I Started To Run Mgtools And It Said Error

Hi I have a Dell Inspiron windows 11 64 with 16 gigs memory. Anyway the fan has been running like it is getting hot. So I went on the dell site and ran all the diagnoses cleaned my system with dust remover spray. The processor seems fine so I thought well maybe it is a virus or something so been running your diagnostics Well I keep getting the following error when I run it. I will post below in uploads.
Thanks for any help you can provide.

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-05-2023 01
Ran by Wildone3 (15-05-2023 10:42:18)
Running from C:\Users\Wildone3\OneDrive\Desktop
Microsoft Windows 11 Home Version 22H2 22621.1702 (X64) (2022-10-05 05:08:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1658913165-2837818720-1570176858-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1658913165-2837818720-1570176858-503 - Limited - Disabled)
Guest (S-1-5-21-1658913165-2837818720-1570176858-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1658913165-2837818720-1570176858-504 - Limited - Disabled)
Wildone3 (S-1-5-21-1658913165-2837818720-1570176858-1001 - Administrator - Enabled) => C:\Users\Wildone3

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon MG2500 series User Registration (HKLM-x32\...\Canon MG2500 series User Registration) (Version: - ‭Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
dch_setup (HKLM-x32\...\{0A5C4FC7-C229-464C-A042-1DB2352152B6}) (Version: 1.47.0.0 - elrazdah) Hidden
Dell Digital Delivery Services (HKLM-x32\...\{CF95CED4-3A1E-4486-B7FA-428C25D617ED}) (Version: 5.0.64.0 - Dell Inc.)
Dell Mobile Connect Driver (HKLM\...\{6F9CB82D-BC34-4FC1-B90D-AFFAC5C85E7B}) (Version: 4.1.7498 - Screenovate Technologies Ltd.)
Dell SupportAssist (HKLM\...\{6D3561B7-19AA-438B-9C83-CD2CED199472}) (Version: 3.14.0.91 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{FFFED431-EF80-4C39-A66E-E11BC7413D33}) (Version: 5.5.5.16206 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{cff56899-3afb-4fe1-aeec-a0474836d1cd}) (Version: 5.5.5.16206 - Dell Inc.)
Dell SupportAssist Remediation (HKLM\...\{0ACC4393-7CDB-4512-800B-0404A9DF75E6}) (Version: 5.5.6.18729 - Dell Inc.) Hidden
Dell SupportAssist Remediation (HKLM-x32\...\{3238f3fe-4c2d-4438-8bfd-e6bb87adb36e}) (Version: 5.5.6.18729 - Dell Inc.)
Dell Update for Windows Universal (HKLM\...\{D52E2B1F-9241-473F-B535-27D67A286FC6}) (Version: 4.8.0 - Dell Inc.)
Documentation Manager (HKLM\...\{621B5711-9E74-49ED-89C1-0D46D4A122D9}) (Version: 22.220.0.4 - Intel Corporation) Hidden
Dynamic Application Loader Host Interface Service (HKLM\...\{74DF895B-001F-456C-BEA4-9254A3FCC5E6}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Fingerprint Sensor Driver (HKLM-x32\...\{D9C19E6E-4403-4DDF-B290-ECFAE2072FF9}) (Version: 20.6.0.7 - Realtek Semiconductor Corp.)
Fusion Service (HKLM\...\{091B2FD3-A3C7-4E3F-8633-02AE6F8306BB}) (Version: 2.0.58.0 - Dell.Inc) Hidden
Fusion Service (HKLM-x32\...\{4baf873a-44e8-403a-80ee-255fbed9777d}) (Version: 2.0.58.0 - Dell.Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 113.0.5672.93 - Google LLC)
Intel Driver && Support Assistant (HKLM-x32\...\{7D5F1DA8-0A8A-4762-8053-DD597941CA1C}) (Version: 23.2.17.8 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{318C30A1-C7AF-414E-890F-6345E6E0FD33}) (Version: 2.4.09084 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{0a00b776-067b-45c6-996b-8a3360ee56a4}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{d1d0fa4c-90ba-4580-9bc0-161e91344b1c}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{f07e8107-88e2-4459-865e-665afe7dda07}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2218.2.2.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{72F03A9B-21C6-4599-95FC-FFB4D9B7F50C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{B9C358AF-2012-4BD3-A476-CAFB5761B5BC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME WMI Provider (HKLM\...\{96EC8F94-3894-4F08-8FEF-227E9F790FFC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{43A88DDF-D337-4F85-A622-836D9B4BDC36}) (Version: 30.100.2104.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2104.1 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000210-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.210.0.3 - Intel Corporation)
Intel® Arc™ Control (HKLM\...\{8D12EC80-2122-4E6C-A566-A3F65E903320}) (Version: 1.66.4728.1 - Intel Corporation) Hidden
Intel® Arc™ Control (HKLM-x32\...\{da8c0cf5-05aa-4dd8-a36a-ee9cdfd8272f}) (Version: 1.66.4728.1 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{e16a7ba8-2ba1-4828-84d0-c6516a42226e}) (Version: 23.2.17.8 - Intel)
Intel® Integrated Sensor Solution (HKLM-x32\...\{b964fe76-ac8c-4729-979c-f500381293bc}) (Version: 3.10.100.4477 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{5b95dab8-53e1-4000-aca2-160e6f35cae5}) (Version: 22.220.0.4 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{761da2d6-6c6a-4188-a2e3-f20a107bc2a9}) (Version: 22.170.2.1 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{c6607260-f786-42cc-8706-0439f199ac53}) (Version: 22.150.0.3 - Intel Corporation) Hidden
ISS_Drivers_x64 (HKLM\...\{EE1CCB33-2AB5-4B86-ABD0-DF641146B55B}) (Version: 3.10.100.4477 - Intel Corporation) Hidden
Malwarebytes version 4.5.28.266 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.28.266 - Malwarebytes)
MergeModule_x64 (HKLM\...\{8B591A6B-253E-4E62-B2A8-3668CDA0A907}) (Version: 11.0.00 - Sony Corporation) Hidden
MergeModule_x86 (HKLM-x32\...\{51B45206-47B1-4B51-B46A-330B9156D6C1}) (Version: 11.0.00 - Sony Corporation) Hidden
Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.14 (x64) (HKLM\...\{40D4EC44-91F8-4EEE-869E-F4B3E90E6688}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.14 (x64) (HKLM\...\{D1726E78-81F3-40A2-A7AF-6286BAA49B1C}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM-x32\...\{a699b48e-5748-4980-ad92-0b61b1d9d718}) (Version: 5.0.17.31213 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM\...\{61202CF9-3B84-4E5A-91A1-2984FAE38259}) (Version: 48.59.55225 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.14 (x64) (HKLM-x32\...\{a75f0c38-355e-478f-b573-1dbc42915c5c}) (Version: 6.0.14.32123 - Microsoft Corporation)
Microsoft Bing Service (HKLM-x32\...\{27990F25-A90A-4CE5-868E-1A1BB70A58EE}) (Version: 2.0.0.7 - Microsoft Corporation)
Microsoft Digital Image Pro 10 (HKLM-x32\...\PictureIt_PI2_v10) (Version: 10.0.0612 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 113.0.1774.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 113.0.1774.42 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\OneDriveSetup.exe) (Version: 23.086.0423.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{43D501A5-E5E3-46EC-8F33-9E15D2A2CBD5}) (Version: 5.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 113.0.1 (x64 en-US)) (Version: 113.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 105.0 - Mozilla)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
PlayMemories Home (HKLM-x32\...\{AEB04E0E-0A28-4014-A96A-282E43B7227B}) (Version: 6.0.00.12211 - Sony Corporation)
PMB_ModeEditor (HKLM-x32\...\{F8063714-BD75-42DC-8FAA-D0E1EED92519}) (Version: 11.0.00 - Sony Corporation) Hidden
PMB_ServiceUploader (HKLM-x32\...\{CF081855-ED80-445A-BF63-025584939230}) (Version: 11.0.00 - Sony Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9418.1 - Realtek Semiconductor Corp.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
SmartByte Drivers and Services (HKLM\...\{19A754FE-0343-4311-835F-33EAB7ADEA7B}) (Version: 3.1122.728.7 - Rivet Networks)
SmartGPS Eco (HKLM-x32\...\{F0DF2A34-80D0-477C-8718-7E665341FA55}) (Version: 3.0.0.00 - MiTAC Digital Corp.)
SmartGPS Tool (HKLM-x32\...\{31647D7B-ED84-4A6B-83A2-EE0F7435DF8D}) (Version: 1.0.8.1 - MiTAC International Corporation)
TbtLegacyPlug (HKLM-x32\...\{488D2737-A8BE-4F2A-8A9B-AEFF2DB8833F}) (Version: 18.0.0.0 - elrazdah) Hidden
Telegram Desktop (HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.3.3 - Telegram FZ-LLC)
Thunderbolt™ Software (HKLM-x32\...\{6653e751-8a5d-4ba0-b13d-c3a212e9cd67}) (Version: 1.47.0.0 - Intel(R) Corporation)
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
Windows 11 Installation Assistant (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1703 - Microsoft Corporation)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\ZoomUMX) (Version: 5.12.8 (10232) - Zoom Video Communications, Inc.)

Packages:
=========
Amazon Alexa -> C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.25.1156.0_x64__22t9g3sebte08 [2022-11-29] (AMZN Mobile LLC.) [Startup Task]
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2022-10-24] (Canon Inc.)
Dell CinemaColor -> C:\Program Files\WindowsApps\PortraitDisplays.DellCinemaColor_2.4.78.0_x64__2dgmkzkw4h30c [2022-10-24] (Portrait Displays)
Dell Customer Connect -> C:\Program Files\WindowsApps\DellInc.DellCustomerConnect_5.4.9.0_x64__htrsf667h5kn2 [2023-04-11] (Dell Inc)
Dell Digital Delivery -> C:\Program Files\WindowsApps\DellInc.DellDigitalDelivery_5.0.64.0_x64__htrsf667h5kn2 [2023-02-18] (Dell Inc)
Dell Mobile Connect -> C:\Program Files\WindowsApps\ScreenovateTechnologies.DellMobileConnectPlus_4.1.8330.0_x64__0vhbc3ng4wbp0 [2022-10-24] (Screenovate Technologies)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.14.4.0_x64__htrsf667h5kn2 [2023-05-10] (Dell Inc)
Dell Update -> C:\Program Files\WindowsApps\DellInc.DellUpdate_4.8.20.0_x86__htrsf667h5kn2 [2023-03-04] (Dell Inc)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.17.945.0_x64__rz1tebttyb220 [2023-05-12] (Dolby Laboratories)
Dolby Vision Extensions -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionAccess_2.2.294.0_x64__rz1tebttyb220 [2023-04-30] (Dolby Laboratories)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2023.315.1.0_x64__8xx8rvfyw5nnt [2023-05-10] (Meta)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2023-04-22] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa [2023-03-30] (Apple Inc.) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe [2023-01-02] (Microsoft Corp.)
MPEG-2 Video Extension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-10-24] (Microsoft Corporation)
ms-resource:app_name_ms_todo -> C:\Program Files\WindowsApps\Microsoft.Todos_2.96.61291.0_x64__8wekyb3d8bbwe [2023-05-15] (Microsoft Corporation) [Startup Task]
ms-resource:System_Item_Title_IntelGraphicsControlPanel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt [2023-04-13] (INTEL CORP) [Startup Task]
My Dell -> C:\Program Files\WindowsApps\DellInc.MyDell_2.2.4.0_x64__htrsf667h5kn2 [2023-02-22] (Dell Inc)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-10-24] (Microsoft Corporation)
SmartByte -> C:\Program Files\WindowsApps\RivetNetworks.SmartByte_3.1.1001.0_x64__rh07ty8m5nkag [2022-10-24] (Rivet Networks LLC)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-04-23] (Microsoft Studios) [MS Ad]
Thunderbolt™ Control Center -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.36.0_x64__8j3eq9eme6ctt [2022-10-24] (INTEL CORP)
Waves MaxxAudio Pro for Dell -> C:\Program Files\WindowsApps\WavesAudio.WavesMaxxAudioProforDell_1.1.131.0_x64__fh4rh281wavaa [2023-04-22] (Waves Audio)
Waves MaxxAudio Pro for Dell 2021 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2021_4.0.53.0_x64__fh4rh281wavaa [2023-01-08] (Waves Audio)
WinRAR -> C:\Program Files\WinRAR [2022-08-22] (0)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001_Classes\CLSID\{0BAD39CB-DD3E-4F21-9156-649B0156C28E}\localserver32 -> C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo10de.inf_amd64_f7373b847419c8d1\WavesSvc64.exe (Waves Inc -> Waves Audio Ltd.)
CustomCLSID: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001_Classes\CLSID\{ea49acd6-0f0e-5ff1-89c4-30eda3d53b62}\InprocServer32 -> C:\Users\Wildone3\AppData\Roaming\MiTAC Digital Corporation\mgnContentManager\3.0.0.00\npmgnContentManager64.dll (MiTAC International Corporation -> MiTAC Digital Corp.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_d51acc8493d6b911\OptaneShellExt.dll [2022-10-27] (Intel Corporation -> )
ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-15] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_d51acc8493d6b911\OptaneShellExt.dll [2022-10-27] (Intel Corporation -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-15] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-06-28 14:26 - 2022-06-28 14:26 - 005998080 _____ () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module_win32.dll
2018-03-08 07:18 - 2018-03-08 07:18 - 000015360 _____ (NHibernate community) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Iesi.Collections.dll
2020-11-11 20:57 - 2020-11-11 20:57 - 000537088 _____ (NHibernate.info) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\FluentNHibernate.dll
2022-11-07 13:53 - 2022-11-07 13:53 - 001548800 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Dell Digital Delivery Services\SQLite.Interop.dll
2018-02-06 17:25 - 2018-02-06 17:25 - 000176640 _____ (rubicon IT GmbH) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.dll
2018-03-23 12:10 - 2018-03-23 12:10 - 000028160 _____ (rubicon IT GmbH) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Remotion.Linq.EagerFetching.dll
2023-02-24 23:02 - 2023-02-24 23:02 - 002165760 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2021-02-17 04:19 - 2021-02-17 04:19 - 000124928 _____ (Stateless Contributors) [File not signed] [File is in use] C:\Program Files\Dell\SupportAssistAgent\bin\stateless.dll
2021-12-17 05:45 - 2021-12-17 05:45 - 000258048 _____ (The Apache Software Foundation) [File not signed] [File is in use] C:\Program Files\Dell\SupportAssistAgent\bin\log4net.dll
2016-12-18 08:55 - 2016-12-18 08:55 - 000097280 _____ (Tunnel Vision Laboratories, LLC) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\Antlr3.Runtime.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Wildone3\Downloads\FRST64(1).exe:MBAM.Zone.Identifier [193]
AlternateDataStreams: C:\Users\Wildone3\Downloads\FRST64(2).exe:MBAM.Zone.Identifier [193]
AlternateDataStreams: C:\Users\Wildone3\Downloads\HitmanPro_x64.exe:MBAM.Zone.Identifier [164]
AlternateDataStreams: C:\Users\Wildone3\Downloads\MGtools(1).exe:MBAM.Zone.Identifier [92]
AlternateDataStreams: C:\Users\Wildone3\Downloads\MGtools.exe:MBAM.Zone.Identifier [92]
AlternateDataStreams: C:\Users\Wildone3\Downloads\RogueKiller_portable64(1).exe:MBAM.Zone.Identifier [194]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001 -> DefaultScope {52B71E6B-2C32-40E9-96F6-26541F887340} URL =
SearchScopes: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001 -> {52B71E6B-2C32-40E9-96F6-26541F887340} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-06-05 05:08 - 2021-06-05 05:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Wildone3\OneDrive\Desktop\Chloe Oct 2022\IMG_0880.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "PMBVolumeWatcher"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "Intel® Arc™ Control"
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A3F993EEC08971B3ACF152AE8201F4FA"
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\StartupApproved\Run: => "MezzmoServer"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{0138C719-E83D-4D25-8D3B-07E5F448A860}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A4B0056D-A9BD-4402-80B6-320FCFDC622A}] => (Allow) C:\Users\Wildone3\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{64A01DC1-6DD4-42E3-B312-61F8E526EE93}] => (Allow) C:\Users\Wildone3\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{EAE3D415-1399-4720-8395-31373843ED5A}] => (Allow) C:\Users\Wildone3\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{91647465-7247-43FF-A77B-7030685FC4EF}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe] => (Allow) C:\program files (x86)\conceiva\mezzmo\mezzmo.exe => No File
FirewallRules: [UDP Query User{70F48D90-9366-4B9B-8D05-951B93A2BD3E}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe] => (Allow) C:\program files (x86)\conceiva\mezzmo\mezzmo.exe => No File
FirewallRules: [{E9D9CDD0-5740-4585-9A1C-DBCE5BA57F9B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2595E4BA-A0E8-40B1-B8F1-661A6AAE340C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{A448DD13-4AEA-4A47-AD76-7B8302762B0C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{36ED5698-B617-472A-B437-EFB173EEC2A4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{CAE4A180-756F-4AB0-8D7D-183AF52EACE3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FC896380-60AC-4A4E-BF3C-C4EACB9B8C50}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{549967FA-B6FE-4AE6-89B7-EE4AF6FC033B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{5A034712-02FD-4295-A7E6-61F70A5C46B2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{1C6DA0F6-97C6-4952-B74E-C3752FDBC449}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{5BFBBE70-8090-4FED-88D8-20E9AC7F32F5}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{1F98E537-FC43-4F37-91FA-8B5E5011C004}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{97A604E0-0A1F-4512-9893-B12A164A20D8}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{66DE7FAE-3A2C-460C-B3D7-DE1899E4E4EF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{04A80B20-D808-446A-87E8-CEAFFC8188F9}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{579D7BB5-D770-47EB-A925-B28908378540}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FBF8A738-978F-4576-99DA-DEE30E2CD377}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{979A2C59-336D-4AAA-83F9-D194F9FAABEE}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{D325DAFC-484A-472F-871B-64763625C1D1}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{7EC4ADC9-70D0-4886-A37C-E9E90E490527}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{6257358C-B7A1-4A4F-82BF-EEFC9E549B85}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

15-05-2023 08:12:32 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/15/2023 07:59:32 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (05/14/2023 07:59:32 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (05/11/2023 10:04:52 PM) (Source: ESRV_SVC_QUEENCREEK) (EventID: 2) (User: )
Description: Event-ID 2

Error: (05/10/2023 09:36:56 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program firefox.exe version 112.0.2.8514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (05/10/2023 08:16:57 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program SecHealthUI.exe version 10.0.25305.1000 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Error: (05/10/2023 07:24:01 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {9e948cf6-86b8-44e0-8c2f-c1a4044c9e19}

Error: (05/10/2023 07:13:43 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {9e948cf6-86b8-44e0-8c2f-c1a4044c9e19}

Error: (05/09/2023 08:04:53 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {4119ec30-65fd-47e6-a87b-06f69bab06e6}


System errors:
=============
Error: (05/15/2023 10:16:33 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {7a26b3fa-c34f-4a3d-b8c2-8e0717508608}, had event 74

Error: (05/15/2023 08:31:27 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-R86R955)
Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout.

Error: (05/15/2023 08:29:36 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:08:48 AM on ‎5/‎15/‎2023 was unexpected.

Error: (05/15/2023 07:44:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Energy Server Service queencreek service terminated unexpectedly. It has done this 2 time(s).

Error: (05/15/2023 07:43:56 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {7a26b3fa-c34f-4a3d-b8c2-8e0717508608}, had event 74

Error: (05/15/2023 06:18:04 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {7a26b3fa-c34f-4a3d-b8c2-8e0717508608}, had event 74

Error: (05/14/2023 11:27:25 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {7a26b3fa-c34f-4a3d-b8c2-8e0717508608}, had event 74

Error: (05/14/2023 10:52:54 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Miniport Microsoft Wi-Fi Direct Virtual Adapter #2, {7a26b3fa-c34f-4a3d-b8c2-8e0717508608}, had event 74


Windows Defender:
================
Date: 2023-05-14 19:47:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-13 15:21:02
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-12 14:52:02
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-10 11:47:01
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-05-09 19:56:10
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2023-05-15 08:07:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2023-05-15 07:48:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_916d5c0af82351a2\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. 2.19.0 03/13/2023
Motherboard: Dell Inc. 0D2YGH
Processor: 11th Gen Intel(R) Core(TM) i5-11320H @ 3.20GHz
Percentage of memory in use: 56%
Total physical RAM: 16122.79 MB
Available physical RAM: 7042.2 MB
Total Virtual: 17146.79 MB
Available Virtual: 6437.03 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:458.4 GB) (Free:313.13 GB) (Model: NVMe BC711 NVMe SK hynix 512GB) NTFS

\\?\Volume{dfa63243-5ea6-434e-8947-5d5726391be7}\ (WINRETOOLS) (Fixed) (Total:0.97 GB) (Free:0.26 GB) NTFS
\\?\Volume{bf4d9c43-7b43-4fe0-aaa8-d667cbd57f39}\ (Image) (Fixed) (Total:15.86 GB) (Free:0.15 GB) NTFS
\\?\Volume{c6836f52-738e-4510-b8f6-6d7196f07520}\ (DELLSUPPORT) (Fixed) (Total:1.39 GB) (Free:0.48 GB) NTFS
\\?\Volume{6faa8bf2-b5ba-40b9-b3df-5405a3fa2f99}\ (ESP) (Fixed) (Total:0.19 GB) (Free:0.1 GB) FAT32

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================

 

They would not let me post the other one so I will have to upload the file.

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-05-2023 01
Ran by Wildone3 (15-05-2023 14:48:47) Run:2
Running from C:\Users\Wildone3\OneDrive\Desktop
Loaded Profiles: Wildone3
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start::
CreateRestorePoint:
CloseProcesses:
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\Run: [MezzmoServer] => C:\Program Files (x86)\Conceiva\Mezzmo\Mezzmo.exe /StartServe (No File)
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\Run: [Mezzmo] => C:\Program Files (x86)\Conceiva\Mezzmo\Mezzmo.ex (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
FirewallRules: [{64A01DC1-6DD4-42E3-B312-61F8E526EE93}] => (Allow) C:\Users\Wildone3\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{EAE3D415-1399-4720-8395-31373843ED5A}] => (Allow) C:\Users\Wildone3\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{91647465-7247-43FF-A77B-7030685FC4EF}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe] => (Allow) C:\program files (x86)\conceiva\mezzmo\mezzmo.exe => No File
FirewallRules: [UDP Query User{70F48D90-9366-4B9B-8D05-951B93A2BD3E}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe] => (Allow) C:\program files (x86)\conceiva\mezzmo\mezzmo.exe => No File
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\Run: [MezzmoServer] => C:\Program Files (x86)\Conceiva\Mezzmo\Mezzmo.exe /StartServe (No File)
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\Run: [Mezzmo] => C:\Program Files (x86)\Conceiva\Mezzmo\Mezzmo.ex (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
SearchScopes: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001 -> DefaultScope {52B71E6B-2C32-40E9-96F6-26541F887340} URL =
SearchScopes: HKU\S-1-5-21-1658913165-2837818720-1570176858-1001 -> {52B71E6B-2C32-40E9-96F6-26541F887340} URL =
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\...\StartupApproved\Run: => "MezzmoServer"
cmd: bitsadmin /list /allusers
cmd: sfc /scannow
cmd: DISM /Online /Cleanup-Image /CheckHealth
Emptytemp:
End::
*****************

Restore point was successfully created.
Processes closed successfully.
WinSetupMon => service not found.
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\Software\Microsoft\Windows\CurrentVersion\Run\\MezzmoServer" => not found
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Mezzmo" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{64A01DC1-6DD4-42E3-B312-61F8E526EE93}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EAE3D415-1399-4720-8395-31373843ED5A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{91647465-7247-43FF-A77B-7030685FC4EF}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{70F48D90-9366-4B9B-8D05-951B93A2BD3E}C:\program files (x86)\conceiva\mezzmo\mezzmo.exe" => not found
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\Software\Microsoft\Windows\CurrentVersion\Run\\MezzmoServer" => not found
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Mezzmo" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{52B71E6B-2C32-40E9-96F6-26541F887340} => not found
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\MezzmoServer" => not found
"HKU\S-1-5-21-1658913165-2837818720-1570176858-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\MezzmoServer" => not found

========= bitsadmin /list /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Listed 0 job(s).

========= End of CMD: =========


========= sfc /scannow =========


B e g i n n i n g s y s t e m s c a n . T h i s p r o c e s s w i l l t a k e s o m e t i m e .
B e g i n n i n g v e r i f i c a t i o n p h a s e o f s y s t e m s c a n .
V e r i f i c a t i o n 0 % c o m p l e t e .
V e r i f i c a t i o n 1 % c o m p l e t e .
V e r i f i c a t i o n 2 % c o m p l e t e .
V e r i f i c a t i o n 2 % c o m p l e t e .
V e r i f i c a t i o n 3 % c o m p l e t e .
V e r i f i c a t i o n 4 % c o m p l e t e .
V e r i f i c a t i o n 4 % c o m p l e t e .
V e r i f i c a t i o n 5 % c o m p l e t e .
V e r i f i c a t i o n 6 % c o m p l e t e .
V e r i f i c a t i o n 6 % c o m p l e t e .
V e r i f i c a t i o n 7 % c o m p l e t e .
V e r i f i c a t i o n 8 % c o m p l e t e .
V e r i f i c a t i o n 8 % c o m p l e t e .
V e r i f i c a t i o n 9 % c o m p l e t e .
V e r i f i c a t i o n 1 0 % c o m p l e t e .
V e r i f i c a t i o n 1 1 % c o m p l e t e .
V e r i f i c a t i o n 1 1 % c o m p l e t e .
V e r i f i c a t i o n 1 2 % c o m p l e t e .
V e r i f i c a t i o n 1 3 % c o m p l e t e .
V e r i f i c a t i o n 1 3 % c o m p l e t e .
V e r i f i c a t i o n 1 4 % c o m p l e t e .
V e r i f i c a t i o n 1 5 % c o m p l e t e .
V e r i f i c a t i o n 1 5 % c o m p l e t e .
V e r i f i c a t i o n 1 6 % c o m p l e t e .
V e r i f i c a t i o n 1 7 % c o m p l e t e .
V e r i f i c a t i o n 1 7 % c o m p l e t e .
V e r i f i c a t i o n 1 8 % c o m p l e t e .
V e r i f i c a t i o n 1 9 % c o m p l e t e .
V e r i f i c a t i o n 2 0 % c o m p l e t e .
V e r i f i c a t i o n 2 0 % c o m p l e t e .
V e r i f i c a t i o n 2 1 % c o m p l e t e .
V e r i f i c a t i o n 2 2 % c o m p l e t e .
V e r i f i c a t i o n 2 2 % c o m p l e t e .
V e r i f i c a t i o n 2 3 % c o m p l e t e .
V e r i f i c a t i o n 2 4 % c o m p l e t e .
V e r i f i c a t i o n 2 4 % c o m p l e t e .
V e r i f i c a t i o n 2 5 % c o m p l e t e .
V e r i f i c a t i o n 2 6 % c o m p l e t e .
V e r i f i c a t i o n 2 6 % c o m p l e t e .
V e r i f i c a t i o n 2 7 % c o m p l e t e .
V e r i f i c a t i o n 2 8 % c o m p l e t e .
V e r i f i c a t i o n 2 9 % c o m p l e t e .
V e r i f i c a t i o n 2 9 % c o m p l e t e .
V e r i f i c a t i o n 3 0 % c o m p l e t e .
V e r i f i c a t i o n 3 1 % c o m p l e t e .
V e r i f i c a t i o n 3 1 % c o m p l e t e .
V e r i f i c a t i o n 3 2 % c o m p l e t e .
V e r i f i c a t i o n 3 3 % c o m p l e t e .
V e r i f i c a t i o n 3 3 % c o m p l e t e .
V e r i f i c a t i o n 3 4 % c o m p l e t e .
V e r i f i c a t i o n 3 5 % c o m p l e t e .
V e r i f i c a t i o n 3 5 % c o m p l e t e .
V e r i f i c a t i o n 3 6 % c o m p l e t e .
V e r i f i c a t i o n 3 7 % c o m p l e t e .
V e r i f i c a t i o n 3 7 % c o m p l e t e .
V e r i f i c a t i o n 3 8 % c o m p l e t e .
V e r i f i c a t i o n 3 9 % c o m p l e t e .
V e r i f i c a t i o n 4 0 % c o m p l e t e .
V e r i f i c a t i o n 4 0 % c o m p l e t e .
V e r i f i c a t i o n 4 1 % c o m p l e t e .
V e r i f i c a t i o n 4 2 % c o m p l e t e .
V e r i f i c a t i o n 4 2 % c o m p l e t e .
V e r i f i c a t i o n 4 3 % c o m p l e t e .
V e r i f i c a t i o n 4 4 % c o m p l e t e .
V e r i f i c a t i o n 4 4 % c o m p l e t e .
V e r i f i c a t i o n 4 5 % c o m p l e t e .
V e r i f i c a t i o n 4 6 % c o m p l e t e .
V e r i f i c a t i o n 4 6 % c o m p l e t e .
V e r i f i c a t i o n 4 7 % c o m p l e t e .
V e r i f i c a t i o n 4 8 % c o m p l e t e .
V e r i f i c a t i o n 4 9 % c o m p l e t e .
V e r i f i c a t i o n 4 9 % c o m p l e t e .
V e r i f i c a t i o n 5 0 % c o m p l e t e .
V e r i f i c a t i o n 5 1 % c o m p l e t e .
V e r i f i c a t i o n 5 1 % c o m p l e t e .
V e r i f i c a t i o n 5 2 % c o m p l e t e .
V e r i f i c a t i o n 5 3 % c o m p l e t e .
V e r i f i c a t i o n 5 3 % c o m p l e t e .
V e r i f i c a t i o n 5 4 % c o m p l e t e .
V e r i f i c a t i o n 5 5 % c o m p l e t e .
V e r i f i c a t i o n 5 5 % c o m p l e t e .
V e r i f i c a t i o n 5 6 % c o m p l e t e .
V e r i f i c a t i o n 5 7 % c o m p l e t e .
V e r i f i c a t i o n 5 8 % c o m p l e t e .
V e r i f i c a t i o n 5 8 % c o m p l e t e .
V e r i f i c a t i o n 5 9 % c o m p l e t e .
V e r i f i c a t i o n 6 0 % c o m p l e t e .
V e r i f i c a t i o n 6 0 % c o m p l e t e .
V e r i f i c a t i o n 6 1 % c o m p l e t e .
V e r i f i c a t i o n 6 2 % c o m p l e t e .
V e r i f i c a t i o n 6 2 % c o m p l e t e .
V e r i f i c a t i o n 6 3 % c o m p l e t e .
V e r i f i c a t i o n 6 4 % c o m p l e t e .
V e r i f i c a t i o n 6 4 % c o m p l e t e .
V e r i f i c a t i o n 6 5 % c o m p l e t e .
V e r i f i c a t i o n 6 6 % c o m p l e t e .
V e r i f i c a t i o n 6 7 % c o m p l e t e .
V e r i f i c a t i o n 6 7 % c o m p l e t e .
V e r i f i c a t i o n 6 8 % c o m p l e t e .
V e r i f i c a t i o n 6 9 % c o m p l e t e .
V e r i f i c a t i o n 6 9 % c o m p l e t e .
V e r i f i c a t i o n 7 0 % c o m p l e t e .
V e r i f i c a t i o n 7 1 % c o m p l e t e .
V e r i f i c a t i o n 7 1 % c o m p l e t e .
V e r i f i c a t i o n 7 2 % c o m p l e t e .
V e r i f i c a t i o n 7 3 % c o m p l e t e .
V e r i f i c a t i o n 7 3 % c o m p l e t e .
V e r i f i c a t i o n 7 4 % c o m p l e t e .
V e r i f i c a t i o n 7 5 % c o m p l e t e .
V e r i f i c a t i o n 7 5 % c o m p l e t e .
V e r i f i c a t i o n 7 6 % c o m p l e t e .
V e r i f i c a t i o n 7 7 % c o m p l e t e .
V e r i f i c a t i o n 7 8 % c o m p l e t e .
V e r i f i c a t i o n 7 8 % c o m p l e t e .
V e r i f i c a t i o n 7 9 % c o m p l e t e .
V e r i f i c a t i o n 8 0 % c o m p l e t e .
V e r i f i c a t i o n 8 0 % c o m p l e t e .
V e r i f i c a t i o n 8 1 % c o m p l e t e .
V e r i f i c a t i o n 8 2 % c o m p l e t e .
V e r i f i c a t i o n 8 2 % c o m p l e t e .
V e r i f i c a t i o n 8 3 % c o m p l e t e .
V e r i f i c a t i o n 8 4 % c o m p l e t e .
V e r i f i c a t i o n 8 4 % c o m p l e t e .
V e r i f i c a t i o n 8 5 % c o m p l e t e .
V e r i f i c a t i o n 8 6 % c o m p l e t e .
V e r i f i c a t i o n 8 7 % c o m p l e t e .
V e r i f i c a t i o n 8 7 % c o m p l e t e .
V e r i f i c a t i o n 8 8 % c o m p l e t e .
V e r i f i c a t i o n 8 9 % c o m p l e t e .
V e r i f i c a t i o n 8 9 % c o m p l e t e .
V e r i f i c a t i o n 9 0 % c o m p l e t e .
V e r i f i c a t i o n 9 1 % c o m p l e t e .
V e r i f i c a t i o n 9 1 % c o m p l e t e .
V e r i f i c a t i o n 9 2 % c o m p l e t e .
V e r i f i c a t i o n 9 3 % c o m p l e t e .
V e r i f i c a t i o n 9 3 % c o m p l e t e .
V e r i f i c a t i o n 9 4 % c o m p l e t e .
V e r i f i c a t i o n 9 5 % c o m p l e t e .
V e r i f i c a t i o n 9 6 % c o m p l e t e .
V e r i f i c a t i o n 9 6 % c o m p l e t e .
V e r i f i c a t i o n 9 7 % c o m p l e t e .
V e r i f i c a t i o n 9 8 % c o m p l e t e .
V e r i f i c a t i o n 9 8 % c o m p l e t e .
V e r i f i c a t i o n 9 9 % c o m p l e t e .
V e r i f i c a t i o n 1 0 0 % c o m p l e t e .
W i n d o w s R e s o u r c e P r o t e c t i o n d i d n o t f i n d a n y i n t e g r i t y v i o l a t i o n s .

========= End of CMD: =========


========= DISM /Online /Cleanup-Image /CheckHealth =========


Deployment Image Servicing and Management tool
Version: 10.0.22621.1

Image Version: 10.0.22621.1702

No component store corruption detected.
The operation completed successfully.

========= End of CMD: =========


=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 245326722 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 9614466 B
Edge => 0 B
Chrome => 839102890 B
Firefox => 1170570150 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 47608945 B
systemprofile32 => 47608945 B
LocalService => 48298297 B
NetworkService => 48705981 B
Wildone3 => 288753974 B

RecycleBin => 2226031250 B
EmptyTemp: => 4.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:51:39 ====

 

Here is the report.

 

Yes it seems better so we must have done something. Thanks so much for the held.

 

Okay doing this now. The fan is running again like crazy!

 

No it has not really calmed down. I am also facing another issue which I will post on a different forum since it is a different issue

 

Oh I am sorry I was told that if it was a separate issue then it needed to go on a different platform. I posted it in the software area.

 

Hi all I have a Dell Inspire 13 windows 11 64 bit, 16 gigs memory. Anyway I updated the latest update and for some reason the setting app disappeared so I had to do a recovery reset, I took a picture of the updates and the the one on the top line is the one that stopped by setting app from working. I am not sure if I should download these now. I could use your help I wont update now.

Thanks

Attached Files:

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-05-2023
Ran by Wildone3 (05-06-2023 15:15:46) Run:1
Running from C:\Users\Wildone3\Downloads
Loaded Profiles: Wildone3
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start::
Zip: C:\Windows\Logs\CBS
End::
*****************

================== Zip: ===================
C:\Windows\Logs\CBS -> copied successfully to C:\Users\Wildone3\OneDrive\Desktop\05.06.2023_15.15.46.zip
=========== Zip: End ===========

==== End of Fixlog 15:15:47 ====





Okay here you go. Download file https://gofile.io/d/oGzdX7

 

I am doing updates right now. So we will see.

 

Hey all worked I do not know what you did but thank you so much!!

 

Well I am finding that even though I shut off Microsoft edge in services and in the startup programs it pops up when I start the laptop and keeps running in task manager eating memory and cpu's. Also two other issues in task eating memory is firefox and I have tried solutions online. I like the program but now its eating memory and cpu alot with the anti malware excusable. So here we are and this I think is what is making the fan go and making it hot. Argh! Thanks for all you have done.