Tweet
Had a bit of tiome before I take off. Once this last fix log is posted I will make a couple suggestions. Also, I see you installed malwarebytes run a scan and let me know if anything is detected/
Copy the content of the code box below.
[COLOR=rgb(184, 49, 47)]Do not copy the word code!!!
Right Click FRST and run as Administrator.
Click Fix once (!) and wait. The program will create a log file (Fixlog.txt).
Attach it to your next message.
[ICODE]Start:: CloseProcesses: SystemRestore: On CreateRestorePoint: HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2262176 2021-12-16] (voidtools -> voidtools) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation) HKLM\...\Windows x64\Print Processors\hpzpp4pj: C:\Windows\System32\spool\prtprocs\x64\hpzpp4pj.dl l [109056 2006-07-19] (Hewlett-Packard Corporation) [File not signed] HKLM\...\Windows x64\Print Processors\hpzpp4v2: C:\Windows\System32\spool\prtprocs\x64\hpzpp4v2.dl l [224768 2007-03-01] (Hewlett-Packard Corporation) [File not signed] HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dl l [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-1000 series: C:\Windows\SYSTEM32\CNMLMCU.DLL [221184 2018-06-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-1000 series XPS: C:\Windows\SYSTEM32\CNMXLMCU.DLL [940544 2019-07-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Inst aller\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION Policies: C:\Users\John\NTUSER.pol: Restriction <==== ATTENTION Task: {057A1776-BFE5-49F6-9C9F-14168AAD36B7} - \{DEEDCC3E-CBD8-43B6-AD9E-7EA20C465F0B} -> No File <==== ATTENTION Task: {2F89BFDD-6EDD-444F-B0FC-6DE98DBA421B} - \{DCD3DF8E-7A65-4572-8EA8-9AF39EE529D0} -> No File <==== ATTENTION Task: {47536D45-EEEC-4BDC-8183-A4DC1F8DA9E4} - \Microsoft\Windows\Customer Experience Improvement Program\UsbCeip -> No File <==== ATTENTION Task: {5C499559-C638-474C-900C-3C0711E8639E} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION Task: {691BBF6A-0996-4189-9113-4B0A6A78D354} - \{49EF1716-D259-41E8-B0AB-010CC7E14396} -> No File <==== ATTENTION Task: {81540B9F-B5BF-47EB-9C95-BE195BF2C664} - \Microsoft\Windows\NetTrace\GatherNetworkInfo -> No File <==== ATTENTION Task: {C016366B-7126-46CA-B36B-592A3D95A60B} - \Microsoft\Windows\Customer Experience Improvement Program\Consolidator -> No File <==== ATTENTION Task: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} - \Microsoft\Windows\RemoteAssistance\RemoteAssistan ceTask -> No File <==== ATTENTION Task: {F5200AF5-7661-45B9-918A-07DFDA3F3907} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION Task: {FDD56C73-F0D5-41B6-B767-6EFFD7966428} - \Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask -> No File <==== ATTENTION Task: {841B5198-D047-48DC-A8F7-38F9931C7A9D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c86fe6bb-6a69-4ed8-8ec2-6531b12a0d56" --version "6.17.10746" --silent Task: {F28A420F-8795-43CE-852F-BDAC71A9E7CB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-10-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump :5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundup date.moz_log --backgroundtask backgroundupdate Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService .exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 tap0901; system32\DRIVERS\tap0901.sys [X] 2023-10-27 13:45 - 2013-11-05 11:18 - 000002988 _____ C:\Windows\system32\Tasks\{5BE27FFA-4308-4CD6-9947-0437ECF78DBA} 2023-10-27 13:45 - 2013-11-05 11:17 - 000002988 _____ C:\Windows\system32\Tasks\{FF0704B2-1723-48A8-B0E4-4A5A67E1E68A} 2023-10-25 15:12 - 2014-08-31 09:02 - 000002968 _____ C:\Windows\system32\Tasks\{BF35A7E9-988B-4DC2-9F33-9866BE058C65} 2023-10-25 15:12 - 2014-08-31 09:02 - 000002968 _____ C:\Windows\system32\Tasks\{7DE31B3D-1180-48D3-ABAC-A5FF8A585558} 2023-10-25 15:12 - 2011-11-14 18:17 - 000003208 _____ C:\Windows\system32\Tasks\{A31B5317-EA3F-4C35-9BE3-F35B5EF90387} ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> No File C:\Program Files (x86)\Glary Utilities 5 ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> No File ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> No File AlternateDataStreams: C:\Windows:nlsPreferences [0] C:\Windows\system32\drivers\etc\hosts C:\Windows\system32\drivers\etc\hosts.ics Hosts: Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.5 - Google Inc.) Hidden emptytemp: Reboot: End::[/ICODE][/COLOR]
Copy the content of the code box below.
[COLOR=rgb(184, 49, 47)]Do not copy the word code!!!
Right Click FRST and run as Administrator.
Click Fix once (!) and wait. The program will create a log file (Fixlog.txt).
Attach it to your next message.
[ICODE]Start:: CloseProcesses: SystemRestore: On CreateRestorePoint: HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2262176 2021-12-16] (voidtools -> voidtools) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation) HKLM\...\Windows x64\Print Processors\hpzpp4pj: C:\Windows\System32\spool\prtprocs\x64\hpzpp4pj.dl l [109056 2006-07-19] (Hewlett-Packard Corporation) [File not signed] HKLM\...\Windows x64\Print Processors\hpzpp4v2: C:\Windows\System32\spool\prtprocs\x64\hpzpp4v2.dl l [224768 2007-03-01] (Hewlett-Packard Corporation) [File not signed] HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dl l [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-1000 series: C:\Windows\SYSTEM32\CNMLMCU.DLL [221184 2018-06-21] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-1000 series XPS: C:\Windows\SYSTEM32\CNMXLMCU.DLL [940544 2019-07-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Inst aller\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION Policies: C:\Users\John\NTUSER.pol: Restriction <==== ATTENTION Task: {057A1776-BFE5-49F6-9C9F-14168AAD36B7} - \{DEEDCC3E-CBD8-43B6-AD9E-7EA20C465F0B} -> No File <==== ATTENTION Task: {2F89BFDD-6EDD-444F-B0FC-6DE98DBA421B} - \{DCD3DF8E-7A65-4572-8EA8-9AF39EE529D0} -> No File <==== ATTENTION Task: {47536D45-EEEC-4BDC-8183-A4DC1F8DA9E4} - \Microsoft\Windows\Customer Experience Improvement Program\UsbCeip -> No File <==== ATTENTION Task: {5C499559-C638-474C-900C-3C0711E8639E} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION Task: {691BBF6A-0996-4189-9113-4B0A6A78D354} - \{49EF1716-D259-41E8-B0AB-010CC7E14396} -> No File <==== ATTENTION Task: {81540B9F-B5BF-47EB-9C95-BE195BF2C664} - \Microsoft\Windows\NetTrace\GatherNetworkInfo -> No File <==== ATTENTION Task: {C016366B-7126-46CA-B36B-592A3D95A60B} - \Microsoft\Windows\Customer Experience Improvement Program\Consolidator -> No File <==== ATTENTION Task: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} - \Microsoft\Windows\RemoteAssistance\RemoteAssistan ceTask -> No File <==== ATTENTION Task: {F5200AF5-7661-45B9-918A-07DFDA3F3907} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION Task: {FDD56C73-F0D5-41B6-B767-6EFFD7966428} - \Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask -> No File <==== ATTENTION Task: {841B5198-D047-48DC-A8F7-38F9931C7A9D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c86fe6bb-6a69-4ed8-8ec2-6531b12a0d56" --version "6.17.10746" --silent Task: {F28A420F-8795-43CE-852F-BDAC71A9E7CB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-10-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump :5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundup date.moz_log --backgroundtask backgroundupdate Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService .exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 tap0901; system32\DRIVERS\tap0901.sys [X] 2023-10-27 13:45 - 2013-11-05 11:18 - 000002988 _____ C:\Windows\system32\Tasks\{5BE27FFA-4308-4CD6-9947-0437ECF78DBA} 2023-10-27 13:45 - 2013-11-05 11:17 - 000002988 _____ C:\Windows\system32\Tasks\{FF0704B2-1723-48A8-B0E4-4A5A67E1E68A} 2023-10-25 15:12 - 2014-08-31 09:02 - 000002968 _____ C:\Windows\system32\Tasks\{BF35A7E9-988B-4DC2-9F33-9866BE058C65} 2023-10-25 15:12 - 2014-08-31 09:02 - 000002968 _____ C:\Windows\system32\Tasks\{7DE31B3D-1180-48D3-ABAC-A5FF8A585558} 2023-10-25 15:12 - 2011-11-14 18:17 - 000003208 _____ C:\Windows\system32\Tasks\{A31B5317-EA3F-4C35-9BE3-F35B5EF90387} ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> No File C:\Program Files (x86)\Glary Utilities 5 ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> No File ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> No File AlternateDataStreams: C:\Windows:nlsPreferences [0] C:\Windows\system32\drivers\etc\hosts C:\Windows\system32\drivers\etc\hosts.ics Hosts: Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.5 - Google Inc.) Hidden emptytemp: Reboot: End::[/ICODE][/COLOR]
Comment