srkzzzi Network issues...

here the log files

Let’s wait on Mal to finish up on his request.

HijackThis.

1- Please Click HERE to download HijackThis. – Unzip to your desktop.
2- Right click run as admin.
3- Click on the Main Menu button if not already there.
4- Select Do a system scan and save a logfile.
5- Copy paste the log here.

here’s the log

MiniToolBox by Farbar Version: 17-06-2016
Ran by Tuf Tuf (administrator) on 14-04-2017 at 19:30:01
Running from “C:\Users\Tuf Tuf\Downloads”
Microsoft Windows 10 Pro (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal

---

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

“Reset IE Proxy Settings”: IE Proxy Settings were reset.
========================= Hosts content: =================================
127.0.0.1 localhost
========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Ethernet (Connected)
LogMeIn Hamachi Virtual Ethernet Adapter = Hamachi (Connected)
TunnelBear Adapter V9 = Ethernet 2 (Hardware not present)
TAP-Win32 Adapter V9 (Tunngle) = Tunngle (Media disconnected)
[HEADING=1]----------------------------------[/HEADING]
[HEADING=1]IPv4 Configuration[/HEADING]
[HEADING=1]----------------------------------[/HEADING]
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled
add route prefix=0.0.0.0/0 interface=“Hamachi” nexthop=25.0.0.1 publish=Yes
set interface interface=“Ethernet” forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface=“Local Area Connection* 1” forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface=“Ethernet 2” forwarding=enabled advertise=enabled metric=0 nud=enabled ignoredefaultroutes=disabled
set interface interface=“Hamachi” forwarding=enabled advertise=enabled metric=9000 nud=enabled ignoredefaultroutes=disabled
set interface interface=“Tunngle” forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set subinterface interface= subinterface=ethernet_32774 mtu=1404

popd
[HEADING=1]End of IPv4 configuration[/HEADING]
Windows IP Configuration

Host Name . . . . . . . . . . . . : DESKTOP-HFQ2I7A
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : LogMeIn Hamachi Virtual Ethernet Adapter
Physical Address. . . . . . . . . : 7A-79-19-38-C4-1C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::1938:c41c(Preferred)
Link-local IPv6 Address . . . . . : fe80::9924:d22b:80b1:4c85%12(Preferred)
IPv4 Address. . . . . . . . . . . : 25.56.196.28(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : petak, 14. april 2017. 18.00.11
Lease Expires . . . . . . . . . . : subota, 14. april 2018. 19.25.18
Default Gateway . . . . . . . . . : 2620:9b::1900:1
25.0.0.1
DHCP Server . . . . . . . . . . . : 25.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 318918898
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1F-B8-D1-AC-D0-50-99-A2-57-5C
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
25.0.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : D0-50-99-A2-57-5C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c4cf:1c73:303c:cac5%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.10(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : petak, 14. april 2017. 18.00.07
Lease Expires . . . . . . . . . . : petak, 14. april 2017. 20.25.18
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 63983769
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1F-B8-D1-AC-D0-50-99-A2-57-5C
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Tunngle:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Win32 Adapter V9 (Tunngle)
Physical Address. . . . . . . . . : 00-FF-96-BD-CC-5C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{6ACB4502-F8D6-4A8B-ABEE-2C7ABA76975A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 10:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2433:6e:e778:dc1a(Preferred)
Link-local IPv6 Address . . . . . : fe80::2433:6e:e778:dc1a%18(Preferred)
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 352321536
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1F-B8-D1-AC-D0-50-99-A2-57-5C
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{C41CEE96-4161-4C19-93E7-D970877C773C}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: google.com
Addresses: 2a00:1450:400d:803::200e
172.217.17.206

Pinging google.com [216.58.214.206] with 32 bytes of data:
Reply from 216.58.214.206: bytes=32 time=18ms TTL=57
Reply from 216.58.214.206: bytes=32 time=13ms TTL=57

Ping statistics for 216.58.214.206:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 13ms, Maximum = 18ms, Average = 15ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: yahoo.com
Addresses: 2001:4998:c:a06::2:4008
2001:4998:44:204::a7
2001:4998:58:c02::a9
98.139.183.24
98.138.253.109
206.190.36.45

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=126ms TTL=52
Reply from 98.139.183.24: bytes=32 time=127ms TTL=52

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 126ms, Maximum = 127ms, Average = 126ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
[HEADING=1]Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms[/HEADING]
[HEADING=1]Interface List
12…7a 79 19 38 c4 1c …LogMeIn Hamachi Virtual Ethernet Adapter
9…d0 50 99 a2 57 5c …Realtek PCIe GBE Family Controller
10…00 ff 96 bd cc 5c …TAP-Win32 Adapter V9 (Tunngle)
1…Software Loopback Interface 1
8…00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18…00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
14…00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3[/HEADING]
[HEADING=1]IPv4 Route Table[/HEADING]
[HEADING=1]Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 25.0.0.1 25.56.196.28 9256
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.10 25
25.0.0.0 255.0.0.0 On-link 25.56.196.28 9256
25.56.196.28 255.255.255.255 On-link 25.56.196.28 9256
25.255.255.255 255.255.255.255 On-link 25.56.196.28 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
192.168.0.0 255.255.255.0 On-link 192.168.0.10 281
192.168.0.10 255.255.255.255 On-link 192.168.0.10 281
192.168.0.255 255.255.255.255 On-link 192.168.0.10 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 25.56.196.28 9256
224.0.0.0 240.0.0.0 On-link 192.168.0.10 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 25.56.196.28 9256
255.255.255.255 255.255.255.255 On-link 192.168.0.10 281[/HEADING]
[HEADING=1]Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 25.0.0.1 Default[/HEADING]
[HEADING=1]IPv6 Route Table[/HEADING]
[HEADING=1]Active Routes:
If Metric Network Destination Gateway
12 9015 ::/0 2620:9b::1900:1
1 331 ::1/128 On-link
18 331 2001::/32 On-link
18 331 2001:0:4137:9e76:2433:6e:e778:dc1a/128
On-link
12 271 2620:9b::/96 On-link
12 271 2620:9b::1938:c41c/128 On-link
12 271 fe80::/64 On-link
9 281 fe80::/64 On-link
18 331 fe80::/64 On-link
18 331 fe80::2433:6e:e778:dc1a/128
On-link
12 271 fe80::9924:d22b:80b1:4c85/128
On-link
9 281 fe80::c4cf:1c73:303c:cac5/128
On-link
1 331 ff00::/8 On-link
12 271 ff00::/8 On-link
9 281 ff00::/8 On-link
18 331 ff00::/8 On-link[/HEADING]
[HEADING=1]Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
0 9000 ::/0 2620:9b::1900:1[/HEADING]
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [24064] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)

========================= Event log errors: ===============================
[HEADING=1]Application errors:[/HEADING]
Error: (04/14/2017 06:09:58 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (04/14/2017 05:59:48 PM) (Source: Application Error) (User: )
Description: Faulting application name: LogonUI.exe, version: 10.0.14393.0, time stamp: 0x57899b5a
Faulting module name: USBKeyCredentialProvider.dll_unloaded, version: 0.0.0.0, time stamp: 0x53d9fa55
Exception code: 0xc0000005
Fault offset: 0x000000000002b4a8
Faulting process id: 0x21c
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5

Error: (04/14/2017 12:00:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: LogonUI.exe, version: 10.0.14393.0, time stamp: 0x57899b5a
Faulting module name: USBKeyCredentialProvider.dll_unloaded, version: 0.0.0.0, time stamp: 0x53d9fa55
Exception code: 0xc0000005
Fault offset: 0x000000000002b4a8
Faulting process id: 0x22c
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5

Error: (04/13/2017 08:44:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: csgo.exe, version: 0.0.0.0, time stamp: 0x582e1b2f
Faulting module name: tier0.dll, version: 0.0.0.0, time stamp: 0x58ee858f
Exception code: 0xc0000005
Fault offset: 0x000093c4
Faulting process id: 0x1b6c
Faulting application start time: 0xcsgo.exe0
Faulting application path: csgo.exe1
Faulting module path: csgo.exe2
Report Id: csgo.exe3
Faulting package full name: csgo.exe4
Faulting package-relative application ID: csgo.exe5

Error: (04/13/2017 10:15:31 AM) (Source: Application Error) (User: )
Description: Faulting application name: LogonUI.exe, version: 10.0.14393.0, time stamp: 0x57899b5a
Faulting module name: USBKeyCredentialProvider.dll_unloaded, version: 0.0.0.0, time stamp: 0x53d9fa55
Exception code: 0xc0000005
Fault offset: 0x000000000002b4a8
Faulting process id: 0x2e4
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5

Error: (04/13/2017 12:49:19 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Tim erEvent

Error: (04/12/2017 10:48:40 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Tim erEvent

Error: (04/12/2017 08:49:18 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Use rLogon;SessionId=1

Error: (04/12/2017 08:48:34 PM) (Source: Application Error) (User: )
Description: Faulting application name: LogonUI.exe, version: 10.0.14393.0, time stamp: 0x57899b5a
Faulting module name: USBKeyCredentialProvider.dll_unloaded, version: 0.0.0.0, time stamp: 0x53d9fa55
Exception code: 0xc0000005
Fault offset: 0x000000000002b4a8
Faulting process id: 0x280
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
Faulting package full name: LogonUI.exe4
Faulting package-relative application ID: LogonUI.exe5

Error: (04/12/2017 08:47:55 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007139F
Command-line arguments:
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Tim erEvent
[HEADING=1]System errors:[/HEADING]
Error: (04/14/2017 07:24:56 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 07:15:25 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 07:06:46 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:58:28 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:58:28 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:58:19 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:54:23 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:53:24 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:51:31 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.

Error: (04/14/2017 06:50:38 PM) (Source: Schannel) (User: DESKTOP-HFQ2I7A)
Description: The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS connection request has failed. The attached data contains the server certificate.
[HEADING=1]Microsoft Office Sessions:[/HEADING]
Error: (04/14/2017 06:09:58 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (04/14/2017 05:59:48 PM) (Source: Application Error)(User: )
Description: LogonUI.exe10.0.14393.057899b5aUSBKeyCredentialPro vider.dll_unloaded0.0.0.053d9fa55c0000005000000000 002b4a821c01d2b5381fcdbb04C:\WINDOWS\system32\Logo nUI.exeUSBKeyCredentialProvider.dll540e8d65-1cd3-4205-ace4-54ab17662557

Error: (04/14/2017 12:00:29 PM) (Source: Application Error)(User: )
Description: LogonUI.exe10.0.14393.057899b5aUSBKeyCredentialPro vider.dll_unloaded0.0.0.053d9fa55c0000005000000000 002b4a822c01d2b505ee42cae5C:\WINDOWS\system32\Logo nUI.exeUSBKeyCredentialProvider.dll2754b26c-5b22-4cdb-b332-7baea8e0056f

Error: (04/13/2017 08:44:12 PM) (Source: Application Error)(User: )
Description: csgo.exe0.0.0.0582e1b2ftier0.dll0.0.0.058ee858fc00 00005000093c41b6c01d2b485ef0148e6E:\SteamLibrary\s teamapps\common\Counter-Strike Global Offensive\csgo.exeE:\SteamLibrary\steamapps\common \Counter-Strike Global Offensive\bin\tier0.dll36ae552b-a229-4937-b036-ef3069e60180

Error: (04/13/2017 10:15:31 AM) (Source: Application Error)(User: )
Description: LogonUI.exe10.0.14393.057899b5aUSBKeyCredentialPro vider.dll_unloaded0.0.0.053d9fa55c0000005000000000 002b4a82e401d2b42e18d1278fC:\WINDOWS\system32\Logo nUI.exeUSBKeyCredentialProvider.dll0b29f6e5-53af-4da5-8b81-0356519860a7

Error: (04/13/2017 12:49:19 AM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Tim erEvent

Error: (04/12/2017 10:48:40 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Tim erEvent

Error: (04/12/2017 08:49:18 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Use rLogon;SessionId=1

Error: (04/12/2017 08:48:34 PM) (Source: Application Error)(User: )
Description: LogonUI.exe10.0.14393.057899b5aUSBKeyCredentialPro vider.dll_unloaded0.0.0.053d9fa55c0000005000000000 002b4a828001d2b3bd03cbfa9bC:\WINDOWS\system32\Logo nUI.exeUSBKeyCredentialProvider.dll3ffd0bdb-47fb-4286-9c98-3813fc880acc

Error: (04/12/2017 08:47:55 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x8007139FRuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=Tim erEvent
[HEADING=1]CodeIntegrity Errors:[/HEADING]
Date: 2017-04-14 18:10:57.892
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Micros oft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64 .dll that did not meet the Store signing level requirements.

Date: 2017-04-14 18:10:54.283
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Micros oft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.ex e) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64 .dll that did not meet the Store signing level requirements.

Date: 2017-04-14 15:29:35.305
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-13 16:13:43.557
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-12 18:56:34.250
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-12 13:20:58.027
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-11 16:00:06.770
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-11 12:47:19.569
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-09 17:07:38.236
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-04-08 20:58:13.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

=========================== Installed Programs ============================

µTorrent (HKCU...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.)
Active Directory Authentication Library for SQL Server (HKLM...{32C0D7B2-1046-43AC-98AD-B748E1910916}) (Version: 13.0.1601.5 - Microsoft Corporation) Hidden
Active Directory Authentication Library for SQL Server (x86) (HKLM-x32...{F40FA676-46B1-4609-85EF-D2F1F79E0C0E}) (Version: 13.0.1601.5 - Microsoft Corporation) Hidden
Adobe Flash Player 25 PPAPI (HKLM-x32...\Adobe Flash Player PPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Aliens vs. Predator (HKLM-x32...{2A086701-1EEE-43F5-A9DB-DE2D73DC543D}_is1) (Version: - )
Ansel (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 381.65 - NVIDIA Corporation) Hidden
APP Shop v1.0.13 (HKLM-x32...{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.13 - ASRock Inc.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32...{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation)
ASRock App Charger v1.0.6 (HKLM...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
ASRock Restart to UEFI v1.0.3 (HKLM-x32...\ASRock Restart to UEFI_is1) (Version: - )
ASRock XFast RAM v3.0.3 (HKLM...\ASRock XFast RAM_is1) (Version: - ASRock Inc.)
Assassin’s Creed III (HKLM-x32...\Uplay Install 54) (Version: - Ubisoft)
A-Tuning v2.0.214 (HKLM-x32...\A-Tuning_is1) (Version: 2.0.214 - )
Azure AD Authentication Connected Service (HKLM-x32...{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32...{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32...\Battle.net) (Version: - Blizzard Entertainment)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32...{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Borderlands 2 GOTY version 1.8.2.0 (HKLM-x32...\Borderlands 2 GOTY_is1) (Version: 1.8.2.0 - Mr DJ)
Call of Duty Black Ops 2 (HKLM-x32...{47D6F3E4-D158-4E47-84C4-0D6452DB2488}_is1) (Version: 1.0 - Treyarch)
Call of Duty: Black Ops (HKLM-x32...\Call of Duty: Black Ops_is1) (Version: - )
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM...\Steam App 10190) (Version: - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM...\Steam App 10180) (Version: - Infinity Ward)
CodeBlocks (HKCU...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
Counter-Strike: Global Offensive (HKLM...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.77 (HKLM...\CPUID CPU-Z_is1) (Version: - )
Discord (HKCU...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32...{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
Driver Booster 4.2 (HKLM-x32...\Driver Booster_is1) (Version: 4.2.0 - IObit)
Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32...{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
Euro Truck Simulator 2 (HKLM-x32...\Euro Truck Simulator 2_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Everything 1.3.4.686 (x86) (HKLM-x32...\Everything) (Version: - )
f.lux (HKCU...\Flux) (Version: - )
F1 2016 version 1.0 (HKLM-x32...{9B939765-0B6B-48F5-8543-1FEDC09AE74D}_is1) (Version: 1.0 - SKIDROW)
Far Cry 3 (HKLM-x32...{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.05 - Ubisoft)
Far Cry 3 (HKLM-x32...\Far Cry 3_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
ForHonorBETA (HKLM-x32...\Uplay Install 2184) (Version: - Ubisoft)
Gameforge Live 2.0.12 (HKLM-x32...{9C98989A-3A15-42DA-A3B9-D20331437D67}}is1) (Version: 2.0.12 - Gameforge)
Garry’s Mod (HKLM...\Steam App 4000) (Version: - Facepunch Studios)
GIGABYTE OC_GURU II (HKLM-x32...{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.84.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
GIGABYTE OC_GURU II (HKLM-x32...\InstallShield{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.84.0000 - GIGABYTE Technology Co.,Ltd.)
Google Chrome (HKLM-x32...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (HKLM-x32...{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.3 - Google Inc.) Hidden
Gyazo 3.3.1 (HKLM-x32...{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
Hearthstone (HKLM-x32...\Hearthstone) (Version: - Blizzard Entertainment)
Herramientas de corrección de Microsoft Office 2016: español (HKLM...{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
IIS 10.0 Express (HKLM...{13FD7E30-D2F1-498D-ABC2-A4242DB6610E}) (Version: 10.0.1736 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM...{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM...{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
Intel(R) Rapid Storage Technology (HKLM...{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Java 8 Update 121 (HKLM-x32...{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
League of Legends (HKLM-x32...{E70D54A4-60A4-4148-A292-525922A9A108}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Loadout (HKLM...\Steam App 208090) (Version: - Edge of Reality)
LogMeIn Hamachi (HKLM-x32...{91B5DF26-717A-4A5F-AB10-CD450FAD428C}) (Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
Malwarebytes version 3.0.6.1469 (HKLM...{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Mass Effect™ 2 (HKLM-x32...{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}) (Version: 1.2.1604.0 - Electronic Arts)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32...{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32...{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32...{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32...{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32...{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32...{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32...{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32...{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32...{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32...{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32...{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32...{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM...{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKCU...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32...{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM...{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM...{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32...{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM...{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM...{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32...{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB (HKLM...{E359515A-92E6-4FA3-A2C9-E1BA02D8DE6E}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects (HKLM-x32...{0F1C8E2F-199A-4946-B3BF-0906DACFD032}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects (x64) (HKLM...{20EA85AA-2A1D-4F11-B09F-4BA2BF3C8989}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL Language Service (HKLM-x32...{8BFDE775-C5B8-46DB-84EF-43FFC8A2E8AD}) (Version: 13.0.14500.10 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL ScriptDom (HKLM...{D091DE8C-EA0F-49AF-8DE3-BD6C79737C6E}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM...{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.60519.0) (HKLM-x32...{4E27B0EF-7BAB-432A-AF3D-3FC8F3F7353F}) (Version: 14.0.60519.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM...{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32...{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2016 (HKLM...{96EB5054-C775-4BEF-B7B9-AA96A295EDCD}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2016 (HKLM-x32...{84C23ECA-FE4D-494F-9247-3EBAD57E7F0C}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32...{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32...{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32...{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM...{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32...{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM...{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32...{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32...{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32...{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32...{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32...{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32...{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32...{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32...{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32...{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32...{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Updates (HKLM-x32...{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM...{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Middle Earth - Shadow of Mordor (HKLM-x32...\Middle Earth - Shadow of Mordor_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Minecraft (HKLM-x32...{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32...{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32...{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
My.com Game Center (HKCU...\MyComGames) (Version: 3.196 - My.com B.V.)
Nexus Mod Manager (HKLM...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.11 - Black Tree Gaming)
Notepad++ (64-bit x64) (HKLM...\Notepad++) (Version: 7.2.2 - Notepad++ Team)
NovaBench 3.0.4 (HKLM-x32...{88603FC0-6B3C-442D-981E-E3D49F083548}_is1) (Version: - Novawave Inc.)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 381.65 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 381.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Graphics Driver 381.65 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.26 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 353.06 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0329 (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.5.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32...\OBS Studio) (Version: 18.0.1 - OBS Project)
Opera Stable 44.0.2510.1218 (HKLM-x32...\Opera 44.0.2510.1218) (Version: 44.0.2510.1218 - Opera Software)
Origin (HKLM-x32...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM...{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32...\Overwatch) (Version: - Blizzard Entertainment)
PlanetSide 2 (HKCU...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment)
Popcorn Time (HKLM-x32...\Popcorn Time_is1) (Version: 5.5.1.2 - Popcorn Time)
PowerISO (HKLM-x32...\PowerISO) (Version: 6.7 - Power Software Ltd)
PreEmptive Analytics Visual Studio Components (HKLM-x32...{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32...{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT (HKLM-x32...{B7E94916-7AE6-4F7F-A377-7A410A42BA19}) (Version: 13.0.1601.5 - Microsoft Corporation)
Realtek Ethernet Controller Driver (HKLM-x32...{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.25.108.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32...{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
ROBLOX Player for Tuf Tuf (HKCU...{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Roslyn Language Services - x86 (HKLM-x32...{6970C7E1-F99D-388D-8903-DF8FCE677FED}) (Version: 14.0.25431 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32...{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
SHIELD Streaming (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM...{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Skype™ 7.33 (HKLM-x32...{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
Spybot Anti-Beacon (HKLM-x32...{419A7FCF-93E1-474D-BFE9-987CF3F90C88}_is1) (Version: 1.6 - Safer-Networking Ltd.)
Steam (HKLM-x32...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Explorer for Microsoft Visual Studio 2015 Update 3.1 (HKLM-x32...{7A95671A-759E-3B83-B763-4289D1D24D73}) (Version: 14.102.25619 - Microsoft) Hidden
Team Fortress 2 (HKLM...\Steam App 440) (Version: - Valve)
TeamViewer 12 (HKLM-x32...\TeamViewer) (Version: 12.0.71503 - TeamViewer)
TERA (HKLM-x32...{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: - Gameforge4d)
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32...{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
The Elder Scrolls V Skyrim Special Edition (HKLM-x32...\The Elder Scrolls V Skyrim Special Edition_is1) (Version: - )
The Witcher 3 - Wild Hunt (HKLM-x32...\1495134320_is1) (Version: 2.0.0.51 - GOG.com)
TunnelBear (HKLM-x32...{3746419F-FD3C-42FD-8C44-4C3491CFE645}) (Version: 3.0.32.0 - TunnelBear) Hidden
TunnelBear (HKLM-x32...{999c6f10-ce15-4dce-bc57-5c6c89b2af84}) (Version: 3.0.32.0 - TunnelBear)
Tunngle (HKLM-x32...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
TypeScript Power Tool (HKLM-x32...{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32...{BA5762C7-D35F-4725-A4BD-525854127018}) (Version: 1.8.36.0 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32...{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM...{90160000-0011-0000-1000-0000000FF1CE}Office16.PROPLUS{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM...{90160000-00C1-0000-1000-0000000FF1CE}Office16.PROPLUS{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM...{90160000-012B-0409-1000-0000000FF1CE}Office16.PROPLUS{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Uplay (HKLM-x32...\Uplay) (Version: 26.0 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM...{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32...{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32...{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation)
VLC media player (HKLM-x32...\VLC media player) (Version: 2.2.4 - VideoLAN)
VS Update core components (HKLM-x32...{B2918D01-1D89-34D3-87EF-A28121BC6EB7}) (Version: 14.0.25431 - Microsoft Corporation) Hidden
vs_update3notification (HKLM-x32...{AB3DF932-C990-34D4-BF43-970F760DA3CD}) (Version: 14.0.25431 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.42.1 (HKLM...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War Thunder (HKLM...\Steam App 236390) (Version: - Gaijin Entertainment)
Warface (HKLM...\Steam App 291480) (Version: - Crytek)
Warface My.Com (HKCU...\Warface My.Com) (Version: 1.31 - My.com B.V.)
WCF Data Services 5.6.4 Runtime (HKLM-x32...{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32...{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WinRAR 5.40 (64-bit) (HKLM...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XFast LAN v9.05 (HKLM...\XFast LAN) (Version: 9.05 - cFos Software GmbH, Bonn)
Zemana AntiMalware (HKLM-x32...{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.101 - Zemana Ltd.)

========================= Devices: ================================

Name: TunnelBear Adapter V9
Description: TunnelBear Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TunnelBear Provider V9
Service: tap-tb-0901
Device ID: ROOT\NET\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click “Action”, and then click “Enable Device”. This starts the Enable Device wizard. Follow the instructions.

========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 8131.8 MB
Available physical RAM: 3871.69 MB
Total Virtual: 9539.8 MB
Available Virtual: 4433.05 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:223.13 GB) (Free:68.76 GB) NTFS
3 Drive e: (New Volume) (Fixed) (Total:931.02 GB) (Free:589.86 GB) NTFS

========================= Users: ========================================

User accounts for \DESKTOP-HFQ2I7A

Administrator DefaultAccount Guest
Tuf Tuf

**** End of log ****
Logfile of HiJackThis Fork (Alpha) by Alex Dragokas v.2.6.4.17

Platform: x64 Windows 10 (Pro), 10.0.14393 (ReleaseId: 1607), Service Pack: 0
Time: 15.04.2017 - 01:23
Language: OS: English (0x409). Display: English (0x409). Non-Unicode: Serbian (Latin) (0x241A)
Elevated: Yes
Ran by: Tuf Tuf (group: Administrator) on DESKTOP-HFQ2I7A

Opera: 44.0.2510.1218
Chrome: 57.0.2987.133
Edge: 11.0.14393.1066
Internet Explorer: 11.0.14393.953

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe
1 C:\Program Files (x86)\Common Files\Steam\SteamService.exe
1 C:\Program Files (x86)\Everything\Everything.exe
9 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
1 C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler.ex e
1 C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler64. exe
1 C:\Program Files (x86)\Gyazo\GyStation.exe
1 C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
2 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
1 C:\Program Files (x86)\Origin\OriginWebHelperService.exe
1 C:\Program Files (x86)\Steam\Steam.exe
3 C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
2 C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
1 C:\Program Files\ASRock\XFast LAN\spd.exe
1 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
1 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
2 C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Containe r.exe
1 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
1 C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
1 C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
1 C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
1 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
1 C:\Program Files\Windows Defender\MsMpEng.exe
1 C:\Program Files\Windows Defender\NisSrv.exe
1 C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x 64__kzf8qxf38zg5c\SkypeHost.exe
1 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.313. 10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
1 C:\Users\Tuf Tuf\AppData\Local\FluxSoftware\Flux\flux.exe
1 C:\Users\Tuf Tuf\Desktop\HiJackThis.exe
1 C:\Windows\ImmersiveControlPanel\SystemSettings.ex e
1 C:\Windows\System32\ApplicationFrameHost.exe
1 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SystemSettingsBroker.exe
1 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
1 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
14 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw 5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2t xyewy\ShellExperienceHost.exe
1 C:\Windows\explorer.exe

R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - Google - Google {searchTerms}&rls=com.microsoft:{language}:{referr er:source?}&ie={inputEncoding}&oe={outputEncoding} &sourceid=ie7
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURL = http://api.bing.com/qsml.aspx?query= {searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie :rowHeight}&sectionHeight={ie:sectionHeight}&FORM= IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURLFallback = http://api.bing.com/qsml.aspx?query= {searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie :rowHeight}&sectionHeight={ie:sectionHeight}&FORM= IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = Search - Microsoft Bing {searchTerms}&src=IE-SearchBox&FORM=IESR02
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - Google - Google {searchTerms}&rls=com.microsoft:{language}:{referr er:source?}&ie={inputEncoding}&oe={outputEncoding} &sourceid=ie7
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - Google - Google {searchTerms}&rls=com.microsoft:{language}:{referr er:source?}&ie={inputEncoding}&oe={outputEncoding} &sourceid=ie7
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - Google - Google {searchTerms}&rls=com.microsoft:{language}:{referr er:source?}&ie={inputEncoding}&oe={outputEncoding} &sourceid=ie7
O4 - Global User Startup: GIGABYTE OC_GURU.lnk → C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
O4 - HKCU..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe -silent
O4 - HKCU..\Run: [f.lux] C:\Users\Tuf Tuf\AppData\Local\FluxSoftware\Flux\flux.exe /noshow
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe “C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe” 60
O4 - HKLM..\Run: [Malwarebytes TrayApp] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
O4 - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM..\Run: [ShadowPlay] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSyst emStart
O4 - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe
O4 - HKLM..\Run: [ZAM] C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe /minimized
O4 - HKLM..\StartupApproved\Run32: [Everything] (2017/02/21)C:\Program Files (x86)\Everything\Everything.exe -startup
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office16\EXCEL.EXE
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9 - Extra ‘Tools’ menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll (HKLM)
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll (HKLM)
O9-32 - Extra ‘Tools’ menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9-32 - Extra ‘Tools’ menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll (HKLM)
O9-32 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll (HKLM)
O9-32 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll (HKLM)
O17 - HKLM\System\CSS\Services\Tcpip..{6acb4502-f8d6-4a8b-abee-2c7aba76975a}: NameServer = 192.168.0.1
O17 - HKLM\System\CSS\Services\Tcpip..{6acb4502-f8d6-4a8b-abee-2c7aba76975a}: NameServer = 8.8.4.4
O17 - HKLM\System\CSS\Services\Tcpip..{6acb4502-f8d6-4a8b-abee-2c7aba76975a}: NameServer = 8.8.8.8
O17 - HKLM\System\CSS\Services\Tcpip..{96bdcc5c-fd56-4f15-a64d-7ccb98737bbc}: NameServer = 8.8.4.4
O17 - HKLM\System\CSS\Services\Tcpip..{96bdcc5c-fd56-4f15-a64d-7ccb98737bbc}: NameServer = 8.8.8.8
O17 - HKLM\System\CSS\Services\Tcpip..{c41cee96-4161-4c19-93e7-d970877c773c}: NameServer = 25.0.0.1
O17 - HKLM\System\CSS\Services\Tcpip..{c41cee96-4161-4c19-93e7-d970877c773c}: NameServer = 8.8.4.4
O17 - HKLM\System\CSS\Services\Tcpip..{c41cee96-4161-4c19-93e7-d970877c773c}: NameServer = 8.8.8.8
O17 - HKLM\System\ControlSet001\Services\Tcpip..{6acb450 2-f8d6-4a8b-abee-2c7aba76975a}: NameServer = 192.168.0.1
O17 - HKLM\System\ControlSet001\Services\Tcpip..{6acb450 2-f8d6-4a8b-abee-2c7aba76975a}: NameServer = 8.8.4.4
O17 - HKLM\System\ControlSet001\Services\Tcpip..{6acb450 2-f8d6-4a8b-abee-2c7aba76975a}: NameServer = 8.8.8.8
O17 - HKLM\System\ControlSet001\Services\Tcpip..{96bdcc5 c-fd56-4f15-a64d-7ccb98737bbc}: NameServer = 8.8.4.4
O17 - HKLM\System\ControlSet001\Services\Tcpip..{96bdcc5 c-fd56-4f15-a64d-7ccb98737bbc}: NameServer = 8.8.8.8
O17 - HKLM\System\ControlSet001\Services\Tcpip..{c41cee9 6-4161-4c19-93e7-d970877c773c}: NameServer = 25.0.0.1
O17 - HKLM\System\ControlSet001\Services\Tcpip..{c41cee9 6-4161-4c19-93e7-d970877c773c}: NameServer = 8.8.4.4
O17 - HKLM\System\ControlSet001\Services\Tcpip..{c41cee9 6-4161-4c19-93e7-d970877c773c}: NameServer = 8.8.8.8
O17 - HKLM\System\ControlSet002\Services\Tcpip..{6ACB450 2-F8D6-4A8B-ABEE-2C7ABA76975A}: NameServer = 192.168.0.1
O17 - HKLM\System\ControlSet002\Services\Tcpip..{6ACB450 2-F8D6-4A8B-ABEE-2C7ABA76975A}: NameServer = 8.8.4.4
O17 - HKLM\System\ControlSet002\Services\Tcpip..{6ACB450 2-F8D6-4A8B-ABEE-2C7ABA76975A}: NameServer = 8.8.8.8
O17 - HKLM\System\ControlSet002\Services\Tcpip..{96BDCC5 C-FD56-4F15-A64D-7CCB98737BBC}: NameServer = 8.8.4.4
O17 - HKLM\System\ControlSet002\Services\Tcpip..{96BDCC5 C-FD56-4F15-A64D-7CCB98737BBC}: NameServer = 8.8.8.8
O17 - HKLM\System\ControlSet002\Services\Tcpip..{C41CEE9 6-4161-4C19-93E7-D970877C773C}: NameServer = 25.0.0.1
O17 - HKLM\System\ControlSet002\Services\Tcpip..{C41CEE9 6-4161-4C19-93E7-D970877C773C}: NameServer = 8.8.4.4
O17 - HKLM\System\ControlSet002\Services\Tcpip..{C41CEE9 6-4161-4C19-93E7-D970877C773C}: NameServer = 8.8.8.8
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
O18 - Protocol: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL
O22 - Task (Disabled): \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\compattelrunner.exe
O22 - Task (Disabled): \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\WINDOWS\system32\compattelrunner.exe -maintenance
O22 - Task (Ready): Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_ 0_0_148_pepper.exe -check pepperplugin
O22 - Task (Ready): Adobe Flash Player Updater - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpda teService.exe
O22 - Task (Ready): GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task (Ready): GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task (Ready): GyazoUpdateTaskMachine - C:\Program Files (x86)\Gyazo\GyazoUpdate.exe
O22 - Task (Ready): GyazoUpdateTaskMachineDaily - C:\Program Files (x86)\Gyazo\GyazoUpdate.exe
O22 - Task (Ready): NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d “C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck” -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck .log
O22 - Task (Ready): NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
O22 - Task (Ready): NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task (Ready): NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
O22 - Task (Ready): NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
O22 - Task (Ready): NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
O22 - Task (Ready): NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
O22 - Task (Ready): Opera scheduled Autoupdate 1492187757 - C:\Program Files\Opera\launcher.exe --scheduledautoupdate $(Arg0)
O22 - Task (Ready): \AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (file missing)
O22 - Task (Ready): \Microsoft\Office\Office 15 Subscription Heartbeat - C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
O23 - Service R2: ASRock IO Monitor Service - (ASRockIOMon) - C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe
O23 - Service R2: Everything - C:\Program Files (x86)\Everything\Everything.exe
O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service R2: LiveUpdate - (LiveUpdateSvc) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Containe r.exe
O23 - Service R2: NVIDIA LocalSystem Container - (NvContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service R2: NVIDIA Telemetry Container - (NvTelemetryContainer) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service R2: Origin Web Helper Service - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service R2: Windows Defender Service - (WinDefend) - C:\Program Files\Windows Defender\MsMpEng.exe
O23 - Service R2: ZAM Controller Service - (ZAMSvc) - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
O23 - Service R2: cFosSpeed System Service - (cFosSpeedS) - C:\Program Files\ASRock\XFast LAN\spd.exe
O23 - Service R3: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service R3: Windows Defender Network Inspection Service - (WdNisSvc) - C:\Program Files\Windows Defender\NisSrv.exe
O23 - Service S2: Google Update Service (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpda teService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: EasyAntiCheat - C:\WINDOWS\SysWow64\EasyAntiCheat.exe
O23 - Service S3: Google Update Service (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service S3: InstallDriver Table Manager - (IDriverT) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service S3: NVIDIA NetworkService Container - (NvContainerNetworkService) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service S3: Origin Client Service - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service S3: TeamViewer 12 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S3: TunnelBear Maintenance - (TunnelBearMaintenance) - C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe
O23 - Service S3: TunngleService - C:\Program Files (x86)\Tunngle\TnglCtrl.exe

–
End of file - Time spent: 7 sec. - 35838 bytes, CRC32: FFFFFFFF. Sign: ḩ憻

Step 1: Download and run the Iobit Removal Tool

Step 2: Create and run batch file.

Open a notepad and copy the entire content of the code box below.
Paste the txt into the notepad. Save the file to your desktop as InternetFlush.bat
Now you will right click the on InternetFlush.bat and run as administrator.
Note: If you are using a third party firewall – you will want to leave out the top two lines of the script.
At the end of the batch file there will be a prompt to
Warning: This batch file will reboot your machine when complete! Save all work prior to running!!

[ICODE]netsh advfirewall reset netsh advfirewall set allprofiles state ON ipconfig /flushdns netsh winsock reset catalog netsh int ip reset c:\resetlog.txt ipconfig /release ipconfig /renew netsh int ipv4 reset netsh int ipv6 reset bitsadmin /reset /allusers reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Pol icy\Local /f reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Pol icy\Local /f netsh interface ipv6 6to4 set state state=disabled undoonstop=disabled netsh interface ipv6 isatap set state state=disabled netsh interface teredo set state disabled netsh interface tcp set global autotuning=disabled reg add hklm\system\currentcontrolset\services\tcpip6\para meters /v DisabledComponents /t REG_DWORD /d 0xFFFFFFFF for /F "tokens=*" %%a in ('wevtutil.exe el') DO wevtutil.exe cl "%%a" shutdown -r[/ICODE]

Step 3: Hijack This Fix.

Start HijackThis , Right Click Run as Admin.
Close all other open programs prior to running this tool!!
Click System Scan Only.
Then check mark the items listed below.

R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURL = http://api.bing.com/qsml.aspx?query= {searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie :rowHeight}&sectionHeight={ie:sectionHeight}&FORM= IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: SuggestionsURLFallback = http://api.bing.com/qsml.aspx?query= {searchTerms}&maxwidth={ie:maxWidth}&rowheight={ie :rowHeight}&sectionHeight={ie:sectionHeight}&FORM= IESS02&market={language}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = Search - Microsoft Bing {searchTerms}&src=IE-SearchBox&FORM=IESR02
O4 - Global User Startup: GIGABYTE OC_GURU.lnk → C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
O4 - HKCU..\Run: [Gyazo] C:\Program Files (x86)\Gyazo\GyStation.exe
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe “C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe” 60
O4 - HKLM..\Run: [Malwarebytes TrayApp] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
O4 - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
O4 - HKLM..\Run: [ShadowPlay] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSyst emStart
O4 - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe
O4 - HKLM..\StartupApproved\Run32: [Everything] (2017/02/21)C:\Program Files (x86)\Everything\Everything.exe -startup
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKLM..\Run: [ZAM] C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe /minimized
O22 - Task (Disabled): \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\WINDOWS\system32\compattelrunner.exe
O22 - Task (Disabled): \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\WINDOWS\system32\compattelrunner.exe -maintenance
O22 - Task (Ready): Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_ 0_0_148_pepper.exe -check pepperplugin
O22 - Task (Ready): Adobe Flash Player Updater - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpda teService.exe
O22 - Task (Ready): GyazoUpdateTaskMachine - C:\Program Files (x86)\Gyazo\GyazoUpdate.exe
O22 - Task (Ready): GyazoUpdateTaskMachineDaily - C:\Program Files (x86)\Gyazo\GyazoUpdate.exe
O23 - Service R2: LiveUpdate - (LiveUpdateSvc) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpda teService.exe

Now click on fix checked.
After the fix is complete, then reboot your machine.

After the machine reboots, please tell me what issues remain,.

I’ve removed the startup programs and everything is working fine now, any other recommendation concerning safety and pc performance?

Let’s have a quick look at your system before I send you off…

ZHP Diag Scan

Download ZHP Diag to your desktop.

1. Right Click Run as Admin.
   2. Click the Scanner button.

When complete please push the report button.
A notepad will open… copy and paste the report in your next reply.

the download button isnt working, the file doesn’t start downloading, just refreshes the page.

Uploaded for you.

There seems to be a problem

[Résolu] ZHPDiag : Message d'erreur à 74 % - Nicolas Coolman
Tried using this fix but it’s still showing the same error.

Quick Diag Scan.

Download Quick Diag to your desktop.
Very Important!! – Make sure program is on your desktop.
Disable your Antivirus/Antispyware prior to scanning.
Right Click Run as Administrator.
Select the Quick Scan.

Post the log that is generated in your next post.

Here’s the log