Malware- Dell Inspiron- 20230704

Another laptop computer has been received for usage.

I have run READ & RUN ME FIRST- Malware Removal Guide to make sure there are no Malware. The relevant logs are attached.


Dr. K.D.J.H. Manilka Jayawardena,
Medical Officer of Health,
Katana.
Proud to be a Sri Lankan!

 

FRST Log Information

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-07-2023
Ran by Dell (administrator) on DESKTOP-8I5CP4T (Dell Inc. Inspiron 3501) (05-07-2023 14:42:23)
Running from C:\Users\Dell\Desktop\FRST64.exe
Loaded Profiles: Dell
Platform: Microsoft Windows 11 Home Single Language Version 22H2 22621.1848 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) D:\Programme Files\CCleaner\CCleaner64.exe
(D:\Programme Files\Autorun Eater\oldmcdonald.exe ->) (Old McDonald's Farm) [File not signed] D:\Programme Files\Autorun Eater\billy.exe
(D:\Programme Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) D:\Programme Files\Malwarebytes\Anti-Malware\mbamtray.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxEMN.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Old McDonald's Farm) [File not signed] D:\Programme Files\Autorun Eater\oldmcdonald.exe
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIServiceN.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_141eb88527011137\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ebf638e0a8a70542\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_dd349ca1e8d98184\LMS.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) D:\Programme Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Users\Dell\AppData\Local\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21490.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21490.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21490.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Dell\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.1771_none_e92b991042f36e5c\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autorun Eater] => D:\Programme Files\Autorun Eater\oldmcdonald.exe [522720 2012-02-17] (Old McDonald's Farm) [File not signed]
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\Run: [Google Update] => C:\Users\Dell\AppData\Local\Google\Update\1.3.36.272\GoogleUpdateCore.exe [223000 2023-06-23] (Google LLC -> Google LLC)
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\Run: [MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\Run: [CCleaner Smart Cleaning] => D:\Programme Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {3158EBFD-4787-469E-9C68-FEC57229D5EB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [170078616 2023-06-23] (Microsoft Windows -> Microsoft Corporation)
Task: {32F3B246-6F90-4B61-93D0-C902CC966590} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2297515699-3882534872-3379444996-1001UA{25608CAD-4005-42B7-9AFC-800C6660F1F3} => C:\Users\Dell\AppData\Local\Google\Update\GoogleUpdate.exe [156232 2022-03-11] (Google LLC -> Google LLC)
Task: {33D65CB5-A362-49EC-A620-C8FD9FEC0B1B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [419504 2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {34C574D4-2DB2-43DE-937C-C26112025008} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3657440 2023-05-12] (IObit CO., LTD -> IObit)
Task: {35F9EBE6-1E78-41E9-A0BF-F03B42769B0F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {39336766-114D-40C7-A904-34CB09B35C72} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2770120 2015-07-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {5433F446-2BE5-4A31-848A-803D3011FE68} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery Reboot (No File)
Task: {87B34BF4-4BB6-4E22-8CA9-E0730FF39A99} - System32\Tasks\CCleanerSkipUAC - Dell => D:\Programme Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {92C892D7-AB2B-44B0-8AA5-8E082D019705} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (No File)
Task: {9B0C9EEA-F68A-43E9-9199-953CD09AD644} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC Reboot (No File)
Task: {AA3D5747-429A-4199-8DB2-F919E077846A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [419504 2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD79A955-0F6F-4E60-9CBA-D5941E0DC4A0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2297515699-3882534872-3379444996-1001Core{11B1BF59-EEA0-43D0-82BB-EF28ED3354E0} => C:\Users\Dell\AppData\Local\Google\Update\GoogleUpdate.exe [156232 2022-03-11] (Google LLC -> Google LLC)
Task: {BF88B97B-EA4A-45C5-BB7B-E895ABEAB607} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6D2EBA4-1DC6-4545-95A6-19EAFEAB2774} - System32\Tasks\CCleaner Update => D:\Programme Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {D311ABA3-3CA3-4D26-9E05-2E6E508AA06A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2770120 2015-07-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA95D4A2-FBF3-4C6B-B016-20C07D1A2E9B} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {E8B9DA9A-8E32-4D68-9CEF-CEB4B55130E7} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [6099680 2023-05-23] (IObit CO., LTD -> IObit)
Task: {E8ED1B41-746C-4680-9718-EC49FF7DB095} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F285FB4E-C46C-48E7-9420-9A30F31E59F4} - System32\Tasks\CCleanerCrashReporting => D:\Programme Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "D:\Programme Files\CCleaner\LOG" --programpath "D:\Programme Files\CCleaner" --configpath "D:\Programme Files\CCleaner\Setup" --guid "616b201b-1f55-4ecd-b5d7-0e277147b738" --version "6.13.10517" --silent
Task: {F7E9BE05-AFA0-426E-81D8-5FFD69F6C664} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {F7F500AC-3F4C-4A87-A140-56D322E148C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F9C26B32-EBA1-4B7C-9F93-B7377638BC82} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [642544 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => D:\Programme Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{19d141c2-9229-41f7-b488-2c1b828f8998}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7aebdfc8-d4c8-47be-875f-1a19cb846cbf}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-05]
Edge Notifications: Default -> hxxps://meet.google.com
Edge HomePage: Default -> hxxps://www.google.lk/?gws_rd=ssl
Edge StartupUrls: Default -> "hxxps://www.google.lk/?gws_rd=ssl"
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-07-04]
Edge Extension: (Edge relevant text changes) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-26]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
FireFox:
========
FF DefaultProfile: iplfhhw7.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\iplfhhw7.default [2023-07-04]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\4h3ij78r.default-release [2023-07-05]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2023-07-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-11]
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-07-04]
CHR Extension: (Google Docs Offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-17]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65432 2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2848440 2015-07-04] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; D:\Programme Files\Malwarebytes\Anti-Malware\MBAMService.exe [9094440 2023-07-04] (Malwarebytes Inc. -> Malwarebytes)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AcxHdAudio; C:\WINDOWS\System32\drivers\AcxHdAudio.sys [561152 2023-05-24] (Microsoft Windows -> Microsoft Corporation)
R3 CirrusLFD; C:\WINDOWS\System32\DriverStore\FileRepository\cshda.inf_amd64_973dd943afdf23fb\CSLFD.sys [134768 2022-01-14] (Cirrus Logic, Inc -> Cirrus Logic, Inc.)
R3 CirrusUFD; C:\WINDOWS\System32\DriverStore\FileRepository\cshda.inf_amd64_973dd943afdf23fb\CSUFD.sys [23840 2022-01-14] (WDKTestCert driver dev,131877739977077075 -> Cirrus Logic, Inc.)
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_c330c09d72f3e083\iaLPSS2_GPIO2_TGL.sys [128664 2021-01-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_312c3014729186bd\iaLPSS2_I2C_TGL.sys [201376 2021-01-27] (Intel Corporation -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKslaacda7a9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9FD77956-F47A-4480-A8C6-EEEE42EA33DC}\MpKslDrv.sys [213288 2023-07-05] (Microsoft Windows -> Microsoft Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-23] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-05 14:42 - 2023-07-05 14:43 - 000020063 _____ C:\Users\Dell\Desktop\FRST.txt
2023-07-05 14:42 - 2023-07-05 14:42 - 000000000 ____D C:\Users\Dell\Desktop\FRST-OlderVersion
2023-07-05 14:37 - 2023-07-05 14:42 - 000000000 ____D C:\FRST
2023-07-05 14:36 - 2023-07-05 14:42 - 002383360 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2023-07-05 00:14 - 2023-07-05 14:29 - 000000000 ____D C:\ProgramData\ProductData
2023-07-05 00:14 - 2023-07-05 00:14 - 000003260 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_AutoAnalyze
2023-07-05 00:14 - 2023-07-05 00:14 - 000003100 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Startup
2023-07-05 00:14 - 2023-07-05 00:14 - 000003096 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Update
2023-07-05 00:14 - 2023-07-05 00:14 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2023-07-05 00:14 - 2023-07-05 00:14 - 000000000 ____D C:\Users\Dell\AppData\LocalLow\IObit
2023-07-05 00:14 - 2023-07-05 00:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2023-07-05 00:14 - 2023-07-05 00:14 - 000000000 ____D C:\ProgramData\IObit
2023-07-05 00:14 - 2023-07-05 00:14 - 000000000 ____D C:\Program Files (x86)\IObit
2023-07-05 00:14 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2023-07-05 00:14 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2023-07-05 00:14 - 2016-03-22 11:02 - 000036824 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2023-07-05 00:13 - 2023-07-05 00:14 - 000000000 ____D C:\Users\Dell\AppData\Roaming\IObit
2023-07-04 23:58 - 2023-07-04 23:58 - 000000995 _____ C:\Users\Dell\Desktop\Dr. Manilka's Desktop - Shortcut.lnk
2023-07-04 23:37 - 2023-07-05 00:15 - 000000000 ____D C:\Users\Dell\Documents\Programme Shortcuts
2023-07-04 23:34 - 2023-07-05 00:15 - 000000000 ____D C:\Users\Dell\Documents\Dr. Manilka's Desktop
2023-07-04 23:33 - 2023-07-04 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autorun Eater
2023-07-04 23:33 - 2023-07-04 23:33 - 000000000 ____D C:\ProgramData\Autorun Eater
2023-07-04 23:30 - 2023-07-05 00:05 - 000000000 ____D C:\ProgramData\TEMP
2023-07-04 23:30 - 2023-07-04 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2023-07-04 23:28 - 2023-07-05 14:32 - 000004214 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-04 23:28 - 2023-07-05 14:29 - 000000776 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-04 23:28 - 2023-07-04 23:28 - 000003492 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-04 23:28 - 2023-07-04 23:28 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Dell
2023-07-04 23:28 - 2023-07-04 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-07-04 22:50 - 2023-07-04 22:55 - 000238761 _____ C:\MGlogs.zip
2023-07-04 22:50 - 2023-07-04 22:55 - 000000000 ____D C:\MGtools
2023-07-04 22:22 - 2023-07-04 22:49 - 000000000 ____D C:\ProgramData\HitmanPro
2023-07-04 22:11 - 2023-07-04 22:16 - 000000000 ____D C:\ProgramData\RogueKiller
2023-07-04 21:50 - 2023-07-04 21:50 - 000000000 ____D C:\Users\Dell\AppData\Local\mbam
2023-07-04 21:48 - 2023-07-04 21:48 - 000001006 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-07-04 21:47 - 2023-07-04 21:47 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-07-04 21:45 - 2023-06-26 14:34 - 001993530 _____ C:\MGtools.exe
2023-07-04 21:44 - 2023-06-26 14:33 - 035220912 _____ C:\Users\Dell\Desktop\RogueKiller 15.11.0.0.exe
2023-07-04 21:44 - 2023-03-30 17:48 - 014248944 _____ (SurfRight B.V.) C:\Users\Dell\Desktop\HitmanPro 3.8.30 Build 326_x64.exe
2023-07-04 21:44 - 2023-03-30 17:22 - 331809664 _____ (Malwarebytes) C:\Users\Dell\Desktop\Malwarebytes 4.5.25.256 5.0.6.53 Beta.exe
2023-07-04 21:41 - 2023-07-04 21:42 - 000000000 ____D C:\AdwCleaner
2023-07-04 21:39 - 2023-06-26 18:34 - 008791352 _____ (Malwarebytes) C:\Users\Dell\Desktop\AdwCleaner 8.4.0.0.exe
2023-06-23 11:55 - 2023-06-23 11:55 - 000000000 ___HD C:\$WinREAgent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-05 14:42 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-05 14:41 - 2023-04-04 15:25 - 000804924 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-05 14:41 - 2022-05-07 10:52 - 000000000 ____D C:\WINDOWS\INF
2023-07-05 14:34 - 2022-05-07 10:54 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-05 14:34 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-05 14:30 - 2022-05-07 10:54 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-05 14:29 - 2023-04-04 12:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-05 14:29 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-05 14:29 - 2021-12-15 07:54 - 000012288 ___SH C:\DumpStack.log.tmp
2023-07-05 14:29 - 2021-12-14 16:37 - 000000000 __SHD C:\Users\Dell\IntelGraphicsProfiles
2023-07-05 14:29 - 2021-12-14 16:37 - 000000000 ____D C:\Intel
2023-07-05 00:16 - 2023-04-04 10:57 - 000000000 ____D C:\Users\Dell
2023-07-05 00:16 - 2022-05-07 10:47 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-07-05 00:15 - 2022-03-11 10:54 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Word
2023-07-04 23:53 - 2023-03-25 09:33 - 000000000 ____D C:\Users\Dell\Documents\MOH's Documents
2023-07-04 23:32 - 2019-12-07 14:44 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2023-07-04 23:30 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2023-07-04 23:29 - 2023-04-03 08:30 - 000000000 ___DC C:\WINDOWS\Panther
2023-07-04 23:05 - 2023-04-04 12:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-07-04 22:56 - 2022-05-07 10:47 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-04 21:48 - 2022-05-07 10:54 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-04 21:44 - 2022-03-11 11:34 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\PowerPoint
2023-07-04 21:39 - 2022-03-11 10:54 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\UProof
2023-07-04 21:36 - 2023-04-04 12:56 - 000467448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\WUModels
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\UUS
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-07-04 21:35 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-04 21:35 - 2022-05-07 10:47 - 000000000 ____D C:\WINDOWS\servicing
2023-07-01 12:31 - 2022-03-11 10:54 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Office
2023-07-01 10:39 - 2021-12-15 07:54 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-30 11:48 - 2022-03-11 10:43 - 000000000 ____D C:\Users\Dell\AppData\Roaming\vlc
2023-06-30 09:19 - 2022-03-11 10:45 - 000002497 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-23 11:57 - 2023-04-04 15:20 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-23 10:20 - 2023-04-04 12:58 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2297515699-3882534872-3379444996-1001
2023-06-23 10:20 - 2023-04-04 12:58 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2297515699-3882534872-3379444996-1001
2023-06-23 10:20 - 2021-12-15 07:57 - 000002380 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-23 10:20 - 2021-12-14 16:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-23 10:19 - 2023-04-04 12:58 - 000004052 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2297515699-3882534872-3379444996-1001UA{25608CAD-4005-42B7-9AFC-800C6660F1F3}
2023-06-23 10:19 - 2023-04-04 12:58 - 000003784 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2297515699-3882534872-3379444996-1001Core{11B1BF59-EEA0-43D0-82BB-EF28ED3354E0}
2023-06-23 10:18 - 2021-12-14 16:36 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-23 10:06 - 2021-12-15 07:54 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-23 10:04 - 2023-04-04 12:58 - 000003536 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-23 10:04 - 2023-04-04 12:58 - 000003412 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\setup
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\Provisioning
2023-06-09 15:05 - 2022-05-07 10:54 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-06-09 10:47 - 2021-12-15 07:59 - 000000000 ____D C:\Users\Dell\AppData\Local\Packages
2023-06-09 10:45 - 2023-04-04 10:23 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Excel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================

Addition Log is uploaded as the message exceeds 40000 characters which gives an error message..

 

Addition Log Information

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2023
Ran by Dell (05-07-2023 14:43:37)
Running from C:\Users\Dell\Desktop
Microsoft Windows 11 Home Single Language Version 22H2 22621.1848 (X64) (2023-04-04 09:49:47)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2297515699-3882534872-3379444996-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2297515699-3882534872-3379444996-503 - Limited - Disabled)
Dell (S-1-5-21-2297515699-3882534872-3379444996-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-2297515699-3882534872-3379444996-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2297515699-3882534872-3379444996-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Autorun Eater v2.6 (HKLM-x32\...\Autorun Eater_is1) (Version: 2.6 - Old McDonald's Farm)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
Google Chrome (HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Google Meet (formerly Hangouts Meet) - Free Video Meetings (HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\5bf8b90d77f4e47f833e6c393361380f) (Version: 1.0 - Google\Chrome)
HP LaserJet Pro M404-M405 Basic Device Software (HKLM\...\{E28BC27C-4923-4EA1-A570-84601713B69A}) (Version: 48.6.4638.2245 - HP Inc.)
Malwarebytes version 4.5.25.256 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.25.256 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.4229.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\OneDriveSetup.exe) (Version: 23.119.0606.0001 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.4229.1002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{43D501A5-E5E3-46EC-8F33-9E15D2A2CBD5}) (Version: 5.70.0.0 - Microsoft Corporation)
Mozilla Firefox 88.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 88.0.1 (x86 en-US)) (Version: 88.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 88.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.4229.1002 - Microsoft Corporation) Hidden
Smart Defrag 8 (HKLM-x32\...\Smart Defrag_is1) (Version: 8.5.0.299 - IObit)
SpywareBlaster 6.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 6.0.0 - BrightFort LLC)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\ZoomUMX) (Version: 5.13.11 (13434) - Zoom Video Communications, Inc.)
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-09-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-09-08] (Microsoft Corporation) [MS Ad]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe [2023-04-08] (Microsoft Corp.)
ms-resource:app_name_ms_todo -> C:\Program Files\WindowsApps\Microsoft.Todos_2.97.61391.0_x64__8wekyb3d8bbwe [2023-06-09] (Microsoft Corporation) [Startup Task]
ms-resource:System_Item_Title_IntelGraphicsControlPanel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-04] (INTEL CORP) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2023-07-04] (Twitter Inc.)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-06-23] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x86__8wekyb3d8bbwe [2023-06-23] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{1F9E0710-2073-435F-9C1B-F29946205947}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{2919A592-BF5E-4AF5-A658-84454D70841E}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.203\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{5D44759C-CF3F-433D-9EA0-267E45577C77}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.213\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{69545769-8D02-4B07-A481-AD374CD8D5D1}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{6C2FDA67-4337-4D78-99BC-2C12B5F5B425}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.232\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{75399D28-E622-4973-8752-BC0F7DC47AF3}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.272\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Dell\AppData\Local\Google\Chrome\Application\114.0.5735.199\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{CA07EE63-A212-4373-AE82-FBF92FCA8DCC}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.242\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{DA06AAE8-5748-4509-850F-17AA522F8372}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.272\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.272\psuser_64.dll (Google LLC -> Google LLC)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programme Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-07-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programme Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-07-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Dell\Documents\Programme Shortcuts\Google Meet (formerly Hangouts Meet) - Free Video Meetings.lnk -> C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dkainijpcknoofiakgccliajhbmlbhji
ShortcutWithArgument: C:\Users\Dell\Documents\Programme Shortcuts\Person 1 - Chrome.lnk -> C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Meet (formerly Hangouts Meet) - Free Video Meetings.lnk -> C:\Users\Dell\AppData\Local\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=dkainijpcknoofiakgccliajhbmlbhji
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [136]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-11] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\...\1001movie.com -> 1001movie.com
There are 6091 more sites.
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 14:44 - 2019-12-07 14:42 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:199.34 GB) (Free:162.23 GB) (81%)
==================== Faulty Device Manager Devices ============
Name: Mobile AT Interface
Description: Mobile AT Interface
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Mobile Diag Interface
Description: Mobile Diag Interface
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (07/05/2023 12:05:47 AM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Faulting application name: SecurityHealthService.exe, version: 10.0.22621.1635, time stamp: 0xc9cb2878
Faulting module name: ntdll.dll, version: 10.0.22621.1848, time stamp: 0x48d14984
Exception code: 0xc0000374
Fault offset: 0x000000000010be19
Faulting process id: 0x0x2b60
Faulting application start time: 0x0x1d9ae9f11ce7fcc
Faulting application path: C:\WINDOWS\system32\SecurityHealthService.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: a4686d5f-1890-460c-a0d0-9ae59d0031ec
Faulting package full name:
Faulting package-relative application ID:
Error: (07/04/2023 11:13:24 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Faulting application name: SecurityHealthService.exe, version: 10.0.22621.1635, time stamp: 0xc9cb2878
Faulting module name: ntdll.dll, version: 10.0.22621.1848, time stamp: 0x48d14984
Exception code: 0xc0000374
Fault offset: 0x000000000010be19
Faulting process id: 0x0x21e8
Faulting application start time: 0x0x1d9ae91a7dd9034
Faulting application path: C:\WINDOWS\system32\SecurityHealthService.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report Id: f66fd717-7b9a-479e-81d2-fae785e1c45d
Faulting package full name:
Faulting package-relative application ID:
Error: (06/30/2023 11:49:30 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (06/30/2023 11:49:30 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (06/23/2023 12:07:21 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (06/23/2023 12:07:21 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (06/23/2023 11:17:06 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-8I5CP4T)
Description: Faulting application name: Widgets.exe, version: 421.20070.1670.0, time stamp: 0x6466b871
Faulting module name: Widgets.exe, version: 421.20070.1670.0, time stamp: 0x6466b871
Exception code: 0xc0000409
Fault offset: 0x000000000005fece
Faulting process id: 0x0x1ad4
Faulting application start time: 0x0x1d9a58bc914f0d2
Faulting application path: C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
Faulting module path: C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
Report Id: eee72d35-76da-4099-be75-8e335bbd60ec
Faulting package full name: MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy
Faulting package-relative application ID: Widgets
Error: (06/23/2023 11:17:06 AM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: The program explorer.exe version 10.0.22621.1635 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
System errors:
=============
Error: (07/05/2023 02:29:54 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel AirSpaceChannel. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.
Error: (07/05/2023 12:05:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Security Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
Error: (07/04/2023 11:57:01 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-8I5CP4T)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (07/04/2023 11:29:15 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-8I5CP4T)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (07/04/2023 11:13:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Security Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
Error: (07/04/2023 09:46:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9WZDNCRFHVQM-MICROSOFT.WINDOWSCOMMUNICATIONSAPPS.
Error: (07/04/2023 09:39:40 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-8I5CP4T)
Description: The server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} did not register with DCOM within the required timeout.
Error: (07/04/2023 09:37:11 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 22) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel AirSpaceChannel. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.
Windows Defender:
================
Date: 2023-06-30 10:55:40
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-06-09 10:38:27
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-05-25 13:48:35
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-04-30 13:00:21
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-04-29 14:53:55
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2023-06-30 09:10:05
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.391.2326.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23050.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2023-06-30 09:10:05
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.391.2326.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23050.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2023-06-30 09:10:05
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.391.2326.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23050.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2023-06-30 09:10:05
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.391.2326.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23050.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2023-06-30 09:10:05
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.391.2326.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23050.3
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
CodeIntegrity:
===============
Date: 2023-07-05 14:42:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\ControlLib.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-07-05 00:05:51
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\fcon.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
BIOS: Dell Inc. 1.23.0 03/13/2023
Motherboard: Dell Inc. 0PY8NM
Processor: 11th Gen Intel(R) Core(TM) i3-1115G4 @ 3.00GHz
Percentage of memory in use: 87%
Total physical RAM: 3818.79 MB
Available physical RAM: 495.14 MB
Total Virtual: 5802.79 MB
Available Virtual: 2099.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:199.34 GB) (Free:162.23 GB) (Model: KINGSTON SNVS500G) NTFS
Drive d: (New Volume) (Fixed) (Total:265.65 GB) (Free:264.51 GB) (Model: KINGSTON SNVS500G) NTFS
Drive g: (FLASH DRIVE) (Removable) (Total:14.9 GB) (Free:2.94 GB) FAT32
\\?\Volume{8a73fc0f-1991-48ce-9674-7c48951e715f}\ () (Fixed) (Total:0.66 GB) (Free:0.08 GB) NTFS
\\?\Volume{c093f6e1-918b-40c2-91ed-49e34b369b66}\ () (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 14.9 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=14.9 GB) - (Type=FAT32)
==================== End of Addition.txt =======================

 

Thank you for the support given to streamline this Laptop.

Fixlog information

Fix result of Farbar Recovery Scan Tool (x64) Version: 05-07-2023
Ran by Dell (06-07-2023 09:50:38) Run:1
Running from C:\Users\Dell\Desktop
Loaded Profiles: Dell
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start::
CreateRestorePoint:
CloseProcesses:
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
Task: {5433F446-2BE5-4A31-848A-803D3011FE68} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery Reboot (No File)
Task: {92C892D7-AB2B-44B0-8AA5-8E082D019705} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (No File)
Task: {9B0C9EEA-F68A-43E9-9199-953CD09AD644} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC Reboot (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{1F9E0710-2073-435F-9C1B-F29946205947}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{2919A592-BF5E-4AF5-A658-84454D70841E}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.203\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{5D44759C-CF3F-433D-9EA0-267E45577C77}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.213\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{69545769-8D02-4B07-A481-AD374CD8D5D1}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{6C2FDA67-4337-4D78-99BC-2C12B5F5B425}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.232\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{75399D28-E622-4973-8752-BC0F7DC47AF3}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{CA07EE63-A212-4373-AE82-FBF92FCA8DCC}\InprocServer32 -> C:\Users\Dell\AppData\Local\Google\Update\1.3.36.242\psuser_64.dll => No File
Task: {5433F446-2BE5-4A31-848A-803D3011FE68} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery Reboot (No File)
Task: {92C892D7-AB2B-44B0-8AA5-8E082D019705} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (No File)
Task: {9B0C9EEA-F68A-43E9-9199-953CD09AD644} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC Reboot (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [136]
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
cmd: netsh winsock reset catalog
cmd: netsh int ip reset resetlog.txt
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state ON
cmd: bitsadmin /reset /allusers
cmd: ipconfig /flushdns
Removeproxy:
hosts:
cmd: sfc /scannow
cmd: DISM /Online /Cleanup-Image /CheckHealth
Emptytemp:
End::
*****************
Error: (0) Failed to create a restore point.
Processes closed successfully.
HKLM\System\CurrentControlSet\Services\WinSetupMon => removed successfully
WinSetupMon => service removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5433F446-2BE5-4A31-848A-803D3011FE68}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5433F446-2BE5-4A31-848A-803D3011FE68}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{92C892D7-AB2B-44B0-8AA5-8E082D019705}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92C892D7-AB2B-44B0-8AA5-8E082D019705}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9B0C9EEA-F68A-43E9-9199-953CD09AD644}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B0C9EEA-F68A-43E9-9199-953CD09AD644}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{1F9E0710-2073-435F-9C1B-F29946205947} => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{2919A592-BF5E-4AF5-A658-84454D70841E} => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{5D44759C-CF3F-433D-9EA0-267E45577C77} => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{69545769-8D02-4B07-A481-AD374CD8D5D1} => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{6C2FDA67-4337-4D78-99BC-2C12B5F5B425} => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{75399D28-E622-4973-8752-BC0F7DC47AF3} => removed successfully
HKU\S-1-5-21-2297515699-3882534872-3379444996-1001_Classes\CLSID\{CA07EE63-A212-4373-AE82-FBF92FCA8DCC} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5433F446-2BE5-4A31-848A-803D3011FE68}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{92C892D7-AB2B-44B0-8AA5-8E082D019705}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9B0C9EEA-F68A-43E9-9199-953CD09AD644}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\Reboot_AC" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => not found
"C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => not found
HKLM\SOFTWARE\Policies\Google => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Edge => removed successfully
C:\ProgramData\TEMP => ":5C321E34" ADS removed successfully
"HKLM\Software\Policies\Microsoft\Windows\System\\EnableSmartScreen" => removed successfully
========= netsh winsock reset catalog =========
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
========= End of CMD: =========
========= netsh int ip reset resetlog.txt =========
Resetting Compartment Forwarding, OK!
Resetting Compartment, OK!
Resetting Control Protocol, OK!
Resetting Echo Sequence Request, OK!
Resetting Global, OK!
Resetting Interface, OK!
Resetting Anycast Address, OK!
Resetting Multicast Address, OK!
Resetting Unicast Address, OK!
Resetting Neighbor, OK!
Resetting Path, OK!
Resetting Potential, OK!
Resetting Prefix Policy, OK!
Resetting Proxy Neighbor, OK!
Resetting Route, OK!
Resetting Site Prefix, OK!
Resetting Subinterface, OK!
Resetting Wakeup Pattern, OK!
Resetting Resolve Neighbor, OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , failed.
Access is denied.
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Resetting , OK!
Restart the computer to complete this action.
========= End of CMD: =========
========= netsh advfirewall reset =========
Ok.
========= End of CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Ok.
========= End of CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
{43AF718B-7E93-4D71-8351-ECC2B5178015} canceled.
{11126A75-E29F-46A7-AC95-2BBFB2D15A8C} canceled.
{02A8522C-2051-4F09-81D4-4D928BF739CE} canceled.
{BE7027DA-0521-499C-B52A-BCD3B88E44DA} canceled.
4 out of 4 jobs canceled.
========= End of CMD: =========
========= ipconfig /flushdns =========
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
========= End of CMD: =========
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2297515699-3882534872-3379444996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
========= End of RemoveProxy: =========
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========= sfc /scannow =========
Beginning system scan. This process will take some time.
Beginning verification phase of system scan.
Verification 0% complete.
Verification 1% complete.
Verification 2% complete.
Verification 2% complete.
Verification 3% complete.
Verification 4% complete.
Verification 4% complete.
Verification 5% complete.
Verification 6% complete.
Verification 6% complete.
Verification 7% complete.
Verification 8% complete.
Verification 8% complete.
Verification 9% complete.
Verification 10% complete.
Verification 11% complete.
Verification 11% complete.
Verification 12% complete.
Verification 13% complete.
Verification 13% complete.
Verification 14% complete.
Verification 15% complete.
Verification 15% complete.
Verification 16% complete.
Verification 17% complete.
Verification 17% complete.
Verification 18% complete.
Verification 19% complete.
Verification 20% complete.
Verification 20% complete.
Verification 21% complete.
Verification 22% complete.
Verification 22% complete.
Verification 23% complete.
Verification 24% complete.
Verification 24% complete.
Verification 25% complete.
Verification 26% complete.
Verification 26% complete.
Verification 27% complete.
Verification 28% complete.
Verification 29% complete.
Verification 29% complete.
Verification 30% complete.
Verification 31% complete.
Verification 31% complete.
Verification 32% complete.
Verification 33% complete.
Verification 33% complete.
Verification 34% complete.
Verification 35% complete.
Verification 35% complete.
Verification 36% complete.
Verification 37% complete.
Verification 37% complete.
Verification 38% complete.
Verification 39% complete.
Verification 40% complete.
Verification 40% complete.
Verification 41% complete.
Verification 42% complete.
Verification 42% complete.
Verification 43% complete.
Verification 44% complete.
Verification 44% complete.
Verification 45% complete.
Verification 46% complete.
Verification 46% complete.
Verification 47% complete.
Verification 48% complete.
Verification 49% complete.
Verification 49% complete.
Verification 50% complete.
Verification 51% complete.
Verification 51% complete.
Verification 52% complete.
Verification 53% complete.
Verification 53% complete.
Verification 54% complete.
Verification 55% complete.
Verification 55% complete.
Verification 56% complete.
Verification 57% complete.
Verification 58% complete.
Verification 58% complete.
Verification 59% complete.
Verification 60% complete.
Verification 60% complete.
Verification 61% complete.
Verification 62% complete.
Verification 62% complete.
Verification 63% complete.
Verification 64% complete.
Verification 64% complete.
Verification 65% complete.
Verification 66% complete.
Verification 66% complete.
Verification 67% complete.
Verification 68% complete.
Verification 69% complete.
Verification 69% complete.
Verification 70% complete.
Verification 71% complete.
Verification 71% complete.
Verification 72% complete.
Verification 73% complete.
Verification 73% complete.
Verification 74% complete.
Verification 75% complete.
Verification 75% complete.
Verification 76% complete.
Verification 77% complete.
Verification 78% complete.
Verification 78% complete.
Verification 79% complete.
Verification 80% complete.
Verification 80% complete.
Verification 81% complete.
Verification 82% complete.
Verification 82% complete.
Verification 83% complete.
Verification 84% complete.
Verification 84% complete.
Verification 85% complete.
Verification 86% complete.
Verification 87% complete.
Verification 87% complete.
Verification 88% complete.
Verification 89% complete.
Verification 89% complete.
Verification 90% complete.
Verification 91% complete.
Verification 91% complete.
Verification 92% complete.
Verification 93% complete.
Verification 93% complete.
Verification 94% complete.
Verification 95% complete.
Verification 95% complete.
Verification 96% complete.
Verification 97% complete.
Verification 98% complete.
Verification 98% complete.
Verification 99% complete.
Verification 100% complete.
Windows Resource Protection did not find any integrity violations.
========= End of CMD: =========
========= DISM /Online /Cleanup-Image /CheckHealth =========
Deployment Image Servicing and Management tool
Version: 10.0.22621.1
Image Version: 10.0.22621.1848
No component store corruption detected.
The operation completed successfully.
========= End of CMD: =========
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9553476 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1169893 B
Edge => 0 B
Chrome => 6251580 B
Firefox => 17107171 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Dell => 186624170 B
RecycleBin => 59851 B
EmptyTemp: => 210.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:52:06 ====

 

Fixlog information

Fix result of Farbar Recovery Scan Tool (x64) Version: 05-07-2023
Ran by Dell (06-07-2023 20:29:16) Run:2
Running from C:\Users\Dell\Desktop
Loaded Profiles: Dell
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start::
SystemRestore: On
CreateRestorePoint:
Powershell: "Get-AppxPackage Microsoft.SecHealthUI -AllUsers | Reset-AppxPackage"
End::
*****************
SystemRestore: On => completed
Restore point was successfully created.
========= "Get-AppxPackage Microsoft.SecHealthUI -AllUsers | Reset-AppxPackage" =========
Get-AppxPackage Microsoft.SecHealthUI -AllUsers | Reset-AppxPackage
========= End of Powershell: =========
==== End of Fixlog 20:29:21 ====


Windows Update
It indicates

"Error encountered
We couldn't connect to the update service. We'll try again later, or you can check now. If it still doesn't work, make sure you're connected to the Internet."

The above message re-appears after clicking "Retry" even though I am connected to the Internet.

 

Windows Update
It indicates

"You're up to date"

 

I believe this the laptop is running fine.

 

I guess this wraps things up.

Thank You so much for your time and effort.

This is yours truly signing off.