Forever to Wake Up

@Difficult_Man I noticed you logged in several times since my last couple post, how would you like to proceed? Or we can close the thread if you no longer require assistance.

OK, here are some responses & results.

1. I was using Edge while the last FRST scan ran with 5-6 tabs open. I did not have Chrome or any other program open.
   In case that influenced the results, I ran it again with nothing open.
2. I only use Edge lately because Chrome seemed slower. But I can compare them again after we remove problems.
   Would Chrome or another browser be better?
3. Covenant Eyes: I need this and want to eliminate every other problem before considering removal. I’ve used other filtering products and this interferes the least. I also used it for months before these problems became noticeable and serious. It was seamless at first.
   Focusrite: an audio recording interface. I don’t record as much now but may occasionally need to. Perhaps I can remove and install when necessary?
   OneDrive: seems useful for backup but I can live without it.
4. I can increase RAM but I am also open to getting a new laptop. I bought this in 2017.
5. Ran ZPHSuite but did not click Repair. Computer seems a bit better.
6. Ran Speccy, computer noticeably smoother (no hiccups, freezes). http://speccy.piriform.com/results/A...iPEQwG4rWoogvn
7. Offidocs keeps appearing and disappearing. Sometimes it takes over my searches. Is this malware?
8. Should I run a scan with Chrome open?

Thanks for your help. I can sense an improvement.

Ok. While I go over everything I’d like you to make a scan with Dr Web

I will prepare a new fix list that will stop everything from loading but can be started by you at any time, everything except the program that you mentioned. Also we will remove OneDrive and Edge. Considering that Edge uses two gigs of ram typically without even starting the application…

For now lets make the scan with Dr Web and then go from there.

---

---

[HEADING=2]Dr Web Scan[/HEADING]

[ul]
[li]Disable your antivirus[/li][li]Download Dr Web[/li][li]Save the file to your desktop.[/li][li]Right Click on the randomly named file.[/li][li]Run as administrator.[/li][li]Agree to terms and continue.[/li][li]Select objects for scanning, make sure all boxes are ticked.[/li][li]Then check mark the click to select files and folders.[/li][li]Make sure C: drive is checked.[/li][li]Click OK.[/li][li]Then click start scanning.[/li][li]Once the scan is completed.[/li][li]click on open report.[/li][li]Then select file.[/li][li]Save then save cureit.log to desktop.[/li][li]Upload the log to https://pomf2.lain.la/ or https://ufile.io/ and send me a link to the file.[/li][li]If you are sure about the files detected being malicious.[/li][li]Then make sure all items are ticked and under action move to delete.[/li][li]Then hit the Neutralize button.[/li][li]Reboot your computer after the scan.[/li][/ul]

You can perform these steps prior to the Dr Web scan, as this will free up resources and make the Dr Web scan run faster. (y)

---

---

[COLOR=rgb(65, 168, 95)]Impaq Speed (HKLM-x32...{E88F9185-E07D-4C7F-8001-D98952A4AA99}) (Version: 1.0.4.0 - Melasys LLC) Hidden

Is hidden, so I included it in the FRST fix, and once you run it, you will be able to uninstall it from add remove programs or Via GeekUninstaller

[COLOR=rgb(209, 72, 65)]Edit: We will need to remove more parts of [COLOR=rgb(243, 121, 52)]Impaq Speed[COLOR=rgb(243, 121, 52)] I am trying to go about this the proper way by uninstalling rather than ripping it out. [COLOR=rgb(250, 197, 28)]Once you run the provided fix and uninstall we will check for remnants.

---

---

Download
O&O Shutup Ten
Move it to your documents folder.
Right click run as admin.
Go to actions, apply all settings.
Create the restore point when prompted.
Follow thru the prompts, and reboot if needed to apply the settings.

---

---

Download Tweaky:
Unzip to your desktop.
Right click run as admin.

[COLOR=rgb(243, 121, 52)]Under Misc:
[ul]
[li]Disable Telemtry & Data Collection[/li][/ul]
[COLOR=rgb(243, 121, 52)]Under Functionality:
[ul]
[li]Disable Cortana[/li][li]Uninsall One Drive[/li][li]Disable Driver Updates[/li][li]Disable P2P Delivery optimization.[/li][/ul]
Then Click [COLOR=rgb(65, 168, 95)]Apply Tweaks.

---

---

FRST Fix. Content of fix Click Me

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It’s important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.
Right Click Run FRST64 as admin; and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally.
After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt).
Please post it to your reply.[/COLOR][/COLOR][/COLOR][/COLOR][/COLOR][/COLOR][/COLOR][/COLOR]

I assume that if I uninstall OneDrive, my saved data will be preserved online and I will be able to access it in the future?

Yes. You can access it from any device, that is the idea of back ups. (y)

Your last post said to do these things PRIOR to the Dr W scan, so I did that last. It found only one threat (a Trojan in flashplayer setup.exe) which I neutralized. Unfortunately, as the scan took all night and I looked at it 18hrs later, I neutralized the threat and closed the program without looking for the log. I reopened the app, but couldn’t find anything about viewing previous logs. Let me know if I need to re-scan. If so, will do that before going to bed and will send at the end of the next day.

Laptop is recovered from hibernation much more quickly just now and regular use is much more smooth. I haven’t used it much, however. I would like to use it during the workday for at least a day to assess. At any rate, it’s far better than before, so THANK YOU immensely!

Let me know if you have any more fixes, tweaks, or recommendations.

BTW, Edge is functional and works well. Should I uninstall it? Judging from Task Manager, it’s still a hog.

No that is fine we will use a final tool to check at the end of all this.
[COLOR=rgb(250, 197, 28)]
Sweet! I figured it would be we are working on removing a lot of crap and useless functions from your machine and in the end even if you do not upgrade the ram you will have a usable net book.
Open PowerShell as admin:

Copy the content of the code box below:
[ICODE]iwr -useb https://christitus.com/win | iex[/ICODE]
Paste into PowerShell hit enter:

Under Tweaks select [COLOR=rgb(65, 168, 95)]Standard:

Then debloat edge

[COLOR=rgb(243, 121, 52)]Then Click Run Tweaks.

Then Under the Updates tab Push the Security recommended settings button:

Reboot the machine:

---

---

Using Geek Uninstaller that you previously downloaded.
Run it and uninstall [COLOR=rgb(243, 121, 52)]Impaq Speed use force mode if needed.,

FRST Search:

Right click on FRST and select Run as administrator
Copy/paste the following in the Search: box
SearchAll: [COLOR=rgb(243, 121, 52)]Impaq speed;Melasys

Click Search Files
When completed click OK and a Search.txt document will open on your desktop.
Attach that in your next reply.,

[ATTACH alt=“1734241428415.webp”]14819[/ATTACH]

---

---

Download and Run Edge Block Instructions Click Here.[/COLOR][/COLOR][/COLOR][/COLOR][/color]

Not sure how to find Powershell since we removed the search bar. :unsure:
It looks like there are spaces in the code. Enter those?

Use one of these, this will re-enable search bar.
Open Shell
Classic Shell

I edited my post, copy it as is now.

How do I find PowerShell wo a Search bar?

Click start button. Search there or…

Use one of these, this will re-enable search bar.

Open Shell
Classic Shell

PowerShell:

Start-Process : This command cannot be run due to the error: The parameter is incorrect.
At line:68 char:5

• Code:

  Start-Process $processCmd -ArgumentList "$powershellcmd -Executio ...

• Code:

  ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  • CategoryInfo : InvalidOperation: ( [Start-Process], InvalidOperationException
  • FullyQualifiedErrorId : InvalidOperationException,Microsoft.PowerShell.Com mands.StartProcessCommand

If there are issues with this, then skip it and move onto uninstalling [COLOR=rgb(243, 121, 52)]Impaq Speed with GeekUninstaller, then the search with FRST as outlined in the instructions, then finally edge block as this will stop it from using resources and you can unblock it later if you needed it.

Ok, here is it I created a batch file that will start it for you.
Download this batch unzip to your desktop right click Start.bat [COLOR=rgb(243, 121, 52)]run as administrator.

---

---

Content of batch file below: (Which can be ran in elevated command prompt)
@echo off
powershell -ExecutionPolicy Bypass -Command “iwr -useb https://christitus.com/win | iex”
exit[/COLOR][/COLOR]

The batch file in the post above replaces the PowerShell procedure with which we started this phase?