Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

GPU is acting weird.


  • Please log in to reply
15 replies to this topic

#1 Beatricee

Beatricee

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:45 PM

Posted 24 April 2016 - 11:35 AM

So I have ASUS GTX 660, Core i7 (3770), 16gb ram. It was okay for years until yesterday. At some random points my GPU starts to restrict itself in games. It uses less than half of its Core Clock, Memory, voltage. The temperature never goes higher than 34C. And it shows 100% GPU usage and in games now I have like 10-15 fps instead of 40-50 fps. It happens randomly. Like it's just randomly turning on some power save mod or something like that. Never happened before. I don't even know how to google it.


Edited by Beatricee, 24 April 2016 - 11:36 AM.


BC AdBot (Login to Remove)

 


#2 ScathEnfys

ScathEnfys

    Bleeping Butterfly


  • Members
  • 1,375 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Deep in the Surface Web
  • Local time:07:45 AM

Posted 24 April 2016 - 11:45 AM

Hello Beatrice :) I'm ScathEnfys and I'll be helping you with your issue today :) That's a pretty decent setup you have there! Thanks for that note on the temperature too, as that is one of the first things I usually ask. If you don't mind, please gather some more information about your computer for us by doing the following:

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Restore Points
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
IMPORTANT: do not check any of the boxes other than the ones I instructed you to, and please copy and paste your log rather than attaching it.
Proud system builder, modder, and watercooler.

GitHub | SoundCloud | Keybase

#3 Drillingmachine

Drillingmachine

  • Members
  • 2,397 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:45 PM

Posted 24 April 2016 - 11:48 AM

Like it's just randomly turning on some power save mod or something like that. Never happened before. I don't even know how to google it.

 

Possibly power supply problem. Manufacturer and model?



#4 Beatricee

Beatricee
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:45 PM

Posted 24 April 2016 - 11:55 AM

 

Like it's just randomly turning on some power save mod or something like that. Never happened before. I don't even know how to google it.

 

Possibly power supply problem. Manufacturer and model?

 

It's ASUS A-55GA



#5 Beatricee

Beatricee
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:45 PM

Posted 24 April 2016 - 11:59 AM

 

Hello Beatrice  :) I'm ScathEnfys and I'll be helping you with your issue today 

I attached the file.

As you can see in "System Errors", I overclocked my gpu. I thought it would help.

 

Attached Files

  • Attached File  MTB.txt   26.31KB   3 downloads


#6 Drillingmachine

Drillingmachine

  • Members
  • 2,397 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:45 PM

Posted 24 April 2016 - 12:04 PM

 

 

Like it's just randomly turning on some power save mod or something like that. Never happened before. I don't even know how to google it.

 

Possibly power supply problem. Manufacturer and model?

 

It's ASUS A-55GA

 

 

Medium quality, but still couple of years old so that might be problem. Unfortunately it's impossible to say if PSU is faulty unless you replace it with working one. Without changing PSU, you can try to push PCI Express power connectors properly in place.



#7 Beatricee

Beatricee
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:45 PM

Posted 24 April 2016 - 12:11 PM

 

 

 

Like it's just randomly turning on some power save mod or something like that. Never happened before. I don't even know how to google it.

 

Possibly power supply problem. Manufacturer and model?

 

It's ASUS A-55GA

 

 

Medium quality, but still couple of years old so that might be problem. Unfortunately it's impossible to say if PSU is faulty unless you replace it with working one. Without changing PSU, you can try to push PCI Express power connectors properly in place.

 

Thank you for an idea, I'll try it.



#8 Beatricee

Beatricee
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:45 PM

Posted 24 April 2016 - 12:37 PM

nah, power connectors were ok.



#9 Drillingmachine

Drillingmachine

  • Members
  • 2,397 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:45 PM

Posted 24 April 2016 - 12:40 PM

nah, power connectors were ok.

 

Then new PSU is only solution IF that was problem. Because of IF, try software solutions first.



#10 ScathEnfys

ScathEnfys

    Bleeping Butterfly


  • Members
  • 1,375 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Deep in the Surface Web
  • Local time:07:45 AM

Posted 24 April 2016 - 01:00 PM

 

Hello Beatrice  :) I'm ScathEnfys and I'll be helping you with your issue today

I attached the file.
As you can see in "System Errors", I overclocked my gpu. I thought it would help.

 

Please copy and paste that log in there next time... it makes our search tools work much better. I'm going to copy and past the log this time so you don't have to.

======================================================================================================================

MiniToolBox by Farbar Version: 07-02-2016 01
Ran by chsn (administrator) on 24-04-2016 at 19:52:19
Running from "C:\Users\chsn\Downloads"
Microsoft Windows 10 Pro (X64)
Model: System Product Name Manufacturer: System manufacturer

Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/24/2016 06:11:25 PM) (Source: Application Hang) (User: )
Description: The program GPU-Z.exe version 0.8.6.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 28c0
Start Time: 01d19e3a29fc20de
Termination Time: 18
Application Path: C:\Program Files (x86)\GPU-Z\GPU-Z.exe
Report Id: cd9ccf6b-0a2e-11e6-97b9-10bf4883968e
Faulting package full name:
Faulting package-relative application ID:

Error: (04/24/2016 04:56:11 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:  Access is denied.

Error: (04/23/2016 10:48:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2157

Error: (04/23/2016 10:48:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2157

Error: (04/23/2016 10:48:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/23/2016 10:48:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1094

Error: (04/23/2016 10:48:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1094

Error: (04/23/2016 10:48:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/23/2016 02:10:03 PM) (Source: Application Hang) (User: )
Description: The program explorer.exe version 10.0.10586.104 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 814
Start Time: 01d19a13fa18dfc1
Termination Time: 0
Application Path: C:\Windows\explorer.exe
Report Id: ba424c4c-0943-11e6-97b6-10bf4883968e
Faulting package full name:
Faulting package-relative application ID:

Error: (04/23/2016 12:02:20 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1016

System errors:
=============
Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception: ESR 0x510900=0x80000001

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception on GPC 2: SAVE_RESTORE_ADDR_OOB

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception: ESR 0x510900=0x80000001

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception on GPC 2: SAVE_RESTORE_ADDR_OOB

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception: ESR 0x510900=0x80000001

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception on GPC 2: SAVE_RESTORE_ADDR_OOB

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception: ESR 0x510900=0x80000001

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception on GPC 2: SAVE_RESTORE_ADDR_OOB

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception: ESR 0x510900=0x80000001

Error: (04/24/2016 06:43:39 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video3Graphics Exception on GPC 2: SAVE_RESTORE_ADDR_OOB

Microsoft Office Sessions:
=========================
Error: (04/24/2016 06:11:25 PM) (Source: Application Hang)(User: )
Description: GPU-Z.exe0.8.6.028c001d19e3a29fc20de18C:\Program Files (x86)\GPU-Z\GPU-Z.execd9ccf6b-0a2e-11e6-97b9-10bf4883968e

Error: (04/24/2016 04:56:11 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:  AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.

Error: (04/23/2016 10:48:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2157

Error: (04/23/2016 10:48:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2157

Error: (04/23/2016 10:48:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/23/2016 10:48:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1094

Error: (04/23/2016 10:48:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1094

Error: (04/23/2016 10:48:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/23/2016 02:10:03 PM) (Source: Application Hang)(User: )
Description: explorer.exe10.0.10586.10481401d19a13fa18dfc10C:\Windows\explorer.exeba424c4c-0943-11e6-97b6-10bf4883968e

Error: (04/23/2016 12:02:20 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1016

CodeIntegrity Errors:
===================================
Date: 2016-04-24 19:49:49.045
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 19:49:49.030
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 16:45:51.292
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 16:45:51.278
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 13:23:43.213
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 13:23:43.202
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 13:12:18.862
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-24 13:12:18.849
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-23 14:46:08.582
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-23 14:46:08.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

=========================== Installed Programs ============================
3DMark (HKLM-x32\...\3DMark) (Version: - Futuremark)
Ableton Live 9 Suite (HKLM\...\{7597F2DC-003A-476E-9281-774AB112B7BE}) (Version: 9.0.0.0 - Ableton)
Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.7.1 - Adobe Systems Incorporated)
Adobe Audition CC 2015 (HKLM-x32\...\{839A3566-AED6-4787-A849-5CBE2B1DC6AE}) (Version: 8.1.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.181.14 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.2.0 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version: - Hardsuit Labs)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Clandestine [v.1.04] (HKLM-x32\...\{CLANDESTINE-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: 1.04 - Logic Artists (Coop-Land))
D4 - Dark Dreams Dont Die (HKLM-x32\...\D4 - Dark Dreams Dont Die_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version: - FromSoftware, Inc)
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version: - FromSoftware, Inc)
DiRT Rally - Version 1.02 (HKLM-x32\...\DiRT Rally_is1) (Version: 1.02 - RePack by VickNet)
Dying Light - Enhanced Edition (HKLM-x32\...\Dying Light - Enhanced Edition_is1) (Version: 1.10.1 - WB Games)
Dying Light Enhanced Edition [Steam] (HKLM-x32\...\{DYINGLIGHTEE-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: 1.10.0 - )
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.18 - Echobit, LLC)
FabFilter Pro-Q 2.03 (64-bit) (HKLM-x32\...\FabFilter Pro-Q 2.03 (64-bit)) (Version: - )
Fallout 4 v.1.3.47 (HKLM-x32\...\Fallout 4_is1) (Version: - )
Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Gamblers_is1) (Version: - R.G. Gamblers, Fanfar)
Far Cry 4 (HKLM-x32\...\Steam App 298110) (Version: - Ubisoft)
Force Feedback Driver for XInput (HKLM\...\{FFB10368-5623-49AA-BD51-B321DB9625CE}) (Version: 6.1.7600.16385 - Masahiko Morii)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.15.0 - Futuremark Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Greenshot 1.2.6.7 (HKLM\...\Greenshot_is1) (Version: 1.2.6.7 - Greenshot)
Homesick (HKLM-x32\...\SG9tZXNpY2s=_is1) (Version: 1 - )
iCloud (HKLM\...\{4B48E22A-2FB0-4EFA-B99E-954B1E50CD69}) (Version: 5.1.0.34 - Apple Inc.)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Jotun (HKLM-x32\...\Jotun_is1) (Version: - )
Juli@ PCI Driver version v1.1.8.81 (HKLM-x32\...\{2C649BA4-D482-408F-9148-2EC10E1E3193}_is1) (Version: v1.1.8.81 - ESI-Audiotechnik)
Juli@ PCI Driver version v1.2.1.0 (HKLM\...\{2C649BA4-D482-408F-9148-2EC10E1E3193}_is1) (Version: v1.2.1.0 - ESI-Audiotechnik)
Killer is Dead (HKLM-x32\...\Steam App 261110) (Version: - KADOKAWA GAMES / GRASSHOPPER MANUFACTURE)
Layers of Fear версия Build 12.09.15 (HKLM-x32\...\{B6E4C1B1-0811-4226-9882-B43F5E7107CB}_is1) (Version: Build 12.09.15 - Bloober Team SA)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Lemma (HKLM-x32\...\Lemma_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
LINE (HKLM-x32\...\LINE) (Version: 4.3.0.724 - LINE Corporation)
LKBRIDGE version 3.1.2 (HKLM-x32\...\{D10DDE8C-2545-4D17-9EBB-CAD79C83E1CE}_is1) (Version: 3.1.2 - Imaginando)
LoopBe1 - Internal MIDI Port (HKLM-x32\...\LoopBe1) (Version: - )
loopMIDIBlockLegacy (HKLM-x32\...\{AEAF7978-3204-451D-8593-BC53EBDDA31D}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Max 7 (64-bit) (HKLM\...\{47EF2552-84E8-4810-B710-22770CAB803B}) (Version: 7.1.0 - Cycling '74)
Max Payne wersja 1.05 (HKLM-x32\...\{4B099E1E-5F76-4C0A-AE0D-10BF70429333}_is1) (Version: 1.05 - )
Metal Gear Solid V The Phantom Pain (HKLM-x32\...\Metal Gear Solid V The Phantom Pain_R.G. Gamblers_is1) (Version: - R.G. Gamblers, Fanfar)
Metal Gear Solid V The Phantom Pain (HKLM-x32\...\Steam App 287700) (Version: - Konami Digital Entertainment)
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MPC-HC 1.7.9 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.9 - MPC-HC Team)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
My Game Long Name (HKLM\...\UDK-90f56b5a-9aa9-44ce-94a3-1370d06dc5f0) (Version: - Epic Games, Inc.)
NARUTO SHIPPUDEN Ultimate Ninja STORM 4 version NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: NARUTO SHIPPUDEN Ultimate Ninja STORM 4 - )
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.0.1498 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments)
Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version: - Native Instruments)
Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.0.409 - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.0.533 - Native Instruments)
Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version: - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments)
Need for Speed™ (HKLM-x32\...\{F8643E83-A868-4EE8-A0B9-389386830453}) (Version: 1.2.0.0 - Electronic Arts)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.13 - Black Tree Gaming)
Nightmare House 2 (HKLM-x32\...\{8Q658409-J4E0-427B-9507-435437EC331D}_is1) (Version: - )
Niko - Through the Dream (HKLM-x32\...\Niko - Through the Dream_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA Graphics Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA Hair Demo (HKLM-x32\...\{BF2D55FB-975E-4B59-9C10-439A975701FF}) (Version: 1.00 - )
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.2.10120 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{091347e6-d310-463e-bab1-122cb3d8f608}) (Version: latest - ppy Pty Ltd)
Oxenfree (HKLM-x32\...\Oxenfree_is1) (Version: - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Project CARS Digital Edition ver. 8.0.0.0.1156 (HKLM-x32\...\{2D44273F-A5D6-4EB6-8CEC-F8D4E6BE119E}_is1) (Version: 8.0.0.0.1156 - NNM-club *LetsPlay*)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
qBittorrent 3.3.0 (HKLM-x32\...\qBittorrent) (Version: 3.3.0 - The qBittorrent project)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RapeLay (HKLM-x32\...\{CA31F991-DBD2-4DE1-B6D2-30105F23CBBC}) (Version: 1.03 - ILLUSION)
Reflector 2 (HKLM\...\{515B73EF-3407-491A-B6E1-E5706981CE11}) (Version: 2.0.2.0 - Squirrels)
ReValver 4 x64 (HKLM\...\ReValver 4 x64_is1) (Version: - )
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
RPG MAKER VX Ace RTP (HKLM-x32\...\RPGVXAce_RTP_is1) (Version: 1.00 - Enterbrain)
rtpMIDIBlockLegacy (HKLM-x32\...\{FD937297-84C3-41A5-B5DF-1FAEEE669D68}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Silent Hill (HKLM-x32\...\Silent Hill1.2.1) (Version: - )
Silent Hill 2 - Directors Cut (HKLM-x32\...\{AE479A23-372A-40CD-8B3D-CEB0A4FCB648}) (Version: - )
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Softube Plug-Ins (VST AAX 64-bit) (HKLM\...\Softube Plug-Ins (VST AAX 64-bit)) (Version: 2.2.32 - Softube AB)
SOMA (HKLM-x32\...\1439487606_is1) (Version: 2.0.0.1 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERHOT (HKLM-x32\...\1456141688_is1) (Version: 2.0.0.4 - GOG.com)
Sylenth1 v2.21 (HKLM\...\Sylenth1_is1) (Version: - )
Syntorial (HKLM-x32\...\{9ADC43F8-760E-4DC8-9380-635F93967D94}) (Version: 1.1.301 - Audible Genius, LLC)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
teVirtualMIDI64 (HKLM\...\{93F03D81-E7A4-46AB-993D-3848569DF50A}) (Version: 1.2.8.36 - Tobias Erichsen)
The Beginner's Guide (HKLM-x32\...\The Beginner's Guide_is1) (Version: - )
The Cat Lady (HKLM-x32\...\1207659201_is1) (Version: 2.2.0.6 - GOG.com)
The Coma. Cutting Class версия 1.1.1 (HKLM-x32\...\{6A3C3476-C291-49EF-B22D-8B8BFCA5EF6F}_is1) (Version: 1.1.1 - Devespresso Games)
The Evil Within (HKLM-x32\...\The Evil Within_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
The Forest (HKLM-x32\...\{A123626A-6B52-2B42-48D3-6FDF3A865451}_is1) (Version: 1.0 - )
The Forest, âåðñèÿ 0.30 (HKLM-x32\...\{C8C91BE0-DCED-41C6-9DF3-BE29CD34C125}_is1) (Version: 0.30 - Endnight Games)
The Last Door - Collector's Edition (HKLM-x32\...\GOGPACKTHELASTDOOR_is1) (Version: 2.0.0.3 - GOG.com)
The Stanley Parable (HKLM-x32\...\The Stanley Parable_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
The Witcher 3 Wild Hunt v.1.12.1 (HKLM-x32\...\The Witcher 3 Wild Hunt_is1) (Version: - )
touchAble Server x64 312 (HKLM\...\{546D659A-3387-473C-8B6F-014662D4EC2A}_is1) (Version: 312 - Zerodebug)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.4 - Tunngle.net GmbH)
Unreal Development Kit: 2012-10 (HKLM\...\UDK-8395fc1b-3891-4bb8-b29a-c6add23b7de1) (Version: - Epic Games, Inc.)
Update for Japanese Microsoft IME Postal Code Dictionary (HKLM\...\{1B2C85A0-2B9E-4291-8B37-468D57503E98}) (Version: 16.0.1171.1 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Dictionary (HKLM\...\{4DF9BC73-D405-4C3B-A0EA-1E390A8AFC73}) (Version: 16.0.1404.1 - Microsoft Corporation)
Update for Japanese Microsoft IME Trending Words Dictionary (HKLM\...\{F3F11FF1-4EF7-4012-A0D7-BC89442FCA4F}) (Version: 16.0.1515.1 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
Windows Driver Package - ESI (Jula.sys) MEDIA (07/24/2014 1.1.8.81) (HKLM\...\E06F6F729ACEDBB4E026689E2848DE9DFFC79685) (Version: 07/24/2014 1.1.8.81 - ESI)
Windows Driver Package - ESI (Jula.sys) MEDIA (09/16/2015 1.2.1.0) (HKLM\...\9351121A70A5DD84065790FA90941B0BB03521DA) (Version: 09/16/2015 1.2.1.0 - ESI)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wooxy version 1.2 (HKLM-x32\...\{C183CD14-47D8-4F98-AF06-4744CB834C8E}_is1) (Version: 1.2 - Chewy)
ZenWriter (HKLM-x32\...\{3651A99C-9FA9-49E7-BAAF-60F64BE09F10}_is1) (Version: 2.08 - Beenokle)

========================= Devices: ================================
Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Device ID: ROOT\NET\0001
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================
Percentage of memory in use: 34%
Total physical RAM: 16332.48 MB
Available physical RAM: 10730.43 MB
Total Virtual: 25548.48 MB
Available Virtual: 18662.64 MB

========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:372.17 GB) (Free:22.79 GB) NTFS
3 Drive e: (data) (Fixed) (Total:931.51 GB) (Free:165.23 GB) NTFS
4 Drive f: (Payne) (CDROM) (Total:0.69 GB) (Free:0 GB) CDFS

========================= Users: ========================================
User accounts for \\BONFIRE1

Administrator chsn DefaultAccount
Guest

========================= Restore Points ==================================
24-04-2016 13:55:58 Installed NVIDIA Hair Demo

**** End of log ****


Edited by hamluis, 24 April 2016 - 01:42 PM.

Proud system builder, modder, and watercooler.

GitHub | SoundCloud | Keybase

#11 ScathEnfys

ScathEnfys

    Bleeping Butterfly


  • Members
  • 1,375 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Deep in the Surface Web
  • Local time:07:45 AM

Posted 24 April 2016 - 01:22 PM

Going over your logs I noticed that you have qBittorrent installed.
  • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
  • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
  • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.
It is pretty much certain that if you continue to use P2P programs, you will get infected.
I would recommend that you uninstall qBittorrent, however that choice is up to you. If you choose to remove these programs, you can do so via Start > Control Panel > Add/Remove Programs.
If you wish to keep it, please do not use it until your problem is resolved.
Proud system builder, modder, and watercooler.

GitHub | SoundCloud | Keybase

#12 ScathEnfys

ScathEnfys

    Bleeping Butterfly


  • Members
  • 1,375 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Deep in the Surface Web
  • Local time:07:45 AM

Posted 24 April 2016 - 01:34 PM

The more I look over your log, the more fishy stuff starts to pop out at me. For example, this line:

bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden

A quick google of the CLSID (the long hexadecimal number between the {} braces) does not turn up any major programs, the entry is hidden, and there is no real company name filled out. Do you remember installing this program? If not, it's possible that you may have a virus issue (considering you have a p2p program installed, I wouldn't be surprised).
Proud system builder, modder, and watercooler.

GitHub | SoundCloud | Keybase

#13 Beatricee

Beatricee
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:02:45 PM

Posted 24 April 2016 - 03:56 PM

The more I look over your log, the more fishy stuff starts to pop out at me. For example, this line:

bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden

A quick google of the CLSID (the long hexadecimal number between the {} braces) does not turn up any major programs, the entry is hidden, and there is no real company name filled out. Do you remember installing this program? If not, it's possible that you may have a virus issue (considering you have a p2p program installed, I wouldn't be surprised).

 

I'm not sure. I tried to locate it by putting this CLSID in search box. (I'm not sure if this is the right thing to do, since I've never dealt with viruses or CLSIDs)

C:\Windows\Installer\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}

That's what I found. There is only one file in this folder. ARPPRODUCTICON.exe 

I scanned it with some online virus-scanners and it seemed to be okay.



#14 hamluis

hamluis

    Moderator


  • Moderator
  • 55,866 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:45 AM

Posted 24 April 2016 - 06:15 PM

FWIW:  https://file-intelligence.comodo.com/windows-process-virus-malware/exe/ARPPRODUCTICON .

 

Louis



#15 ScathEnfys

ScathEnfys

    Bleeping Butterfly


  • Members
  • 1,375 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Deep in the Surface Web
  • Local time:07:45 AM

Posted 24 April 2016 - 06:27 PM

Since you don't remember installing it and it looks suspicious, I'm going to request that this topic is moved to the "Am I Infected?" forum so that we can make sure your PC is clean.
Proud system builder, modder, and watercooler.

GitHub | SoundCloud | Keybase




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users