Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

PC running slow for some reason.


  • Please log in to reply

#31
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

I made the change but it did not seem to help in any way.

I have also run the Windows Update Troubleshooting process with no positive results as well.


Edited by Izzy1665, 04 December 2018 - 11:58 AM.

  • 0

Advertisements


#32
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP
Search for
Services.msc
Hit enter
Verify
Bits
Is running
  • 0

#33
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

It is set to Manual. I started it and tried the Windows Update again but no luck. Each of the 4 updates left have a Error 0x80070015 at the end of them. I tried individually updating them using via the Microsoft Store but that failed also.

 

2018-11 Cumulative Update for Windows 10 Version 1803 for x64-based Systems (KB4467702) - Error 0x80070015

 

2018-11 Security Update for Adobe Flash Player for Windows 10 Version 1803 for x64-based Systems (KB4477029) - Error 0x80070015

 

2018-11 Update for Windows 10 Version 1803 for x64-based Systems (KB4023057) - Error 0x80070015

 

Update for Adobe Flash Player for Windows 10 Version 1803 for x64-based Systems (KB4462930) - Error 0x80070015


  • 0

#34
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP
On trip. Back in Saturday
  • 0

#35
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

Enjoy your trip & take care.


  • 0

#36
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP

Open an elevated command prompt:

http://www.howtogeek...-in-windows-10/
http://www.eightforu...indows-8-a.html

(If you open an elevated Command Prompt properly it will say Administrator: Command Prompt in the margin at the top of the window)


Once you have an elevated command prompt:

Type:

 DISM  /Online  /Cleanup-Image  /RestoreHealth

 (I use two spaces so you can be sure to see where one space goes.)
Hit Enter.  This will take a while (10-20 minutes) to complete.  Once the prompt returns:

Reboot.  Open an elevated Command Prompt again and type (with an Enter after the line):

sfc  /scannow



This will also take a few minutes.  

When it finishes it will say one of the following:

Windows did not find any integrity violations (a good thing)
Windows Resource Protection found corrupt files and repaired them (a good thing)
Windows Resource Protection found corrupt files but was unable to fix some (or all) of them (not a good thing)

If you get the last result then type:
findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  %UserProfile%\desktop\junk.txt


Hit Enter.  Then type::


notepad %UserProfile%\desktop\junk.txt

Hit Enter.

 Copy the text from notepad and paste it into a reply.


After you finish SFC, regardless of the result:



1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.  (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)


 


  • 0

#37
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

Vino's Event Viewer v01c run on Windows 7 in English
Report run at 09/12/2018 6:38:05 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 03/12/2018 1:58:22 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 02/12/2018 11:43:15 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 01/12/2018 12:17:42 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 30/11/2018 7:29:12 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 27/11/2018 1:01:12 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 24/11/2018 6:03:23 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 24/11/2018 12:38:18 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 22/11/2018 12:41:49 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 18/11/2018 12:27:59 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 14/11/2018 5:25:10 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 13/11/2018 4:13:07 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 12/11/2018 10:15:52 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 10/11/2018 5:03:16 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 07/11/2018 12:38:01 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 01/11/2018 7:19:11 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 17/10/2018 4:28:00 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 17/10/2018 3:11:33 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 17/10/2018 2:18:14 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 15/10/2018 2:57:26 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

Log: 'System' Date/Time: 13/10/2018 6:08:33 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 09/12/2018 11:35:33 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 11:35:32 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 11:35:31 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 11:35:30 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 11:31:39 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}  and APPID  {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}  to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 09/12/2018 11:31:39 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}  and APPID  {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}  to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 09/12/2018 11:31:32 PM
Type: Error Category: 0
Event: 5003 Source: athur
NETGEAR WNA1100 N150 Wireless USB Adapter : Could not find a network adapter.

Log: 'System' Date/Time: 09/12/2018 9:01:48 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 8:57:33 PM
Type: Error Category: 0
Event: 7031 Source: Service Control Manager
The WpnUserService_2c7e8 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.

Log: 'System' Date/Time: 09/12/2018 6:25:34 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {8BC3F05E-D86B-11D0-A075-00C04FB68820}  and APPID  {8BC3F05E-D86B-11D0-A075-00C04FB68820}  to the user LIVING-ROOM-PC\Bob SID (S-1-5-21-110091273-928939627-1752962748-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 09/12/2018 6:25:32 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {8BC3F05E-D86B-11D0-A075-00C04FB68820}  and APPID  {8BC3F05E-D86B-11D0-A075-00C04FB68820}  to the user LIVING-ROOM-PC\Bob SID (S-1-5-21-110091273-928939627-1752962748-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.

Log: 'System' Date/Time: 09/12/2018 6:16:42 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:37 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:36 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:36 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:34 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:34 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:33 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:29 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

Log: 'System' Date/Time: 09/12/2018 6:16:24 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The event description cannot be found.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 09/12/2018 11:31:11 PM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 09/12/2018 6:13:19 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name getpocket.com timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 09/12/2018 6:11:24 PM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 09/12/2018 6:05:01 PM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)

Log: 'System' Date/Time: 06/12/2018 1:55:50 AM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 06/12/2018 12:07:34 AM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)

Log: 'System' Date/Time: 05/12/2018 4:48:31 AM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 05/12/2018 3:51:34 AM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 05/12/2018 1:30:15 AM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 04/12/2018 3:08:01 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name wpad timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 03/12/2018 4:17:36 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name http.web.future.net.uk timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 03/12/2018 4:17:10 PM
Type: Warning Category: 1014
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name as-sec.casalemedia.com timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 03/12/2018 3:46:30 PM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)

Log: 'System' Date/Time: 03/12/2018 1:58:48 AM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 02/12/2018 11:43:23 PM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 02/12/2018 3:42:14 PM
Type: Warning Category: 0
Event: 134 Source: Microsoft-Windows-Time-Service
NtpClient was unable to set a manual peer to use as a time source because of DNS resolution error on 'time.windows.com,0x9'. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: No such host is known. (0x80072AF9)

Log: 'System' Date/Time: 01/12/2018 5:33:29 AM
Type: Warning Category: 0
Event: 28 Source: BTHUSB
The local adapter does not support Bluetooth Low Energy.

Log: 'System' Date/Time: 01/12/2018 12:17:58 AM
Type: Warning Category: 0
Event: 3 Source: BTHUSB
A command sent to the adapter has timed out. The adapter did not respond.

Log: 'System' Date/Time: 01/12/2018 12:17:54 AM
Type: Warning Category: 0
Event: 3 Source: BTHUSB
A command sent to the adapter has timed out. The adapter did not respond.

Log: 'System' Date/Time: 30/11/2018 8:15:17 PM
Type: Warning Category: 0
Event: 3 Source: BTHUSB
A command sent to the adapter has timed out. The adapter did not respond.

 

 

 

Vino's Event Viewer v01c run on Windows 7 in English
Report run at 09/12/2018 6:40:46 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 09/12/2018 11:33:47 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 11:30:15 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: svchost.exe_WpnUserService, version: 10.0.17134.1, time stamp: 0xa38b9ab2 Faulting module name: NotificationController.dll, version: 10.0.17134.165, time stamp: 0xe0385185 Exception code: 0xc0000005 Fault offset: 0x000000000007c686 Faulting process id: 0x1d08 Faulting application start time: 0x01d490059fefe19a Faulting application path: C:\WINDOWS\system32\svchost.exe Faulting module path: C:\Windows\System32\NotificationController.dll Report Id: b960343e-71fc-4fd5-a33e-ff4089f98814 Faulting package full name:  Faulting package-relative application ID:

Log: 'Application' Date/Time: 09/12/2018 11:28:45 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 10:28:46 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 9:28:47 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 8:57:15 PM
Type: Error Category: 100
Event: 1000 Source: Application Error
Faulting application name: svchost.exe_WpnUserService, version: 10.0.17134.1, time stamp: 0xa38b9ab2 Faulting module name: NotificationController.dll, version: 10.0.17134.165, time stamp: 0xe0385185 Exception code: 0xc0000005 Fault offset: 0x000000000007c686 Faulting process id: 0x2244 Faulting application start time: 0x01d48ffd8e8f8043 Faulting application path: C:\WINDOWS\system32\svchost.exe Faulting module path: C:\Windows\System32\NotificationController.dll Report Id: 2008c3e2-cbd6-4c57-9191-d6e7ac8afa6f Faulting package full name:  Faulting package-relative application ID:

Log: 'Application' Date/Time: 09/12/2018 8:28:50 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 7:28:44 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 6:28:44 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 6:11:41 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 6:05:24 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 11:59:02 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 11:28:45 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 11:21:31 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 8:28:45 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 7:59:02 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 7:57:47 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

Log: 'Application' Date/Time: 09/12/2018 2:51:25 AM
Type: Error Category: 0
Event: 10 Source: Microsoft-Windows-AppModel-State
Failure to load the application settings for package microsoft.skypeapp_kzf8qxf38zg5c. Error Code: -2147023887

Log: 'Application' Date/Time: 09/12/2018 2:51:24 AM
Type: Error Category: 0
Event: 10 Source: Microsoft-Windows-AppModel-State
Failure to load the application settings for package microsoft.microsoftofficehub_8wekyb3d8bbwe. Error Code: -2147023887

Log: 'Application' Date/Time: 09/12/2018 2:28:44 AM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 30/11/2018 8:19:01 PM
Type: Warning Category: 7
Event: 507 Source: ESENT
Video.UI (6324,D,0) {4EB4E09A-528B-4FF9-A9D8-3AFEAB8A0A67}: A request to read from the file "C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb" at offset 65536 (0x0000000000010000) for 8192 (0x00002000) bytes succeeded, but took an abnormally long time (28 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Log: 'Application' Date/Time: 23/11/2018 3:43:23 AM
Type: Warning Category: 7
Event: 508 Source: ESENT
wuaueng.dll (3692,D,0) SUS20ClientDataStore: A request to write to the file "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log" at offset 536576 (0x0000000000083000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (15 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Log: 'Application' Date/Time: 01/11/2018 7:21:36 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
Video.UI (7872,U,0) {4D8AE78F-24D6-4A5D-B478-8249BAF5593E}: A request to write to the file "C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\edb.log" at offset 806912 (0x00000000000c5000) for 4096 (0x00001000) bytes succeeded, but took an abnormally long time (25 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

Log: 'Application' Date/Time: 01/11/2018 7:21:07 PM
Type: Warning Category: 7
Event: 508 Source: ESENT
Video.UI (7872,R,98) {4D8AE78F-24D6-4A5D-B478-8249BAF5593E}: A request to write to the file "C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb" at offset 0 (0x0000000000000000) for 8192 (0x00002000) bytes succeeded, but took an abnormally long time (18 seconds) to be serviced by the OS. This problem is likely due to faulty hardware. Please contact your hardware vendor for further assistance diagnosing the problem.

 


  • 0

#38
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP

Any improvement?

 

You should uninstall AVG Secure Browser unless you use it as it causes this error:

Log: 'Application' Date/Time: 09/12/2018 8:28:50 PM
Type: Error Category: 0
Event: 11316 Source: MsiInstaller
Product: AVG Update Helper -- Error 1316. The specified account already exists.

 

 

If you are still not getting your updates

I think we need to try
Windows Repair all in one

http://www.tweaking....all_in_one.html

Download it and save it then run it.

You can choose a preset config - it doesn't matter which since we want only certain items checked:

Make sure all of these are checked before hitting Start:

Reset Registry Permissions
Reset File Permissions
Register System Files
Repair WMI


Remove Policies Set By Infections

Repair Windows Updates


Reboot when done and see if Windows Updates works now.


  • 0

#39
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

I uninstalled AVG Secure Browser and ran the "Windows Repair all in one" program with your parameters but the update still is not working.


  • 0

#40
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP

OK there appears to be a problem with the datastore database files so let's see if we can fix them:

 

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   1.89KB   4 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.

 


  • 0

Advertisements


#41
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

Here are the logs, I attempted the Updates again AFTER running your Fixlst attempt to repair to "datastore database" but it failed again.

 

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 09.12.2018
Ran by Bob (12-12-2018 17:02:52) Run:1
Running from C:\Users\Bob\Desktop\RKinner Repairs
Loaded Profiles: Bob (Available Profiles: Bob)
Boot Mode: Normal
==============================================

fixlist content:
*****************
File: C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log
File: C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb
File: C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb
CMD: SC stop BITS
CMD: SC stop wuauserv
esentutl /p C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log
esentutl /p C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb
esentutl /p C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb
CMD: SC start BITS
CMD: SC start wuauserv
File: C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log
File: C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb
File: C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
Reboot:






*****************


========================= File: C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log ========================

C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log
File is digitally signed
MD5: D41D8CD98F00B204E9800998ECF8427E (0-byte)
Creation and modification date: 2018-12-11 15:18 - 2018-12-12 11:14
Size: 001310720
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0-byte

====== End of File: ======


========================= File: C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb ========================

C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb
File not signed
MD5: 5A0399197E750962B95D8C3B26C026B0
Creation and modification date: 2018-03-28 17:11 - 2018-12-12 11:09
Size: 003670016
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0

====== End of File: ======


========================= File: C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb ========================

C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb
File is digitally signed
MD5: D41D8CD98F00B204E9800998ECF8427E (0-byte)
Creation and modification date: 2018-12-11 15:18 - 2018-12-12 11:13
Size: 010485760
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0-byte

====== End of File: ======


========= SC stop BITS =========

[SC] ControlService FAILED 1062:

The service has not been started.


========= End of CMD: =========


========= SC stop wuauserv =========


SERVICE_NAME: wuauserv
        TYPE               : 20  WIN32_SHARE_PROCESS  
        STATE              : 3  STOP_PENDING
                                (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
        WIN32_EXIT_CODE    : 0  (0x0)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x1
        WAIT_HINT          : 0x7530

========= End of CMD: =========

esentutl /p C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log => Error: No automatic fix found for this entry.
esentutl /p C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb => Error: No automatic fix found for this entry.
esentutl /p C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb => Error: No automatic fix found for this entry.

========= SC start BITS =========


SERVICE_NAME: BITS
        TYPE               : 30  WIN32  
        STATE              : 2  START_PENDING
                                (NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
        WIN32_EXIT_CODE    : 0  (0x0)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          : 0x7d0
        PID                : 4796
        FLAGS              :

========= End of CMD: =========


========= SC start wuauserv =========

[SC] StartService FAILED 1056:

An instance of the service is already running.


========= End of CMD: =========


========================= File: C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log ========================

C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log
File is digitally signed
MD5: D41D8CD98F00B204E9800998ECF8427E (0-byte)
Creation and modification date: 2018-12-11 15:18 - 2018-12-12 11:14
Size: 001310720
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0-byte

====== End of File: ======


========================= File: C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb ========================

C:\Users\Bob\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\LocalState\Database\a396c4eacf5f58ba\EntClientDb.edb
File not signed
MD5: 5A0399197E750962B95D8C3B26C026B0
Creation and modification date: 2018-03-28 17:11 - 2018-12-12 11:09
Size: 003670016
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0

====== End of File: ======


========================= File: C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb ========================

C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb
File is digitally signed
MD5: D41D8CD98F00B204E9800998ECF8427E (0-byte)
Creation and modification date: 2018-12-11 15:18 - 2018-12-12 11:13
Size: 010485760
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: 0-byte

====== End of File: ======


========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" =========

Failed to clear log Microsoft-Windows-LiveId/Analytic. Access is denied.
Failed to clear log Microsoft-Windows-LiveId/Operational. Access is denied.

========= End of CMD: =========



The system needed a reboot.

==== End of Fixlog 17:03:54 ====

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.12.2018
Ran by Bob (administrator) on LIVING-ROOM-PC (12-12-2018 17:16:44)
Running from C:\Users\Bob\Desktop\RKinner Repairs
Loaded Profiles: Bob (Available Profiles: Bob)
Platform: Windows 10 Pro Version 1803 17134.228 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
(Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Alcatel-Lucent) C:\Program Files\ATT\8.5.1.16\ma\bin\pcTrayApp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\pcContextHookShim.exe
() C:\Program Files (x86)\NETGEAR\WNA1100\WNA1100.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-11-14] (NVIDIA Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [290064 2018-11-22] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-04-17] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ATT_McciTrayApp] => C:\Program Files\ATT\8.5.1.16\ma\bin\pcTrayApp.exe [2943488 2015-12-11] (Alcatel-Lucent)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1067024 2018-01-03] (The Eraser Project)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [60074328 2018-07-25] (Discord Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [19476424 2018-11-06] (Piriform Software Ltd)
HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\Run: [Discord] => C:\Users\Bob\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19476424 2018-11-06] (Piriform Software Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Genie.lnk [2018-03-04]
ShortcutTarget: NETGEAR WNA1100 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNA1100\WNA1100.exe ()
Startup: C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-07-20]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Bob\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1387eb14-e241-4983-bf86-ea62a43c1f7d}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-26] (Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-26] (Oracle Corporation)

Edge:
======
Edge Extension: (Honey) -> EdgeExtension_HoneyScienceCorporationHoney_cbe4c63gm1mzr => C:\Program Files\WindowsApps\HoneyScienceCorporation.Honey_10.7.4.0_neutral__cbe4c63gm1mzr [2018-05-23]

FireFox:
========
FF DefaultProfile: g6gk6jy2.default-1538926022293
FF ProfilePath: C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\uqh1vwfw.default-1538876151857 [2018-12-11]
FF Extension: (Telemetry coverage) - C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\uqh1vwfw.default-1538876151857\features\{7432d92a-cb0d-4874-8559-7b8b50fe1641}\[email protected] [2018-10-06] [Legacy]
FF ProfilePath: C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\g6gk6jy2.default-1538926022293 [2018-12-12]
FF Extension: (F.B Purity - Cleans up Facebook (WX)) - C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\g6gk6jy2.default-1538926022293\Extensions\[email protected] [2018-12-12]
FF Extension: (Tampermonkey) - C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\g6gk6jy2.default-1538926022293\Extensions\[email protected] [2018-11-18]
FF Extension: (Honey) - C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\g6gk6jy2.default-1538926022293\Extensions\[email protected] [2018-11-30]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_153.dll [2018-11-29] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_153.dll [2018-11-29] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-26] (Oracle Corporation)
FF Plugin-x32: @Motive.com/NpMotive,version=1.1 -> C:\Program Files (x86)\ATT\8.5.1.16\ma\bin\npMotive.dll [2015-12-11] (AT&T)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default [2018-12-12]
CHR Extension: (Docs) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-04]
CHR Extension: (Google Drive) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-04]
CHR Extension: (YouTube) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-04]
CHR Extension: (Honey) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2018-11-20]
CHR Extension: (PDF Editor for Docs:Edit, Fill, Sign, Print) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjboohgkgchdnfnjiaggdbkdmpieoagi [2018-12-03]
CHR Extension: (Google Docs Offline) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-12]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2018-11-20]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2018-12-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (AT&T Extension) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\okccnkhldjgdpjclfpdnlhlofcpginnm [2018-03-30]
CHR Extension: (Gmail) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-03-04]
CHR Extension: (Chrome Media Router) - C:\Users\Bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-10]
CHR HKLM\...\Chrome\Extension: [okccnkhldjgdpjclfpdnlhlofcpginnm] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [okccnkhldjgdpjclfpdnlhlofcpginnm] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AT&T Troubleshoot & Resolve; C:\Program Files (x86)\ATT\8.5.1.16\ma\bin\MAHostService.exe [321024 2015-12-11] (Alcatel-Lucent) [File not signed]
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [324048 2018-11-22] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8237160 2018-11-22] (AVG Technologies CZ, s.r.o.)
S4 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-04-17] (AVG Technologies CZ, s.r.o.)
S3 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110048 2018-11-22] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-06-10] ()
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-17] (EasyAntiCheat Ltd)
S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-11-14] (NVIDIA Corporation)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [443872 2018-12-12] (Google Inc.)
S4 jswpbapi; C:\Program Files (x86)\NETGEAR\WNA1100\jswpbapi.exe [241664 2012-03-26] (Atheros Communications, Inc.) [File not signed]
S4 jswpsapi; C:\Program Files (x86)\NETGEAR\WNA1100\jswpsapi.exe [1102848 2012-03-26] (Atheros Communications, Inc.) [File not signed]
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-11-14] (NVIDIA Corporation)
S4 pcCMService; C:\Program Files (x86)\Common Files\Motive\pcCMService.exe [370176 2015-08-13] (Alcatel-Lucent) [File not signed]
S4 pcCMService64; C:\Program Files\Common Files\Motive\pcCMService.exe [462336 2015-08-13] (Alcatel-Lucent) [File not signed]
S3 PeerDistSvc; C:\WINDOWS\system32\peerdistsvc.dll [1967104 2018-04-12] (Microsoft Corporation) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-14] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S4 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU Co., LTD.)
S4 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5614592 2018-01-22] (AVG Technologies CZ, s.r.o.)
R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2018-08-28] (Reason Software Company Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-02] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-02] (Microsoft Corporation)
S4 WSWNA1100; C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe [307928 2013-11-11] ()

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2013-11-20] (Qualcomm Atheros Communications, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [201504 2018-11-22] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [231104 2018-11-22] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [202528 2018-11-22] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [346840 2018-11-22] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [59744 2018-11-22] (AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [15344 2018-09-02] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [46648 2018-11-22] (AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42552 2018-11-22] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [163496 2018-11-22] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [112040 2018-11-22] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [87680 2018-11-22] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1028920 2018-11-22] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469520 2018-11-22] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [208712 2018-11-22] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [380704 2018-11-22] (AVG Technologies CZ, s.r.o.)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2018-03-08] (Windows ® Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2018-03-08] (Windows ® Win 7 DDK provider)
R3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.AvrcpTransport.sys [46592 2018-04-11] (Microsoft Corporation)
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MREMP50a64; C:\Program Files\Common Files\Motive\MREMP50a64.sys [43008 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA))
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50a64; C:\Program Files\Common Files\Motive\MRESP50a64.sys [40960 2010-02-02] (Printing Communications Assoc., Inc. (PCAUSA))
R2 NPF; C:\Program Files\iVMS-4200 Station\iVMS-4200\Drivers\npf64.sys [36600 2018-08-13] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-11-14] (NVIDIA Corporation)
S3 rspLLL; C:\WINDOWS\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Resplendence Software Projects Sp.)
S3 rspSanity; C:\WINDOWS\System32\DRIVERS\rspSanity64.sys [31328 2012-10-29] (Resplendence Software Projects Sp.)
S3 rspWhySoSlow; C:\WINDOWS\System32\DRIVERS\rspWhy64.sys [28928 2016-12-17] (Resplendence Software Projects Sp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-11] (Realtek )
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [152064 2018-04-12] (Microsoft Corporation)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2018-01-22] (AVG Netherlands B.V.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [44544 2018-04-11] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-08-02] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-08-02] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-02] (Microsoft Corporation)
S3 NovabenchDriver; \??\C:\Program Files\Novawave\Novabench\NovabenchDriverWin10.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-12 17:08 - 2018-12-12 17:08 - 000000000 ___HD C:\OneDriveTemp
2018-12-12 17:01 - 2018-12-12 17:01 - 000001934 _____ C:\Users\Bob\Downloads\fixlist.txt
2018-12-12 11:19 - 2018-12-12 11:19 - 000000029 _____ C:\Users\Bob\Desktop\Bob's PSJ Eyecare appt.txt
2018-12-10 14:52 - 2018-12-10 14:52 - 000000000 ___HD C:\$AV_AVG
2018-12-10 14:37 - 2018-12-11 15:05 - 000838560 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2018-12-10 14:19 - 2018-12-10 14:19 - 038621512 _____ (Tweaking.com) C:\Users\Bob\Downloads\tweaking.com_windows_repair_aio_setup.exe
2018-12-07 14:28 - 2018-12-11 14:05 - 000000000 ____D C:\Users\Bob\Desktop\FoodFest 2018
2018-12-07 14:28 - 2018-12-07 14:29 - 000000000 ____D C:\Users\Bob\Desktop\Geek2Go shortcuts
2018-12-05 23:04 - 2018-12-05 23:04 - 000000000 ____D C:\Users\Bob\AppData\Roaming\MAXON
2018-12-05 23:03 - 2018-12-05 23:03 - 000000000 ____D C:\Users\Bob\Downloads\CINEBENCHR15.038
2018-12-05 23:00 - 2018-12-05 23:02 - 085916232 _____ C:\Users\Bob\Downloads\CINEBENCHR15.038.zip
2018-12-05 21:07 - 2018-12-11 13:52 - 000000000 ____D C:\Users\Bob\AppData\Roaming\Kodi
2018-12-05 21:05 - 2018-12-05 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2018-12-05 21:05 - 2018-12-05 21:05 - 000000000 ____D C:\Program Files (x86)\Kodi
2018-12-05 21:04 - 2018-12-05 21:04 - 081779523 _____ (XBMC-Foundation) C:\Users\Bob\Downloads\kodi-17.6-Krypton-x86.exe
2018-12-05 00:15 - 2018-12-11 19:02 - 000003004 _____ C:\WINDOWS\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2018-12-05 00:15 - 2018-12-11 14:16 - 000002232 _____ C:\Users\Bob\Desktop\Tweaking.com - Windows Repair.lnk
2018-12-05 00:15 - 2018-12-05 00:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2018-12-05 00:10 - 2018-12-05 00:11 - 038621512 _____ (Tweaking.com) C:\Users\Bob\Downloads\tweaking.com_windows_repair_aio_setup(1).exe
2018-12-04 20:43 - 2018-12-04 22:10 - 000000050 _____ C:\Users\Bob\Documents\KALEYS LAPTOP.txt
2018-12-04 12:56 - 2018-12-04 12:56 - 000044970 _____ C:\Users\Bob\Downloads\Benefit_Verification_Letter_12042018.pdf
2018-12-03 19:38 - 2018-12-03 19:38 - 000211169 _____ C:\Users\Bob\Downloads\welding2.pdf
2018-12-03 19:28 - 2018-12-03 19:36 - 000160608 _____ C:\Users\Bob\Downloads\welding.pdf
2018-12-03 15:13 - 2018-12-03 15:14 - 000652227 _____ C:\Users\Bob\Desktop\WELDING   2.pdf
2018-12-03 14:30 - 2018-12-03 14:30 - 000520698 _____ C:\Users\Bob\Desktop\welding2.pdf
2018-12-03 14:30 - 2018-12-03 14:30 - 000484842 _____ C:\Users\Bob\Desktop\welding.pdf
2018-12-02 21:41 - 2018-12-02 21:41 - 000000000 ___HD C:\$SysReset
2018-12-02 21:41 - 2018-12-02 21:41 - 000000000 ____D C:\$Windows.~BT
2018-11-30 19:37 - 2018-12-12 17:16 - 000000000 ____D C:\FRST
2018-11-30 19:33 - 2018-12-12 17:16 - 000000000 ____D C:\Users\Bob\Desktop\RKinner Repairs
2018-11-30 16:48 - 2018-11-30 16:49 - 000000000 ____D C:\Users\Bob\Desktop\my update repair attempt
2018-11-30 15:51 - 2018-11-30 15:51 - 000000120 _____ C:\Users\Bob\Desktop\Crushed Seashell.txt
2018-11-29 17:36 - 2018-11-29 17:51 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak
2018-11-29 17:08 - 2018-09-04 17:36 - 001476904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2018-11-25 13:27 - 2018-11-25 13:27 - 000239944 _____ C:\Users\Bob\Documents\2018 Benefits letter for medicaid.pdf
2018-11-25 13:26 - 2018-11-25 13:26 - 000062825 _____ C:\Users\Bob\Downloads\Benefit_Summary_Letter_11252018.pdf
2018-11-24 13:51 - 2018-11-24 13:53 - 000000000 ____D C:\Users\Bob\Desktop\Moms Laptop
2018-11-22 11:39 - 2018-11-22 11:39 - 000378640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2018-11-20 22:28 - 2018-11-22 23:49 - 000000098 _____ C:\Users\Bob\Desktop\TYLER RAM.txt
2018-11-20 20:11 - 2018-11-20 20:11 - 001078500 _____ C:\Users\Bob\Desktop\attchat.pdf
2018-11-18 15:05 - 2018-11-18 15:05 - 000663848 _____ C:\Users\Bob\Downloads\speedyfox.zip
2018-11-16 10:34 - 2018-11-19 18:07 - 000000357 _____ C:\Users\Bob\Desktop\Appointments.txt
2018-11-13 19:45 - 2018-11-13 19:51 - 000000103 _____ C:\Users\Bob\Desktop\HP Service order.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-12-12 17:16 - 2018-03-04 00:58 - 000000000 ____D C:\Users\Bob\AppData\LocalLow\Mozilla
2018-12-12 17:10 - 2018-03-04 00:48 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-12 17:08 - 2018-04-12 11:27 - 000000000 ____D C:\Users\Bob\AppData\Local\CrashDumps
2018-12-12 17:08 - 2018-03-04 00:37 - 000000000 ____D C:\Users\Bob\AppData\Local\ConnectedDevicesPlatform
2018-12-12 17:08 - 2018-03-03 23:53 - 000000000 ___RD C:\Users\Bob\OneDrive
2018-12-12 17:06 - 2018-05-20 02:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-12 17:06 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-12 17:04 - 2018-05-20 02:10 - 000000000 ____D C:\Users\Bob
2018-12-12 17:04 - 2018-04-11 16:04 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2018-12-12 16:55 - 2018-05-20 02:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-11 19:02 - 2018-09-04 17:01 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-12-11 19:02 - 2018-05-20 02:24 - 000002216 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-12-11 18:15 - 2018-06-14 11:58 - 000000000 ____D C:\WINDOWS\Minidump
2018-12-11 15:20 - 2018-05-20 02:21 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-11 15:20 - 2018-04-11 18:36 - 000000000 ____D C:\WINDOWS\INF
2018-12-11 15:18 - 2018-05-20 02:07 - 000268904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-11 14:11 - 2018-04-11 18:38 - 000000000 ____D C:\PerfLogs
2018-12-11 13:27 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-12-10 19:40 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-12-10 14:15 - 2018-03-13 22:16 - 000000000 ____D C:\Program Files (x86)\AVG
2018-12-10 14:15 - 2018-03-04 01:10 - 000000000 ____D C:\ProgramData\AVG
2018-12-09 18:41 - 2018-05-25 22:47 - 000007860 _____ C:\VEW.txt
2018-12-09 16:03 - 2018-04-11 18:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-12-05 21:06 - 2018-03-17 18:58 - 000000000 ____D C:\ProgramData\Package Cache
2018-12-05 00:00 - 2018-03-04 20:52 - 000000000 ____D C:\Users\Bob\AppData\Local\ElevatedDiagnostics
2018-12-04 23:58 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-11-30 19:45 - 2018-05-24 21:52 - 000011666 _____ C:\junk.txt
2018-11-30 19:42 - 2018-05-24 21:48 - 000041800 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCEXP152.SYS
2018-11-30 19:17 - 2018-05-20 02:24 - 000003310 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2018-11-30 19:17 - 2018-05-20 02:24 - 000003048 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-11-30 19:17 - 2018-05-20 02:24 - 000002912 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-110091273-928939627-1752962748-1001
2018-11-29 18:48 - 2018-03-28 20:05 - 000000000 ____D C:\Users\Bob\AppData\Local\Adobe
2018-11-29 18:47 - 2018-05-20 02:24 - 000004584 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-11-29 18:47 - 2018-05-20 02:24 - 000004424 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-11-29 18:47 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-11-29 18:47 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-11-29 18:40 - 2018-03-03 21:49 - 137810048 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-11-29 17:53 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2018-11-29 13:03 - 2018-05-20 02:10 - 000002357 _____ C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-11-27 10:02 - 2018-06-26 12:05 - 000000000 ____D C:\Users\Bob\AppData\Roaming\DVDVideoSoft
2018-11-22 11:39 - 2018-11-01 14:27 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000469520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000380704 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000208712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000201504 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000163496 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000112040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000087680 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2018-11-22 11:39 - 2018-05-19 23:10 - 000046648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2018-11-22 11:39 - 2018-04-11 18:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-11-22 11:38 - 2018-05-19 23:10 - 001028920 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2018-11-22 11:38 - 2018-05-19 23:10 - 000346840 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys
2018-11-22 11:38 - 2018-05-19 23:10 - 000231104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys
2018-11-22 11:38 - 2018-05-19 23:10 - 000202528 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys
2018-11-22 11:38 - 2018-05-19 23:10 - 000059744 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys
2018-11-18 15:08 - 2018-05-28 23:19 - 000000000 ____D C:\Users\Bob\Downloads\speedyfox
2018-11-17 19:28 - 2018-09-12 11:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-17 19:28 - 2018-03-04 00:58 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-11-17 14:24 - 2018-09-12 11:46 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-12 23:13 - 2018-03-04 20:20 - 000000416 _____ C:\WINDOWS\Tasks\update-sys.job
2018-11-12 23:13 - 2018-03-04 20:20 - 000000416 _____ C:\WINDOWS\Tasks\update-S-1-5-21-110091273-928939627-1752962748-1001.job
2018-11-12 23:11 - 2018-06-28 21:03 - 000002594 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2018-11-12 23:11 - 2018-05-20 02:24 - 000003406 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-11-12 23:11 - 2018-05-20 02:24 - 000003360 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A29677FF-757A-4AC8-8014-4228864E097C}
2018-11-12 23:11 - 2018-05-20 02:24 - 000003182 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-11-12 23:11 - 2018-05-20 02:24 - 000003154 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2018-11-12 23:11 - 2018-05-20 02:24 - 000003104 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-110091273-928939627-1752962748-1001
2018-11-12 23:11 - 2018-05-20 02:24 - 000002856 _____ C:\WINDOWS\System32\Tasks\update-sys

==================== Files in the root of some directories =======

2018-10-08 22:02 - 2018-10-08 22:02 - 000000000 ____H () C:\Users\Bob\AppData\Local\BIT3252.tmp
2018-06-28 21:48 - 2018-06-28 21:48 - 000005632 _____ () C:\Users\Bob\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-03-23 20:24 - 2018-03-23 20:24 - 000000017 _____ () C:\Users\Bob\AppData\Local\resmon.resmoncfg
2018-08-18 19:19 - 2018-08-18 19:21 - 000001293 _____ () C:\Users\Bob\AppData\Local\Temp1.html
2018-08-18 19:22 - 2018-08-18 19:22 - 000006591 _____ () C:\Users\Bob\AppData\Local\Temp34.html
2018-03-04 20:20 - 2018-03-04 20:20 - 000000003 _____ () C:\Users\Bob\AppData\Local\updater.log
2018-03-04 20:20 - 2018-03-04 20:20 - 000000425 _____ () C:\Users\Bob\AppData\Local\UserProducts.xml
2018-10-08 21:53 - 2018-10-08 21:53 - 000000000 _____ () C:\Users\Bob\AppData\Local\{C6E644F2-0988-4042-8DE1-06BEED3D8ABC}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll
[2018-04-11 18:34] - [2018-04-11 18:34] - 001626536 _____ () F3FD0C14479556C246D69359BAD0D772

C:\WINDOWS\SysWOW64\User32.dll => no Company Name <==== ATTENTION
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-20 02:07

==================== End of FRST.txt ============================

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.12.2018
Ran by Bob (12-12-2018 17:18:05)
Running from C:\Users\Bob\Desktop\RKinner Repairs
Windows 10 Pro Version 1803 17134.228 (X64) (2018-05-20 07:25:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-110091273-928939627-1752962748-500 - Administrator - Disabled)
Bob (S-1-5-21-110091273-928939627-1752962748-1001 - Administrator - Enabled) => C:\Users\Bob
DefaultAccount (S-1-5-21-110091273-928939627-1752962748-503 - Limited - Disabled)
Guest (S-1-5-21-110091273-928939627-1752962748-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-110091273-928939627-1752962748-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated)
AT&T Troubleshoot & Resolve (HKLM-x32\...\ATT-AT&T Troubleshoot & Resolve) (Version: 8.5.1.16 - AT&T)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 18.8.3071 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\{9C775BB6-1453-45EB-8C78-A5CC5199113D}) (Version: 16.77.3 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.77.3.23060 - AVG Technologies)
CCleaner (HKLM\...\CCleaner) (Version: 5.49 - Piriform)
Discord (HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{93BFE5DF-776E-436F-8693-DF1F72C0E3C1}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Eraser 6.2.0.2982 (HKLM\...\{DFCF78CC-3DAD-4C1E-8BC6-94DC5B73461E}) (Version: 6.2.2982 - The Eraser Project)
Facebook Gameroom 1.21.6697.19829 (HKLM-x32\...\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}) (Version: 1.21.6697.19829 - Facebook)
FMW 1 (HKLM\...\{DFA0CE4A-C162-40C1-A977-12E60098EB72}) (Version: 1.227.11 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
iVMS-4200(2.7.2.7) (HKLM-x32\...\{7697245D-2E00-4B83-AD27-C051DE314D1F}) (Version: 2.7.2.7 - hikvision)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Kodi (HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\Kodi) (Version:  - XBMC-Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6219.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\OneDriveSetup.exe) (Version: 18.212.1021.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{56F27690-F6EA-3356-980A-02BA379506EE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{1b103cea-f037-4504-81de-956057b442c3}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 63.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 63.0.3 (x64 en-US)) (Version: 63.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0 - Mozilla)
NETGEAR WNA1100 N150 Wireless USB Adapter (HKLM-x32\...\{A2AE9709-283B-4B48-AA34-729C070A62FB}) (Version: 2.2.0.1 - NETGEAR)
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OldSchool RuneScape Launcher 1.2.7 (HKLM-x32\...\{FEDDCE73-34B8-4980-90B8-8619A78C902C}) (Version: 1.2.7 - Jagex Ltd)
OpenOffice 4.1.5 (HKLM-x32\...\{ABCAD346-4F4B-49E9-9AA1-28EF8C26059D}) (Version: 4.15.9789 - Apache Software Foundation)
Puffin Browser version 7.6.0.452 (HKLM-x32\...\Puffin Browser_is1) (Version: 7.6.0.452 - CloudMosa, Inc.)
RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.4.0 - Tweaking.com)
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{E345A108-D9E8-456B-9550-435132D5C9CE}) (Version: 2.13.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{567756E0-361F-4E88-AF74-8B0E4628E5BC}) (Version: 1.12.0.0 - Microsoft Corporation) Hidden
WhySoSlow 1.00 (HKLM\...\WhySoSlowHome_is1) (Version:  - Resplendence Software Projects Sp.)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22514 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-11-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-01-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2018-01-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-01-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-11-22] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (The Eraser Project)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1568C8CB-4699-47F2-85FF-6775FC0F51CC} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {2487DF5A-93FC-4C8B-A2F5-C1E7AC439B1F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {3F38AC9C-5942-48D9-A79F-8CDF3BF1E2B5} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {4045A957-FCAF-4460-9035-EF820B2316AC} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2017-05-02] (Tweaking.com)
Task: {406087F9-818F-4AD3-BA4C-05255D7FD5B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-04] (Google Inc.)
Task: {4AFF7EEB-92C4-4A75-90D8-CA5A44232F13} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {505BC152-7781-4A1D-80A4-8C7179B99EB9} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2018-01-22] (AVG Technologies CZ, s.r.o.)
Task: {5967FD50-EF61-4F46-B2C2-7D48D25D8271} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {78A7D284-5990-4B5C-9712-93A95FEB8369} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-11-06] (Piriform Ltd)
Task: {7B6D3B6A-1B17-4517-AFDF-792758A6D30C} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07] (Oracle Corporation)
Task: {9E82F1DC-7939-4B6A-A861-64CB00471DE6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-03-04] (Google Inc.)
Task: {9F419D81-4A68-4243-A5C9-11EC31AF7FAD} - System32\Tasks\update-S-1-5-21-110091273-928939627-1752962748-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {B8BCA3F2-8ECC-4AA6-BE4A-FBB6A4B30868} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-29] (Adobe Systems Incorporated)
Task: {CBA0E3BE-F6D2-466E-BCCE-278AAFB48E48} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {DDE06B86-C55F-4D0F-A746-DBADF70C8E9C} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {E5B7F4E2-ADD9-44DB-A7F6-83E89BF94B1C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-29] (Adobe Systems Incorporated)
Task: {F43BCF6A-6D01-4871-B79D-7D98AD832E22} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-11-06] (Piriform Software Ltd)
Task: {F92089F3-6FF1-4B9E-8734-68307B566DC3} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [2018-11-22] (AVG Technologies CZ, s.r.o.)
Task: {FC7AAA12-AD95-4C43-A622-A0688944F3D0} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-10-31] (AVG Technologies CZ, s.r.o.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-110091273-928939627-1752962748-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-11 18:34 - 2018-04-11 18:34 - 000444416 _____ () c:\windows\system32\SSDM.dll
2018-04-11 18:34 - 2018-04-11 18:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-11 18:34 - 2018-04-11 18:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 18:34 - 2018-04-11 18:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-08-25 00:45 - 2018-08-02 22:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-03-03 23:56 - 2014-01-02 16:13 - 008266456 _____ () C:\Program Files (x86)\NETGEAR\WNA1100\WNA1100.exe
2018-04-04 00:14 - 2016-11-14 07:30 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2018-03-13 22:16 - 2018-03-13 22:14 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2018-03-04 01:13 - 2018-03-04 01:13 - 067127976 _____ () C:\Program Files\AVG\Antivirus\libcef.dll
2018-11-22 11:39 - 2018-11-22 11:39 - 000594192 _____ () C:\Program Files\AVG\Antivirus\streamback.dll
2018-03-03 23:56 - 2013-11-01 20:31 - 000278528 _____ () C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvcLib.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [474]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 02:24 - 2018-12-12 17:06 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-110091273-928939627-1752962748-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Bob\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\24131584_1891126297602629_8616179405180199500_n.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AT&T Troubleshoot & Resolve => 2
MSCONFIG\Services: avgsvc => 2
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: jswpbapi => 2
MSCONFIG\Services: jswpsapi => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NovabenchService => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: pcCMService => 2
MSCONFIG\Services: pcCMService64 => 2
MSCONFIG\Services: ssh-agent => 3
MSCONFIG\Services: ss_conn_service => 2
MSCONFIG\Services: TuneUp.UtilitiesSvc => 2
MSCONFIG\Services: WSWNA1100 => 2
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-110091273-928939627-1752962748-1001\...\StartupApproved\Run: => "Uninstall 18.131.0701.0007\amd64"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{E89EB124-57EF-4B21-927F-983BAA24DE37}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{D42B6ED9-DBAA-40D3-99A1-E034C6D1DA3C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{8B9F07CC-FB9A-4026-8C18-E641A943C335}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{49056617-65B9-428C-BA7C-915186A049B9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{E61513E9-D7A8-467A-9D3E-58BABBE74FBB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{AEB2CEC3-5AF9-4E76-97A5-241D70DAE2C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{3D1B310A-376F-481C-BA4D-112CFD8B292B}C:\program files\ivms-4200 station\ivms-4200\ivms-4200 client\ivms-4200.exe] => (Allow) C:\program files\ivms-4200 station\ivms-4200\ivms-4200 client\ivms-4200.exe
FirewallRules: [UDP Query User{31A40D39-916B-4365-A9BC-ED72B7B0D2F6}C:\program files\ivms-4200 station\ivms-4200\ivms-4200 client\ivms-4200.exe] => (Allow) C:\program files\ivms-4200 station\ivms-4200\ivms-4200 client\ivms-4200.exe
FirewallRules: [TCP Query User{C5B8A256-1728-40B5-91AF-59EE8E20F3A5}C:\program files\ivms-4200 station\nginx\nginx.exe] => (Allow) C:\program files\ivms-4200 station\nginx\nginx.exe
FirewallRules: [UDP Query User{D1319AC9-92E4-4AC1-B76B-EA27D4554B42}C:\program files\ivms-4200 station\nginx\nginx.exe] => (Allow) C:\program files\ivms-4200 station\nginx\nginx.exe
FirewallRules: [{CB5684C8-2FFD-4DA3-B7C5-9BD553EA978A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{35B7760E-0AD2-4BAA-B0C0-1FCDD8D38BB6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{3F99E657-6F13-4B0F-83AF-DF07D9F4C760}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
FirewallRules: [{3281D272-5182-4C07-A196-E64B2D8627F4}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
FirewallRules: [TCP Query User{DC447370-BF6E-49E3-83FB-78525E077D6F}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{FB2742BD-9F9B-4034-8D32-AD3640B6B1FD}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{DE7C781E-3469-47D9-AF3E-78C861EC429D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

29-11-2018 17:07:54 Windows Update
08-12-2018 21:53:13 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============

Name: NETGEAR WNA1100 N150 Wireless USB Adapter
Description: NETGEAR WNA1100 N150 Wireless USB Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Netgear Inc.
Service: athur
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/12/2018 05:08:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Video.UI.exe, version: 10.18052.1061.0, time stamp: 0x5b10981a
Faulting module name: EntPlat.dll, version: 10.18052.1061.0, time stamp: 0x5b10876c
Exception code: 0xc0000005
Fault offset: 0x00000000003b62e0
Faulting process id: 0x1aa8
Faulting application start time: 0x01d492672801ea3e
Faulting application path: C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
Faulting module path: C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe\EntPlat.dll
Report Id: 7124b96d-2779-46d6-8542-733785de0f73
Faulting package full name: Microsoft.ZuneVideo_10.18052.10711.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: Microsoft.ZuneVideo


System errors:
=============
Error: (12/12/2018 05:13:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Delivery Optimization service terminated with the following service-specific error:
%%2147943409 = The configuration registry database is corrupt.

Error: (12/12/2018 05:13:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Delivery Optimization service terminated with the following service-specific error:
%%2147943409 = The configuration registry database is corrupt.

Error: (12/12/2018 05:13:46 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Delivery Optimization service terminated with the following service-specific error:
%%2147943409 = The configuration registry database is corrupt.

Error: (12/12/2018 05:13:45 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Delivery Optimization service terminated with the following service-specific error:
%%2147943409 = The configuration registry database is corrupt.

Error: (12/12/2018 05:13:44 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Delivery Optimization service terminated with the following service-specific error:
%%2147943409 = The configuration registry database is corrupt.

Error: (12/12/2018 05:07:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (12/12/2018 05:07:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (12/12/2018 05:06:34 PM) (Source: athur) (EventID: 5003) (User: )
Description: NETGEAR WNA1100 N150 Wireless USB Adapter : Could not find a network adapter.


==================== Memory info ===========================

Processor: Intel® Core™2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 40%
Total physical RAM: 4094.49 MB
Available physical RAM: 2426.29 MB
Total Virtual: 8702.49 MB
Available Virtual: 7170.09 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.95 GB) (Free:856.96 GB) NTFS

\\?\Volume{9dabe905-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{9dabe905-0000-0000-0000-70c3e8000000}\ () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 9DABE905)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=468 MB) - (Type=27)

==================== End of Addition.txt ============================


Edited by Izzy1665, 12 December 2018 - 04:30 PM.

  • 0

#42
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP

Search for

 

services.msc

hit Enter

 

Find

Delivery Optimization

Right click and select Properties.  Change Startup Type: to Manual then OK

 

That should get rid of:

 

Error: (12/12/2018 05:13:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Delivery Optimization service terminated with the following service-specific error:
%%2147943409 = The configuration registry database is corrupt.

 

 

 

It's set to Manual on my Win 10 so it shouldn't cause any problems.

Reboot

Try Windows Update again and see if there is any improvement.


  • 0

#43
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

It is already set to Manual


  • 0

#44
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,474 posts
  • MVP

try disabled then


  • 0

#45
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 97 posts

Disabling "Delivery Optimization" did allow for most of the updates to download and install.

 

The only update that did not was:

2018-12 Cumulative Update for Windows 10 Version 1803 for x64-based Systems (KB4471324) - Error 0x80070015

 

I tried downloading and installing this by itself from the Microsoft store by it failed, I did not make note of the error code but it was different than the 0x80070015 listed on the Windows Update page.


  • 0






Similar Topics

3 user(s) are reading this topic

0 members, 3 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP