Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Computer not working well. Slow and Glitchy


  • Please log in to reply

#1
tidewater1

tidewater1

    Member

  • Member
  • PipPip
  • 16 posts

Having trouble with computer. Very slow.  Goes to sleep and needs to be restarted.   The web browsers are very slow loading.  Word also is not working well.  Very slow to load actual pages.  There are times where the window blanks for a second and shows the menu with all  of the icons to run apps that was introduced with window 10.  I don't know what to call that menu.  It kind of looks like a tablet type of menu.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2020
Ran by Heather Casella (administrator) on DESKTOP-EGS2CL1 (Dell Inc. Inspiron 15-7568) (11-06-2020 13:32:48)
Running from C:\Users\Heather Casella\Downloads
Loaded Profiles: Heather Casella
Platform: Windows 10 Home Version 1803 17134.1246 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Netherlands B.V. -> ) C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AVG Netherlands B.V. -> AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Inc -> Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\99.4.501\QtWebEngineProcess.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <31>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel® Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki127176.inf_amd64_86c658cabfb17c9c\igfxCUIService.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki127176.inf_amd64_86c658cabfb17c9c\IntelCpHDCPSvc.exe
(Intel® pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki127176.inf_amd64_86c658cabfb17c9c\IntelCpHeciSvc.exe
(Intel® Trust Services -> Intel® Corporation) C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe\CompanionApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\NisSrv.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe
(Rivet Networks LLC -> CloudBees, Inc.) C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RNDBWM.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
 
==================== Registry (Whitelisted) ===================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3885616 2015-07-23] (Wistron Corporation -> Dell Inc.)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [600496 2015-07-07] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [302744 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7916032 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2195968 2018-06-06] (AVG Netherlands B.V. -> )
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Heather Casella\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Heather Casella\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\RunOnce: [Uninstall 19.232.1124.0010\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Heather Casella\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64"
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\RunOnce: [Uninstall 19.232.1124.0010] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Heather Casella\AppData\Local\Microsoft\OneDrive\19.232.1124.0010"
HKLM\...\Print\Monitors\IppMon: C:\WINDOWS\system32\IPPMon.dll [251392 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.97\Installer\chrmstp.exe [2020-06-10] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2017-08-08]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass (Marvasol Inc) -> LastPass)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
 
==================== Scheduled Tasks (Whitelisted) ============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {024D0CD3-1980-470D-9861-854B634338EA} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [32448 2018-12-04] (Rivet Networks LLC -> DELL)
Task: {02DEB1A6-1618-45EC-B017-B27FCC9E85B3} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-24] (Intel® Software Asset Manager -> Intel Corporation)
Task: {1CA7C892-E797-41A9-8268-995F06CE1AD9} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe
Task: {1DB774E9-CF8D-43D2-8256-6C2557F6F72A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1443424 2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {25E66CA5-EEB4-492D-8B9D-D2E2A9815730} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2475368 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
Task: {27C3484A-5B1E-48E2-9A38-D9E6AAD2DE08} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1698000 2015-06-05] (Intel® Software -> Intel Corporation)
Task: {2E2D9299-7059-440E-8694-E6ED3BE509A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {373E884D-66D1-40B9-B42F-D4AC5023F270} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {397D148B-E8A8-4533-8C06-79315C963D50} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {416C481E-8B8C-47AE-8EDD-56B5A9575826} - System32\Tasks\AVG EUpdate Task => C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4072504 2018-06-22] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
Task: {49CBBE44-C5E8-4349-B319-CDFBECFD8FB2} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {617FF12E-AB3C-4CA5-A2A8-1417AE757A84} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6B24C83E-B7FC-4065-B58E-F51D3B1B46B6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {707BB8EC-AC43-47BC-9945-660E77A87093} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-17] (Google Inc -> Google Inc.)
Task: {70B0F3AA-F3F1-423A-BE57-8CD7A9B918E2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)
Task: {7F2FBD15-0EAA-4417-A2E9-CC43C4A03865} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-17] (Google Inc -> Google Inc.)
Task: {8E60586B-2180-4733-A575-08BA06EF464D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9265488F-7164-49FD-BDE3-400B639D7122} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MpCmdRun.exe [491104 2020-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9CCF64B7-CAD0-4AB5-B523-1F598701FB4F} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-24] (Intel® Software Asset Manager -> Intel Corporation)
Task: {B4CD6466-F9DE-4376-9E85-AB6AD0238324} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe
Task: {B76A8E33-8484-47C2-9940-D85BC8FCAB9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {C44E0408-FE33-4285-8ED3-6D57E1825D96} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1553880 2020-05-03] (Dell Inc. -> Dell Inc.)
Task: {CA28DAC9-2389-4BFC-8B01-7EF292EE70D4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\RunDLC.job => cmd c sc start Dell Help SupportWORKGROUP DESKTOP EGS2CL1
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e2823465-9a34-4797-aba9-dfad5d926b68}: [DhcpNameServer] 172.51.1.171
Tcpip\..\Interfaces\{e837b89c-7935-4773-9896-01fe833248c0}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={FE2DD4D5-F557-4A56-BBF2-9F4CE50D7C06}&mid=c6c5758fcd9c47cf8e0dd99d4a25b182-4b91e80488bedb24367975aa3671e3b54613f895&lang=en&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2017-01-16 00:56:41&v=4.3.6.255&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-1489768028-4010142875-587287457-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={FE2DD4D5-F557-4A56-BBF2-9F4CE50D7C06}&mid=c6c5758fcd9c47cf8e0dd99d4a25b182-4b91e80488bedb24367975aa3671e3b54613f895&lang=en&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2017-01-16 00:56:41&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1489768028-4010142875-587287457-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={FE2DD4D5-F557-4A56-BBF2-9F4CE50D7C06}&mid=c6c5758fcd9c47cf8e0dd99d4a25b182-4b91e80488bedb24367975aa3671e3b54613f895&lang=en&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2017-01-16 00:56:41&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1489768028-4010142875-587287457-1001 -> {C03A6AFE-BD88-409D-97E4-36C29DF459B5} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-06-06] (AVG Netherlands B.V. -> AVG)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2017-08-08] (LastPass (Marvasol Inc) -> LastPass)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-06-06] (AVG Netherlands B.V. -> AVG)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2017-08-08] (LastPass (Marvasol Inc) -> LastPass)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2017-08-08] (LastPass (Marvasol Inc) -> LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2017-08-08] (LastPass (Marvasol Inc) -> LastPass)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
 
FireFox:
========
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2017-08-08] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2017-08-08] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-03-22] (Microsoft Corporation -> Microsoft Corporation)
 
Chrome: 
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default [2020-06-09]
CHR Notifications: Default -> hxxps://connect.xfinity.com; hxxps://mail.google.com; hxxps://northernstar-org.highfive.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR NewTab: Default ->  Not-active:"chrome-extension://efmghoeobeidomhfjmnfcaejileclmin/newtab/newtab.html"
CHR DefaultSearchURL: Default -> hxxp://search.playzonenow.com/search/?category=web&s=15pr&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Browsing Shield
CHR DefaultSuggestURL: Default -> hxxp://sug.playzonenow.com/search/index_sg.php?q={searchTerms}
CHR Extension: (Slides) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-12]
CHR Extension: (Docs) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-12]
CHR Extension: (Google Drive) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-17]
CHR Extension: (YouTube) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-17]
CHR Extension: (My Quick Converter) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmghoeobeidomhfjmnfcaejileclmin [2017-12-09]
CHR Extension: (Browsing Shield) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\emagoefalakdhapfaobnccdpkomocelm [2017-12-24]
CHR Extension: (Sheets) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-12]
CHR Extension: (Search Encrypt) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfepjimmefpblmiemkioljocpmhniogl [2018-04-27]
CHR Extension: (Google Docs Offline) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-22]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-02-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-21]
CHR Extension: (Gmail) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-24]
CHR Extension: (Chrome Media Router) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-20]
CHR Profile: C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-08-15]
CHR Profile: C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-08-15]
CHR StartupUrls: Profile 1 -> "hxxp://google.com/","hxxp://www.search.ask.com/?tpid=ORJ-M&o=APN11805&pf=VM1&trgb=CR&p2=%5EBTE%5EYYYYYY%5EYY%5EUS&gct=hp&apn_ptnrs=%5EBTE&apn_dtid=%5EYYYYYY%5EYY%5EUS&apn_dbr=cr_41.0.2272.89&apn_uid=2DA3A071-3DCF-48CF-8276-AE6F39D2F674&itbv=15.0.0.7&doi=2015-03-21&psv=&pt=tb","hxxp://www.google.com/"
CHR Extension: (Slides) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-28]
CHR Extension: (Docs) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-28]
CHR Extension: (Google Drive) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-28]
CHR Extension: (YouTube) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-28]
CHR Extension: (Honey) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2019-07-20]
CHR Extension: (SlitherPlus - Zoom, Skin Creator, Mod,  Bots) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cpbghpalffgmgocmnigfhalghmaemffo [2019-06-28]
CHR Extension: (ConvertAnyFile) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\elldknmoogdfipmglklpbkoppgeipbfa [2019-06-28]
CHR Extension: (Sheets) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-28]
CHR Extension: (Google Docs Offline) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-22]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2019-07-25]
CHR Extension: (Google Keep - notes and lists) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2019-08-13]
CHR Extension: (Cisco Webex Extension) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2019-07-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-06-28]
CHR Extension: (Gmail) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-28]
CHR Extension: (Chrome Media Router) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-28]
CHR Profile: C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-06-11]
CHR Notifications: Profile 2 -> hxxps://calendar.google.com
CHR Extension: (Slides) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-05]
CHR Extension: (Docs) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-05]
CHR Extension: (Google Drive) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-05]
CHR Extension: (YouTube) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-05]
CHR Extension: (Sheets) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-05]
CHR Extension: (Google Docs Offline) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-06-09]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2020-06-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-23]
CHR Extension: (Gmail) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-05]
CHR Extension: (Chrome Media Router) - C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-06-09]
CHR Profile: C:\Users\Heather Casella\AppData\Local\Google\Chrome\User Data\System Profile [2019-08-15]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd]
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd]
 
==================== Services (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AESMService; c:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3715208 2015-09-30] (Intel® Corporation -> Intel Corporation)
S2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [282536 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7600584 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [248376 2020-01-22] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3359288 2020-01-22] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [271416 2020-01-22] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-09-19] (Dell Inc -> Dell Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.7106.1428\DSAPI.exe [965104 2020-06-09] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [40976 2017-09-18] (Dell Inc -> Dell Inc.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [36544 2020-04-17] (Dell Inc -> )
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S3 Intel® WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-24] (Intel® Software Asset Manager -> Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [213648 2017-11-22] (Intel® Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265864 2018-03-19] (Intel Corporation -> )
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell Inc -> Dell)
R2 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64184 2018-12-04] (Rivet Networks LLC -> CloudBees, Inc.)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2114248 2018-12-04] (Rivet Networks LLC -> Rivet Networks)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-08-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-08-16] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [38360 2020-05-03] (Dell Inc. -> Dell Inc.)
R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-06-06] (AVG Netherlands B.V. -> AVG Secure Search)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [564144 2015-07-07] (Waves Inc -> Waves Audio Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-06-06] (AVG Netherlands B.V. -> )
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848328 2018-03-19] (Intel Corporation -> Intel® Corporation)
 
===================== Drivers (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166624 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [314640 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192584 2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336896 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [51336 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39424 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [140192 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102792 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76832 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1022288 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [579584 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [193768 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [355856 2017-10-31] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R4 DBUtil_2_3; C:\WINDOWS\TEMP\DBUtil_2_3.Sys [14840 2020-06-10] (Dell Inc. -> )
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [35704 2020-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corporation -> Wistron Corp.)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [120008 2018-12-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 VirtualButtons; C:\WINDOWS\System32\drivers\VirtualButtons.sys [41992 2017-03-31] (Intel® Software -> Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-06-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [401120 2020-06-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-09] (Microsoft Windows -> Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ===================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2020-06-11 13:32 - 2020-06-11 13:36 - 000036900 _____ C:\Users\Heather Casella\Downloads\FRST.txt
2020-06-11 13:32 - 2020-06-11 13:35 - 000000000 ____D C:\FRST
2020-06-11 13:31 - 2020-06-11 13:31 - 002289152 _____ (Farbar) C:\Users\Heather Casella\Downloads\FRST64.exe
2020-06-11 11:59 - 2020-06-11 11:59 - 000000162 ____H C:\Users\Heather Casella\Documents\~$W Handouts 2017.pdf
2020-06-11 11:10 - 2020-06-11 11:10 - 000003668 _____ C:\Users\Heather Casella\Downloads\invite.ics
2020-06-10 15:25 - 2020-06-10 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-06-09 14:25 - 2020-06-09 14:24 - 000058520 _____ (Intel Corporation ) C:\WINDOWS\system32\Drivers\iqvw64e.sys
2020-06-09 14:05 - 2020-06-09 14:05 - 000000000 ___HD C:\$GetCurrent
2020-06-09 13:58 - 2020-06-09 13:58 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-06-09 13:58 - 2020-06-09 13:58 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-06-09 13:58 - 2020-06-09 13:58 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-06-09 13:58 - 2020-06-09 13:58 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
 
==================== One month (modified) ==================
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2020-06-11 13:29 - 2018-11-10 09:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-06-11 13:29 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-11 12:22 - 2018-03-17 12:52 - 000000000 ____D C:\Users\Heather Casella\AppData\Local\Packages
2020-06-11 11:50 - 2017-07-31 21:07 - 000000000 ____D C:\Users\Heather Casella\Documents\Contracts
2020-06-11 11:04 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-06-11 11:04 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-06-11 11:02 - 2018-04-11 18:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-06-11 10:58 - 2018-11-10 09:17 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4131C69A-4DFB-4070-9E13-715770378AFE}
2020-06-10 21:08 - 2016-02-24 15:35 - 001388432 _____ C:\Users\Public\VOIP.dat
2020-06-10 15:50 - 2018-11-10 09:20 - 000793700 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-06-10 15:50 - 2018-04-11 18:36 - 000000000 ____D C:\WINDOWS\INF
2020-06-10 15:40 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-06-10 15:25 - 2016-02-24 15:47 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-06-10 15:06 - 2018-11-10 09:17 - 000003668 _____ C:\WINDOWS\system32\Tasks\AVG EUpdate Task
2020-06-10 14:31 - 2016-02-24 15:18 - 000000000 ____D C:\ProgramData\Dell
2020-06-10 09:44 - 2017-07-09 23:05 - 000000000 ____D C:\Program Files\UNP
2020-06-10 09:42 - 2016-09-17 14:40 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-10 09:42 - 2016-09-17 14:40 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-10 09:42 - 2016-09-17 14:40 - 000002262 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-09 16:41 - 2016-09-17 14:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-06-09 16:36 - 2016-09-17 14:52 - 120636720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-06-09 15:05 - 2018-11-10 09:17 - 000003398 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1489768028-4010142875-587287457-1001
2020-06-09 15:05 - 2018-11-10 09:10 - 000002395 _____ C:\Users\Heather Casella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-06-09 15:05 - 2016-09-17 11:58 - 000000000 ___RD C:\Users\Heather Casella\OneDrive
2020-06-09 15:00 - 2018-03-17 15:10 - 000000000 ___RD C:\Users\Heather Casella\3D Objects
2020-06-09 15:00 - 2016-09-17 11:56 - 000000000 __SHD C:\Users\Heather Casella\IntelGraphicsProfiles
2020-06-09 15:00 - 2016-02-24 15:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-06-09 14:39 - 2018-02-28 21:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-06-09 14:31 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\Registration
2020-06-09 14:31 - 2016-02-24 15:46 - 000000000 ____D C:\ProgramData\PCDr
2020-06-09 14:28 - 2018-11-10 09:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-06-09 14:28 - 2018-11-10 09:08 - 000404568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-06-09 14:28 - 2017-12-01 01:07 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2020-06-09 14:27 - 2018-04-11 16:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-06-09 14:26 - 2016-02-24 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\TextInput
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-06-09 14:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-06-09 14:25 - 2018-04-11 16:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-06-09 14:23 - 2018-11-10 09:17 - 000003914 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2020-06-09 14:22 - 2017-07-09 22:52 - 000000000 ____D C:\ProgramData\SupportAssist
2020-06-09 14:20 - 2018-04-11 18:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-06-09 14:12 - 2016-02-24 15:47 - 000000934 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2020-06-09 14:12 - 2016-02-24 15:47 - 000000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2020-06-09 14:05 - 2020-03-22 09:36 - 000000000 ____D C:\Windows10Upgrade
2020-06-09 14:04 - 2016-09-17 14:25 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
 
==================== Files in the root of some directories ========
 
2016-02-24 15:35 - 2020-06-10 21:08 - 001388432 _____ () C:\Users\Public\VOIP.dat
2017-08-08 09:21 - 2017-08-08 09:21 - 099882520 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
 
==================== SigCheck ============================
 
(There is no automatic fix for files that do not pass verification.)
 
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2020
Ran by Heather Casella (11-06-2020 13:40:42)
Running from C:\Users\Heather Casella\Downloads
Windows 10 Home Version 1803 17134.1246 (X64) (2018-11-10 14:17:53)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1489768028-4010142875-587287457-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1489768028-4010142875-587287457-503 - Limited - Disabled)
Guest (S-1-5-21-1489768028-4010142875-587287457-501 - Limited - Disabled)
Heather Casella (S-1-5-21-1489768028-4010142875-587287457-1001 - Administrator - Enabled) => C:\Users\Heather Casella
WDAGUtilityAccount (S-1-5-21-1489768028-4010142875-587287457-504 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 17.8.3036 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.9.626 - AVG Technologies)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.122.0 - Conexant)
Conexant HD Audio (HKLM-x32\...\{7A630EC4-B56A-4709-B18F-769B4F80DD17}) (Version: 8.65.122.0 - Conexant)
Dell Customer Connect (HKLM-x32\...\{04A41EBC-AB30-4574-A14D-E0CDFE31AB70}) (Version: 1.5.1.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)
Dell Help & Support (HKLM\...\{457EFE69-8F49-43E0-80F9-1DEF4F7690C2}) (Version: 2.5.23.0 - Dell Inc.) Hidden
Dell Help & Support (HKLM-x32\...\InstallShield_{457EFE69-8F49-43E0-80F9-1DEF4F7690C2}) (Version: 2.5.23.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\InstallShield_{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\{6D2933E3-DC42-44E5-B80E-DACDD64ADFF5}) (Version: 3.5.0.448 - Dell Inc.)
Dell Update (HKLM-x32\...\{5EBBC1DA-975F-44A0-B438-F325BCD45577}) (Version: 3.0.1 - Dell Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 99.4.501 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden
FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.97 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel® Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.10900.330 - Intel Corporation)
Intel® HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.0.310 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1058 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel® Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel® Trusted Connect Services Client (HKLM-x32\...\{fd62de85-bda9-4280-a95b-fa2f86e0dc58}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel® Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.0.21 - Intel Corporation)
Intel® WiDi (HKLM\...\{5DD8D7E4-87F1-4134-AD28-4228FB1A03BA}) (Version: 6.0.44.0 - Intel Corporation)
Intel® WiDi Software Asset Manager (HKLM-x32\...\{86905E62-645F-482E-A417-82C812ABD787}) (Version: 1.1.383 - Intel Corporation) Hidden
Intel® Wireless Bluetooth® (HKLM-x32\...\{9A287643-10C5-4463-B9D1-B2404CE18CCF}) (Version: 17.1.1529.1620 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{8c595286-0f9e-42de-a0d4-969aba282637}) (Version: 20.50.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Software Guard Extensions Platform Software (HKLM\...\{D6CE0772-080E-45D4-8CB0-AB2AB9710DFE}) (Version: 1.1.28151.80 - Intel Corporation)
LastPass (uninstall only) (HKLM-x32\...\LastPass) (Version:  - LastPass)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6331.1 - Waves Audio Ltd.) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Pre-Algebra Teaching Textbook (HKLM-x32\...\Pre-Algebra Teaching Textbook) (Version:  - Teaching Textbooks Inc.)
Product Registration (HKLM\...\{48114909-3C3B-43E6-BF98-AE9C396500A3}) (Version: 3.0.127.0 - Dell Inc.) Hidden
QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.32 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.13.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.19083.8 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.19083.8 - Samsung Electronics Co., Ltd.)
SmartByte Drivers and Services (HKLM\...\{01F01829-4C5A-41B0-8198-0BDD02B34C47}) (Version: 2.0.643 - Rivet Networks)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.14.0065 - ST Microelectronics)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
 
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.170.200.0_x86__kgqvnymyfvs32 [2020-06-11] (king.com)
Dell Shop -> C:\Program Files\WindowsApps\DellInc.DellShop_2.2.1.0_neutral__htrsf667h5kn2 [2016-09-17] (Dell Inc)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.5.13.0_x64__htrsf667h5kn2 [2020-06-09] (Dell Inc)
Invoice – BizXpert -> C:\Program Files\WindowsApps\Kulcs-Soft.BizXPert_1.8.925.1_neutral__2syceqpnnq02y [2018-10-11] (Key-Soft Plc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-08] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.40.21551.0_x64__8wekyb3d8bbwe [2020-06-09] (Microsoft Corporation)
Microsoft Phone -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-10-11] (Microsoft Corporation)
Microsoft Phone Companion -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-12] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-06-09] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-09] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-09] (Microsoft Corporation) [MS Ad]
MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-06-09] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-06-09] (Netflix, Inc.)
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.9.0_x64__8wekyb3d8bbwe [2020-03-22] (Microsoft Corporation)
Pandora -> C:\Program Files\WindowsApps\PandoraMediaInc.29680B314EFC2_15.0.3.0_x64__n619g4d5j0fnw [2020-02-27] (Pandora Media Inc) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-10-11] (Twitter Inc.)
 
==================== Custom CLSID (Whitelisted): ==============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-1489768028-4010142875-587287457-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Heather Casella\Dropbox [2016-09-19 17:11]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-05-28] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki127176.inf_amd64_86c658cabfb17c9c\igfxDTCM.dll [2018-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2017-12-01] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
 
==================== Codecs (Whitelisted) ====================
 
==================== Shortcuts & WMI ========================
 
(The entries could be listed to be restored or removed.)
 
ShortcutWithArgument: C:\Users\Heather Casella\Desktop\First user - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\Heather Casella\Desktop\Heather - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Heather Casella\Desktop\Person 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Heather Casella\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Keep - notes and lists.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory="Profile 1" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
 
==================== Loaded Modules (Whitelisted) =============
 
2017-07-09 22:51 - 2017-07-09 22:51 - 067109376 _____ () [File not signed] C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2017-01-15 19:51 - 2017-01-15 19:50 - 048920064 _____ () [File not signed] C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2016-09-17 12:24 - 2016-09-17 12:24 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2016-09-17 12:24 - 2016-09-17 12:24 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2018-12-04 13:10 - 2018-12-04 13:10 - 000100864 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll
2020-05-03 05:13 - 2020-05-03 05:13 - 001899008 _____ (SQLite Development Team) [File not signed] C:\Program Files\Dell\SupportAssistAgent\bin\x64\sqlite3.dll
2017-07-09 22:51 - 2017-07-09 22:51 - 000434176 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\AVG\Antivirus\chrome_elf.dll
2017-06-07 17:49 - 2017-06-07 17:49 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\AVG\Antivirus\libcrypto-1_1.dll
2017-06-07 17:49 - 2017-06-07 17:49 - 000381952 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\AVG\Antivirus\libssl-1_1.dll
 
==================== Alternate Data Streams (Whitelisted) ========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\Users\Heather Casella\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [118]
 
==================== Safe Mode (Whitelisted) ==================
 
==================== Association (Whitelisted) =================
 
==================== Internet Explorer trusted/restricted ==========
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\sharepoint.com -> hxxps://district279-files.sharepoint.com
 
==================== Hosts content: =========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-10-30 02:24 - 2015-10-30 02:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 
==================== Other Areas ===========================
 
(Currently there is no automatic fix for this section.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL;C:\Program Files\Intel\Intel® Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\Intel® Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(If an entry is included in the fixlist, it will be removed.)
 
HKU\S-1-5-21-1489768028-4010142875-587287457-1001\...\StartupApproved\Run: => "OneDrive"
 
==================== FirewallRules (Whitelisted) ================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{AC9CF6F1-BDB7-4FB6-B4A2-EEE271261F64}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{FEBB3B4D-9E19-4A53-9163-1F0E594D0810}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe => No File
FirewallRules: [{65C51598-02DC-461D-9CBD-4C91095ECFA4}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe => No File
FirewallRules: [{A71C07FE-9F32-4A19-8ACF-2CF6928E9965}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe => No File
FirewallRules: [{792C69FB-C85B-4C4D-B632-9E2B02621C1C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe => No File
FirewallRules: [{627D7C18-2530-4EF0-A844-CB6AF7A31A54}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E646EEAF-04A7-4510-9304-1A8EA8296C4C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{386866B4-4FAB-4DCA-8779-BF35F72AB728}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
 
==================== Restore Points =========================
 
09-06-2020 16:33:55 Windows Update
 
==================== Faulty Device Manager Devices ============
 
 
==================== Event log errors: ========================
 
Application errors:
==================
Error: (06/11/2020 01:29:30 PM) (Source: Service1) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.ArgumentOutOfRangeException: Time-out interval must be less than 2^32-2.
Parameter name: dueTm
   at System.Threading.Timer..ctor(TimerCallback callback, Object state, TimeSpan dueTime, TimeSpan period)
   at OTBSurvey.Controller.SetSurveyRequestTimer()
   at OTBSurvey.OTBSurveyService.OnPowerEvent(PowerBroadcastStatus powerStatus)
   at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
 
Error: (06/11/2020 10:55:47 AM) (Source: Service1) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.ArgumentOutOfRangeException: Time-out interval must be less than 2^32-2.
Parameter name: dueTm
   at System.Threading.Timer..ctor(TimerCallback callback, Object state, TimeSpan dueTime, TimeSpan period)
   at OTBSurvey.Controller.SetSurveyRequestTimer()
   at OTBSurvey.OTBSurveyService.OnPowerEvent(PowerBroadcastStatus powerStatus)
   at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
 
Error: (06/10/2020 09:04:14 PM) (Source: Service1) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.ArgumentOutOfRangeException: Time-out interval must be less than 2^32-2.
Parameter name: dueTm
   at System.Threading.Timer..ctor(TimerCallback callback, Object state, TimeSpan dueTime, TimeSpan period)
   at OTBSurvey.Controller.SetSurveyRequestTimer()
   at OTBSurvey.OTBSurveyService.OnPowerEvent(PowerBroadcastStatus powerStatus)
   at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
 
Error: (06/10/2020 04:39:28 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
 
Error: (06/10/2020 02:41:14 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW.  hr = 0x80070006, The handle is invalid.
.
 
 
Operation:
   Executing Asynchronous Operation
 
Context:
   Current State: DoSnapshotSet
 
Error: (06/10/2020 02:30:19 PM) (Source: Service1) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.ArgumentOutOfRangeException: Time-out interval must be less than 2^32-2.
Parameter name: dueTm
   at System.Threading.Timer..ctor(TimerCallback callback, Object state, TimeSpan dueTime, TimeSpan period)
   at OTBSurvey.Controller.SetSurveyRequestTimer()
   at OTBSurvey.OTBSurveyService.OnPowerEvent(PowerBroadcastStatus powerStatus)
   at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
 
Error: (06/10/2020 09:36:52 AM) (Source: Service1) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.ArgumentOutOfRangeException: Time-out interval must be less than 2^32-2.
Parameter name: dueTm
   at System.Threading.Timer..ctor(TimerCallback callback, Object state, TimeSpan dueTime, TimeSpan period)
   at OTBSurvey.Controller.SetSurveyRequestTimer()
   at OTBSurvey.OTBSurveyService.OnPowerEvent(PowerBroadcastStatus powerStatus)
   at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
 
Error: (06/09/2020 06:51:01 PM) (Source: Service1) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.ArgumentOutOfRangeException: Time-out interval must be less than 2^32-2.
Parameter name: dueTm
   at System.Threading.Timer..ctor(TimerCallback callback, Object state, TimeSpan dueTime, TimeSpan period)
   at OTBSurvey.Controller.SetSurveyRequestTimer()
   at OTBSurvey.OTBSurveyService.OnPowerEvent(PowerBroadcastStatus powerStatus)
   at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
 
 
System errors:
=============
Error: (06/11/2020 12:19:06 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGS2CL1)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user DESKTOP-EGS2CL1\Heather Casella SID (S-1-5-21-1489768028-4010142875-587287457-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (S-1-15-2-2661687437-550028366-365114541-2835930649-2257324970-4115831600-1920084188). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/11/2020 12:00:21 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGS2CL1)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user DESKTOP-EGS2CL1\Heather Casella SID (S-1-5-21-1489768028-4010142875-587287457-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (S-1-15-2-3465954444-4146280779-3757056048-1141472018-409587115-1902564550-4233799018). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/11/2020 11:51:52 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGS2CL1)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user DESKTOP-EGS2CL1\Heather Casella SID (S-1-5-21-1489768028-4010142875-587287457-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (S-1-15-2-334856905-1764655510-2896763757-3407334560-3831727938-3411329335-2013664710). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/11/2020 11:16:48 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/10/2020 09:04:41 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGS2CL1)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user DESKTOP-EGS2CL1\Heather Casella SID (S-1-5-21-1489768028-4010142875-587287457-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/10/2020 09:04:41 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-EGS2CL1)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user DESKTOP-EGS2CL1\Heather Casella SID (S-1-5-21-1489768028-4010142875-587287457-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.
 
Error: (06/10/2020 03:52:45 PM) (Source: Netwtw04) (EventID: 5005) (User: )
Description: Intel® Dual Band Wireless-AC 3165 : Has encountered an internal error and has failed.
5005 - Driver internal error
 
Error: (06/10/2020 03:52:45 PM) (Source: Netwtw04) (EventID: 5005) (User: )
Description: Intel® Dual Band Wireless-AC 3165 : Has encountered an internal error and has failed.
5005 - Driver internal error
 
 
Windows Defender:
===================================
Date: 2019-08-21 00:02:40.840
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {53E2D7C7-343E-43E4-9B84-E196C271B0E6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-08-18 14:51:09.777
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {B3ED6C45-C83D-4B22-95BD-306BCB2F37A4}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-08-18 14:45:51.643
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {270778F1-7A38-4717-A8AF-E433E1674F79}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-08-18 14:40:36.218
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {C9F92AA6-F408-495D-AF93-AD0FF0522AA1}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2019-08-16 01:08:03.421
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {6137D806-19E2-4F31-B0A7-DB99D1DA8D53}
Scan Type: Antimalware
Scan Parameters: Quick Scan
 
Date: 2020-06-09 14:19:30.245
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.311.1824.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16800.2
Error code: 0x80072f8f
Error description: A security error occurred 
 
Date: 2020-06-09 14:19:30.243
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.311.1824.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16800.2
Error code: 0x80072f8f
Error description: A security error occurred 
 
Date: 2020-06-09 14:19:30.241
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.311.1824.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16800.2
Error code: 0x80072f8f
Error description: A security error occurred 
 
Date: 2019-07-20 11:34:09.297
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.299.131.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16200.1
Error code: 0x80070670
Error description: No valid sequence could be found for the set of updates. 
 
Date: 2019-07-20 11:34:09.296
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.299.131.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16200.1
Error code: 0x80070670
Error description: No valid sequence could be found for the set of updates. 
 
CodeIntegrity:
===================================
 
Date: 2020-06-11 13:43:53.663
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:43:51.198
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:38:45.626
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:38:22.703
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:38:20.662
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:38:06.529
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:37:53.219
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
Date: 2020-06-11 13:36:23.495
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\AVG\Antivirus\snxhk64.dll that did not meet the Microsoft signing level requirements.
 
==================== Memory info =========================== 
 
BIOS: Dell Inc. 1.18.2 12/07/2017
Motherboard: Dell Inc. 0GN5VG
Processor: Intel® Core™ i7-6500U CPU @ 2.50GHz
Percentage of memory in use: 78%
Total physical RAM: 8049.27 MB
Available physical RAM: 1760.74 MB
Total Virtual: 16241.27 MB
Available Virtual: 5470.88 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:226.29 GB) (Free:115.15 GB) NTFS
 
\\?\Volume{8dd00e8a-de0e-4301-a087-fcdb7ea1cc9b}\ () (Fixed) (Total:0.83 GB) (Free:0.45 GB) NTFS
\\?\Volume{cbaf91d6-e22a-40ec-a4ae-70addf9c62a6}\ (Image) (Fixed) (Total:10.74 GB) (Free:0.65 GB) NTFS
\\?\Volume{6434136f-8dfe-4641-a126-a8ab5a437843}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.45 GB) FAT32
 
==================== MBR & Partition Table ====================
 
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 4F2EF1D5)
 
Partition: GPT.
 
==================== End of Addition.txt =======================

 


  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,013 posts
  • MVP

Multiple replies are OK.  Best to post a log as you get it.

Get Process Explorer

https://live.sysinte...com/procexp.exe

Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.


Copy the next 2 lines:

TASKLIST /SVC  > \junk.txt
notepad \junk.txt

Open an Elevated Command Prompt:
Win 7: Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
Win 8: http://www.eightforu...indows-8-a.html
win 10: http://www.howtogeek...-in-windows-10/

Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply.


Get the free version of Speccy:

http://www.filehippo...ownload_speccy/ 

(Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  
Download, Save and Install it.  Tell it you do not need CCLEANER.    Run Speccy.  When it finishes (the little icon in the bottom left will stop moving),
File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  
(It will be near the top,  10-20  lines down.) Save the file.  Attach the file to your next post.  Attaching the log is the best option as it is too big for the forum.  Attaching is a multi step process.

First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.


Latency Monitor:

Go to

http://www.resplendence.com/downloads

Scroll down to

System Monitoring Tools

and then find

LatencyMon 6.70 (or it may be a higher number if they update)

Click on Download free home edition

Save it then right click and Run As Admin.  It will install and then start the program.  
It will tell you to click on the Start button but there isn't one.  
Instead click on the green arrowhead (looks like a Play button).   Let it run for at least 20 seconds.  Then hit the red box to stop it.

Edit, Copy Report text to Clipboard then move to a REPLY and Ctrl + v to paste the text into a reply.  


Click on the Drivers Tab.  Click on the column header for "Total execution (ms)" once or twice until the biggest numbers are at the top of the column then take a screen shot (save as type jpg) and attach it.  
Click on the Processes tab then click on the column header once or twice until the big numbers are at the top of the column.  Take a screen shot (save as type jpg) and attach it.


  • 0

#3
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Process CPU Private Bytes Working Set PID Verified Signer
procexp64.exe 11.17 93,152 K 84,224 K 4688 (Verified) Microsoft Corporation
svchost.exe 10.35 58,464 K 73,616 K 4212 (Verified) Microsoft Windows Publisher
System Idle Process 8.03 52 K 8 K 0
RuntimeBroker.exe 7.87 6,984 K 18,992 K 10928 (Verified) Microsoft Windows
chrome.exe 6.25 63,948 K 66,532 K 13868 (Verified) Google LLC
backgroundTaskHost.exe 6.16 4,300 K 18,252 K 10988 (Verified) Microsoft Windows
System 5.28 188 K 1,356 K 4
backgroundTaskHost.exe 4.51 8,024 K 21,268 K 17728 (Verified) Microsoft Windows
sihost.exe 4.42 8,132 K 26,052 K 6368 (Verified) Microsoft Windows
svchost.exe 4.33 9,716 K 14,888 K 536 (Verified) Microsoft Windows Publisher
MsMpEng.exe 3.65 312,952 K 220,216 K 3824 (Verified) Microsoft Windows Publisher
dwm.exe 3.33 342,172 K 162,096 K 1052
Interrupts 3.28 0 K 0 K n/a
chrome.exe 2.82 230,496 K 220,452 K 9012 (Verified) Google LLC
Dropbox.exe 2.30 223,416 K 99,692 K 13040 (Verified) Dropbox, Inc
RuntimeBroker.exe 1.94 9,668 K 26,500 K 16680 (Verified) Microsoft Windows
svchost.exe 1.92 2,228 K 6,160 K 11372 (Verified) Microsoft Windows Publisher
svchost.exe 1.79 15,708 K 27,692 K 972 (Verified) Microsoft Windows Publisher
RNDBWM.exe 1.24 7,768 K 9,588 K 5612
chrome.exe 1.23 630,864 K 401,700 K 12824 (Verified) Google LLC
vprot.exe 1.05 7,080 K 16,720 K 14156 (Verified) AVG Netherlands B.V.
Zoom.exe 0.95 58,656 K 36,560 K 12428 (Verified) Zoom Video Communications, Inc.
csrss.exe 0.73 3,088 K 4,872 K 680
chrome.exe 0.50 176,336 K 164,020 K 13628 (Verified) Google LLC
svchost.exe 0.43 36,572 K 44,744 K 5828 (Verified) Microsoft Windows Publisher
DropboxUpdate.exe 0.39 7,444 K 15,404 K 10316 (Verified) Dropbox, Inc
Zoom.exe 0.33 75,276 K 27,192 K 14248 (Verified) Zoom Video Communications, Inc.
SmartByteNetworkService.exe 0.29 107,780 K 40,012 K 3616 (Verified) Rivet Networks LLC
taskhostw.exe 0.25 11,088 K 16,724 K 6564 (Verified) Microsoft Windows
AVGUI.exe 0.25 91,612 K 41,812 K 13236 (Verified) AVG Technologies CZ, s.r.o.
chrome.exe 0.24 44,460 K 47,380 K 12808 (Verified) Google LLC
explorer.exe 0.22 69,320 K 102,864 K 732 (Verified) Microsoft Windows
DropboxUpdate.exe 0.20 2,820 K 9,232 K 8316 (Verified) Dropbox, Inc
svchost.exe 0.20 39,292 K 25,996 K 16376 (Verified) Microsoft Windows Publisher
chrome.exe 0.15 64,072 K 94,364 K 7512 (Verified) Google LLC
DropboxUpdate.exe 0.14 3,044 K 2,324 K 20680
svchost.exe 0.14 3,792 K 7,704 K 2244 (Verified) Microsoft Windows Publisher
SearchIndexer.exe 0.13 34,760 K 41,408 K 8768 (Verified) Microsoft Windows
lsass.exe 0.12 8,232 K 14,148 K 788 (Verified) Microsoft Windows Publisher
chrome.exe 0.12 91,392 K 107,184 K 9580 (Verified) Google LLC
RuntimeBroker.exe 0.10 11,236 K 32,220 K 6184 (Verified) Microsoft Windows
QtWebEngineProcess.exe 0.09 46,612 K 29,116 K 15116 (Verified) Dropbox, Inc
svchost.exe 0.09 6,612 K 13,648 K 2504 (Verified) Microsoft Windows Publisher
chrome.exe 0.08 176,904 K 173,148 K 20340 (Verified) Google LLC
svchost.exe 0.08 2,444 K 9,276 K 1148 (Verified) Microsoft Windows Publisher
ServiceShell.exe 0.07 73,664 K 93,292 K 20744 (Verified) Dell Inc
svchost.exe 0.06 2,576 K 7,936 K 1956 (Verified) Microsoft Windows Publisher
services.exe 0.05 6,048 K 8,796 K 736
svchost.exe 0.05 11,600 K 16,304 K 9092 (Verified) Microsoft Windows Publisher
SupportAssistDownloadManager.exe 0.05 19,732 K 24,784 K 22504
WUDFHost.exe 0.04 2,320 K 4,748 K 1520
chrome.exe 0.04 58,604 K 47,796 K 12552 (Verified) Google LLC
svchost.exe 0.04 6,284 K 12,468 K 2696 (Verified) Microsoft Windows Publisher
dasHost.exe 0.03 2,900 K 6,932 K 4400
csrss.exe 0.03 2,116 K 3,420 K 592
conhost.exe 0.03 5,648 K 3,968 K 5632
esif_assist_64.exe 0.02 1,200 K 1,928 K 6280
svchost.exe 0.02 1,392 K 3,896 K 1620 (Verified) Microsoft Windows Publisher
chrome.exe 0.02 186,724 K 167,424 K 9900 (Verified) Google LLC
chrome.exe 0.02 32,864 K 39,620 K 9248 (Verified) Google LLC
chrome.exe 0.02 84,156 K 63,856 K 19716 (Verified) Google LLC
chrome.exe 0.02 49,656 K 66,168 K 13460 (Verified) Google LLC
chrome.exe 0.02 75,096 K 91,284 K 12152 (Verified) Google LLC
svchost.exe 0.02 3,140 K 5,840 K 852 (Verified) Microsoft Windows Publisher
chrome.exe 0.02 42,000 K 49,964 K 15024 (Verified) Google LLC
svchost.exe 0.02 2,656 K 6,208 K 2572 (Verified) Microsoft Windows Publisher
svchost.exe 0.01 18,876 K 24,700 K 3280 (Verified) Microsoft Windows Publisher
svchost.exe 0.01 11,840 K 24,804 K 3296 (Verified) Microsoft Windows Publisher
svchost.exe 0.01 2,996 K 7,344 K 1944 (Verified) Microsoft Windows Publisher
chrome.exe 0.01 64,912 K 68,720 K 16860 (Verified) Google LLC
chrome.exe 0.01 64,064 K 69,136 K 9276 (Verified) Google LLC
chrome.exe 0.01 6,340 K 9,332 K 5792 (Verified) Google LLC
chrome.exe 0.01 112,452 K 111,784 K 16088 (Verified) Google LLC
svchost.exe 0.01 2,508 K 5,652 K 1868 (Verified) Microsoft Windows Publisher
chrome.exe 0.01 39,380 K 51,596 K 5340 (Verified) Google LLC
conhost.exe 0.01 5,664 K 1,072 K 20240
OfficeClickToRun.exe 0.01 9,252 K 26,172 K 20720 (Verified) Microsoft Corporation
svchost.exe 0.01 16,416 K 14,336 K 1532 (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 8,144 K 19,008 K 6356 (Verified) Microsoft Windows Publisher
OfficeClickToRun.exe < 0.01 28,148 K 45,172 K 20884
chrome.exe < 0.01 151,124 K 144,624 K 17876 (Verified) Google LLC
chrome.exe < 0.01 35,660 K 36,420 K 10868 (Verified) Google LLC
WavesSvc64.exe < 0.01 1,364 K 3,660 K 11988 (Verified) Waves Inc
chrome.exe < 0.01 121,552 K 122,152 K 6248 (Verified) Google LLC
svchost.exe < 0.01 5,028 K 14,180 K 7628 (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 2,664 K 10,140 K 1640 (Verified) Microsoft Windows Publisher
Memory Compression < 0.01 1,756 K 128,192 K 1796
TabTip.exe < 0.01 3,784 K 10,960 K 9740
chrome.exe < 0.01 118,416 K 117,496 K 12460 (Verified) Google LLC
OfficeClickToRun.exe < 0.01 36,736 K 31,520 K 3344 (Verified) Microsoft Corporation
svchost.exe < 0.01 3,848 K 7,132 K 2408 (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 4,204 K 18,544 K 6692 (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 2,132 K 7,184 K 1452 (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 4,704 K 15,020 K 7296 (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 3,860 K 9,192 K 12884 (Verified) Microsoft Windows Publisher
avgsvca.exe < 0.01 10,664 K 23,908 K 3352 (Verified) AVG Netherlands B.V.
svchost.exe < 0.01 3,736 K 8,100 K 4560 (Verified) Microsoft Windows Publisher
sedsvc.exe < 0.01 4,840 K 10,524 K 11596 (Verified) Microsoft Windows
QtWebEngineProcess.exe < 0.01 34,088 K 9,508 K 15264 (Verified) Dropbox, Inc
PRSvc.exe < 0.01 53,744 K 27,256 K 12024 (Verified) Dell Inc
ZeroConfigService.exe 5,120 K 11,012 K 3848 (Verified) Intel Corporation
WUDFHost.exe 25,428 K 8,340 K 352
WtuSystemSupport.exe 2,740 K 6,260 K 1432 (Verified) AVG Netherlands B.V.
WmiPrvSE.exe 4,080 K 9,948 K 10740
WmiPrvSE.exe 10,392 K 13,428 K 5560
wlanext.exe 5,156 K 8,584 K 2844
WINWORD.EXE 43,556 K 51,972 K 13288 (Verified) Microsoft Corporation
winlogon.exe 2,104 K 6,312 K 764
wininit.exe 1,316 K 3,020 K 668
WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe Suspended 15,396 K 26,716 K 7392 (Verified) Microsoft Windows
WhatsNew.Store.exe Suspended 37,260 K 60,080 K 22428 (No signature was present in the subject)
WavesSysSvc64.exe 2,760 K 3,020 K 3804 (Verified) Waves Inc
Video.UI.exe Suspended 18,092 K 23,060 K 10536 (No signature was present in the subject)
unsecapp.exe 1,692 K 4,596 K 5440
TPMProvisioningService.exe 1,924 K 4,524 K 3320 (Verified) Intel® Trust Services
ToolbarUpdater.exe 4,796 K 11,156 K 3796 (Verified) AVG Netherlands B.V.
taskhostw.exe 5,576 K 12,668 K 19068
SystemSettings.exe 18,512 K 34,320 K 13048 (Verified) Microsoft Windows
svchost.exe 4,284 K 16,408 K 10180 (Verified) Microsoft Windows Publisher
svchost.exe 3,036 K 7,500 K 1716 (Verified) Microsoft Windows Publisher
svchost.exe 8,068 K 14,732 K 3432 (Verified) Microsoft Windows Publisher
svchost.exe 2,708 K 7,656 K 12896 (Verified) Microsoft Windows Publisher
svchost.exe 2,672 K 10,228 K 2744 (Verified) Microsoft Windows Publisher
svchost.exe 11,784 K 32,384 K 6444 (Verified) Microsoft Windows Publisher
svchost.exe 2,204 K 4,464 K 4052 (Verified) Microsoft Windows Publisher
svchost.exe 4,320 K 9,500 K 20352 (Verified) Microsoft Windows Publisher
svchost.exe 10,928 K 15,628 K 3040 (Verified) Microsoft Windows Publisher
svchost.exe 3,848 K 14,924 K 20712 (Verified) Microsoft Windows Publisher
svchost.exe 3,308 K 10,036 K 2360 (Verified) Microsoft Windows Publisher
svchost.exe 4,592 K 8,252 K 1232 (Verified) Microsoft Windows Publisher
svchost.exe 1,620 K 4,500 K 3336 (Verified) Microsoft Windows Publisher
svchost.exe 3,616 K 12,156 K 1372 (Verified) Microsoft Windows Publisher
svchost.exe 1,880 K 6,032 K 21752 (Verified) Microsoft Windows Publisher
svchost.exe 2,512 K 6,216 K 3540 (Verified) Microsoft Windows Publisher
svchost.exe 3,864 K 9,564 K 2416 (Verified) Microsoft Windows Publisher
svchost.exe 2,108 K 5,588 K 3056 (Verified) Microsoft Windows Publisher
svchost.exe 14,040 K 28,784 K 5864 (Verified) Microsoft Windows Publisher
svchost.exe 4,848 K 16,776 K 3816 (Verified) Microsoft Windows Publisher
svchost.exe 2,004 K 4,696 K 2428 (Verified) Microsoft Windows Publisher
svchost.exe 1,512 K 4,452 K 11236 (Verified) Microsoft Windows Publisher
svchost.exe 8,816 K 9,888 K 1724 (Verified) Microsoft Windows Publisher
svchost.exe 2,148 K 5,284 K 9352 (Verified) Microsoft Windows Publisher
svchost.exe 2,772 K 8,152 K 1548 (Verified) Microsoft Windows Publisher
svchost.exe 3,916 K 9,588 K 4184 (Verified) Microsoft Windows Publisher
svchost.exe 2,980 K 6,916 K 1656 (Verified) Microsoft Windows Publisher
svchost.exe 21,252 K 25,440 K 3272 (Verified) Microsoft Windows Publisher
svchost.exe 2,300 K 7,152 K 1140 (Verified) Microsoft Windows Publisher
svchost.exe 2,200 K 6,768 K 2580 (Verified) Microsoft Windows Publisher
svchost.exe 7,308 K 12,444 K 2004 (Verified) Microsoft Windows Publisher
svchost.exe 2,392 K 7,024 K 1964 (Verified) Microsoft Windows Publisher
svchost.exe 2,248 K 9,400 K 11848 (Verified) Microsoft Windows Publisher
svchost.exe 3,772 K 6,948 K 7428 (Verified) Microsoft Windows Publisher
svchost.exe 2,152 K 7,428 K 2132 (Verified) Microsoft Windows Publisher
svchost.exe 1,040 K 2,312 K 932 (Verified) Microsoft Windows Publisher
svchost.exe 2,264 K 3,900 K 1208 (Verified) Microsoft Windows Publisher
svchost.exe 1,856 K 5,392 K 1248 (Verified) Microsoft Windows Publisher
svchost.exe 2,036 K 5,376 K 2124 (Verified) Microsoft Windows Publisher
svchost.exe 2,552 K 7,948 K 3512 (Verified) Microsoft Windows Publisher
svchost.exe 1,660 K 4,132 K 3572 (Verified) Microsoft Windows Publisher
svchost.exe 1,964 K 5,164 K 3716 (Verified) Microsoft Windows Publisher
svchost.exe 1,368 K 3,736 K 3784 (Verified) Microsoft Windows Publisher
svchost.exe 1,880 K 5,324 K 4044 (Verified) Microsoft Windows Publisher
svchost.exe 1,712 K 4,016 K 4372 (Verified) Microsoft Windows Publisher
svchost.exe 1,376 K 4,760 K 15720 (Verified) Microsoft Windows Publisher
SupportAssistInstaller.exe 56,476 K 45,300 K 21228
SupportAssistAgent.exe 63,808 K 76,468 K 21588 (Verified) Dell Inc.
ss_conn_service2.exe 2,040 K 3,904 K 3700 (Verified) DEVGURU Co., Ltd.
ss_conn_service.exe 2,080 K 3,980 K 3648 (Verified) Samsung Electronics CO., LTD.
spoolsv.exe 5,808 K 8,896 K 2984 (Verified) Microsoft Windows
SpeechRuntime.exe 15,668 K 14,716 K 8228 (Verified) Microsoft Windows
smss.exe 564 K 240 K 448
SkypeBridge.exe 34,796 K 34,752 K 8932 (No signature was present in the subject) Microsoft Corporation
SkypeBackgroundHost.exe Suspended 1,948 K 7,784 K 11052 (No signature was present in the subject) Microsoft Corporation
SkypeApp.exe Suspended 200,684 K 50,184 K 11484 (No signature was present in the subject) Microsoft Corporation
ShellExperienceHost.exe Suspended 34,824 K 60,792 K 7812 (Verified) Microsoft Windows
SgrmBroker.exe 2,588 K 3,596 K 10248 (Verified) Microsoft Windows Publisher
SettingSyncHost.exe 18,824 K 17,660 K 9684 (Verified) Microsoft Windows
sedlauncher.exe 6,396 K 4,324 K 6392
SecurityHealthService.exe 4,272 K 12,064 K 3624 (Verified) Microsoft Windows Publisher
SearchUI.exe Suspended 91,140 K 79,948 K 8024 (Verified) Microsoft Windows
RuntimeBroker.exe 9,712 K 21,588 K 12816 (Verified) Microsoft Windows
RuntimeBroker.exe 6,868 K 20,140 K 10604 (Verified) Microsoft Windows
RuntimeBroker.exe 2,512 K 15,244 K 21052 (Verified) Microsoft Windows
RuntimeBroker.exe 2,824 K 14,568 K 18200 (Verified) Microsoft Windows
RuntimeBroker.exe 9,692 K 22,344 K 7968 (Verified) Microsoft Windows
RuntimeBroker.exe 8,236 K 27,416 K 9820 (Verified) Microsoft Windows
RuntimeBroker.exe 1,240 K 4,448 K 18172 (Verified) Microsoft Windows
RuntimeBroker.exe 2,120 K 5,540 K 9768 (Verified) Microsoft Windows
RuntimeBroker.exe 1,740 K 4,376 K 9620 (Verified) Microsoft Windows
RNDBWMService.exe 14,840 K 10,404 K 4980 (Verified) Rivet Networks LLC
RemindersServer.exe Suspended 7,376 K 13,476 K 10448 (Verified) Microsoft Windows
RegSrvc.exe 1,940 K 5,512 K 3592 (Verified) Intel Corporation
Registry 11,092 K 35,160 K 96
quickset.exe 4,332 K 11,640 K 11832 (Verified) Wistron Corporation
procexp.exe 8,332 K 10,292 K 21376 (Verified) Microsoft Corporation
OUTLOOK.EXE 46,756 K 79,340 K 13304 (Verified) Microsoft Corporation
NisSrv.exe 3,860 K 6,800 K 5824 (Verified) Microsoft Windows Publisher
msdtc.exe 2,956 K 5,216 K 15556 (Verified) Microsoft Windows
MSASCuiL.exe 1,932 K 6,072 K 11688 (Verified) Microsoft Windows
MicrosoftEdgeCP.exe Suspended 5,292 K 13,116 K 10008 (Verified) Microsoft Corporation
MicrosoftEdgeCP.exe Suspended 6,036 K 14,272 K 10064 (Verified) Microsoft Corporation
MicrosoftEdge.exe Suspended 22,516 K 21,836 K 8956 (Verified) Microsoft Corporation
Microsoft.Photos.exe Suspended 24,744 K 49,520 K 11716 (No signature was present in the subject)
MDLCSvc.exe 45,940 K 35,232 K 8480 (Verified) Dell Inc
LockApp.exe Suspended 12,228 K 32,656 K 1388 (Verified) Microsoft Windows
LMS.exe 3,888 K 7,016 K 3156 (Verified) Intel® Embedded Subsystems and IP Blocks Group
jhi_service.exe 1,272 K 3,812 K 2724 (Verified) Intel® Embedded Subsystems and IP Blocks Group
isa.exe 16,508 K 12,220 K 9832 (No signature was present in the subject) Intel Corporation
IntelCpHeciSvc.exe 1,400 K 4,120 K 4668 (Verified) Intel® pGFX
IntelCpHDCPSvc.exe 1,420 K 4,220 K 3312 (Verified) Intel® pGFX
igfxEM.exe 6,976 K 22,228 K 6804 (Verified) Intel® pGFX
igfxCUIService.exe 1,692 K 5,240 K 1272 (Verified) Intel® pGFX
ibtsiva.exe 936 K 2,620 K 3360 (Verified) Intel Corporation-Wireless Connectivity Solutions
GoogleCrashHandler64.exe 1,716 K 728 K 11552
GoogleCrashHandler.exe 1,828 K 1,104 K 11532
fontdrvhost.exe 8,332 K 4,676 K 952
fontdrvhost.exe 1,916 K 1,420 K 944
EvtEng.exe 4,916 K 8,372 K 3304 (Verified) Intel Corporation
esif_uf.exe 1,640 K 3,280 K 3288 (Verified) Intel Corporation - pGFX
Dropbox.exe 1,980 K 5,148 K 13104 (Verified) Dropbox, Inc
Dropbox.exe 3,648 K 7,076 K 13184 (Verified) Dropbox, Inc
dllhost.exe 4,020 K 8,608 K 15700 (Verified) Microsoft Windows
dllhost.exe 1,844 K 9,856 K 7900 (Verified) Microsoft Windows
dllhost.exe 3,448 K 8,648 K 9320 (Verified) Microsoft Windows
dllhost.exe 3,188 K 7,352 K 5400
DCCService.exe 23,312 K 15,992 K 15784 (Verified) Dell Inc
DbxSvc.exe 2,564 K 3,680 K 3328 (Verified) Dropbox, Inc
ctfmon.exe 3,516 K 10,112 K 9708
conhost.exe 5,320 K 2,868 K 2864
chrome.exe 27,836 K 43,604 K 9124 (Verified) Google LLC
chrome.exe 125,196 K 122,976 K 17176 (Verified) Google LLC
chrome.exe 129,276 K 124,880 K 10904 (Verified) Google LLC
chrome.exe 2,112 K 4,368 K 13096 (Verified) Google LLC
chrome.exe 51,764 K 66,200 K 6208 (Verified) Google LLC
chrome.exe 51,296 K 64,076 K 11920 (Verified) Google LLC
chrome.exe 154,700 K 136,600 K 7068 (Verified) Google LLC
chrome.exe 21,372 K 37,568 K 15012 (Verified) Google LLC
chrome.exe 57,648 K 68,636 K 13468 (Verified) Google LLC
chrome.exe 133,840 K 75,064 K 14572 (Verified) Google LLC
chrome.exe 22,412 K 35,944 K 10940 (Verified) Google LLC
chrome.exe 23,724 K 40,408 K 21656 (Verified) Google LLC
chrome.exe 32,348 K 50,468 K 18028 (Verified) Google LLC
chrome.exe 104,308 K 96,596 K 16488 (Verified) Google LLC
chrome.exe 22,272 K 30,176 K 7944 (Verified) Google LLC
chrome.exe 123,880 K 117,728 K 17004 (Verified) Google LLC
chrome.exe 70,896 K 73,252 K 14392 (Verified) Google LLC
chrome.exe 21,016 K 26,040 K 1488 (Verified) Google LLC
chrome.exe 34,976 K 53,272 K 22376 (Verified) Google LLC
chrome.exe 26,408 K 43,392 K 20936 (Verified) Google LLC
chrome.exe 123,984 K 109,432 K 16820 (Verified) Google LLC
chrome.exe 23,064 K 41,660 K 21756 (Verified) Google LLC
chrome.exe 23,188 K 40,020 K 15744 (Verified) Google LLC
browser_broker.exe 1,928 K 5,680 K 8300 (Verified) Microsoft Windows
BackgroundTransferHost.exe 6,192 K 8,608 K 16748 (Verified) Microsoft Windows
backgroundTaskHost.exe Suspended 7,356 K 24,544 K 15320 (Verified) Microsoft Windows
avguix.exe 19,200 K 13,412 K 12168 (Verified) AVG Netherlands B.V.
ApplicationFrameHost.exe 15,492 K 32,352 K 8640 (Verified) Microsoft Windows
aesm_service.exe 2,384 K 5,360 K 13092 (Verified) Intel® Corporation

  • 0

#4
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Accidentally had confirm kill selected under options Is that problem?


  • 0

#5
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Could not find text in notepad with command prompt... here is what it had

 

C:\Users\Heather Casella\Desktop>TASKLIST /SVC  > \junk.txt
Access is denied.
 
C:\Users\Heather Casella\Desktop>notepad \junk.txt
 
C:\Users\Heather Casella\Desktop>TASKLIST /SVC  > \junk.txt
Access is denied.
 
C:\Users\Heather Casella\Desktop>notepad \junk.txt
 
C:\Users\Heather Casella\Desktop>TASKLIST /SVC  > \junk.txt
Access is denied.
 
C:\Users\Heather Casella\Desktop>notepad \junk.txt
 
C:\Users\Heather Casella\Desktop>TASKLIST /SVC  > \junk.txt
Access is denied.
 
C:\Users\Heather Casella\Desktop>notepad \junk.txt
 
C:\Users\Heather Casella\Desktop>TASKLIST /SVC  > \junk.txt
Access is denied.
 
C:\Users\Heather Casella\Desktop>notepad \junk.txt
 
C:\Users\Heather Casella\Desktop>

  • 0

#6
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

SPeccy file log

Attached Files


  • 0

#7
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
_________________________________________________________________________________________________________
CONCLUSION
_________________________________________________________________________________________________________
Your system appears to be suitable for handling real-time audio and other tasks without dropouts. 
LatencyMon has been analyzing your system for  0:00:27  (h:mm:ss) on all processors.
 
 
_________________________________________________________________________________________________________
SYSTEM INFORMATION
_________________________________________________________________________________________________________
Computer name:                                        DESKTOP-EGS2CL1
OS version:                                           Windows 10 , 10.0, version 1803, build: 17134 (x64)
Hardware:                                             Inspiron 15-7568, Dell Inc., 0GN5VG
CPU:                                                  GenuineIntel Intel® Core™ i7-6500U CPU @ 2.50GHz
Logical processors:                                   4
Processor groups:                                     1
RAM:                                                  8049 MB total
 
 
_________________________________________________________________________________________________________
CPU SPEED
_________________________________________________________________________________________________________
Reported CPU speed:                                   2592 MHz
 
Note: reported execution times may be calculated based on a fixed reported CPU speed. Disable variable speed settings like Intel Speed Step and AMD Cool N Quiet in the BIOS setup for more accurate results.
 
 
_________________________________________________________________________________________________________
MEASURED INTERRUPT TO USER PROCESS LATENCIES
_________________________________________________________________________________________________________
The interrupt to process latency reflects the measured interval that a usermode process needed to respond to a hardware request from the moment the interrupt service routine started execution. This includes the scheduling and execution of a DPC routine, the signaling of an event and the waking up of a usermode thread from an idle wait state in response to that event.
 
Highest measured interrupt to process latency (µs):   785.381475
Average measured interrupt to process latency (µs):   9.980375
 
Highest measured interrupt to DPC latency (µs):       743.900059
Average measured interrupt to DPC latency (µs):       3.419644
 
 
_________________________________________________________________________________________________________
 REPORTED ISRs
_________________________________________________________________________________________________________
Interrupt service routines are routines installed by the OS and device drivers that execute in response to a hardware interrupt signal.
 
Highest ISR routine execution time (µs):              89.737654
Driver with highest ISR routine execution time:       ACPI.sys - ACPI Driver for NT, Microsoft Corporation
 
Highest reported total ISR routine time (%):          0.011072
Driver with highest ISR total time:                   ACPI.sys - ACPI Driver for NT, Microsoft Corporation
 
Total time spent in ISRs (%)                          0.013251
 
ISR count (execution time <250 µs):                   336
ISR count (execution time 250-500 µs):                0
ISR count (execution time 500-999 µs):                0
ISR count (execution time 1000-1999 µs):              0
ISR count (execution time 2000-3999 µs):              0
ISR count (execution time >=4000 µs):                 0
 
 
_________________________________________________________________________________________________________
REPORTED DPCs
_________________________________________________________________________________________________________
DPC routines are part of the interrupt servicing dispatch mechanism and disable the possibility for a process to utilize the CPU while it is interrupted until the DPC has finished execution.
 
Highest DPC routine execution time (µs):              570.906636
Driver with highest DPC routine execution time:       ndis.sys - Network Driver Interface Specification (NDIS), Microsoft Corporation
 
Highest reported total DPC routine time (%):          0.112515
Driver with highest DPC total execution time:         storport.sys - Microsoft Storage Port Driver, Microsoft Corporation
 
Total time spent in DPCs (%)                          0.452317
 
DPC count (execution time <250 µs):                   79117
DPC count (execution time 250-500 µs):                0
DPC count (execution time 500-999 µs):                31
DPC count (execution time 1000-1999 µs):              0
DPC count (execution time 2000-3999 µs):              0
DPC count (execution time >=4000 µs):                 0
 
 
_________________________________________________________________________________________________________
 REPORTED HARD PAGEFAULTS
_________________________________________________________________________________________________________
Hard pagefaults are events that get triggered by making use of virtual memory that is not resident in RAM but backed by a memory mapped file on disk. The process of resolving the hard pagefault requires reading in the memory from disk while the process is interrupted and blocked from execution.
 
NOTE: some processes were hit by hard pagefaults. If these were programs producing audio, they are likely to interrupt the audio stream resulting in dropouts, clicks and pops. Check the Processes tab to see which programs were hit.
 
Process with highest pagefault count:                 msiexec.exe
 
Total number of hard pagefaults                       3245
Hard pagefault count of hardest hit process:          1151
Number of processes hit:                              53
 
 
_________________________________________________________________________________________________________
 PER CPU DATA
_________________________________________________________________________________________________________
CPU 0 Interrupt cycle time (s):                       1.005302
CPU 0 ISR highest execution time (µs):                89.737654
CPU 0 ISR total execution time (s):                   0.014320
CPU 0 ISR count:                                      336
CPU 0 DPC highest execution time (µs):                570.906636
CPU 0 DPC total execution time (s):                   0.462768
CPU 0 DPC count:                                      76068
_________________________________________________________________________________________________________
CPU 1 Interrupt cycle time (s):                       0.201365
CPU 1 ISR highest execution time (µs):                0.0
CPU 1 ISR total execution time (s):                   0.0
CPU 1 ISR count:                                      0
CPU 1 DPC highest execution time (µs):                189.945988
CPU 1 DPC total execution time (s):                   0.003641
CPU 1 DPC count:                                      310
_________________________________________________________________________________________________________
CPU 2 Interrupt cycle time (s):                       0.506041
CPU 2 ISR highest execution time (µs):                0.0
CPU 2 ISR total execution time (s):                   0.0
CPU 2 ISR count:                                      0
CPU 2 DPC highest execution time (µs):                174.273148
CPU 2 DPC total execution time (s):                   0.018558
CPU 2 DPC count:                                      2486
_________________________________________________________________________________________________________
CPU 3 Interrupt cycle time (s):                       0.187511
CPU 3 ISR highest execution time (µs):                0.0
CPU 3 ISR total execution time (s):                   0.0
CPU 3 ISR count:                                      0
CPU 3 DPC highest execution time (µs):                192.203704
CPU 3 DPC total execution time (s):                   0.003825
CPU 3 DPC count:                                      284
_________________________________________________________________________________________________________
 

Attached Thumbnails

  • drivers.jpg
  • processes.jpg

  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,013 posts
  • MVP

Try: 

 

TASKLIST /SVC  > %UserProfile%\desktop\junk.txt

notepad  %UserProfile%\desktop\junk.txt

 

 

Search for

task scheduler

hit Enter

Click on the arrow in front of Task Scheduler Library then

Click on the arrow in front of Microsoft

Click on the arrow in front of Windows

Click on Application Experience.  In the next pane to the right, right click on each Task and Disable.  Should be three tasks.

Click on Customer Experience Improvement Program.  In the next pane to the right, right click on each Task and Disable.  Should be two tasks.

 

Close Task Scheduler.

 

It looks like you have an update trying to install and it's probably not working.  You are stuck at 1803 and should be at 1909 or 2004.  See if you can get it to install directly:

https://www.microsof...nload/windows10

Click on Update Now.  Save and then right click on the downloaded file and Run As Admin.

 


 


  • 0

#9
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

I followed your latest suggestions.  I am having trouble with the windows update. I have tried 3 times unsuccessfully. As I think about it, It has not successfully updated for a while.  The windows update assistant says my system is compatible withe the update. I am trying to download again. the update currently.  I will let you know if it works.  Not sure why it won't update.  


  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,013 posts
  • MVP

You may need to run a disk check to see if the file system on the hard drive has a problem.

 

Open an Elevated Command Prompt and type

 

chkdsk /r

hit Enter

then give it a

y

then Enter.  Reboot.  Disk check will take hours to complete if it can.  Sometimes it will get stuck at some % and never finish.

 

 

Let's check your system files.  This will take about 25 minutes and then reboot.

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   414bytes   15 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.


 


  • 0

Advertisements


#11
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
This is the message I got when I tried to execute ckdsk
 
icrosoft Windows [Version 10.0.17134.1304]
© 2018 Microsoft Corporation. All rights reserved.
 
C:\WINDOWS\system32>ckdsk/r
'ckdsk' is not recognized as an internal or external command,
operable program or batch file.

  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,013 posts
  • MVP

It's

CHKDSK /R not CKDSK /R

 

Also make sure you have an elevated Command Prompt.

 

 http://www.howtogeek...-in-windows-10/

 


  • 0

#13
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

opps :)


  • 0

#14
tidewater1

tidewater1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

This is the message I got when trying to install the updates

Attached Thumbnails

  • error message.jpg

  • 0

#15
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,013 posts
  • MVP

I found this for your error:

 

Microsoft Defender  blocking the install.  Open Windows Defender Security Center, go to Virus & Threat Protection, then Virus & Threat Protection Settings, and then turn off Real Time Protection.  The real time protection is temp and will turn back on after the install, but check anyway to make sure it back on after install

 

Apparently you do have Windows Defender enabled even tho you have AVG which you have disabled.  So might be worth a shot.

 

 

Did you ever run the fixlist?  IF so please post the fixlog.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP