Ask a new question

I have been having issues with people remotely accessing and controlling my devices and my antivirus keeps showing registry errors. this came up and i wanted to see if it all looks normal.

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 DismApi.dll: - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 DismApi.dll: <----- Starting DismApi.dll session -----> - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 DismApi.dll: - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 DismApi.dll: Host machine information: OS Version=10.0.22631, Running architecture=amd64, Number of processors=16 - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 DismApi.dll: API Version 10.0.22621.2792 - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 DismApi.dll: Parent process command line: "C:\Program Files\AVG\TuneUp\gf2hlp.exe" /analyze cleanupHandlers eyJhYm9ydCI6NTQyOCwiYnVmZmVyIjoxMDY1MiwiaGFuZGxlciI6InVwZGF0ZUNsZWFudXAiLCJwcm9ncmVzcyI6MTEwNzJ9 - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Input parameters: LogLevel: 2, LogFilePath: (null), ScratchDirectory: (null) - DismInitializeInternal

2024-04-30 14:28:52, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Initialized GlobalConfig - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Initialized SessionTable - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Lookup in table by path failed for: DummyPath-2BA51B78-C7F7-4910-B99D-BB7345357CDC - CTransactionalImageTable::LookupImagePath

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Waiting for m_pInternalThread to start - CCommandThread::Start

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=41920 Enter CCommandThread::CommandThreadProcedureStub - CCommandThread::CommandThreadProcedureStub

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=41920 Enter CCommandThread::ExecuteLoop - CCommandThread::ExecuteLoop

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 CommandThread StartupEvent signaled - CCommandThread::WaitForStartup

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 m_pInternalThread started - CCommandThread::Start

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Created g_internalDismSession - DismInitializeInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Input parameters: ImagePath: DISM_{53BFAE52-B167-4E2F-A258-0A37B57FF845}, WindowsDirectory: (null), SystemDrive: (null) - DismOpenSessionInternal

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Lookup in table by path failed for: DRIVE_C - CTransactionalImageTable::LookupImagePath

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Waiting for m_pInternalThread to start - CCommandThread::Start

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=26800 Enter CCommandThread::CommandThreadProcedureStub - CCommandThread::CommandThreadProcedureStub

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=26800 Enter CCommandThread::ExecuteLoop - CCommandThread::ExecuteLoop

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 CommandThread StartupEvent signaled - CCommandThread::WaitForStartup

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 m_pInternalThread started - CCommandThread::Start

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=42616 Successfully enqueued command object - CCommandThread::EnqueueCommandObject

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=26800 ExecuteLoop: CommandQueue signaled - CCommandThread::ExecuteLoop

2024-04-30 14:28:52, Info DISM API: PID=13816 TID=26800 Successfully dequeued command object - CCommandThread::DequeueCommandObject

2024-04-30 14:28:52, Info DISM PID=13816 TID=26800 Scratch directory set to 'C:\Users\gille\AppData\Local\Temp\'. - CDISMManager::put_ScratchDir

2024-04-30 14:28:52, Info DISM PID=13816 TID=26800 DismCore.dll version: 10.0.22621.1 - CDISMManager::FinalConstruct

2024-04-30 14:28:52, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:52, Info DISM PID=13816 TID=26800 Successfully loaded the ImageSession at "C:\Windows\system32\Dism" - CDISMManager::LoadLocalImageSession

2024-04-30 14:28:52, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:52, Info DISM DISM Provider Store: PID=13816 TID=26800 Found and Initialized the DISM Logger. - CDISMProviderStore::Internal_InitializeLogger

2024-04-30 14:28:52, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:52, Info DISM DISM Manager: PID=13816 TID=26800 Successfully created the local image session and provider store. - CDISMManager::CreateLocalImageSession

2024-04-30 14:28:52, Info DISM DISM FFU Provider: PID=13816 TID=26800 [C:\] is not recognized by the DISM FFU provider. - CFfuImage::Initialize

2024-04-30 14:28:52, Info DISM DISM Imaging Provider: PID=13816 TID=26800 The provider FfuManager does not support CreateDismImage on C:\ - CGenericImagingManager::CreateDismImage

2024-04-30 14:28:52, Info DISM DISM VHD Provider: PID=13816 TID=26800 [C:\] is not recognized by the DISM VHD provider. - CVhdImage::Initialize

2024-04-30 14:28:52, Info DISM DISM Imaging Provider: PID=13816 TID=26800 The provider VHDManager does not support CreateDismImage on C:\ - CGenericImagingManager::CreateDismImage

[13816.26800] [0x8007007b] FIOReadFileIntoBuffer:(1456): The filename, directory name, or volume label syntax is incorrect.

[13816.26800] [0xc142011c] UnmarshallImageHandleFromDirectory:(641)

[13816.26800] [0xc142011c] WIMGetMountedImageHandle:(2910)

2024-04-30 14:28:52, Info DISM DISM WIM Provider: PID=13816 TID=26800 [C:\] is not a WIM mount point. - CWimMountedImageInfo::Initialize

2024-04-30 14:28:52, Info DISM DISM Imaging Provider: PID=13816 TID=26800 The provider WimManager does not support CreateDismImage on C:\ - CGenericImagingManager::CreateDismImage

2024-04-30 14:28:52, Info DISM DISM Imaging Provider: PID=13816 TID=26800 No imaging provider supported CreateDismImage for this path - CGenericImagingManager::CreateDismImage

[13816.26800] [0x8007007b] FIOReadFileIntoBuffer:(1456): The filename, directory name, or volume label syntax is incorrect.

[13816.26800] [0xc142011c] UnmarshallImageHandleFromDirectory:(641)

[13816.26800] [0xc142011c] WIMGetMountedImageHandle:(2910)

2024-04-30 14:28:52, Info DISM DISM WIM Provider: PID=13816 TID=26800 [C:\] is not a WIM mount point. - CWimMountedImageInfo::Initialize

2024-04-30 14:28:52, Info DISM DISM FFU Provider: PID=13816 TID=26800 [C:\] is not recognized by the DISM FFU provider. - CFfuImage::Initialize

2024-04-30 14:28:52, Info DISM DISM VHD Provider: PID=13816 TID=26800 [C:\] is not recognized by the DISM VHD provider. - CVhdImage::Initialize

2024-04-30 14:28:52, Info DISM DISM Manager: PID=13816 TID=26800 physical location path: C:\ - CDISMManager::CreateImageSession

2024-04-30 14:28:52, Info DISM DISM Manager: PID=13816 TID=26800 Event name for current DISM session is Global\{0749E85F-FB9C-412A-970D-765464401C0D} - CDISMManager::CheckSessionAndLock

2024-04-30 14:28:52, Info DISM DISM Manager: PID=13816 TID=26800 Create session event 0x5d8 for current DISM session and event name is Global\{0749E85F-FB9C-412A-970D-765464401C0D} - CDISMManager::CheckSessionAndLock

2024-04-30 14:28:52, Info DISM DISM Manager: PID=13816 TID=26800 Copying DISM from "C:\Windows\System32\Dism" - CDISMManager::CreateImageSessionFromLocation

2024-04-30 14:28:52, Info DISM DISM Manager: PID=13816 TID=26800 No Sandbox was created, DISM running in-place. - CDISMManager::CreateImageSessionFromLocation

2024-04-30 14:28:53, Info DISM DISM Manager: PID=13816 TID=26800 Successfully loaded the ImageSession at "C:\Windows\System32\Dism" - CDISMManager::LoadRemoteImageSession

2024-04-30 14:28:53, Info DISM DISM Image Session: PID=29020 TID=1532 Instantiating the Provider Store. - CDISMImageSession::get_ProviderStore

2024-04-30 14:28:53, Info DISM DISM OS Provider: PID=29020 TID=1532 Defaulting SystemPath to C:\ - CDISMOSServiceManager::Final_OnConnect

2024-04-30 14:28:53, Info DISM DISM OS Provider: PID=29020 TID=1532 Defaulting Windows folder to C:\Windows - CDISMOSServiceManager::Final_OnConnect

2024-04-30 14:28:53, Info DISM DISM Provider Store: PID=29020 TID=1532 Attempting to initialize the logger from the Image Session. - CDISMProviderStore::Final_OnConnect

2024-04-30 14:28:53, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:53, Info DISM DISM Provider Store: PID=29020 TID=1532 Found and Initialized the DISM Logger. - CDISMProviderStore::Internal_InitializeLogger

2024-04-30 14:28:53, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:53, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:53, Info DISM DISM Manager: PID=13816 TID=26800 Image session successfully loaded from location: C:\Windows\System32\Dism - CDISMManager::CreateImageSession

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 Target image information: OS Version=10.0.22631.2861, Image architecture=amd64 - CDismCore::LogImageSessionDetails

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Session id is: 2 - DismOpenSessionInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Input parameters: Session: 2, Type: 1, - DismGetUsedSpaceInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Successfully enqueued command object - CCommandThread::EnqueueCommandObject

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 ExecuteLoop: CommandQueue signaled - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 Successfully dequeued command object - CCommandThread::DequeueCommandObject

2024-04-30 14:28:53, Info DISM DISM Package Manager: PID=29020 TID=1532 Finished initializing the CbsConUI Handler. - CCbsConUIHandler::Initialize

2024-04-30 14:28:53, Info DISM DISM Package Manager: PID=29020 TID=1532 CBS is being initialized for online use. More information about CBS actions can be located at: %windir%\logs\CBS\CBS.log - CDISMPackageManager::Initialize

2024-04-30 14:28:53, Info DISM DISM Package Manager: PID=29020 TID=1532 Loaded servicing stack for online use. - CDISMPackageManager::CreateCbsSession

2024-04-30 14:28:53, Info CSI 00000001 Shim considered [l:126]'\??\C:\Windows\Servicing\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.3447_none_e948831242de6298\wcp.dll' : got STATUS_OBJECT_PATH_NOT_FOUND

2024-04-30 14:28:53, Info CSI 00000002 Shim considered [l:123]'\??\C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.3447_none_e948831242de6298\wcp.dll' : got STATUS_SUCCESS

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Input parameters: Session: 2 - DismCloseSessionInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 GetReferenceCount hr: 0x0 - CSessionTable::RemoveSession

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Refcount for DismSession= 2s 0 - CSessionTable::RemoveSession

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Successfully enqueued command object - CCommandThread::EnqueueCommandObject

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 ExecuteLoop: CommandQueue signaled - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 Successfully dequeued command object - CCommandThread::DequeueCommandObject

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 ExecuteLoop: Cancel signaled - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 Leave CCommandThread::ExecuteLoop - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM DISM Package Manager: PID=29020 TID=1532 Finalizing CBS core. - CDISMPackageManager::Finalize

2024-04-30 14:28:53, Info DISM DISM Manager: PID=13816 TID=26800 Closing session event handle 0x5d8 - CDISMManager::CleanupImageSessionEntry

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=26800 Leave CCommandThread::CommandThreadProcedureStub - CCommandThread::CommandThreadProcedureStub

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 GetReferenceCount hr: 0x0 - CSessionTable::RemoveSession

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Refcount for DismSession= 1s 0 - CSessionTable::RemoveSession

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Successfully enqueued command object - CCommandThread::EnqueueCommandObject

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=41920 ExecuteLoop: CommandQueue signaled - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=41920 Successfully dequeued command object - CCommandThread::DequeueCommandObject

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=41920 ExecuteLoop: Cancel signaled - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=41920 Leave CCommandThread::ExecuteLoop - CCommandThread::ExecuteLoop

2024-04-30 14:28:53, Info DISM PID=13816 TID=41920 Temporarily setting the scratch directory. This may be overridden by user later. - CDISMManager::FinalConstruct

2024-04-30 14:28:53, Info DISM PID=13816 TID=41920 Scratch directory set to 'C:\Users\gille\AppData\Local\Temp\'. - CDISMManager::put_ScratchDir

2024-04-30 14:28:53, Info DISM PID=13816 TID=41920 DismCore.dll version: 10.0.22621.1 - CDISMManager::FinalConstruct

2024-04-30 14:28:53, Info DISM Initialized Panther logging at C:\Windows\Logs\DISM\dism.log

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=41920 Leave CCommandThread::CommandThreadProcedureStub - CCommandThread::CommandThreadProcedureStub

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Deleted g_internalDismSession - DismShutdownInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 Shutdown SessionTable - DismShutdownInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 DismApi.dll: - DismShutdownInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 DismApi.dll: <----- Ending DismApi.dll session -----> - DismShutdownInternal

2024-04-30 14:28:53, Info DISM API: PID=13816 TID=42616 DismApi.dll: - DismShutdownInternal

|

The content you posted is from the DISM log, which has nothing to do with your antivirus.

Please download Malwarebytes Antimalware, run a scan, and eliminate every malware it finds.

 

If the problem persists, do the following:

 

Please run the Farbar Scanner and share your logs.

 

 

(How-To: Share OneDrive files and folders - Microsoft Support)

 

Note: If Microsoft Edge or Chrome mislabels the Farbar Scanner executable as PUA/malware, choose to keep it by tapping  in the bottom bar, choosing Keep, and then choosing Keep anyway in the dialog that appears.

______________________________________________________________________________________________________
Ramesh, Windows Shell MVP 2003-2012.
If this post resolves your issue, pls mark it as an Answer.

Was this reply helpful?

Sorry this didn't help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

 
 

Question Info

Last updated May 1, 2024 Views 15 Applies to: