svchost memory leak using all my ram

[5thman]

UPDATE: Let me start over. It might not be svchost.

For several weeks I couldn't get Windows 7 to successfully do a windows update. Always had the same ten updates pending installation, and they'd fail. Finally I had enough trying to figure out why and did a system restore to about early december 2016. I installed about 24 pending updates, and they didn't fail. Problem solved, right?

Until twenty-four hours later when I started suffering horrific slowdown with my ram usage up to 97%, sometimes freezing the computer. The only unusually ram-hungry process was the svchost process that runs these services: windows audio endpoint builder, human interface device access, network connections, program compatibility assistant service, superfetch, distributed link tracking client, desktop window manager session manager, diagnostic system host, wlan autoconfig, portable device enumerator service, and windows driver foundation user-mode driver framework. But while the computer's memory usage is always between 85% and 97%+ (and that's after i disabled write caching; before that, the process used so much ram so quickly the computer wasnt functional), svchost only uses a few hundred megabytes at most.

There appears to be no memory leak at all when i run in safe mode. I did a number of virus scans with AVG and found no threats. I did a test to check for errors and there didn't appear to be any. I also remember seeing an error message about java during one of the first memory leak spikes, but i didnt write it down.

Please, please give me a suggestion to solve this. I don't know how my computer became this sick overnight, and I don't know how to fix it.

Windows Genuine and Activation info:

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: N/A, hr = 0x8007043c
Windows Product Key: *****-*****-QCPVQ-KHRB8-RMV82
Windows Product Key Hash: +Rj3N34NLM2JqoBO/OzgzTZXgbY=
Windows Product ID: 00359-OEM-8992687-00095
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.003
ID: {A3B663DA-7FA1-4778-AE2A-C284F832FEED}(1)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Premium
Architecture: 0x00000009
Build lab: 7601.win7sp1_ldr.161011-0600
TTS Error: 
Validation Diagnostic: 
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 100 Genuine
Microsoft Office XP Professional - 100 Genuine
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office  Diagnostics:  77F760FE-153-80070002_7E90FEE8-175-80070002_025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005_E2AD56EA-765-b01a_E2AD56EA-766-0_E2AD56EA-148-80004005_16E0B333-89-80004005_B4D0AA8B-1029-80004005

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office  Details:  <GenuineResults><MachineData><UGUID>{A3B663DA-7FA1-4778-AE2A-C284F832FEED}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010300.1.0.003</OS><Architecture>x64</Architecture><PKey>*****-*****-*****-*****-RMV82</PKey><PID>00359-OEM-8992687-00095</PID><PIDType>2</PIDType><SID>S-1-5-21-300886815-453708303-3291578437</SID><SYSTEM><Manufacturer>Dell  Inc.</Manufacturer><Model>Studio 540       </Model></SYSTEM><BIOS><Manufacturer>Dell  Inc.</Manufacturer><Version>1.1.3</Version><SMBIOSVersion  major="2"  minor="5"/><Date>20090825000000.000000+000</Date></BIOS><HWID>DC203007018400F8</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>Mountain  Standard  Time(GMT-07:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>DELL   </OEMID><OEMTableID>AS09    </OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product   GUID="{91110409-6000-11D3-8CFE-0050048383C9}"><LegitResult>100</LegitResult><Name>Microsoft  Office XP  Professional</Name><Ver>10</Ver><Val>4F4A2BE538EEF5A</Val><Hash>b1xGejdphVGr5CAOqJdO2++O6KE=</Hash><Pid>54186-700-9381572-17173</Pid><PidType>1</PidType></Product></Products><Applications><App  Id="15" Version="10" Result="100"/><App Id="16" Version="10"  Result="100"/><App Id="18" Version="10" Result="100"/><App  Id="1A" Version="10" Result="100"/><App Id="1B" Version="10"  Result="100"/></Applications></Office></Software></GenuineResults>   

Spsys.log Content: 0x80070002

Licensing Data-->
CScript Error: Can't find script engine "VBScript" for script "C:\Windows\system32\slmgr.vbs".

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: 0x00000000
HealthStatus: 0x0000000000000000
Event Time Stamp: 11:28:2016 20:11
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Not Registered - 0x8007043c
HealthStatus Bitmask Output:


HWID Data-->
HWID Hash Current: MgAAAAEABAABAAIAAAAAAAAAAgABAAEAonaAF4hAhDR0lEa80AvweHi32GyM6T6lTFg=

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information: 
  ACPI Table Name    OEMID Value    OEMTableID Value
  APIC            082509        APIC1243
  FACP            082509        FACP1243
  HPET            082509        OEMHPET 
  MCFG            082509        OEMMCFG 
  SLIC            DELL          AS09   
  OEMB            082509        OEMB1243
  GSCI            082509        GMCHSCI 
  SSDT            DpgPmm        CpuPm

EDIT: Uploaded my CBS logs finally. The forum wasn't allowing me to upload directly and claimed the path was invalid or the filename changed, no matter where i moved the file. So I tried Mediafire, but kept getting a message about an outdated adobe flash pluging being prevented from running by firefox, until i okayed it. Then it kept freezing up whenever i highlighted Copy to Clipboard so I could share the damn file, as if somebody's hovering over my shoulder and deliberately stopping me from getting help resolving this.

Please tell me there's a way to fix this and get things back to normal.

 

[ThrashZone]

Hi,
Post this info
Windows Genuine and Activation Issue Posting Instructions

Windows Update Posting Instructions

 

[5thman]

Updated the OP to include some of what you requested. I can't do the rest in safe mode, and I'm not sure if I'll be able to do it in normal mode because of how useless the machine sometimes is, especially if it runs long enough. I'll update the OP again in a little while if successful.

EDIT: During the SURT installation I keep getting an error message about a script slowing my web browser, asking if I want to stop the script before it makes my computer lock up. I'm not running my web browser right now, so I'm not sure why this keeps popping up every ten minutes.

EDIT 2: "Installer encountered an error: 0xc80003f3"

"Error encountered while invoking Java Web Start (SysExec)
C:\program files\java\jre1.8.0_111\bin\javaws.exe"

So the install failed. And after the java error physical memory usage dropped from 99% to 36%. Somehow the computer still takes forever to do anything.

EDIT 3: Uploaded the CBS logs to the OP.

EDIT 4: Computer asked to update Java, which I did. So far computer is running slightly better, but I haven't tried restarting yet, and I don't know yet if it's a fluke. Was there a recent java update that was known for causing all this?

EDIT 5: Probably a fluke. It goes back and forth, sometimes relatively normal, sometimes maxing out my memory usage.

 

[5thman]

Here's a list of things avg didn't detect that malwarebytes quarantined. The Backdoor one is the only one flagged as malware; the rest were flagged as potentially unwanted. After reboot the computer took longer than ever to start up.

Since updating java the physical memory usage has been at a steady 2 gigs, sometimes spiking to max. Streaming/playing music exhibits skipping and other glitches that prove there's still something wrong, it's just not as extreme as before; quarantining these items hasn't shown any sign of change.

 

[ThrashZone]

Hi,
Possibly use AWCleaner it might find something too it is a bit better than mbam
Review Jacee’s instructions to run Adwcleaner here post #7,
Ignore the title of the thread,
Instant Savings App

 

[5thman]

Here's the log I copied from AWCleaner:

# AdwCleaner v6.043 - Logfile created 30/01/2017 at 19:00:08
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-01-30.3 [Local]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Mike - TANDY
# Running from : C:\Mike's Docs\adwcleaner_6.043.exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

Service Found:  vToolbarUpdater40.3.2
Service Found:  WtuSystemSupport


***** [ Folders ] *****

Folder Found:  C:\ProgramData\Avg_Update_0616tb
Folder Found:  C:\Users\Mike\AppData\Local\avg web tuneup
Folder Found:  C:\Users\Mike\AppData\Local\Pokki
Folder Found:  C:\Users\Mike\AppData\LocalLow\avg web tuneup
Folder Found:  C:\Users\Mike\AppData\Roaming\Speedial
Folder Found:  C:\Program Files\Common Files\AVG Secure Search
Folder Found:  C:\Users\Mike\AppData\Local\VirtualStore\Program Files (x86)\Viewpoint
Folder Found:  C:\ProgramData\AVG Secure Search
Folder Found:  C:\ProgramData\AVG Security Toolbar
Folder Found:  C:\ProgramData\avg web tuneup
Folder Found:  C:\ProgramData\Application Data\AVG Secure Search
Folder Found:  C:\ProgramData\Application Data\AVG Security Toolbar
Folder Found:  C:\ProgramData\Application Data\avg web tuneup
Folder Found:  C:\Program Files (x86)\Speedial
Folder Found:  C:\Program Files (x86)\Viewpoint
Folder Found:  C:\Program Files (x86)\avg web tuneup
Folder Found:  C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Found:  C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\avg web tuneup


***** [ Files ] *****

File Found:  C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\extensions\[email protected]
File Found:  C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\searchplugins\avg-secure-search.xml
File Found:  C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\searchplugins\Speedial.xml
File Found:  C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
File Found:  C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
File Found:  C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

No malicious task found.


***** [ Registry ] *****

Key Found:  HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
Key Found:  HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
Key Found:  HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
Key Found:  HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
Key Found:  HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found:  HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found:  HKLM\SOFTWARE\Classes\SdcUser.SdcMailCtl
Key Found:  HKLM\SOFTWARE\Classes\SdcUser.SdcMailCtl.1
Key Found:  HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
Key Found:  HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
Key Found:  [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
Key Found:  [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found:  [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\SdcUser.SdcMailCtl
Key Found:  [x64] HKLM\SOFTWARE\Classes\SdcUser.SdcMailCtl.1
Key Found:  [x64] HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
Key Found:  [x64] HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
Key Found:  HKCU\Software\Classes\CLSID\{BEBBC426-4F16-4567-8FE1-BE198C982027}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found:  HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Key Found:  HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found:  HKLM\SOFTWARE\Classes\TypeLib\{9DBB28C1-1925-11D3-A498-00104B6EB52E}
Key Found:  HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found:  HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Key Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found:  HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found:  HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Value Found:  HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
Key Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Pokki
Key Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Speedial
Key Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\YahooPartnerToolbar
Key Found:  HKCU\Software\Pokki
Key Found:  HKCU\Software\Speedial
Key Found:  HKCU\Software\YahooPartnerToolbar
Key Found:  HKLM\SOFTWARE\Viewpoint
Key Found:  HKLM\SOFTWARE\AVG Tuneup
Key Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speedial
Key Found:  [x64] HKCU\Software\Pokki
Key Found:  [x64] HKCU\Software\Speedial
Key Found:  [x64] HKCU\Software\YahooPartnerToolbar
Data Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://us.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={search
Data Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://mysearch.avg.com/?cid={8DFD6335-CBD5-49D9-AF0B-F7C7159B4B62}&mid=aa1a94fe0e4047d28051d
Data Found:  HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://us.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
Data Found:  HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://mysearch.avg.com/?cid={8DFD6335-CBD5-49D9-AF0B-F7C7159B4B62}&mid=aa1a94fe0e4047d28051d16836ba2eba-1651980b6c2a0e41ad40d775de5b1cd5
Data Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://us.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
Data Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://mysearch.avg.com/?cid={8DFD6335-CBD5-49D9-AF0B-F7C7159B4B62}&mid=aa1a94fe0e4047d28051d16836ba2eba-1651980b6c2a0e41ad40d775de5b1c
Data Found:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://speedial.com/?f=1&a=spd_frg_14_23_ff&cd=2XzuyEtN2Y1L1QzuzytDyE0C0EyDtAyDtByCtA0A0EyB0CtCtN0D0Tzu0SzzzzzztN1L2XzutBtFtBtDtFtCzytFt
Key Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Data Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Key Found:  HKU\S-1-5-21-300886815-453708303-3291578437-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Found:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Data Found:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Key Found:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Found:  HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Data Found:  HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Data Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Value Found:  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Found:  HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
Key Found:  HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin


***** [ Web browsers ] *****

Firefox pref Found:  [C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\prefs.js] - "avg.wtu.ext.extHomepage" -  "hxxps://mysearch.avg.com?pid=wtu&sg=&cid=%7B0d8d8688-d89c-48bf-b8ea-77ea
Firefox pref Found:  [C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\prefs.js] - "avg.wtu.ext.extParams" -  "{\"action\":\"extParams\",\"data\":{\"searchParams\":{\"pid\":\"wtu\",\"ci
Firefox pref Found:  [C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\prefs.js] - "avg.wtu.ext.setting_hp_list" -  "[{\"name\":\"AVG Secure Search\",\"value\":\"hxxps://mysearch.avg.co
Firefox pref Found:  [C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\prefs.js] - "browser.search.defaultenginename" -  "AVG Secure Search"
Firefox pref Found:  [C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\prefs.js] - "browser.search.defaulturl" -  "hxxp://us.yhs4.search.yahoo.com/yhs/search"
Firefox pref Found:  [C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\vnnb45y4.default-1400152085083\prefs.js] - "browser.search.selectedEngine" -  "AVG Secure Search"
Chrome pref Found:  [C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Web data] - aol.com
Chrome pref Found:  [C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Web data] - ask.com

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [10138 Bytes] - [30/01/2017 19:00:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10212 Bytes] ##########

The computer runs better now, but it's still wonky and my applications still hang sometimes when they never used to. Any other suggestions for finishing my pc cleanup?

 

[torchwood]

Hi 5thman,
couple question,
have you just changed AV or done a re-install?,
As the problem is this
Licensing Data--> CScript Error: Can't find script engine "VBScript" for script "C:\Windows\system32\slmgr.vbs".

Looking at the ADW report did you perform the clean up.
If not please do so and re-run the Mgadiag, copy/post the output, need to see what the after effects are.

I do have a fix but wanna make sure, that ADWcleaner and AVG dont get in the way.
note i would like you to remove AVG, as i believe its the root cause.

Roy
moving this to Updates/activations sub forum

Do you have a Galaxy s4 phone??

 

[5thman]

I already did the cleanup but I might have saved both logs. I'll check and post here if I did.

If I remove AVG, what do I replace it with? I did happen to notice the slowdown issues begin at startup once AVG begins running.

EDIT: I do not in fact have both logs, as I didn't want to suffer a broken computer while waiting for the next reply. I'd like to hear your suggestion for a fix regardless. Also I'm not sure what iphone i have. I think it's just an iphone 5 or 6.

 

[5thman]

Can you please tell me what your suggestion was that required removal of AVG?

 

[ThrashZone]

Hi,
Access Denied

What to replace it with
Well you could try mse briefly or panda free/ avast free
Watch out for the later 2 they include unneeded stuff so pay attention during the install and uncheck the 3 unneeded items toolbar....

 

[torchwood]

Hi 5th,
sorry bout that i was waiting for the log, but i see now you edited it in, so i didn't get a notification.


1) Highlight all the code below - then right-click on it and select Copy
2) Open Notepad
3) right-click in Notepad, and select Paste
4) Save the file as 'regfix.reg' to your desktop
5) close Notepad
6) doubleclick on the regfix.reg file - and confirm it when the UAC box pops up,
7) Wait until you get the Success message


Windows Registry Editor Version 5.00
[HKEY_CLASSES_ROOT\CLSID\{B54F3741-5B07-11cf-A4B0-00AA004A55E8}\InprocServer32]
@="C:\\Windows\\system32\\vbscript.dll"
"ThreadingModel"="Both"

If you do not have the required priveledges to change this key, its owned by Trusted installer
please follow this link, answer yes to any requests made
https://www.sevenforums.com/attachm...d-vbscript-engine-visual_basic_script_fix.msi


once completed now open a run command, via start
type the following

regsvr32 vbscript.dll



now REBOOT,

rerun the Mgadiag tool.

Re your phone,
not sure if one of the malwarebytes hits was a fasle/positive as it relates to its transfer option.


Roy