• Hi there and welcome to PC Help Forum (PCHF), a more effective way to get the Tech Support you need!
    We have Experts in all areas of Tech, including Malware Removal, Crash Fixing and BSOD's , Microsoft Windows, Computer DIY and PC Hardware, Networking, Gaming, Tablets and iPads, General and Specific Software Support and so much more.

    Why not Click Here To Sign Up and start enjoying great FREE Tech Support.

    This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Non-Interactive Programs, Full-Screen/Multiple Monitor Issue?

Status
Not open for further replies.

Merlion

PCHF Member
PCHF Member
Sep 4, 2018
2
0
22
#1
I have this problem with certain programs- Firefox (IE is seemingly unaffected)- Malwarebytes, my AMD Radeon graphics card settings and Battle.net.
In these programs, I'll lose the ability to interact with them in some way. In Malwarebytes I can mouse over items and the program will register that I'm mousing over them, but I can't click on the item (see picture 1, I'm clicking on the Dashboard but I'm stuck in the Scan tab), and if I try and click on the item or anywhere inside the program I won't be able to minimize, maximize, close or move the window until I minimize it through the taskbar or switch from one program back to Malwarebytes.

The issue is similar with the other programs, though sometimes I still won't be able to minimize, maximize or close once I switch back to the program, only move it. In Firefox, I'll lose the ability to minimize, maximize, close, move and also interact with certain embedded video formats (.WEBMs), but I'll still be able to open new tabs, click between tabs and interact with pages like this one. I've been trying to find the solution and I'm thinking it may be a problem with prioritizing fullscreen programs when I have multiple monitors. I'm hoping there's a relatively painless fix to this problem. Thanks for your time.
 

Attachments

Malnutrition

Malnurished Mod
Moderator
Security Team
Malware Teacher
Jul 22, 2016
2,863
496
#2
Lets get some info from your machine, to get things rolling.


Step 1: Reset Host File



  • Click here to download RstHosts v2.0
  • Save the file to your desktop.
  • Right Click and Run as Administrator.
  • Click on Restaurer, then click OK at the prompt.
  • This will restore the default host file.
  • Next Click on Creer Un Rapport.
  • This will open a logfile, post that in your next reply.

Step 2: MiniToolBox Scan


Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go post the result.



Step 3: HijackThis.



1- Please click HERE to download HijackThis.
2- Run the program.
3- Click on the Main Menu button if not already there.
4- Select Do a system scan and save a logfile.
5- Copy paste the log here.
 

Merlion

PCHF Member
PCHF Member
Sep 4, 2018
2
0
22
#3
Step 1
-|x| RstHosts v2.0 - Rapport créé le 04/09/2018 à 21:48:32
-|x| Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
-|x| Nom d'utilisateur : Rhys - HOROLOGIUM (Administrateur)

-|x|- Informations -|x|-

Emplacement : C:\Windows\System32\drivers\etc\hosts
Attribut(s) : RASH
Propriétaire : Administrators - BUILTIN
Taille : 89 bytes
Date de création : 13/07/2009 - 22:34:48
Date de modification : 04/09/2018 - 21:48:20
Date de dernier accès : 04/09/2018 - 21:48:20

-|x|- Contenu du fichier -|x|-

# Fichier Hosts créé par RstHosts

127.0.0.1 localhost
::1 localhost

-|x|- E.O.F - C:\RstHosts.txt - 625 bytes -|x|-



Step 2
MiniToolBox by Farbar Version: 17-06-2016
Ran by Rhys (administrator) on 04-09-2018 at 21:42:04
Running from "C:\Users\Rhys\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Model: MS-7918 Manufacturer: MSI
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com
========================= IP Configuration: ================================

Killer e2200 Gigabit Ethernet Controller (NDIS 6.30) = Local Area Connection (Connected)
Hamachi Network Interface = Local Area Connection 4 (Hardware not present)
TAP-Windows Adapter V9 = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
add route prefix=0.0.0.0/0 interface="Local Area Connection 4" nexthop=25.0.0.1 publish=Yes
set interface interface="Local Area Connection 4" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Horologium
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.ma.comcast.net

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Windows Adapter V9
Physical Address. . . . . . . . . : 00-FF-D9-EF-4C-6D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : hsd1.ma.comcast.net
Description . . . . . . . . . . . : Killer e2200 Gigabit Ethernet Controller (NDIS 6.30)
Physical Address. . . . . . . . . : D8-CB-8A-5B-1C-4D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2601:18e:4101:c64::4037(Preferred)
Lease Obtained. . . . . . . . . . : Thursday, August 30, 2018 2:28:46 AM
Lease Expires . . . . . . . . . . : Sunday, September 09, 2018 2:28:46 PM
IPv6 Address. . . . . . . . . . . : 2601:18e:4101:c64:881b:5c0e:a3f:c7be(Preferred)
Temporary IPv6 Address. . . . . . : 2601:18e:4101:c64:9ccf:b18a:c4b3:dea(Preferred)
Link-local IPv6 Address . . . . . : fe80::881b:5c0e:a3f:c7be%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.0.20(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, August 30, 2018 2:28:47 AM
Lease Expires . . . . . . . . . . : Sunday, September 09, 2018 2:29:27 PM
Default Gateway . . . . . . . . . : fe80::56a6:5cff:fe43:b537%11
10.0.0.1
DHCP Server . . . . . . . . . . . : 10.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 249088906
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1D-89-F0-38-D8-CB-8A-5B-1C-4D
DNS Servers . . . . . . . . . . . : 2001:558:feed::1
2001:558:feed::2
75.75.75.75
75.75.76.76
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{D9EF4C6D-B2FC-4168-AFB6-7A19B5FA31A6}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hsd1.ma.comcast.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.ma.comcast.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cdns01.comcast.net
Address: 2001:558:feed::1

Name: google.com
Addresses: 2607:f8b0:4002:811::200e
172.217.12.110


Pinging google.com [2607:f8b0:4002:800::200e] with 32 bytes of data:
Reply from 2607:f8b0:4002:800::200e: time=47ms
Reply from 2607:f8b0:4002:800::200e: time=46ms

Ping statistics for 2607:f8b0:4002:800::200e:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 46ms, Maximum = 47ms, Average = 46ms
Server: cdns01.comcast.net
Address: 2001:558:feed::1

Name: yahoo.com
Addresses: 2001:4998:44:41d::4
2001:4998:c:1023::4
2001:4998:58:1836::11
2001:4998:c:1023::5
2001:4998:58:1836::10
2001:4998:44:41d::3
72.30.35.10
98.138.219.232
72.30.35.9
98.137.246.7
98.138.219.231
98.137.246.8


Pinging yahoo.com [2001:4998:44:41d::3] with 32 bytes of data:
Reply from 2001:4998:44:41d::3: time=48ms
Reply from 2001:4998:44:41d::3: time=52ms

Ping statistics for 2001:4998:44:41d::3:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 48ms, Maximum = 52ms, Average = 50ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
15...00 ff d9 ef 4c 6d ......TAP-Windows Adapter V9
11...d8 cb 8a 5b 1c 4d ......Killer e2200 Gigabit Ethernet Controller (NDIS 6.30)
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.0.1 10.0.0.20 10
10.0.0.0 255.255.255.0 On-link 10.0.0.20 266
10.0.0.20 255.255.255.255 On-link 10.0.0.20 266
10.0.0.255 255.255.255.255 On-link 10.0.0.20 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.0.0.20 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.0.0.20 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 25.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 266 ::/0 fe80::56a6:5cff:fe43:b537
1 306 ::1/128 On-link
11 18 2601:18e:4101:c64::/64 On-link
11 266 2601:18e:4101:c64::4037/128
On-link
11 266 2601:18e:4101:c64:881b:5c0e:a3f:c7be/128
On-link
11 266 2601:18e:4101:c64:9ccf:b18a:c4b3:dea/128
On-link
11 266 fe80::/64 On-link
11 266 fe80::881b:5c0e:a3f:c7be/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/17/2018 05:02:30 AM) (Source: Application Error) (User: )
Description: Faulting application name: Photoshop.exe, version: 16.0.0.88, time stamp: 0x55681d39
Faulting module name: ntdll.dll, version: 6.1.7601.24214, time stamp: 0x5b6273e1
Exception code: 0xc000070a
Fault offset: 0x00000000000138e7
Faulting process id: 0x17dc
Faulting application start time: 0xPhotoshop.exe0
Faulting application path: Photoshop.exe1
Faulting module path: Photoshop.exe2
Report Id: Photoshop.exe3

Error: (08/17/2018 03:29:13 AM) (Source: Application Error) (User: )
Description: Faulting application name: Photoshop.exe, version: 16.0.0.88, time stamp: 0x55681d39
Faulting module name: Photoshop.exe, version: 16.0.0.88, time stamp: 0x55681d39
Exception code: 0xc0000005
Fault offset: 0x000000000488f6cf
Faulting process id: 0xbec
Faulting application start time: 0xPhotoshop.exe0
Faulting application path: Photoshop.exe1
Faulting module path: Photoshop.exe2
Report Id: Photoshop.exe3

Error: (08/16/2018 03:59:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/15/2018 03:35:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/15/2018 03:34:59 AM) (Source: Application Error) (User: )
Description: Faulting application name: Wacom_TouchUser.exe, version: 6.3.20.7, time stamp: 0x5893c5ec
Faulting module name: Wacom_TouchUser.exe, version: 6.3.20.7, time stamp: 0x5893c5ec
Exception code: 0xc0000005
Fault offset: 0x00000000001b9cda
Faulting process id: 0x6d8
Faulting application start time: 0xWacom_TouchUser.exe0
Faulting application path: Wacom_TouchUser.exe1
Faulting module path: Wacom_TouchUser.exe2
Report Id: Wacom_TouchUser.exe3

Error: (08/15/2018 03:30:25 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe_Net Driver HPZ12, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x0000000000001111
Faulting process id: 0x9a0
Faulting application start time: 0xsvchost.exe_Net Driver HPZ120
Faulting application path: svchost.exe_Net Driver HPZ121
Faulting module path: svchost.exe_Net Driver HPZ122
Report Id: svchost.exe_Net Driver HPZ123

Error: (08/08/2018 04:17:17 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 61.0.1.6759 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: d10

Start Time: 01d42ae0d0fb1539

Termination Time: 2410

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: df6b83d5-9b47-11e8-9ee2-d8cb8a5b1c4d

Error: (08/05/2018 10:07:49 PM) (Source: Application Error) (User: )
Description: Faulting application name: HPWUCli.exe, version: 4.0.6.1, time stamp: 0x467aefc0
Faulting module name: HPBasicDetection3.dll_unloaded, version: 0.0.0.0, time stamp: 0x457dce66
Exception code: 0xc0000005
Fault offset: 0x02da00d5
Faulting process id: 0x2b48
Faulting application start time: 0xHPWUCli.exe0
Faulting application path: HPWUCli.exe1
Faulting module path: HPWUCli.exe2
Report Id: HPWUCli.exe3

Error: (08/02/2018 12:04:47 AM) (Source: Application Error) (User: )
Description: Faulting application name: Wacom_TouchUser.exe, version: 6.3.20.7, time stamp: 0x5893c5ec
Faulting module name: ntdll.dll, version: 6.1.7601.24168, time stamp: 0x5b1aad38
Exception code: 0xc0000005
Fault offset: 0x000000000002a1c5
Faulting process id: 0xbcc
Faulting application start time: 0xWacom_TouchUser.exe0
Faulting application path: Wacom_TouchUser.exe1
Faulting module path: Wacom_TouchUser.exe2
Report Id: Wacom_TouchUser.exe3

Error: (08/01/2018 06:05:49 PM) (Source: LogMeIn Guardian) (User: NT AUTHORITY)
Description: LogMeIn Guardian has detected a problem with the LogMeIn software installed on this machine. The problem is locally identified by the following reference ID: '1f753706840d26f259c5ba39205534a6'.


System errors:
=============
Error: (09/04/2018 02:37:55 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (09/04/2018 02:37:55 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (09/03/2018 03:13:37 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (08/18/2018 02:00:13 AM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 80.

Error: (08/16/2018 04:02:08 PM) (Source: Service Control Manager) (User: )
Description: The Intel(R) Management and Security Application Local Management Service service terminated unexpectedly. It has done this 1 time(s).

Error: (08/16/2018 03:57:53 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:14:17 AM on ‎8/‎16/‎2018 was unexpected.

Error: (08/15/2018 03:30:53 AM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (08/15/2018 03:30:31 AM) (Source: Service Control Manager) (User: )
Description: The Net Driver HPZ12 service terminated unexpectedly. It has done this 1 time(s).

Error: (08/09/2018 02:11:25 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (08/03/2018 12:34:26 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 70. The internal error state is 105.


Microsoft Office Sessions:
=========================
Error: (08/17/2018 05:02:30 AM) (Source: Application Error)(User: )
Description: Photoshop.exe16.0.0.8855681d39ntdll.dll6.1.7601.242145b6273e1c000070a00000000000138e717dc01d4360902997102C:\Program Files\Adobe\Adobe Photoshop CC 2015\Photoshop.exeC:\Windows\SYSTEM32\ntdll.dll452e8691-a1fc-11e8-9436-d8cb8a5b1c4d

Error: (08/17/2018 03:29:13 AM) (Source: Application Error)(User: )
Description: Photoshop.exe16.0.0.8855681d39Photoshop.exe16.0.0.8855681d39c0000005000000000488f6cfbec01d4359bdd2d6742C:\Program Files\Adobe\Adobe Photoshop CC 2015\Photoshop.exeC:\Program Files\Adobe\Adobe Photoshop CC 2015\Photoshop.exe3cfe053c-a1ef-11e8-9436-d8cb8a5b1c4d

Error: (08/16/2018 03:59:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/15/2018 03:35:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/15/2018 03:34:59 AM) (Source: Application Error)(User: )
Description: Wacom_TouchUser.exe6.3.20.75893c5ecWacom_TouchUser.exe6.3.20.75893c5ecc000000500000000001b9cda6d801d4346a59dd1244C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exeC:\Program Files\Tablet\Wacom\Wacom_TouchUser.exeb5fea7b0-a05d-11e8-8465-d8cb8a5b1c4d

Error: (08/15/2018 03:30:25 AM) (Source: Application Error)(User: )
Description: svchost.exe_Net Driver HPZ126.1.7600.163854a5bc3c1msvcrt.dll7.0.7601.177444eeb033fc000000500000000000011119a001d429e34e1a6569C:\Windows\System32\svchost.exeC:\Windows\system32\msvcrt.dll130e7bc8-a05d-11e8-9ee2-d8cb8a5b1c4d

Error: (08/08/2018 04:17:17 PM) (Source: Application Hang)(User: )
Description: firefox.exe61.0.1.6759d1001d42ae0d0fb15392410C:\Program Files (x86)\Mozilla Firefox\firefox.exedf6b83d5-9b47-11e8-9ee2-d8cb8a5b1c4d

Error: (08/05/2018 10:07:49 PM) (Source: Application Error)(User: )
Description: HPWUCli.exe4.0.6.1467aefc0HPBasicDetection3.dll_unloaded0.0.0.0457dce66c000000502da00d52b4801d42d2a3d67d33dC:\Program Files (x86)\HP\HP Software Update\HPWUCli.exeHPBasicDetection3.dll83fad953-991d-11e8-9ee2-d8cb8a5b1c4d

Error: (08/02/2018 12:04:47 AM) (Source: Application Error)(User: )
Description: Wacom_TouchUser.exe6.3.20.75893c5ecntdll.dll6.1.7601.241685b1aad38c0000005000000000002a1c5bcc01d429e350a43d14C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exeC:\Windows\SYSTEM32\ntdll.dll31c5f458-9609-11e8-9ee2-d8cb8a5b1c4d

Error: (08/01/2018 06:05:49 PM) (Source: LogMeIn Guardian)(User: NT AUTHORITY)
Description: 1f753706840d26f259c5ba39205534a6


=========================== Installed Programs ============================

. . (HKLM\...\{569F29BA-2D46-439B-8B7C-01D999B9201D}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{9F460796-0348-4B11-BCA0-714C4B85E3D7}) (Version: 3.1.2.2 - Intel) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{3850334B-82B7-4875-BEFD-CB91F2527565}) (Version: 2.2.0 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (HKLM\...\{08524C4D-56DD-188E-ECD8-4D3F976AA3CF}) (Version: 2017.0424.2109.30 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 30 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)
AIO_Scan (HKLM-x32\...\{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Apple Application Support (32-bit) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
Auto Clicker by MurGee.com (HKLM-x32\...\{E6814ACD-841B-4EA4-BC42-DC74458BFA38}) (Version: 2.2.0 - MurGee.com)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blade & Soul (HKLM-x32\...\{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (HKLM-x32\...\{687FEF8A-8597-40b4-832C-297EA3F35817}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
C7200 (HKLM-x32\...\{CECEB0FF-5C45-4b50-9A00-C596E36D88F4}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden
C7200_Help (HKLM-x32\...\{c600ab3d-8b64-41df-bf36-b3d87ce0706b}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Cards_Calendar_OrderGift_DoMorePlugout (HKLM-x32\...\{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{D6823E97-B396-927D-D651-AFB82BE03523}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{4B01C6D5-4693-6CA8-ECF7-A0F9E7FEC6DB}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{50DBC6DD-C2A2-2C38-FE37-A48208474155}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{BF26ACAF-6D09-023B-5FB7-8A848874A724}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{9DB37D05-F855-5D7D-08C2-25E00E2CCDBC}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{87250370-0A99-4ED9-DCE4-970DAC325FA5}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{1F815C78-D31E-53FD-C8BF-3215E4F022A3}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{79F58747-D616-4CDB-7D8B-4BC580D99153}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{02E80355-64BF-6C1E-B0B7-76857D62A86D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{77158555-E271-A561-ECDA-611639388B5C}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{97673BD1-8CA0-53EF-C4E7-282CD8748F1C}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{F1AD64B3-4114-8EF7-407C-F9F9122EDA68}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED28D75F-557C-39C9-5004-F8F17C8BC279}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{41268A73-D680-48C5-DE5E-CF67C05CBBBB}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9655DE76-0987-9159-5A7E-FCE18409D004}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{CD73EC8B-9F04-5EA1-8FD4-AEE4DAC51267}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{397C2EE5-B514-0CC5-53C3-2FBE46CE6EDF}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{45FA39D2-8AEB-AFF8-2FA6-96891732CB80}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{B3EA6CCB-F44C-DC35-94F5-1B9CC18FE598}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{AEE4C0AE-CDAF-5D37-2DA3-A2B3FDFE6E81}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{BE064737-1F2C-ECDD-916C-798E3D18C263}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Chivalry: Medieval Warfare (HKLM\...\Steam App 219640) (Version: - Torn Banner Studios)
Copy (HKLM-x32\...\{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
CPUID HWMonitor 1.29 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 2.00 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: - )
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
CustomerResearchQFolder (HKLM-x32\...\{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.)
Dark Souls: Prepare to Die Edition (HKLM\...\Steam App 211420) (Version: - FromSoftware)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
DARK SOULS™ II: Scholar of the First Sin (HKLM\...\Steam App 335300) (Version: - FromSoftware, Inc)
Deluge 1.3.12 (HKLM-x32\...\Deluge) (Version: - )
Destination Component (HKLM-x32\...\{D99A8E3A-AE5A-4692-8B19-6F16D454E240}) (Version: 100.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}) (Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (HKLM-x32\...\{AB5D51AE-EBC3-438D-872C-705C7C2084B0}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Discord (HKCU\...\Discord) (Version: 0.0.301 - Discord Inc.)
DocProc (HKLM-x32\...\{679EC478-3FF9-4987-B2FF-C2C2B27532A2}) (Version: 10.0.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (HKLM-x32\...\{87E2B986-07E8-477a-93DC-AF0B6758B192}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
Don't Starve (HKLM\...\Steam App 219740) (Version: - Klei Entertainment)
Dragon's Dogma: Dark Arisen (HKLM\...\Steam App 367500) (Version: - Capcom)
DreadOut Demo (HKLM\...\Steam App 299130) (Version: - Digital Happiness)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
eSupportQFolder (HKLM-x32\...\{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
f.lux (HKCU\...\Flux) (Version: - f.lux Software LLC)
Fax (HKLM-x32\...\{195F2C6C-A343-4b10-B1A4-3F00AB9E9DD9}) (Version: 100.0.187.000 - Hewlett-Packard) Hidden
FINAL FANTASY X/X-2 HD Remaster (HKLM\...\Steam App 359870) (Version: - SQUARE ENIX)
foobar2000 v1.3.10 (HKLM-x32\...\foobar2000) (Version: 1.3.10 - Peter Pawlowski)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
GPBaseService (HKLM-x32\...\{18669FF9-C8FE-407a-9F70-E674896B1DB4}) (Version: 100.0.187.000 - Hewlett-Packard) Hidden
GPU Temp version 1.0 (HKLM-x32\...\{8C8711FD-0FC8-4801-B33E-ED19BB0350B1}_is1) (Version: 1.0 - gputemp.com)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HearthArena Companion (HKCU\...\Overwolf_eldaohcjmecjpkpdhhoiolhhaeapcldppbdgbnbc) (Version: 1.5.0.1 - Overwolf app)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKCU\...\HearthstoneDeckTracker) (Version: 1.2.3 - HearthSim)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HIVESWAP: ACT 1 (HKLM\...\Steam App 623940) (Version: - What Pumpkin Games, Inc.)
Honeyview (HKLM\...\Honeyview) (Version: 5.03 - Bandisoft.com)
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Photosmart All-In-One Driver Software 10.0 Rel .2 (HKLM\...\{20B30DC1-E423-4939-B51D-05C58B0F9BBB}) (Version: 10.0 - HP)
HP Photosmart Essential 2.5 (HKLM\...\HP Photosmart Essential) (Version: 2.5 - HP)
HP Solution Center 10.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 10.0 - HP)
HP Update (HKLM-x32\...\{11B83AD3-7A46-4C2E-A568-9505981D4C6F}) (Version: 4.000.007.003 - Hewlett-Packard)
HPPhotoSmartDiscLabel_PaperLabel (HKLM-x32\...\{A07840FC-CE63-4CB8-8030-EF4B9805925A}) (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PrintOnDisc (HKLM-x32\...\{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}) (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (HKLM-x32\...\{DD3C88A0-C53C-41D0-A21B-6D021981D23E}) (Version: 2.02.0000 - Hewlett-Packard) Hidden
hpphotosmartdisclabelplugin (HKLM-x32\...\{ADFB9653-F44C-460C-BF58-189CC552DFFE}) (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartPhotobookWebPack1 (HKLM-x32\...\{12A76360-388E-4B27-ABEB-D5FC5378DD2A}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{36FDBE6E-6684-462b-AE98-9A39A1B200CC}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Hyper Light Drifter (HKLM\...\Steam App 257850) (Version: - Heart Machine)
Icaros 2.3.0 (HKLM\...\Icaros_is1) (Version: 2.3.0.0 - Tabibito Technology)
Intel(R) Chipset Device Software (HKLM-x32\...\{d370215a-d003-43ae-a3b6-1028af64d5a1}) (Version: 10.0.20 - Intel(R) Corporation) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{699E6891-25C3-443A-9B8E-80C74F0172C8}) (Version: 2.1.03413 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{e7adbf16-34ad-490a-a4e8-feb60fb99973}) (Version: 3.1.2.2 - Intel)
iSunshare Windows 10 Password Genius Trial 2.1.30 (HKLM-x32\...\iSunshare Windows 10 Password Genius Trial) (Version: 2.1.30 - iSunshare)
iTunes (HKLM\...\{36F365B3-05C2-455D-9D96-B73829DE046D}) (Version: 12.8.0.150 - Apple Inc.)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Logitech Gaming Software 8.83 (HKLM\...\Logitech Gaming Software) (Version: 8.83.85 - Logitech Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
MarketResearch (HKLM-x32\...\{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM\...\Steam App 287700) (Version: - Konami Digital Entertainment)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM-x32\...\Steam App 287700) (Version: - Konami Digital Entertainment)
MGET MDF naar ISO convertor (HKLM-x32\...\MGET MDF naar ISO convertor_is1) (Version: - )
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816 (HKLM-x32\...\{e2495eb6-cca8-47aa-91ea-3410ca44d7b7}) (Version: 14.0.22816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 61.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 61.0.2 (x64 en-US)) (Version: 61.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 61.0.2.6793 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 4.0.0.08 - MSI)
MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.39 - MSI)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.15 - MSI)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
NetDeviceManager64 (HKLM\...\{240FCE0B-F553-4ab3-9C7B-3CD082FCA117}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - )
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
OCR Software by I.R.I.S. 10.0 (HKLM\...\HPOCR) (Version: 10.0 - HP)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.118.1.11 - Overwolf Ltd.)
Owlboy (HKLM\...\Steam App 115800) (Version: - D-Pad Studio)
PanoStandAlone (HKLM-x32\...\{6B437F94-056F-4791-AF2C-0D10E2706AF0}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version: - Bluehole, Inc.)
PS_AIO_02_ProductContext (HKLM-x32\...\{b9be267c-e096-4cce-a4fd-f24eec004938}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software (HKLM-x32\...\{cd0b9359-b716-4fd0-8e0a-09b3e312e8a4}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software_Min (HKLM-x32\...\{c4549405-195f-4450-8865-6be9dc5ad136}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PSSWCORE (HKLM-x32\...\{34BFB099-07B2-4E95-A673-7362D60866A2}) (Version: 2.02.0000 - Hewlett-Packard) Hidden
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Python 3.5.0 (32-bit) (HKCU\...\{4d5c3f26-744d-4e1e-8362-cdbe364e1a73}) (Version: 3.5.150.0 - Python Software Foundation)
Python 3.5.0 Core Interpreter (32-bit) (HKLM-x32\...\{E9E55FC3-A47F-4ACA-8691-C22469450FB1}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Development Libraries (32-bit) (HKLM-x32\...\{D5A057BD-471E-40D6-B7E0-79E08210D8F6}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Documentation (32-bit) (HKLM-x32\...\{169B7A58-FE29-48E8-8773-9D6390815C8C}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Executables (32-bit) (HKLM-x32\...\{CE48771A-4CC2-4F35-A7B3-D136E91D04F3}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Launcher (32-bit) (HKLM-x32\...\{CAA5FC80-DEF6-4DFA-9C06-23921A87F092}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 pip Bootstrap (32-bit) (HKLM-x32\...\{11187860-0D92-490D-86EC-3A941C98D451}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Standard Library (32-bit) (HKLM-x32\...\{0740B2CD-63EC-44C7-B39E-B6EB579773E6}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Tcl/Tk Support (32-bit) (HKLM-x32\...\{7AB85182-2EE4-4137-A5C6-D8C03958DCBA}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Test Suite (32-bit) (HKLM-x32\...\{2234BC4D-E95D-40C2-818D-7845760C510F}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Python 3.5.0 Utility Scripts (32-bit) (HKLM-x32\...\{4A69B338-2C0C-4726-A261-44DBCF0DA94A}) (Version: 3.5.150.0 - Python Software Foundation) Hidden
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{42F56083-A726-4599-A231-EF6200A39AF6}) (Version: 1.1.47.1058 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{1CC47E9F-A34A-44B3-8C5A-D45C1A3CB94C}) (Version: 1.1.47.1058 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.47.1058 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{A32F7F52-0DC5-40EF-84BD-7D30CC20D157}) (Version: 1.1.47.1058 - Qualcomm Atheros) Hidden
QuiteRSS version 0.18.4 (HKLM-x32\...\{372E76B7-3389-4057-B06A-53B104094844}_is1) (Version: 0.18.4 - QuiteRSS Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7855 - Realtek Semiconductor Corp.)
RPG Maker VX RTP (HKLM-x32\...\RPG Maker VX RTP_is1) (Version: 1.02 - Enterbrain)
RPGツクール2000 ランタイムパッケージ (HKLM-x32\...\{33F7A957-A66D-45A1-BADF-6576083B14E2}) (Version: - )
RSSOwl (HKLM-x32\...\RSSOwl) (Version: - )
Scan (HKLM-x32\...\{80533B67-C407-485D-8B5D-63BB8ED9D878}) (Version: 10.1.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
Simulationcraft(x64) version 7.3.0.02 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 7.3.0.02 - Simulationcraft)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
SMITE (HKLM\...\Steam App 386360) (Version: - Hi-Rez Studios)
SolutionCenter (HKLM-x32\...\{A5AB9D5E-52E2-440e-A3ED-9512E253C81A}) (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.07 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Stardew Valley (HKLM\...\Steam App 413150) (Version: - ConcernedApe)
Status (HKLM-x32\...\{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}) (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
SWFPlayer 2.6.2.0 (HKLM-x32\...\SWFPlayer_is1) (Version: 2.6.2.0 - Michael Faust, Alpha Interactive)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19.4 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
TERA (HKLM\...\Steam App 323370) (Version: - Bluehole, Inc.)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.5.0.0 - Zenimax Online Studios)
The Elder Scrolls Online: Tamriel Unlimited (HKLM\...\Steam App 306130) (Version: - Zenimax Online Studios)
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version: - CD PROJEKT RED)
Toolbox (HKLM-x32\...\{0F7C2E47-089E-4d23-B9F7-39BE00100776}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{5ACE69F0-A3E8-44eb-88C1-0A841E700180}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TurboTax 2015 (HKLM-x32\...\TurboTax 2015) (Version: 2015.0 - Intuit, Inc)
Uninstall iSeePassword Windows Password Recovery Pro (HKLM-x32\...\{0A18A8DE-A76D-4AD9-8F42-259253F7A141}_is1) (Version: 1.5 - iSeePassword)
univcredist (HKLM-x32\...\{2d9d4a60-1d22-46c1-84bb-1de04b4715d7}) (Version: 1.0.0.0 - Motiga)
UnloadSupport (HKLM-x32\...\{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}) (Version: 10.0.0 - Hewlett-Packard) Hidden
VA-11 Hall-A: Cyberpunk Bartender Action (HKLM\...\Steam App 447530) (Version: - Sukeban Games)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
VideoToolkit01 (HKLM-x32\...\{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}) (Version: 100.0.128.000 - Hewlett-Packard) Hidden
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.20-7 - Wacom Technology Corp.)
WebReg (HKLM-x32\...\{CCB9B81A-167F-4832-B305-D2A0430840B3}) (Version: 100.0.170.000 - Hewlett-Packard) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinISO (HKLM-x32\...\WinISO) (Version: 6.4.1.6137 - WinISO Computing Inc.)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Yume Nikki 0.10 English (HKCU\...\Yume Nikki 0.10 English) (Version: - )
Zero Escape: Zero Time Dilemma (HKLM\...\Steam App 311240) (Version: - Spike Chunsoft Co., Ltd.)

========================= Devices: ================================

Name: Photosmart C7200 series
Description: Photosmart C7200 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Device ID: ROOT\IMAGE\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C7200 series
Description: Photosmart C7200 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Device ID: ROOT\MULTIFUNCTION\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: OfficeJet Pro 6960
Description: OfficeJet Pro 6960
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Device ID: ROOT\MULTIFUNCTION\0001
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Hamachi Network Interface
Description: Hamachi Network Interface
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn, Inc.
Service: hamachi
Device ID: ROOT\NET\0001
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 59%
Total physical RAM: 8143.78 MB
Available physical RAM: 3306.59 MB
Total Virtual: 16310.37 MB
Available Virtual: 6300.24 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.29 GB) (Free:77.24 GB) NTFS
2 Drive d: (New Volume) (Fixed) (Total:931.51 GB) (Free:764.55 GB) NTFS

========================= Users: ========================================

User accounts for \\HOROLOGIUM

Administrator Guest Rhys


**** End of log ****

Step 3
Logfile of HiJackThis Fork (Alpha) by Alex Dragokas v.2.6.4.24

Platform: x64 Windows 7 (Home Premium), 6.1.7601, Service Pack: 1
Time: 04.09.2018 - 21:51
Language: OS: English (0x409). Display: English (0x409). Non-Unicode: English (0x409)
Elevated: Yes
Ran by: Rhys (group: Administrator) on HOROLOGIUM

Chrome: 58.0.3029.110
Firefox: 61.0.2.6793
Internet Explorer: 11.0.9600.19101

Boot mode: Normal

Running processes:
Number | Path
1 C:\MSI\MSIRegister\MSIRegisterService.exe
3 C:\Program Files (x86)\Battle.net\Battle.net.exe
1 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
1 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
1 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
1 C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
1 C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
1 C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
1 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
1 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
1 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
1 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
1 C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
1 C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
1 C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe
1 C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
1 C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
1 C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
1 C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
1 C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
7 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
1 C:\Program Files (x86)\Steam\Steam.exe
5 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
1 C:\Program Files (x86)\Steam\steamapps\common\Zenimax Online\Launcher\Bethesda.net_Launcher.exe
1 C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
1 C:\Program Files (x86)\puush\puush.exe
1 C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
1 C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
1 C:\Program Files\Bonjour\mDNSResponder.exe
1 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1 C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
1 C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
1 C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
1 C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
1 C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
1 C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
1 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
1 C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
1 C:\Program Files\Tablet\Wacom\WacomHost.exe
1 C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
1 C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
1 C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
1 C:\Program Files\Windows Media Player\wmpnetwk.exe
1 C:\Program Files\Windows NT\Accessories\wordpad.exe
1 C:\Program Files\iPod\bin\iPodService.exe
1 C:\Program Files\iTunes\iTunesHelper.exe
1 C:\ProgramData\Battle.net\Agent\Agent.6383\Agent.exe
3 C:\Users\Rhys\AppData\Local\Discord\app-0.0.301\Discord.exe
1 C:\Users\Rhys\Downloads\DS4Windows\DS4Windows.exe
1 C:\Users\Rhys\Downloads\HiJackThis\HiJackThis.exe
1 C:\Users\Rhys\Downloads\rsthosts_2.0.exe
1 C:\Windows\SysWOW64\CTxfispi.exe
1 C:\Windows\SysWOW64\Ctxfihlp.exe
1 C:\Windows\SysWOW64\notepad.exe
1 C:\Windows\SysWOW64\svchost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\atieclxx.exe
1 C:\Windows\System32\atiesrxx.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\calc.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dwm.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\lsm.exe
1 C:\Windows\System32\rundll32.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
16 C:\Windows\System32\svchost.exe
2 C:\Windows\System32\taskhost.exe
1 C:\Windows\System32\taskmgr.exe
1 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
2 C:\Windows\System32\wisptis.exe
1 C:\Windows\explorer.exe
1 C:\Windows\vVX3000.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-d4b7dfcb
R0-32 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-d4b7dfcb
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - Search Provided by Bing - https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - Search Provided by Bing - https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
O2-32 - BHO: ArcPluginIEBHO - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll
O2-32 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O2-32 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O4 - Global User Startup: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global User Startup: Killer Network Manager.lnk -> C:\Windows\Installer\{A32F7F52-0DC5-40EF-84BD-7D30CC20D157}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe -minimize
O4 - HKCU\..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [puush] C:\Program Files (x86)\puush\puush.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [MBCfg64] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [VX3000] C:\Windows\vVX3000.exe
O4 - HKLM\..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKU\S-1-5-19\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe /autoRun
O4 - HKU\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe
O4 - HKU\S-1-5-20\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe /autoRun
O4 - HKU\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe
O4 - User Startup: DS4Windows.lnk -> C:\Users\Rhys\Downloads\DS4Windows\DS4Windows.exe -m
O4-32 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE (file missing)
O4-32 - HKLM\..\Run: [DSATray] C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe
O4-32 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4-32 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4-32 - HKLM\..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start
O4-32 - HKLM\..\Run: [MSIRegister] C:\MSI\MSIRegister\MSIRegister.exe
O4-32 - HKLM\..\Run: [Sound Blaster Cinema 2] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe /r
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4-32 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4-32 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4-32 - HKLM\..\RunOnce: [DelLiveinst] C:\Windows\system32\cmd.exe /c del /f /s /q /a "C:\MSI\LiveUpdate\DL_FILE\Liveinst.exe"
O17 - DHCP DNS - 1: 75.75.75.75
O17 - DHCP DNS - 2: 75.75.76.76
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O21 - ShellIconOverlayIdentifiers: MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\Rhys\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - ShellIconOverlayIdentifiers: MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\Rhys\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21 - ShellIconOverlayIdentifiers: MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\Rhys\AppData\Local\MEGAsync\ShellExtX64.dll (file missing)
O21-32 - ShellIconOverlayIdentifiers: MEGA (Pending) - {056D528D-CE28-4194-9BA3-BA2E9197FF8C} - C:\Users\Rhys\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - ShellIconOverlayIdentifiers: MEGA (Synced) - {05B38830-F4E9-4329-978B-1DD28605D202} - C:\Users\Rhys\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O21-32 - ShellIconOverlayIdentifiers: MEGA (Syncing) - {0596C850-7BDD-4C9D-AFDF-873BE6890637} - C:\Users\Rhys\AppData\Local\MEGAsync\ShellExtX32.dll (file missing)
O22 - Task (Disabled): USER_ESRV_SVC_QUEENCREEK - C:\Windows\System32\Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
O22 - Task (Disabled): XboxStatTask - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe silentrun
O22 - Task (Ready): Adobe Flash Player NPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe -check plugin
O22 - Task (Ready): Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O22 - Task (Ready): AdobeAAMUpdater-1.0-Horologium-Rhys - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
O22 - Task (Ready): GoogleUpdateTaskUserS-1-5-21-206467196-308280925-2278585386-1000Core - C:\Users\Rhys\AppData\Local\Google\Update\GoogleUpdate.exe /c
O22 - Task (Ready): GoogleUpdateTaskUserS-1-5-21-206467196-308280925-2278585386-1000UA - C:\Users\Rhys\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task (Ready): IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (file missing)
O22 - Task (Ready): IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task (Ready): IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe --automatic
O22 - Task (Ready): Overwolf Updater Task - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe /RunningFrom Schedule
O22 - Task (Ready): StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay
O22 - Task (Ready): \Apple\AppleSoftwareUpdate - C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task
O22 - Task (Ready): \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\CompatTelRunner.exe
O22 - Task (Ready): \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\Windows\system32\compattelrunner.exe -maintenance
O22 - Task (Ready): \Microsoft\Windows\TabletPC\InputPersonalization - C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
O22 - Task (Ready): \Microsoft\Windows\Windows Activation Technologies\ValidationTask - C:\Windows\system32\Wat\WatAdminSvc.exe /run
O22 - Task (Ready): \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - C:\Windows\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
O22 - Task (Ready): {4BCF9193-B6EF-4EAF-9E24-F95DAB63D96B} - C:\Users\Rhys\Downloads\7a3ec1-cemu173d_066de503b8c75fd\Cemu.exe (file missing)
O22 - Task (Ready): {C37A223C-A73A-4D89-9B29-B83BA16D5681} - C:\Windows\system32\pcalua.exe -a "C:\Games\Yume Nikki\Uninstal.exe" -d "C:\Games\Yume Nikki"
O23 - Service R2: ACP User Service - (amdacpusrsvc) - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service R2: AMD External Events Utility - C:\Windows\system32\atiesrxx.exe
O23 - Service R2: Apple Mobile Device Service - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service R2: Bonjour Service - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service R2: Creative Audio Service - (CTAudSvcService) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service R2: GamingApp_Service - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service R2: HP CUE DeviceDiscovery Service - (hpqddsvc) - C:\Windows\SysWow64\svchost.exe; "ServiceDll" = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
O23 - Service R2: HP Network Devices Support - (HPSLPSVC) - C:\Windows\system32\svchost.exe; "ServiceDll" = C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
O23 - Service R2: Intel(R) Driver & Support Assistant - (DSAService) - C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) System Usage Report Service SystemUsageReportSvc_QUEENCREEK - (SystemUsageReportSvc_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
O23 - Service R2: Intuit Update Service v4 - (IntuitUpdateServiceV4) - C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
O23 - Service R2: LMIGuardianSvc - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service R2: LogMeIn Hamachi Tunneling Engine - (Hamachi2Svc) - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service R2: Logitech Gaming Registry Service - (LogiRegistryService) - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service R2: MSI Live Update Service - (MSI_LiveUpdate_Service) - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service R2: MSIREGISTER_MR - C:\MSI\MSIRegister\MSIRegisterService.exe
O23 - Service R2: Net Driver HPZ12 - C:\Windows\System32\svchost.exe; "ServiceDll" = C:\Windows\system32\HPZinw12.dll
O23 - Service R2: Pml Driver HPZ12 - C:\Windows\System32\svchost.exe; "ServiceDll" = C:\Windows\system32\HPZipm12.dll
O23 - Service R2: Qualcomm Atheros Killer Service V2 - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service R2: TeamViewer 12 - (TeamViewer) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service R2: Wacom Professional Service - (WTabletServicePro) - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
O23 - Service R2: Windows Defender - (WinDefend) - C:\Windows\System32\svchost.exe; "ServiceDll" = C:\Program Files\Windows Defender\mpsvc.dll
O23 - Service R2: hpqcxs08 - C:\Windows\SysWow64\svchost.exe; "ServiceDll" = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
O23 - Service R3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service R3: iPod Service - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service S2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Arc Service - (ArcService) - C:\Program Files (x86)\Arc\ArcService.exe
O23 - Service S3: BattlEye Service - (BEService) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service S3: Creative Audio Engine Licensing Service - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service S3: EasyAntiCheat - C:\Windows\SysWow64\EasyAntiCheat.exe
O23 - Service S3: Energy Server Service queencreek - (ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) SUR QC Software Asset Manager - (Intel(R) SUR QC SAM) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
O23 - Service S3: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Overwolf Updater Windows SCM - (OverwolfUpdater) - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service S3: Steam Client Service - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service S3: User Energy Server Service queencreek - (USER_ESRV_SVC_QUEENCREEK) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
O23 - Service S3: nProtect GameGuard Service - (npggsvc) - C:\Windows\SysWow64\GameMon.des

--
End of file - Time spent: 20 sec. - 37700 bytes, CRC32: FFFFFFFF. Sign: ᥾灈
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Malware Teacher
Jul 22, 2016
2,863
496
#4
Clean up temp files and reduce startup load with CCleaner.


Note: This tool will clean your browsing history as well.



  • Download CCleaner from here.
  • After install Click Options.
  • Go to monitoring.
  • Uncheck All Monitoring items.
  • Go to advanced -- Click close program after cleaning.
  • Go to settings -- click run ccleaner when the computer starts.
  • Now that you have ccleaner installed and set-up:
  • Open the program.
  • Go to Tools
  • Go to Startup
  • Now double click each item. To Disable.
  • Leave only your antivirus enabled.
  • Then disable All items in your scheduled task as well.
  • Unless they are related to windows defender.Or your antivirus.
  • Reboot the machine.

Security Check Scan.



  • Download Security Check to your desktop.
  • Right click it run as administrator.
  • When the program completes, the tool will automatically open a log file.
  • Please post that log here in your next post.


Next.


  • Download AdwCleaner and move it to your computer Desktop;
  • Right-click on AdwCleaner.exe and select Run as Administrator;
  • Click Yes to accept the User Account Control security warning that may appear;
  • Click on the blue button 'I AGREE';
  • Click on the Scan Now button;
  • Let the scan complete. Once it's done, make sure that every item listed is checked and click on the Clean & Repair button;
  • Click on the Clean & Restart Now button;
  • After the restart, a log will open when logging in.
  • Please attach that log in your next reply.
 

Malnutrition

Malnurished Mod
Moderator
Security Team
Malware Teacher
Jul 22, 2016
2,863
496
#5
Download easy service optmizer, save it to your desktop and unzip it there. Right click it and run as admin, then select Tweaked at the bottom. Then click on the rocket, this will turn off a lot of useless items.







You will however need to change one setting. Right Click on Wlansvc — WLAN AutoConfig, then select start service, the edit service. Make sure it is automatic across the board, as per the picture.







Hijack This Fix.

Start HijackThis , Right Click Run as Admin.
Close all other open programs prior to running this tool!!
Click System Scan Only.
Then check mark the items listed below.


R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-d4b7dfcb
R0-32 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-d4b7dfcb
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - Search Provided by Bing - https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
R4 - HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes: DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - Search Provided by Bing - https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
R4 - HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = https://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-d4b7dfcb&q={searchTerms}
O4 - Global User Startup: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [VX3000] C:\Windows\vVX3000.exe
O4 - HKLM\..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKU\S-1-5-19\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe /autoRun
O4 - HKU\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe
O4 - HKU\S-1-5-20\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe /autoRun
O4 - HKU\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe
O4 - User Startup: DS4Windows.lnk -> C:\Users\Rhys\Downloads\DS4Windows\DS4Windows.exe -m
O4-32 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE (file missing)
O4-32 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O22 - Task (Ready): Adobe Flash Player NPAPI Notifier - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe -check plugin
O22 - Task (Ready): Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O22 - Task (Ready): AdobeAAMUpdater-1.0-Horologium-Rhys - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
O22 - Task (Ready): \Apple\AppleSoftwareUpdate - C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe -task
O22 - Task (Ready): {4BCF9193-B6EF-4EAF-9E24-F95DAB63D96B} - C:\Users\Rhys\Downloads\7a3ec1-cemu173d_066de503b8c75fd\Cemu.exe (file missing)




Now click on fix checked.
After the fix is complete, then reboot your machine.


Temp File Cleaner.

  • Note: This program may very well reboot your machine. Save any work prior to running.
  • Clean up your temp files with TFC.exe
  • Save it to your desktop.
  • Right click run as admin.
 
Status
Not open for further replies.