contributors) [File not signed] [File is in use] C:\Program Files\Dell\SupportAssistAgent\bin\stateless.dll
2021-12-17 05:45 - 2021-12-17 05:45 - 000258048 _____ (The Apache Software Foundation) [File not signed] [File is in use] C:\Program Files\Dell\SupportAssistAgent\bin\log4net.dll
2016-12-18 08:55 - 2016-12-18 08:55 - 000097280 _____ (Tunnel Vision Laboratories, LLC) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Antlr3.Runtime.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:FD9CE1F3 [722]
 
==================== Safe Mode (Whitelisted) ==================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer (Whitelisted) ==========
 
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-05-03] (Microsoft Corporation -> Microsoft Corporation)
 
==================== Hosts content: =========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2019-12-07 02:14 - 2019-12-07 02:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1429643274-3220507178-1999652844-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{2096F013-5ABB-488F-8DFC-D81E6EB64223}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{84FE3C15-AF16-4036-9F8C-4DAEF9092A48}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{78AA48E2-8E13-4957-BAC3-1DC395FA16B1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{806FE95F-DFFC-4CBC-A5D1-D40E4CD80226}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP - Installer for ACDSee Commander Standard 2018] => (Allow) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe (ACD Systems International Inc. -> )
FirewallRules: [UDP - Installer for ACDSee Commander Standard 2018] => (Allow) C:\Program Files (x86)\ACD Systems\ACDSee\21.0\ACDSeeCommander21.exe (ACD Systems International Inc. -> )
FirewallRules: [{08D5B9A2-6CA6-48E5-B510-8FF6D001420D}] => (Allow) C:\Users\Jerry\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F33FFD5E-E0A4-476F-BB3A-AB285FE8AD0E}] => (Allow) C:\Users\Jerry\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B8ABE1E0-2059-4F96-8E92-3E8A7FDE2E9D}] => (Allow) C:\Users\Jerry\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{66D43A50-1E55-41BB-BA5F-E4F94539B518}C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe] => (Allow) C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe => No File
FirewallRules: [UDP Query User{E4D95C43-8680-4280-A802-7487ACE3D408}C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe] => (Allow) C:\program files\windowsapps\microsoftcorporationii.quickassist_2.0.8.0_x64__8wekyb3d8bbwe\quickassist.exe => No File
FirewallRules: [{4C1C7725-2FAC-474F-8449-6169D1B48D3B}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{A3B6CA82-D2DE-4297-A143-2082FF5147BE}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{9666A3CD-DE59-4539-BDE1-4DE186C7CFA2}C:\windows\syswow64\rundll32.exe] => (Block) C:\windows\syswow64\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{D3691AED-A266-4E07-B8ED-8D7EABD41B67}C:\program files (x86)\quicken\qwsubprocess.exe] => (Allow) C:\program files (x86)\quicken\qwsubprocess.exe (Quicken Inc. -> Quicken Inc.)
FirewallRules: [UDP Query User{C5AAF50A-0AF9-4940-BAA0-C9BB38D8656A}C:\program files (x86)\quicken\qwsubprocess.exe] => (Allow) C:\program files (x86)\quicken\qwsubprocess.exe (Quicken Inc. -> Quicken Inc.)
FirewallRules: [{D10C8B24-2331-4C30-BAB2-311737D3D346}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6D952D64-5BC1-4B45-B78F-5F7DB627ECA5}C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [UDP Query User{69D0A283-E779-4463-B0B6-743BC7B76561}C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\jerry\appdata\local\microsoft\teams\current\teams.exe => No File
FirewallRules: [{20C21365-D3F4-4014-AB0E-DE24FF001270}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{282854DD-AA5D-4EBF-AA0E-D45A248157F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82A03B23-3B92-4245-AEB2-718B053D7EBA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B314A9CC-126D-4816-B0A7-0855B4A0C621}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4411BB03-D657-444A-BE29-2FE779DE6AFF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C5B95337-CC25-4675-A06E-4D8B2AFE2297}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E9B0472A-A9A5-46A5-9B18-0381E41CD560}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FEEE7434-2AAB-4596-BB10-00B4EB67FBC4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{882D35AA-820C-42A9-98B8-6632A152EF4D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CADFAFB1-E5B7-4063-B96E-90BC2C21A04B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D11B739A-0490-486A-B520-46F9357C0F58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7DE80C6A-A186-442C-8655-635538E927A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5307123A-313D-455A-8B2E-DB56C3BB81CA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3ED80D76-D693-4195-B343-9F43076590CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FBC98520-4FAF-4C74-9000-F86A58A7EABD}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.183\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5D5BE039-3A22-4B1B-AA00-7D754CF82667}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 
==================== Restore Points =========================
 
24-07-2023 00:00:15 Windows Backup
25-07-2023 00:00:15 Windows Backup
 
==================== Faulty Device Manager Devices ============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 
 
 
==================== Event log errors: ========================
 
Application errors:
==================
 
System errors:
=============
Error: (07/25/2023 04:49:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-N7SGSE8)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.
 
 
CodeIntegrity:
===============
Date: 2023-07-25 16:54:05
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
BIOS: Dell Inc. 2.9.1 12/22/2020
Motherboard: Dell Inc. 0XJ8C4
Processor: Intel® Core™ i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 10%
Total physical RAM: 63318.78 MB
Available physical RAM: 56443.31 MB
Total Virtual: 72534.78 MB
Available Virtual: 65833.09 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:232.28 GB) (Free:68.74 GB) (Model: WDC WDBNCE2500PNC) NTFS
Drive d: (My Book) (Fixed) (Total:930.86 GB) (Free:740 GB) (Model: WD My Book 1110 USB Device) NTFS
Drive j: (My Passport) (Fixed) (Total:2794.49 GB) (Free:1509.47 GB) (Model: WD My Passport 259B USB Device) NTFS
 
\\?\Volume{f4158377-44d0-4037-9c89-2ef6c54f0273}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{f7457341-43a8-42d0-aaf0-4cd48f58f2ff}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 179EAE4B)
 
Partition: GPT.
 
==========================================================
Disk: 1 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
 
Partition: GPT.
 
==========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 930.9 GB) (Disk ID: 0002AE3F)
Partition 1: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt =======================

  • 0

#6
OCman
Posted 25 July 2023 - 06:09 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts
Was only given the option for a pay version...
 
 
-----------------------------------
Get the free version of Speccy:
 
 
(Look in the upper right for the Download Free Version
 button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.  (If it installs CCleaner you can uninstall it later)    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), 
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.
 
First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.
 
 
 
 

 

 


  • 0

#7
OCman
Posted 25 July 2023 - 06:21 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

The top device is just a fax driver for your Brother printer and isn't important.

 

The other two are for your My Passport drives.  The Windows catalog has a problem with the file.  It offers it and then says there is a problem with the website when you try to download it.  That may be why Windows Update doesn't get a good copy.

 

I found another source but it's an msi file so a bit more trouble to work with but let's try.

 

Download the attached file:

 

attachicon.gif WD_SES_Driver_Setup_x64.zip

 

Go to the download folder and right click on the file and Extract All.  Save the extracted file somewhere you can find it again.

Rightclick on WD SES Driver Setup (x64).msi file and rename it to setup.msi  (You may not be able to see the msi part of the file name.)

 

Search for 

CMD and when it finds Command Prompt, right click and Run as Admin.

 

Then type:

 

msiexec  /i  “path\setup.msi“

 

 

where path is the full path to the setup.msi file.  ( if you put setup.msi on your desktop then the full command would be

msiexec  /i  “C:\Users\Jerry\Desktop\setup.msi“

.)

 

 

 

 

It says the installation package can't be found, I put it in the desktop directory and renamed it...

 

 

 


  • 0

#8
RKinner
Posted 25 July 2023 - 09:34 PM

RKinner

    Malware Expert

  • Expert
  • 24,731 posts
  • MVP

CCleaner bought up Speccy and have now started charging for it.  Sorry.

 

Let's try CrystalDiskInfo:

 

https://crystalmark....CrystalDiskInfo

 

Scroll down a bit and you will see a picture of a black window with Samsung SSD in it.  Underneath the black window is a button that says Vista+.  That's the button you need to use to download the installer.  Save the file then go to the download folder and right click on the file and run as admin.  The program will install and then start up.  I only have one disk on this PC but I think if you click on Disk it will allow you to choose the WD (My Passport) drive.  Once it reads the drive you just hit File then Save Text.  Save the file to your desktop and then attach it or open it then copy and paste the text to a reply.  If you have more than one external drive then repeat.


  • 0

#9
OCman
Posted 25 July 2023 - 09:54 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

The "my passport" external drive is good, but the "my book" external drive says caution.

Attached Files


  • 0

#10
RKinner
Posted 26 July 2023 - 05:40 AM

RKinner

    Malware Expert

  • Expert
  • 24,731 posts
  • MVP

OK it looks like the report includes all disks so in the future I will just ask for one report.

 

The My Book needs to be replaced ASAP.  Too many bad sectors and write errors.

 

C5 192 192 __0 0000000005A6 Current Pending Sector Count
C6 200 192 __0 00000000002A Uncorrectable Sector Count
...
C8 200 _23 __0 000000000020 Write Error Rate

 

 

The other drives look good.

 

If you disconnect the My Book does that speed up things or is it being used for critical operations so can't be removed?

 

We can look for other problems:

 

Get Process Explorer
 
 
Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  
View and check Show Processes From All Users 
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
 
Latency Monitor:
 
Go to
 
 
Scroll down to
 
System Monitoring Tools
 
and then find
 
LatencyMon 7.0 (or it may be a higher number if they update)
 
Click on Download free home edition
 
Save it then right click and Run As Admin.  It will install and then start the program.  
It will tell you to click on the Start button but there isn't one.  
Instead click on the green arrowhead (looks like a Play button).   Let it run for at least 20 seconds.  Then hit the red box to stop it. 
 
Edit, Copy Report text to Clipboard then move to a REPLY and Ctrl + v to paste the text into a reply.  
 
 
Click on the Drivers Tab.  Click on the column header for "Total execution (ms)" once or twice until the biggest numbers are at the top of the column then take a screen shot (save as type jpg) and attach it.  
Click on the Processes tab then click on the  "Hard Pagefaults" column header once or twice until the big numbers are at the top of the column.  Take a screen shot (save as type jpg) and attach it. 

  • 0

Advertisements

#11
OCman
Posted 26 July 2023 - 07:49 AM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

"If you disconnect the My Book does that speed up things or is it being used for critical operations so can't be removed?"

 

 

The computer does seem faster, I will run those other tools you requested.

 


Also, I still have 3 yellow exclamation points in Device Manager

 

 


  • 0

#12
OCman
Posted 26 July 2023 - 12:19 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 91.53 60 K 8 K 0
procexp64.exe 4.88 103,596 K 94,380 K 16508 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
Interrupts 0.54 0 K 0 K n/a Hardware Interrupts and DPCs
System < 0.01 208 K 1,668 K 4
ekrn.exe < 0.01 81,356 K 213,228 K 2480
atmgr.exe < 0.01 74,464 K 60,352 K 12100 Cisco Webex Service Cisco Webex LLC (Verified) Cisco WebEx LLC
id_tray.exe < 0.01 39,748 K 30,300 K 15676 IDrive Tray Prosoftnet (Verified) IDrive, Inc.
id_service.exe < 0.01 101,452 K 88,632 K 10148 IDrive Service Prosoftnet (Verified) IDrive, Inc.
sidekick.exe < 0.01 6,920 K 10,688 K 12996 Sidekick 98 Starfish Software, Inc. (No signature was present in the subject) Starfish Software, Inc.
LogiOptionsMgr.exe 0.68 40,836 K 31,488 K 3300 LogiOptionsMgr.exe (UNICODE) Logitech, Inc. (Verified) Logitech Inc
csrss.exe 0.27 3,268 K 4,412 K 856
dwm.exe 0.95 245,108 K 260,416 K 1240 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
explorer.exe < 0.01 121,324 K 156,580 K 6780 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
chrome.exe < 0.01 44,660 K 55,260 K 13308 Google Chrome Google LLC (Verified) Google LLC
Dell.TechHub.Instrumentation.SubAgent.exe < 0.01 89,880 K 92,768 K 14964 Dell Instrumentation (Verified) Dell Inc
WebexHost.exe < 0.01 10,096 K 14,764 K 12064 Cisco Webex Meetings Cisco Webex LLC (Verified) Cisco WebEx LLC
lsass.exe 0.14 11,572 K 17,540 K 952 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
Dell.DCF.UA.Bradbury.API.SubAgent.exe < 0.01 53,384 K 32,664 K 14348 (Verified) Dell Inc
ACDSeeCommander21.exe < 0.01 5,020 K 5,196 K 14136 (Verified) ACD Systems International Inc.
chrome.exe 0.14 69,128 K 263,352 K 15912 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 0.41 214,696 K 282,488 K 18096 Google Chrome Google LLC (Verified) Google LLC
OUTLOOK.EXE < 0.01 225,876 K 258,688 K 6608 Microsoft Outlook Microsoft Corporation (Verified) Microsoft Corporation
id_bglaunch.exe < 0.01 29,236 K 17,176 K 15480 IDrive Background Prosoftnet (Verified) IDrive, Inc.
SDXHelper.exe < 0.01 13,184 K 13,648 K 17572 Microsoft Office SDX Helper Microsoft Corporation (Verified) Microsoft Corporation
Dell.TechHub.Instrumentation.UserProcess.exe < 0.01 43,200 K 45,648 K 9172 Dell Instrumentation's User Process (Verified) Dell Inc
chrome.exe < 0.01 39,672 K 57,172 K 17700 Google Chrome Google LLC (Verified) Google LLC
msedgewebview2.exe < 0.01 28,088 K 40,776 K 11532 Microsoft Edge WebView2 Microsoft Corporation (Verified) Microsoft Corporation
msedgewebview2.exe < 0.01 27,600 K 22,588 K 14380 Microsoft Edge WebView2 Microsoft Corporation (Verified) Microsoft Corporation
svchost.exe < 0.01 10,436 K 15,308 K 3416 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,140 K 4,260 K 2332 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
PDFProFiltSrvPP.exe < 0.01 2,084 K 1,944 K 4776 PDFPro IFilter Service Kofax Inc. (Verified) Kofax, Inc.
svchost.exe < 0.01 5,308 K 11,420 K 15892
svchost.exe < 0.01 9,088 K 12,972 K 1124 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
WavesSvc64.exe < 0.01 1,416 K 1,440 K 2296 Waves MaxxAudio Service Application Waves Audio Ltd. (Verified) Waves Inc
NVDisplay.Container.exe < 0.01 48,428 K 56,708 K 3372 NVIDIA Container NVIDIA Corporation (Verified) NVIDIA Corporation
svchost.exe < 0.01 3,852 K 15,232 K 7624 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
conhost.exe < 0.01 6,664 K 6,992 K 15288 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe < 0.01 6,648 K 6,988 K 3532 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe < 0.01 6,688 K 7,008 K 16272 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 3,524 K 5,548 K 3228 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
conhost.exe < 0.01 6,700 K 7,008 K 14936 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
iCloudPhotos.exe < 0.01 65,364 K 67,688 K 12448 iCloud Photo Library Apple Inc. (Verified) Apple Inc.
svchost.exe 3,492 K 6,772 K 3712
conhost.exe < 0.01 6,696 K 6,992 K 1048 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe < 0.01 44,784 K 47,004 K 8288 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
iCloudCKKS.exe 15,388 K 23,120 K 6840 iCloud Keychain Sync Apple Inc (Verified) Apple Inc.
chrome.exe < 0.01 14,192 K 12,816 K 17040 Google Chrome Google LLC (Verified) Google LLC
svchost.exe < 0.01 4,252 K 4,596 K 1920 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
chrome.exe 16,160 K 11,604 K 13352 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 13,140 K 18,656 K 22296 Google Chrome Google LLC (Verified) Google LLC
svchost.exe < 0.01 1,560 K 2,400 K 1792 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
iCloudServices.exe < 0.01 8,756 K 14,412 K 12008 iCloud for Windows Apple Inc. (Verified) Apple Inc.
chrome.exe 569,004 K 575,496 K 13296 Google Chrome Google LLC (Verified) Google LLC
msedgewebview2.exe 9,380 K 13,876 K 14428 Microsoft Edge WebView2 Microsoft Corporation (Verified) Microsoft Corporation
SearchProtocolHost.exe < 0.01 11,056 K 15,696 K 20952 Microsoft Windows Search Protocol Host Microsoft Corporation (Verified) Microsoft Windows
ai.exe < 0.01 10,964 K 10,112 K 13564 Artificial Intelligence (AI) Host for the Microsoft® Windows® Operating System and Platform x64. Microsoft Corporation (Verified) Microsoft Corporation
efwd.exe < 0.01 2,532 K 2,388 K 3960 ESET Forwarder ESET (Verified) ESET, spol. s r.o.
svchost.exe < 0.01 10,788 K 18,044 K 708 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 10,080 K 19,876 K 5840 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,152 K 4,236 K 3244 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
OfficeClickToRun.exe < 0.01 35,656 K 37,488 K 4816 Microsoft Office Click-to-Run (SxS) Microsoft Corporation (Verified) Microsoft Corporation
chrome.exe 42,100 K 67,536 K 17712 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 59,432 K 71,480 K 9668 Google Chrome Google LLC (Verified) Google LLC
chrome.exe < 0.01 17,460 K 199,376 K 19832 Google Chrome Google LLC (Verified) Google LLC
svchost.exe < 0.01 3,980 K 11,536 K 968 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
msedgewebview2.exe < 0.01 7,764 K 6,816 K 14480 Microsoft Edge WebView2 Microsoft Corporation (Verified) Microsoft Corporation
svchost.exe < 0.01 3,820 K 7,044 K 5288 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
csrss.exe 2,032 K 2,876 K 740
WUDFHost.exe 2,144 K 3,076 K 2372 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 28,444 K 35,420 K 3580 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 3,684 K 5,096 K 12588 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 5,224 K 13,460 K 22228 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
wlanext.exe 2,292 K 4,040 K 4292 Windows Wireless LAN 802.11 Extensibility Framework Microsoft Corporation (Verified) Microsoft Windows
winlogon.exe 2,776 K 8,244 K 976 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 1,520 K 1,824 K 848
WavesSysSvc64.exe 2,052 K 2,940 K 3700 WavesSysSvc Service Application Waves Audio Ltd. (Verified) Waves Inc
VSSVC.exe 1,836 K 2,728 K 4800 Microsoft® Volume Shadow Copy Service Microsoft Corporation (Verified) Microsoft Windows
Video.UI.exe Suspended 20,808 K 1,852 K 17956 (Verified) Microsoft Corporation
UserOOBEBroker.exe 2,176 K 3,120 K 16080 User OOBE Broker Microsoft Corporation (Verified) Microsoft Windows
TextInputHost.exe < 0.01 15,308 K 19,800 K 16984 Microsoft Corporation (Verified) Microsoft Windows
taskhostw.exe 9,724 K 11,656 K 4680 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
taskhostw.exe 1,628 K 8,620 K 18104 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
SystemSettings.exe Suspended 30,664 K 1,128 K 1468 Settings Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 2,604 K 4,548 K 1172 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,680 K 13,892 K 6568 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 16,412 K 15,900 K 1852 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,924 K 5,988 K 3036 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 7,500 K 12,336 K 2684 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 5,008 K 9,612 K 2608 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 14,476 K 16,616 K 4612 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,384 K 1,884 K 5424 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,584 K 7,544 K 2768 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 10,276 K 14,572 K 3388 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 16,540 K 26,228 K 4596 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,960 K 7,724 K 22524 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,072 K 3,416 K 4168 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,092 K 5,304 K 4916 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,196 K 4,264 K 3644 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,240 K 8,772 K 3512 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 6,924 K 10,912 K 3920 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,980 K 5,784 K 3772 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,864 K 7,536 K 9768 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 8,904 K 20,420 K 5992 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,264 K 4,232 K 7344 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,876 K 15,648 K 4756 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,564 K 5,660 K 1520 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,788 K 3,344 K 3780 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,040 K 11,000 K 2832 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 7,140 K 8,116 K 2216 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,136 K 4,716 K 1764 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,700 K 6,184 K 1392 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,004 K 5,784 K 1604 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,412 K 3,284 K 4944 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,332 K 1,860 K 3024 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,020 K 15,164 K 15116 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,084 K 7,064 K 1756 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,988 K 6,444 K 9992 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 4,720 K 7,892 K 10720 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,096 K 5,140 K 10568 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,244 K 7,324 K 9364 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,504 K 3,628 K 16352 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,380 K 5,760 K 7508 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,880 K 2,868 K 6236 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,392 K 9,864 K 1572 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,636 K 2,148 K 4732 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,628 K 2,508 K 4716 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,100 K 4,724 K 4020 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,836 K 6,412 K 4692 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,284 K 1,400 K 4724 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,448 K 4,084 K 2344 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,716 K 3,012 K 1724 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,824 K 2,864 K 1400 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,832 K 3,000 K 2320 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,508 K 2,324 K 2552 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,972 K 4,304 K 2588 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,988 K 4,808 K 1528 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,316 K 5,676 K 2536 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,900 K 4,596 K 1408 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,368 K 5,808 K 1228 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,312 K 5,068 K 1832 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,396 K 6,440 K 20968 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,272 K 6,120 K 17968 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,748 K 7,644 K 10964 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
SupportAssistAgent.exe 180,712 K 182,844 K 8044 Dell Inc. (Verified) Dell Inc
StartMenuExperienceHost.exe 33,256 K 59,840 K 8028 (Verified) Microsoft Windows
spoolsv.exe 9,140 K 15,324 K 4088 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 1,072 K 492 K 640
smartscreen.exe 9,676 K 27,328 K 13704 Windows Defender SmartScreen Microsoft Corporation (Verified) Microsoft Windows
sihost.exe 6,644 K 17,292 K 5824 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
ShellExperienceHost.exe Suspended 18,784 K 42,556 K 19608 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SgrmBroker.exe 5,404 K 6,328 K 3716
ServiceShell.exe < 0.01 54,452 K 41,936 K 15540 ServiceShell (Verified) Dell Inc
services.exe 6,056 K 8,168 K 920
SecurityHealthSystray.exe 2,020 K 4,268 K 11132 Windows Security notification icon Microsoft Corporation (Verified) Microsoft Windows
SecurityHealthService.exe 4,716 K 8,592 K 11172
secd.exe < 0.01 4,296 K 8,860 K 14944 Apple Security Manager Apple, Inc. (Verified) Apple Inc.
SearchFilterHost.exe 1,996 K 8,804 K 18688 Microsoft Windows Search Filter Host Microsoft Corporation (Verified) Microsoft Windows
SearchApp.exe Suspended 176,084 K 238,228 K 8472 Search application Microsoft Corporation (Verified) Microsoft Windows
SearchApp.exe Suspended 98,964 K 124,240 K 4996 Search application Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 3,980 K 16,524 K 4740 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 10,424 K 16,528 K 9948 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 12,692 K 32,644 K 8872 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2,652 K 3,644 K 10924 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 4,112 K 6,168 K 10616 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 6,748 K 8,640 K 4332 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 2,200 K 2,868 K 8496 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RuntimeBroker.exe 1,972 K 3,696 K 6056 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
rundll32.exe 4,580 K 2,916 K 17264 Windows host process (Rundll32) Microsoft Corporation (Verified) Microsoft Windows
RtkNGUI64.exe 6,112 K 11,324 K 6700 Realtek HD Audio Manager Realtek Semiconductor (Verified) Realtek Semiconductor Corp.
RtkBtManServ.exe 2,164 K 3,748 K 4792 Realtek Bluetooth BTDevManager Service Application Realtek Semiconductor Corp. (Verified) Microsoft Windows Hardware Compatibility Publisher
RtkAudioService64.exe 1,832 K 2,096 K 3692 Realtek Audio Service Realtek Semiconductor (Verified) Realtek Semiconductor Corp
Registry 7,316 K 26,316 K 124
RAVBg64.exe 9,872 K 10,696 K 10360 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp.
RAVBg64.exe 6,788 K 7,736 K 4572 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp.
procexp.exe 8,296 K 12,512 K 18216 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
pptd40nt.exe 5,400 K 5,528 K 16008 PaperPort Print to Desktop for NT Kofax Inc. (Verified) Kofax, Inc.
PhoneExperienceHost.exe 48,624 K 57,784 K 10576 Microsoft Phone Link Microsoft Corporation (Verified) Microsoft Corporation
PdfPro7Hook.exe 1,576 K 1,972 K 16340 PdfPro7Hook.exe Kofax Inc. (Verified) Kofax, Inc.
OneApp.IGCC.WinService.exe 37,896 K 24,152 K 4672 Intel® Graphics Command Center Service Intel Corporation (Verified) Intel Corporation
NVDisplay.Container.exe 6,984 K 11,076 K 2852 NVIDIA Container NVIDIA Corporation (Verified) NVIDIA Corporation
msedgewebview2.exe < 0.01 35,536 K 47,320 K 14692 Microsoft Edge WebView2 Microsoft Corporation (Verified) Microsoft Corporation
msedgewebview2.exe 1,968 K 2,240 K 11320 Microsoft Edge WebView2 Microsoft Corporation (Verified) Microsoft Corporation
Microsoft.Photos.exe Suspended 30,088 K 14,428 K 15000 (Verified) Microsoft Corporation
Memory Compression 40 K 0 K 2152
mDNSResponder.exe 1,980 K 3,988 K 4600 Bonjour Service Apple Inc. (Verified) Apple Inc.
LogiOverlay.exe 64,792 K 34,288 K 10644 Logi Overlay Logitech (Verified) Logitech Inc
LogiOptions.exe 0.27 2,892 K 2,720 K 10788 LogiOptions.exe (UNICODE) Logitech, Inc. (Verified) Logitech Inc
LogiBolt.exe < 0.01 19,640 K 26,084 K 10120 Logitech (Verified) Logitech Inc
LockApp.exe Suspended 17,028 K 32,840 K 9696 LockApp.exe Microsoft Corporation (Verified) Microsoft Windows
LMS.exe 2,856 K 4,064 K 8296 Intel® Local Management Service Intel Corporation (Verified) Intel® Embedded Subsystems and IP Blocks Group
jhi_service.exe 1,332 K 1,312 K 5160 Intel® Dynamic Application Loader Host Interface Intel Corporation (Verified) Intel® Embedded Subsystems and IP Blocks Group
IntelCpHeciSvc.exe 1,392 K 2,560 K 2016 IntelCpHeciSvc Executable Intel Corporation (Verified) Intel Corporation
IntelCpHDCPSvc.exe 1,440 K 1,860 K 1664 Intel HD Graphics Drivers for Windows® Intel Corporation (Verified) Intel Corporation
igfxEM.exe 3,636 K 6,592 K 6040 igfxEM Module Intel Corporation (Verified) Intel Corporation
igfxCUIService.exe 2,068 K 3,600 K 2164 igfxCUIService Module Intel Corporation (Verified) Intel Corporation
iCloudPasswordsExtensionHelper.exe 4,352 K 7,644 K 16572 iCloud passwords extension helper application Apple Inc. (Verified) Apple Inc.
fontdrvhost.exe 2,948 K 6,860 K 1028 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
fontdrvhost.exe 1,548 K 1,712 K 1036 Usermode Font Driver Host Microsoft Corporation (Verified) Microsoft Windows
eguiProxy.exe < 0.01 5,168 K 7,112 K 8264 ESET Proxy GUI ESET (Verified) ESET, spol. s r.o.
dllhost.exe 3,416 K 4,708 K 10812 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dllhost.exe 4,488 K 7,620 K 7920 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
Dell.TechHub.exe 42,740 K 44,848 K 3724 Dell.TechHub Dell (Verified) Dell Inc
Dell.TechHub.Diagnostics.SubAgent.exe 61,268 K 66,416 K 14452 Dell Diagnostics (Verified) Dell Inc
Dell.TechHub.DataManager.SubAgent.exe 59,264 K 58,732 K 8080 Dell Data Manager (Verified) Dell Inc
Dell.TechHub.Analytics.SubAgent.exe 57,788 K 56,884 K 2052 Dell Analytics (Verified) Dell Inc
DDVRulesProcessor.exe 17,244 K 6,132 K 4844 Dell Data Vault Rules Processor Dell Technologies Inc. (Verified) Dell Inc
DDVDataCollector.exe 58,544 K 58,180 K 9312 DDVDataCollector Dell Technologies Inc. (Verified) Dell Inc
DDVCollectorSvcApi.exe 1,860 K 2,632 K 10884 Dell Data Vault Data Collector Service API Dell Technologies Inc. (Verified) Dell Inc
dasHost.exe 1,192 K 1,176 K 3048 Device Association Framework Provider Host Microsoft Corporation (Verified) Microsoft Windows
dasHost.exe 984 K 984 K 4032 Device Association Framework Provider Host Microsoft Corporation (Verified) Microsoft Windows
ctfmon.exe 6,056 K 16,224 K 6376 CTF Loader Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,224 K 6,136 K 4304 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 6,660 K 6,944 K 16484 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
CompPkgSrv.exe 1,552 K 2,312 K 17632 Component Package Support Server Microsoft Corporation (Verified) Microsoft Windows
cmd.exe 4,988 K 1,832 K 16440 Windows Command Processor Microsoft Corporation (Verified) Microsoft Windows
chrome.exe 60,216 K 67,352 K 4564 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 35,864 K 46,360 K 1464 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 73,696 K 75,868 K 13628 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 27,956 K 212,580 K 19848 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 28,164 K 48,412 K 17336 Google Chrome Google LLC (Verified) Google LLC
chrome.exe 6,808 K 3,420 K 18112 Google Chrome Google LLC (Verified) Google LLC
BrccMCtl.exe 4,792 K 6,580 K 15544 Control Center 3 Main Program Brother Industries, Ltd. (No signature was present in the subject) Brother Industries, Ltd.
audiodg.exe 35,912 K 36,548 K 6228 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
atashost.exe 1,536 K 1,000 K 4700 WebEx Host for Support Center Cisco WebEx LLC (Verified) Cisco WebEx LLC
armsvc.exe 1,592 K 1,156 K 4744 Acrobat Update Service Adobe Inc. (Verified) Adobe Inc.
APSDaemon.exe 5,504 K 11,748 K 11536 Apple Push Apple Inc. (Verified) Apple Inc.
ApplicationFrameHost.exe 8,648 K 15,612 K 1448 Application Frame Host Microsoft Corporation (Verified) Microsoft Windows
ApplePhotoStreams.exe < 0.01 10,220 K 23,628 K 15268 iCloud Photo Stream Apple Inc. (Verified) Apple Inc.
acdIDInTouch2.exe 2,600 K 5,264 K 16368 acdID InTouch2 ACD Systems (Verified) ACD Systems International Inc.

  • 0

#13
OCman
Posted 26 July 2023 - 12:23 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts
_________________________________________________________________________________________________________
CONCLUSION
_________________________________________________________________________________________________________
Your system appears to be suitable for handling real-time audio and other tasks without dropouts. 
LatencyMon has been analyzing your system for  0:00:36  (h:mm:ss) on all processors.
 
 
_________________________________________________________________________________________________________
SYSTEM INFORMATION
_________________________________________________________________________________________________________
Computer name:                                        DESKTOP-N7SGSE8
OS version:                                           Windows 10, 10.0, version 2009, build: 19045 (x64)
Hardware:                                             XPS 8900, Dell Inc.
BIOS:                                                 2.9.1
CPU:                                                  GenuineIntel Intel® Core™ i7-6700 CPU @ 3.40GHz
Logical processors:                                   8
Processor groups:                                     1
Processor group size:                                 8
RAM:                                                  63318 MB total
 
 
_________________________________________________________________________________________________________
CPU SPEED
_________________________________________________________________________________________________________
Reported CPU speed (WMI):                             3408 MHz
Reported CPU speed (registry):                        3408 MHz
 
Note: reported execution times may be calculated based on a fixed reported CPU speed. Disable variable speed settings like Intel Speed Step and AMD Cool N Quiet in the BIOS setup for more accurate results.
 
 
_________________________________________________________________________________________________________
MEASURED INTERRUPT TO USER PROCESS LATENCIES
_________________________________________________________________________________________________________
The interrupt to process latency reflects the measured interval that a usermode process needed to respond to a hardware request from the moment the interrupt service routine started execution. This includes the scheduling and execution of a DPC routine, the signaling of an event and the waking up of a usermode thread from an idle wait state in response to that event.
 
Highest measured interrupt to process latency (µs):   147.80
Average measured interrupt to process latency (µs):   11.505085
 
Highest measured interrupt to DPC latency (µs):       124.30
Average measured interrupt to DPC latency (µs):       2.543344
 
 
_________________________________________________________________________________________________________
 REPORTED ISRs
_________________________________________________________________________________________________________
Interrupt service routines are routines installed by the OS and device drivers that execute in response to a hardware interrupt signal.
 
Highest ISR routine execution time (µs):              101.217136
Driver with highest ISR routine execution time:       ACPI.sys - ACPI Driver for NT, Microsoft Corporation
 
Highest reported total ISR routine time (%):          0.008395
Driver with highest ISR total time:                   dxgkrnl.sys - DirectX Graphics Kernel, Microsoft Corporation
 
Total time spent in ISRs (%)                          0.010846
 
ISR count (execution time <250 µs):                   1891
ISR count (execution time 250-500 µs):                0
ISR count (execution time 500-1000 µs):               0
ISR count (execution time 1000-2000 µs):              0
ISR count (execution time 2000-4000 µs):              0
ISR count (execution time >=4000 µs):                 0
 
 
_________________________________________________________________________________________________________
REPORTED DPCs
_________________________________________________________________________________________________________
DPC routines are part of the interrupt servicing dispatch mechanism and disable the possibility for a process to utilize the CPU while it is interrupted until the DPC has finished execution.
 
Highest DPC routine execution time (µs):              143.132629
Driver with highest DPC routine execution time:       dxgkrnl.sys - DirectX Graphics Kernel, Microsoft Corporation
 
Highest reported total DPC routine time (%):          0.014958
Driver with highest DPC total execution time:         iaStorAVC.sys - Intel® Rapid Storage Technology driver (inbox) - x64, Intel Corporation
 
Total time spent in DPCs (%)                          0.071455
 
DPC count (execution time <250 µs):                   40155
DPC count (execution time 250-500 µs):                0
DPC count (execution time 500-10000 µs):              0
DPC count (execution time 1000-2000 µs):              0
DPC count (execution time 2000-4000 µs):              0
DPC count (execution time >=4000 µs):                 0
 
 
_________________________________________________________________________________________________________
 REPORTED HARD PAGEFAULTS
_________________________________________________________________________________________________________
Hard pagefaults are events that get triggered by making use of virtual memory that is not resident in RAM but backed by a memory mapped file on disk. The process of resolving the hard pagefault requires reading in the memory from disk while the process is interrupted and blocked from execution.
 
NOTE: some processes were hit by hard pagefaults. If these were programs producing audio, they are likely to interrupt the audio stream resulting in dropouts, clicks and pops. Check the Processes tab to see which programs were hit.
 
Process with highest pagefault count:                 none
 
Total number of hard pagefaults                       1821
Hard pagefault count of hardest hit process:          1678
Number of processes hit:                              0
 
 
_________________________________________________________________________________________________________
 PER CPU DATA
_________________________________________________________________________________________________________
CPU 0 Interrupt cycle time (s):                       0.739212
CPU 0 ISR highest execution time (µs):                101.217136
CPU 0 ISR total execution time (s):                   0.031329
CPU 0 ISR count:                                      1750
CPU 0 DPC highest execution time (µs):                143.132629
CPU 0 DPC total execution time (s):                   0.185116
CPU 0 DPC count:                                      33637
_________________________________________________________________________________________________________
CPU 1 Interrupt cycle time (s):                       0.305347
CPU 1 ISR highest execution time (µs):                3.021127
CPU 1 ISR total execution time (s):                   0.000014
CPU 1 ISR count:                                      26
CPU 1 DPC highest execution time (µs):                28.636737
CPU 1 DPC total execution time (s):                   0.000575
CPU 1 DPC count:                                      139
_________________________________________________________________________________________________________
CPU 2 Interrupt cycle time (s):                       0.343677
CPU 2 ISR highest execution time (µs):                0.801056
CPU 2 ISR total execution time (s):                   0.000011
CPU 2 ISR count:                                      23
CPU 2 DPC highest execution time (µs):                83.713028
CPU 2 DPC total execution time (s):                   0.009224
CPU 2 DPC count:                                      2926
_________________________________________________________________________________________________________
CPU 3 Interrupt cycle time (s):                       0.355813
CPU 3 ISR highest execution time (µs):                15.267019
CPU 3 ISR total execution time (s):                   0.000049
CPU 3 ISR count:                                      39
CPU 3 DPC highest execution time (µs):                45.615610
CPU 3 DPC total execution time (s):                   0.000963
CPU 3 DPC count:                                      190
_________________________________________________________________________________________________________
CPU 4 Interrupt cycle time (s):                       0.326144
CPU 4 ISR highest execution time (µs):                0.664906
CPU 4 ISR total execution time (s):                   0.000002
CPU 4 ISR count:                                      4
CPU 4 DPC highest execution time (µs):                60.284624
CPU 4 DPC total execution time (s):                   0.006268
CPU 4 DPC count:                                      2085
_________________________________________________________________________________________________________
CPU 5 Interrupt cycle time (s):                       0.349071
CPU 5 ISR highest execution time (µs):                0.642019
CPU 5 ISR total execution time (s):                   0.000005
CPU 5 ISR count:                                      11
CPU 5 DPC highest execution time (µs):                28.791667
CPU 5 DPC total execution time (s):                   0.000705
CPU 5 DPC count:                                      160
_________________________________________________________________________________________________________
CPU 6 Interrupt cycle time (s):                       0.296924
CPU 6 ISR highest execution time (µs):                0.825117
CPU 6 ISR total execution time (s):                   0.000006
CPU 6 ISR count:                                      16
CPU 6 DPC highest execution time (µs):                39.566901
CPU 6 DPC total execution time (s):                   0.003111
CPU 6 DPC count:                                      810
_________________________________________________________________________________________________________
CPU 7 Interrupt cycle time (s):                       0.355534
CPU 7 ISR highest execution time (µs):                0.622653
CPU 7 ISR total execution time (s):                   0.000009
CPU 7 ISR count:                                      22
CPU 7 DPC highest execution time (µs):                57.749413
CPU 7 DPC total execution time (s):                   0.001081
CPU 7 DPC count:                                      208
_________________________________________________________________________________________________________

  • 0

#14
OCman
Posted 26 July 2023 - 12:37 PM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

Here's the 2 latency files...

Attached Thumbnails

  • latency.JPG
  • latency_hard pagefaults.JPG

  • 0

#15
OCman
Posted 28 July 2023 - 07:18 AM

OCman

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

Computer is still slow, especially on Facebook & Youtube. I checked the speed of my connection and it's correct, deleted cache, rebooted modem & router.


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP