Hello there,
Since I reinstalled Windows a few weeks ago, I've been having some issues. The issues regarding games have been fixed, but my browsers are almost unuseable now. At first I thought it was just Chrome, even though I had AdBlock, Pop-Up Blocker installed, but after my Chrome started refusing to open/reinstall, I found the same issue on Edge. Now I have regained access to Chrome, I have come to this forum for help. I think I may have downloaded a dodgy piece of software at some point when reinstalling my programs. Any help would be appreciated, because at this point I can't even click on the internet without a pop-up opening. I've tried all the obvious things like clean reinstalls, virus scans, etc.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.14393.0
Run by david at 23:48:18 on 2017-03-03
Microsoft Windows 10 Home 10.0.14393.0.1252.44.1033.18.16303.10604 [GMT 0:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Kaspersky Internet Security *Enabled/Updated* {3D579475-6DDE-A186-1569-44B9F9DE8725}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\sysWow64\CtHdaSvc.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
C:\Users\david\AppData\Local\Temp\ds93_l\DisplayService.exe
C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
C:\Windows\SysWoW64\NetUtils2016.exe
C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
C:\Windows\system32\svchost.exe -k appmodel
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Origin\OriginWebHelperService.exe
C:\Windows\System32\dwm.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
C:\Windows\system32\sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe
C:\Windows\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\Explorer.EXE
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SettingSyncHost.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
C:\Program Files (x86)\ROCCAT\Kone Mouse\KoneHID.EXE
C:\Windows\System32\fontdrvhost.exe
C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
C:\Program Files (x86)\ROCCAT\Kone Mouse\osd.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
C:\Windows\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaAppManager.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\Windows\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\InstallAgent.exe
C:\Windows\System32\smartscreen.exe
svchost.exe
C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\backgroundTaskHost.exe
C:\Windows\system32\msfeedssync.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uLocal Page = %11%\blank.htm
BHO: Kaspersky Protection: {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll
BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
uRun: [OneDrive] "C:\Users\david\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [Discord] C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [Spotify Web Helper] "C:\Users\david\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Spotify] "C:\Users\david\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
uRun: [ffdvox] rundll32.exe "C:\Users\david\AppData\Local\ffdvox.dll",ffdvox
uRun: [WallpaperEngine] "C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe" -silent
uRun: [GoogleChromeAutoLaunch_C8D43A3EEFF19C42AA31C68EEE7A5AF4] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
mRun: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
mRun: [RoccatIsku] "C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE"
mRun: [Kone] "C:\Program Files (x86)\ROCCAT\Kone Mouse\KoneHID.EXE"
mRun: [Kraken71ChromaHelper] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe /start
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [Sound Blaster Z-Series Control Panel] "C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe" /r
mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
mPolicies-System: DSCAutomationHostEnabled = dword:2
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{0189f978-6f52-4f4c-b880-eaac2c836213} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{0189f978-6f52-4f4c-b880-eaac2c836213} : DHCPNameServer = 192.168.0.1
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
SSODL: WebCheck - <orphaned>
LSA: Security Packages = ""
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\windows.storage.dll
x64-BHO: Kaspersky Protection: {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll
x64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-TB: Kaspersky Protection Toolbar: {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll
x64-Run: [WindowsDefender] "C:\Program Files (x86)\Windows Defender\MSASCuiL.exe"
x64-Run: [Classic Start Menu] "C:\Program Files\Classic Shell\ClassicStartMenu.exe" -autorun
x64-Run: [ShadowPlay] "C:\Windows\System32\rundll32.exe" C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\windows.storage.dll
.
============= SERVICES / DRIVERS ===============
.
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit);C:\Windows\System32\drivers\cm_km.sys [2016-6-10 238936]
R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\Windows\System32\drivers\intelpep.sys [2016-7-16 48152]
R0 iorate;iorate;C:\Windows\System32\drivers\iorate.sys [2017-2-13 48992]
R0 klbackupdisk;Kaspersky Lab klbackupdisk;C:\Windows\System32\drivers\klbackupdisk.sys [2016-6-7 63920]
R0 klupd_klif_arkmon;klupd_klif_arkmon;C:\Windows\System32\drivers\klupd_klif_arkmon.sys [2017-2-23 218920]
R0 klupd_klif_klbg;klupd_klif_klbg;C:\Windows\System32\drivers\klupd_klif_klbg.sys [2017-2-23 104720]
R0 volume;Volume driver;C:\Windows\System32\drivers\volume.sys [2016-7-16 16224]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\Windows\System32\drivers\WindowsTrustedRT.sys [2016-7-16 107032]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [2016-7-16 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\Windows\System32\drivers\wof.sys [2017-2-13 199008]
R1 ahcache;Application Compatibility Cache;C:\Windows\System32\drivers\ahcache.sys [2017-2-13 227328]
R1 FileCrypt;FileCrypt;C:\Windows\System32\drivers\filecrypt.sys [2016-7-16 88576]
R1 GpuEnergyDrv;GPU Energy Driver;C:\Windows\System32\drivers\gpuenergydrv.sys [2016-7-16 8192]
R1 klbackupflt;Kaspersky Lab klbackupflt;C:\Windows\System32\drivers\klbackupflt.sys [2016-6-15 86352]
R1 klhk;Kaspersky Lab service driver;C:\Windows\System32\drivers\klhk.sys [2017-2-23 435032]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2016-6-20 57424]
R1 klpd;Kaspersky Lab format recognizer driver;C:\Windows\System32\drivers\klpd.sys [2016-5-31 45488]
R1 klwfp;klwfp;C:\Windows\System32\drivers\klwfp.sys [2016-6-18 85320]
R1 Klwtp;KLwtp - WFP callout traffic inspector;C:\Windows\System32\drivers\klwtp.sys [2016-6-2 134880]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2016-6-14 194480]
R1 NetUtils2016;NetUtils2016;C:\Windows\System32\drivers\NetUtils2016.sys [2017-2-17 909944]
R2 AVP17.0.0;Kaspersky Anti-Virus Service 17.0.0;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [2016-6-28 241544]
R2 CDPSvc;Connected Devices Platform Service;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
R2 CDPUserSvc_1c4d49f;CDPUserSvc_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R2 clreg;Virtual Registry for Containers;C:\Windows\System32\drivers\registry.sys [2016-7-16 70144]
R2 CoreMessagingRegistrar;CoreMessaging;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2016-7-16 44496]
R2 CtHdaSvc;Sound Blaster Audio Service;C:\Windows\SysWOW64\CtHdaSvc.exe [2015-6-22 122880]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\Windows\System32\svchost.exe -k utcsvc [2016-7-16 44496]
R2 Installer;Installer;C:\Users\david\AppData\Local\Temp\ds93_l\DisplayService.exe [2017-2-17 8192]
R2 kldisk;kldisk;C:\Windows\System32\drivers\kldisk.sys [2016-5-31 78216]
R2 NetUtils2016srv;NetUtils2016srv;C:\Windows\System32\NetUtils2016.exe --> C:\Windows\System32\NetUtils2016.exe [?]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-2-13 464440]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-2-13 464440]
R2 NvTelemetryContainer;NVIDIA Telemetry Container;C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-2-13 427064]
R2 OneSyncSvc_1c4d49f;Sync Host_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R2 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-2-13 2184208]
R2 Razer Chroma SDK Service;Razer Chroma SDK Service;C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [2017-1-17 63488]
R2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2016-9-24 189264]
R2 rzpmgrk;rzpmgrk;C:\Windows\System32\drivers\rzpmgrk.sys [2017-2-13 44144]
R2 rzpnk;rzpnk;C:\Windows\System32\drivers\rzpnk.sys [2017-2-13 137840]
R2 storqosflt;Storage QoS Filter Driver;C:\Windows\System32\drivers\storqosflt.sys [2016-7-16 78336]
R2 TeamViewer;TeamViewer 12;C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-2-18 10351856]
R2 tiledatamodelsvc;Tile Data model server;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
R2 UserManager;User Manager;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
R2 Wallpaper Engine Service;Wallpaper Engine Service;C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe -x64 --> C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe -x64 [?]
R2 wcifs;Windows Container Isolation;C:\Windows\System32\drivers\wcifs.sys [2017-2-13 119648]
R2 wcnfs;Windows Container Name Virtualization;C:\Windows\System32\drivers\wcnfs.sys [2016-7-16 66560]
R2 WpnService;Windows Push Notifications System Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
R3 AppXSvc;AppX Deployment Service (AppXSVC);C:\Windows\System32\svchost.exe -k wsappx [2016-7-16 44496]
R3 cthda;Sound Blaster Audio Driver;C:\Windows\System32\drivers\cthda.sys [2015-6-22 1074984]
R3 cthdb;Sound Blaster Audio Controller Driver;C:\Windows\System32\drivers\cthdb.sys [2015-6-22 42792]
R3 DsSvc;Data Sharing Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
R3 klflt;Kaspersky Lab Kernel DLL;C:\Windows\System32\drivers\klflt.sys [2017-2-23 191312]
R3 klids;klids;C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [2017-2-23 182360]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2016-5-19 52136]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2015-6-7 41656]
R3 klupd_klif_kimul;klupd_klif_kimul;C:\Windows\System32\drivers\klupd_klif_kimul.sys [2017-2-23 85984]
R3 klupd_klif_klark;klupd_klif_klark;C:\Windows\System32\drivers\klupd_klif_klark.sys [2017-2-23 245512]
R3 klupd_klif_mark;klupd_klif_mark;C:\Windows\System32\drivers\klupd_klif_mark.sys [2017-2-23 164888]
R3 lfsvc;Geolocation Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
R3 LicenseManager;Windows License Manager Service;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
R3 NcbService;Network Connection Broker;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\Windows\System32\drivers\NdisVirtualBus.sys [2016-7-16 20480]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2017-2-13 47672]
R3 nvvhci;NVVHCI Enumerator Service;C:\Windows\System32\drivers\nvvhci.sys [2017-2-13 59448]
R3 PimIndexMaintenanceSvc_1c4d49f;Contact Data_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R3 rt640x64;Realtek RT640 NT Driver;C:\Windows\System32\drivers\rt640x64.sys [2016-7-16 589824]
R3 RtlWlanu_OldIC;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\System32\drivers\rtwlanu_oldIC.sys [2016-7-16 3814400]
R3 StateRepository;State Repository Service;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
R3 TimeBrokerSvc;Time Broker;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
R3 UnistoreSvc_1c4d49f;User Data Storage_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R3 UserDataSvc_1c4d49f;User Data Access_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
S0 klelam;klelam;C:\Windows\System32\drivers\klelam.sys [2016-3-31 28792]
S2 DoSvc;Delivery Optimization;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S2 MapsBroker;Downloaded Maps Manager;C:\Windows\System32\svchost.exe -k NetworkService [2016-7-16 44496]
S2 MOh3iXFrKcal Updater;MOh3iXFrKcal Updater;C:\Program Files (x86)\MOh3iXFrKcal Updater\MOh3iXFrKcal Updater.exe --> C:\Program Files (x86)\MOh3iXFrKcal Updater\MOh3iXFrKcal Updater.exe [?]
S2 serverss;SSServiceComponent;C:\Windows\Temp\B22C.tmp --> C:\Windows\Temp\B22C.tmp [?]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-1-16 317400]
S3 AcpiDev;ACPI Devices driver;C:\Windows\System32\drivers\AcpiDev.sys [2016-7-16 18432]
S3 ADP80XX;ADP80XX;C:\Windows\System32\drivers\adp80xx.sys [2016-7-16 1135456]
S3 AJRouter;AllJoyn Router Service;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
S3 applockerfltr;Smartlocker Filter Driver;C:\Windows\System32\drivers\applockerfltr.sys [2016-7-16 15360]
S3 AppReadiness;App Readiness;C:\Windows\System32\svchost.exe -k AppReadiness [2016-7-16 44496]
S3 bcmfn;bcmfn Service;C:\Windows\System32\drivers\bcmfn.sys [2016-7-16 9728]
S3 bcmfn2;bcmfn2 Service;C:\Windows\System32\drivers\bcmfn2.sys [2016-7-16 9728]
S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-2-25 1465352]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2016-7-16 44496]
S3 buttonconverter;Service for Portable Device Control devices;C:\Windows\System32\drivers\buttonconverter.sys [2016-7-16 38912]
S3 CapImg;HID driver for CapImg touch screen;C:\Windows\System32\drivers\capimg.sys [2017-2-13 118272]
S3 cht4iscsi;cht4iscsi;C:\Windows\System32\drivers\cht4sx64.sys [2016-7-16 346976]
S3 cht4vbd;Chelsio Virtual Bus Driver;C:\Windows\System32\drivers\cht4vx64.sys [2016-7-16 2104160]
S3 ClipSVC;Client License Service (ClipSVC);C:\Windows\System32\svchost.exe -k wsappx [2016-7-16 44496]
S3 DcpSvc;DataCollectionPublishingService;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-7-16 93184]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 dmwappushservice;dmwappushsvc;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 EasyAntiCheat;EasyAntiCheat;C:\Windows\System32\EasyAntiCheat.exe --> C:\Windows\System32\EasyAntiCheat.exe [?]
S3 embeddedmode;Embedded Mode;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 EntAppSvc;Enterprise App Management Service;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
S3 FrameServer;Windows Camera Frame Server;C:\Windows\System32\svchost.exe -k Camera [2016-7-16 44496]
S3 genericusbfn;Generic USB Function Class;C:\Windows\System32\drivers\genericusbfn.sys [2016-7-16 20480]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\Windows\System32\drivers\hidinterrupt.sys [2016-7-16 50016]
S3 HvHost;HV Host Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\Windows\System32\drivers\iagpio.sys [2016-7-16 33280]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\Windows\System32\drivers\iai2c.sys [2016-7-16 81408]
S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-7-16 64512]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2016-7-16 176384]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [2016-7-16 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\Windows\System32\drivers\iaLPSSi_I2C.sys [2016-7-16 113152]
S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\Windows\System32\drivers\iaStorAV.sys [2016-7-16 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\Windows\System32\drivers\ibbus.sys [2016-7-16 526176]
S3 icssvc;Windows Mobile Hotspot Service;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\Windows\System32\drivers\IndirectKmd.sys [2016-7-16 35840]
S3 klvssbrigde64;klvssbrigde64;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [2016-6-28 77328]
S3 LSI_SAS2i;LSI_SAS2i;C:\Windows\System32\drivers\lsi_sas2i.sys [2016-7-16 105824]
S3 LSI_SAS3i;LSI_SAS3i;C:\Windows\System32\drivers\lsi_sas3i.sys [2016-7-16 101216]
S3 megasas2i;megasas2i;C:\Windows\System32\drivers\MegaSas2i.sys [2017-2-13 64352]
S3 MessagingService_1c4d49f;MessagingService_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\Windows\System32\drivers\mlx4_bus.sys [2016-7-16 842584]
S3 ndfltr;NetworkDirect Service;C:\Windows\System32\drivers\ndfltr.sys [2016-7-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\Windows\System32\drivers\NetAdapterCx.sys [2016-7-16 90624]
S3 NetSetupSvc;Network Setup Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
S3 NgcSvc;Microsoft Passport;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-2-13 464440]
S3 NvStreamKms;NVIDIA KMS;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-2-13 29240]
S3 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe [2017-2-13 2122248]
S3 percsas2i;percsas2i;C:\Windows\System32\drivers\percsas2i.sys [2016-7-16 58720]
S3 percsas3i;percsas3i;C:\Windows\System32\drivers\percsas3i.sys [2016-7-16 61792]
S3 PhoneSvc;Phone Service;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
S3 ReFSv1;ReFSv1;C:\Windows\System32\drivers\refsv1.sys [2016-7-16 928608]
S3 RetailDemo;Retail Demo Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\Windows\System32\drivers\scmbus.sys [2016-7-16 88416]
S3 scmdisk0101;Microsoft NVDIMM-N disk driver;C:\Windows\System32\drivers\scmdisk0101.sys [2016-7-16 123904]
S3 SensorDataService;Sensor Data Service;C:\Windows\System32\SensorDataService.exe [2017-2-13 1312768]
S3 SensorService;Sensor Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 SerCx2;Serial UART Support Library;C:\Windows\System32\drivers\SerCx2.sys [2016-7-16 151904]
S3 smphost;Microsoft Storage Spaces SMP;C:\Windows\System32\svchost.exe -k smphost [2016-7-16 44496]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\Windows\System32\drivers\stornvme.sys [2017-2-13 81760]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\Windows\System32\drivers\storufs.sys [2016-7-16 32096]
S3 TieringEngineService;Storage Tiers Management;C:\Windows\System32\TieringEngineService.exe [2016-7-16 287744]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\Windows\System32\drivers\UcmCx.sys [2016-7-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\Windows\System32\drivers\UcmTcpciCx.sys [2016-7-16 108544]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\Windows\System32\drivers\UcmUcsi.sys [2016-7-16 50688]
S3 UdeCx;USB Device Emulation Support Library;C:\Windows\System32\drivers\Udecx.sys [2016-7-16 45568]
S3 UEFI;Microsoft UEFI Driver;C:\Windows\System32\drivers\uefi.sys [2016-7-16 28512]
S3 Ufx01000;USB Function Class Extension;C:\Windows\System32\drivers\ufx01000.sys [2016-7-16 263008]
S3 UfxChipidea;USB Chipidea Controller;C:\Windows\System32\drivers\UfxChipidea.sys [2016-7-16 96608]
S3 ufxsynopsys;USB Synopsys Controller;C:\Windows\System32\drivers\ufxsynopsys.sys [2016-7-16 137056]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\Windows\System32\drivers\urschipidea.sys [2016-7-16 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\Windows\System32\drivers\urscx01000.sys [2016-7-16 57696]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\Windows\System32\drivers\urssynopsys.sys [2016-7-16 27488]
S3 UsoSvc;Update Orchestrator Service for Windows Update;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\Windows\System32\drivers\vhf.sys [2016-7-16 32256]
S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\Windows\System32\drivers\vmgid.sys [2016-7-16 10240]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 WalletService;WalletService;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
S3 wdiwifi;WDI Driver Framework;C:\Windows\System32\drivers\WdiWiFi.sys [2017-2-13 719360]
S3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\Windows\System32\drivers\WdNisDrv.sys [2016-7-16 123232]
S3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2016-7-16 347328]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\Windows\System32\svchost.exe -k WepHostSvcGroup [2016-7-16 44496]
S3 WinMad;WinMad Service;C:\Windows\System32\drivers\winmad.sys [2016-7-16 32096]
S3 WinVerbs;WinVerbs Service;C:\Windows\System32\drivers\winverbs.sys [2016-7-16 64864]
S3 wisvc;Windows Insider Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 workfolderssvc;Work Folders;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
S3 WpnUserService_1c4d49f;Windows Push Notifications User Service_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
S3 XblAuthManager;Xbox Live Auth Manager;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 XblGameSave;Xbox Live Game Save;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\Windows\System32\drivers\xboxgip.sys [2017-2-13 258560]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 xinputhid;XINPUT HID Filter Driver;C:\Windows\System32\drivers\xinputhid.sys [2017-2-13 43520]
S4 shpamsvc;Shared PC Account Manager;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S4 tzautoupdate;Auto Time Zone Updater;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2017-03-02 18:56:26 395024 ----a-w- C:\Windows\SysWow64\EasyAntiCheat.exe
2017-02-28 16:14:44 -------- d-----w- C:\Users\david\AppData\Roaming\OBS
2017-02-25 22:17:46 -------- d-----w- C:\Program Files (x86)\Common Files\BattlEye
2017-02-25 22:15:22 -------- d-----w- C:\Users\david\AppData\Local\SCE
2017-02-25 22:15:21 -------- d-----w- C:\Users\david\AppData\Local\Daybreak Game Company
2017-02-24 14:32:46 -------- d-----w- C:\Program Files (x86)\Powght_
2017-02-24 14:32:46 -------- d-----w- C:\Program Files (x86)\Powght
2017-02-24 00:36:23 -------- d-----w- C:\Users\david\AppData\Local\Google
2017-02-23 23:22:23 245512 ----a-w- C:\Windows\System32\drivers\klupd_klif_klark.sys
2017-02-23 23:20:10 85984 ----a-w- C:\Windows\System32\drivers\klupd_klif_kimul.sys
2017-02-23 23:20:10 218920 ----a-w- C:\Windows\System32\drivers\klupd_klif_arkmon.sys
2017-02-23 23:20:10 164888 ----a-w- C:\Windows\System32\drivers\klupd_klif_mark.sys
2017-02-23 23:20:10 104720 ----a-w- C:\Windows\System32\drivers\klupd_klif_klbg.sys
2017-02-23 23:19:54 110176 ----a-w- C:\Windows\System32\klfphc.dll
2017-02-23 23:19:51 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2017-02-23 23:19:47 435032 ----a-w- C:\Windows\System32\drivers\klhk.sys
2017-02-23 23:19:47 191312 ----a-w- C:\Windows\System32\drivers\klflt.sys
2017-02-23 23:01:45 -------- d-----w- C:\Program Files (x86)\Platcerhesy_
2017-02-23 23:01:45 -------- d-----w- C:\Program Files (x86)\Platcerhesy
2017-02-23 23:01:07 -------- d-----w- C:\Users\david\AppData\Roaming\EasyAntiCheat
2017-02-23 18:01:34 -------- d-----w- C:\ProgramData\Electronic Arts
2017-02-23 11:01:49 -------- d-----w- C:\Program Files (x86)\Phudikthwisy_
2017-02-23 11:01:49 -------- d-----w- C:\Program Files (x86)\Phudikthwisy
2017-02-22 17:11:50 -------- d-----w- C:\Program Files (x86)\Rokaphdruzitain_
2017-02-22 17:11:50 -------- d-----w- C:\Program Files (x86)\Rokaphdruzitain
2017-02-20 10:43:18 -------- d--h--w- C:\$WINDOWS.~BT
2017-02-20 10:32:54 -------- d-----w- C:\Program Files (x86)\Werroge_
2017-02-20 10:32:54 -------- d-----w- C:\Program Files (x86)\Werroge
2017-02-19 20:24:50 -------- d-----w- C:\Users\david\AppData\Local\Deployment
2017-02-19 20:24:50 -------- d-----w- C:\Users\david\AppData\Local\Apps
2017-02-19 05:42:41 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2017-02-19 05:40:16 -------- d-----w- C:\Users\david\AppData\Local\Adobe
2017-02-19 05:29:06 778936 ----a-w- C:\Windows\SysWow64\PresentationNative_v0300.dll
2017-02-19 05:29:06 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2017-02-19 05:29:06 103120 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2017-02-19 05:29:05 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe
2017-02-19 05:29:05 124624 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2017-02-19 05:29:05 1166520 ----a-w- C:\Windows\System32\PresentationNative_v0300.dll
2017-02-18 19:54:24 -------- d-----w- C:\Users\david\AppData\Roaming\TeamViewer
2017-02-18 19:54:21 -------- d---a-w- C:\Program Files (x86)\TeamViewer
2017-02-18 11:59:56 -------- d-----w- C:\Users\david\AppData\Local\My Games
2017-02-18 10:33:41 -------- d-----w- C:\Users\david\AppData\Local\Rockstar Games
2017-02-18 10:33:34 -------- d-----w- C:\Program Files (x86)\Rockstar Games
2017-02-18 10:33:25 -------- d-----w- C:\Program Files\Rockstar Games
2017-02-17 23:25:22 -------- d-----w- C:\Program Files\Common Files\AV
2017-02-17 23:25:16 -------- d-----w- C:\ProgramData\Kaspersky Lab
2017-02-17 23:04:10 -------- d-----w- C:\Users\david\AppData\Local\app
2017-02-17 23:03:08 -------- d-----w- C:\ProgramData\Zaamlas
2017-02-17 23:03:03 2048 ----a-w- C:\Users\david\AppData\Local\uninstallro.exe
2017-02-17 23:03:02 -------- d-----w- C:\Program Files\Common Files\Noobzo
2017-02-17 23:01:57 -------- d-----w- C:\Microsoft
2017-02-17 23:01:56 -------- d-----w- C:\Windows\System32\SSL
2017-02-17 23:01:54 -------- d-----w- C:\Users\david\AppData\Local\AnonymizerLauncher
2017-02-17 23:01:54 -------- d-----w- C:\Users\david\.proxycheck
2017-02-17 23:01:54 -------- d-----w- C:\Users\david\.AnonymizerLauncher
2017-02-17 15:46:51 12229912 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3895A3A5-99A1-462F-8A29-65C0967B4E27}\mpengine.dll
2017-02-16 19:41:53 555048 ----a-w- C:\Windows\System32\drivers\EasyAntiCheat.sys
2017-02-16 17:23:48 12229912 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2017-02-15 13:18:43 285184 ---ha-w- C:\Windows\System32\BITCF4D.tmp
2017-02-15 13:18:43 285184 ---ha-w- C:\Windows\System32\BIT8EC.tmp
2017-02-14 20:49:50 -------- d--h--w- C:\Program Files\Common FilesEAInstaller
2017-02-14 17:37:04 -------- d-----w- C:\HammerAutosave
2017-02-14 07:20:59 508264 ----a-w- C:\Windows\System32\d3dx10_36.dll
2017-02-14 04:57:00 -------- d-----w- C:\Windows\Panther
2017-02-14 04:48:24 -------- d-----w- C:\Windows.old
2017-02-14 00:48:11 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller
2017-02-13 22:11:54 -------- d--h--w- C:\Program Files\Common Files\EAInstaller
2017-02-13 21:59:16 -------- d-----w- C:\Users\david\AppData\Roaming\ROCCAT
2017-02-13 21:55:23 -------- d-----w- C:\Program Files (x86)\Origin Games
2017-02-13 21:54:44 -------- d-----w- C:\Users\david\AppData\Roaming\Origin
2017-02-13 21:54:24 -------- d---a-w- C:\Program Files (x86)\Origin
2017-02-13 21:53:53 -------- d-----w- C:\Users\david\AppData\Local\Ubisoft Game Launcher
2017-02-13 21:53:37 -------- d-----w- C:\Users\david\.QtWebEngineProcess
2017-02-13 21:53:37 -------- d-----w- C:\Users\david\.Origin
2017-02-13 21:53:35 -------- d-----w- C:\ProgramData\Origin
2017-02-13 21:53:33 -------- d-----w- C:\Users\david\AppData\Local\Origin
2017-02-13 21:53:32 134080 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2017-02-13 21:53:29 273696 ----a-w- C:\Windows\SysWow64\vulkan-1.dll
2017-02-13 21:53:29 266528 ----a-w- C:\Windows\System32\vulkan-1.dll
2017-02-13 21:53:29 125728 ----a-w- C:\Windows\System32\vulkaninfo.exe
2017-02-13 21:53:29 111392 ----a-w- C:\Windows\SysWow64\vulkaninfo.exe
2017-02-13 21:52:08 90112 ------w- C:\Windows\Updreg.EXE
2017-02-13 21:52:08 466520 ----a-w- C:\Windows\System32\wrap_oal.dll
2017-02-13 21:52:08 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2017-02-13 21:52:08 123480 ----a-w- C:\Windows\System32\OpenAL32.dll
2017-02-13 21:52:07 1898496 ------w- C:\Windows\System32\Sens_oal.dll
2017-02-13 21:52:07 1609728 ------w- C:\Windows\SysWow64\Sens_oal.dll
2017-02-13 21:52:07 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2017-02-13 21:52:06 647872 ------w- C:\Windows\SysWow64\Mscomct2.ocx
2017-02-13 21:52:06 53248 ------w- C:\Windows\Ctregrun.exe
2017-02-13 21:52:03 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd
2017-02-13 21:52:00 42496 ------w- C:\Windows\System32\AddCat.exe
2017-02-13 21:52:00 183808 ------w- C:\Windows\System32\CTOPT352.dll
2017-02-13 21:49:38 137840 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2017-02-13 21:49:27 44144 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2017-02-13 21:49:12 -------- d---a-w- C:\Program Files\TeamSpeak 3 Client
2017-02-13 21:47:54 1951 ----a-w- C:\Windows\NvTelemetryContainerRecovery.bat
2017-02-13 21:47:51 -------- d-----w- C:\ProgramData\Package Cache
2017-02-13 21:47:49 -------- d-----w- C:\Program Files\Razer Chroma SDK
2017-02-13 21:47:49 -------- d-----w- C:\Program Files (x86)\Razer Chroma SDK
2017-02-13 21:47:18 59448 ----a-w- C:\Windows\System32\drivers\nvvhci.sys
2017-02-13 21:47:18 47672 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2017-02-13 21:47:18 158264 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2017-02-13 21:47:18 126008 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2017-02-13 21:47:08 -------- d-----w- C:\ProgramData\ROCCAT
2017-02-13 21:46:43 -------- d-----w- C:\Program Files (x86)\ROCCAT
2017-02-13 21:46:32 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2017-02-13 21:46:32 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2017-02-13 21:46:32 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2017-02-13 21:46:32 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2017-02-13 21:46:32 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2017-02-13 21:44:43 -------- d-----w- C:\Users\david\AppData\Local\Razer
2017-02-13 21:37:51 -------- d-----w- C:\Users\david\Tracing
2017-02-13 21:37:49 -------- d-----r- C:\Program Files (x86)\Skype
2017-02-13 21:36:20 -------- d-----w- C:\Users\david\AppData\Roaming\discord
2017-02-13 21:36:16 -------- d-----w- C:\Users\david\AppData\Local\Discord
2017-02-13 21:36:15 -------- d-----w- C:\Users\david\AppData\Local\SquirrelTemp
2017-02-13 21:36:15 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2017-02-13 21:35:49 1167568 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\NisBackup\gapaengine.dll
2017-02-13 21:35:49 1167568 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2F3BCB78-1F4E-4FF3-8AFD-BFDCD0902D8C}\gapaengine.dll
2017-02-13 21:35:28 485032 ------w- C:\Windows\System32\MpSigStub.exe
2017-02-13 21:35:17 -------- d-----w- C:\Users\david\AppData\Local\ClassicShell
2017-02-13 21:35:16 -------- d-----w- C:\Users\david\AppData\Roaming\ClassicShell
2017-02-13 21:34:45 -------- d-----w- C:\Windows\System32\MRT
2017-02-13 21:34:15 -------- d-----w- C:\ProgramData\ClassicShell
2017-02-13 21:32:41 -------- d-----w- C:\Program Files\Classic Shell
2017-02-13 21:29:26 -------- d-----w- C:\Users\david\AppData\Local\Steam
2017-02-13 21:29:10 -------- d-----w- C:\Program Files (x86)\Steam
2017-02-13 21:27:31 142848 ----a-w- C:\Windows\System32\poqexec.exe
2017-02-13 21:27:31 120320 ----a-w- C:\Windows\SysWow64\poqexec.exe
2017-02-13 21:23:18 -------- d-----w- C:\Users\david\AppData\Local\MicrosoftEdge
2017-02-13 21:21:59 57856 ----a-w- C:\Windows\SysWow64\LicenseManagerApi.dll
2017-02-13 21:18:39 -------- d-----w- C:\Users\david\AppData\Local\CrashDumps
2017-02-13 21:16:10 -------- d-----w- C:\Users\david\AppData\Local\CEF
2017-02-13 21:16:09 -------- d-----w- C:\Users\david\AppData\Local\Chromium
2017-02-13 21:16:08 -------- d-----w- C:\Users\david\AppData\Local\NVIDIA Corporation
2017-02-13 21:06:31 -------- d-----w- C:\Users\david\AppData\Local\Razer_Inc
2017-02-13 21:06:10 -------- d-----w- C:\Users\david\AppData\Local\PackageStaging
2017-02-13 21:02:54 -------- d-----w- C:\Users\david\AppData\Local\NetworkTiles
2017-02-13 21:02:19 -------- d-----w- C:\Windows\System32\wbem\Performance
2017-02-13 21:02:06 -------- d-----r- C:\Users\david\OneDrive
2017-02-13 21:02:00 -------- d-----w- C:\ProgramData\Microsoft OneDrive
2017-02-13 21:00:23 -------- d-----w- C:\Users\david\AppData\Local\Publishers
2017-02-13 21:00:21 -------- d-----w- C:\Users\david\AppData\Local\Comms
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\VirtualStore
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\TileDataLayer
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\Packages
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\ConnectedDevicesPlatform
2017-02-13 21:00:16 -------- d-----r- C:\Users\david\Searches
2017-02-13 21:00:16 -------- d-----r- C:\Users\david\Contacts
2017-02-13 20:58:25 2716672 ----a-w- C:\Windows\SysWow64\PrintConfig.dll
2017-02-13 20:58:19 -------- d-sh--we C:\ProgramData\Documents
2017-02-13 20:58:19 -------- d-sh--we C:\Documents and Settings
2017-02-13 20:58:19 -------- d-----w- C:\Windows\System32\wbem\MOF\good
2017-02-13 20:58:19 -------- d-----w- C:\Windows\System32\wbem\MOF\bad
2017-02-13 20:57:53 -------- d-sh--w- C:\Recovery
2017-02-13 20:57:24 -------- d-----w- C:\Windows\System32\wbem\MOF
2017-02-13 20:57:18 -------- d-s---w- C:\Windows\System32\Microsoft
2017-02-13 20:57:18 -------- d-----w- C:\Windows\System32\SleepStudy
2017-02-13 20:57:18 -------- d-----w- C:\Windows\ServiceProfiles
.
==================== Find3M ====================
.
2017-03-02 20:33:46 625272 ----a-w- C:\Windows\System32\NetUtils2016.dll
2017-02-23 23:21:11 134880 ----a-w- C:\Windows\System32\drivers\klwtp.sys
2017-02-23 23:21:09 57424 ----a-w- C:\Windows\System32\drivers\klim6.sys
2017-02-17 23:02:57 187904 ----a-w- C:\Windows\rsrcs.dll
2017-02-17 23:02:55 326144 ----a-w- C:\ProgramData\smp2.exe
2017-02-17 23:02:37 909944 ----a-w- C:\Windows\System32\drivers\NetUtils2016.sys
2017-02-17 23:02:37 470592 ----a-w- C:\Windows\SysWow64\NetUtils2016.exe
2017-02-06 19:48:07 835576 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2017-02-06 19:48:07 177656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2017-01-24 00:00:01 47664 ----a-w- C:\Windows\System32\nvhdap64.dll
2017-01-24 00:00:01 217528 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
2017-01-24 00:00:01 1600056 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll
2017-01-20 18:36:54 1873976 ----a-w- C:\Windows\System32\nvspcap64.dll
2017-01-20 18:36:54 1756728 ----a-w- C:\Windows\System32\nvspbridge64.dll
2017-01-20 18:36:54 1466424 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2017-01-20 18:36:53 1318968 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2017-01-20 18:36:53 121912 ----a-w- C:\Windows\System32\NvRtmpStreamer64.dll
2017-01-20 15:13:06 6401984 ----a-w- C:\Windows\System32\nvcpl.dll
2017-01-20 15:13:06 2479160 ----a-w- C:\Windows\System32\nvsvc64.dll
2017-01-20 15:13:04 83512 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2017-01-20 15:13:04 69568 ----a-w- C:\Windows\System32\nvshext.dll
2017-01-20 15:13:04 548800 ----a-w- C:\Windows\System32\nv3dappshext.dll
2017-01-20 15:13:04 393784 ----a-w- C:\Windows\System32\nvmctray.dll
2017-01-20 15:13:04 1762752 ----a-w- C:\Windows\System32\nvsvcr.dll
2017-01-20 14:04:17 1951 ----a-w- C:\Windows\NvContainerRecovery.bat
2017-01-18 12:57:23 7755067 ----a-w- C:\Windows\System32\nvcoproc.bin
2017-01-17 06:21:14 42496 ----a-w- C:\Windows\SysWow64\RzAPIChromaSDK.dll
2017-01-17 06:21:10 98304 ----a-w- C:\Windows\SysWow64\RzChromaSDK.dll
2017-01-17 06:21:00 108544 ----a-w- C:\Windows\System32\RzChromaSDK64.dll
2017-01-09 03:46:26 15816 ----a-w- C:\Windows\SysWow64\RzStats.IPC.dll
2017-01-04 15:19:08 1600056 ----a-w- C:\Windows\System32\nvdispgenco6437653.dll
2017-01-04 15:19:02 1964600 ----a-w- C:\Windows\System32\nvdispco6437653.dll
2016-12-21 08:08:31 245600 ----a-w- C:\Windows\System32\offlinesam.dll
2016-12-21 08:08:17 136032 ----a-w- C:\Windows\System32\ImplatSetup.dll
2016-12-21 08:04:10 7816032 ----a-w- C:\Windows\System32\ntoskrnl.exe
2016-12-21 07:49:39 328008 ----a-w- C:\Windows\System32\Windows.Storage.ApplicationData.dll
2016-12-21 07:46:39 624048 ----a-w- C:\Windows\System32\drivers\cng.sys
2016-12-21 07:43:56 92512 ----a-w- C:\Windows\System32\rdpudd.dll
2016-12-21 07:43:06 4130440 ----a-w- C:\Windows\System32\mfcore.dll
2016-12-21 07:43:01 1454504 ----a-w- C:\Windows\System32\mfnetsrc.dll
2016-12-21 07:43:00 1071736 ----a-w- C:\Windows\System32\mfnetcore.dll
2016-12-21 07:42:59 1988560 ----a-w- C:\Windows\System32\mfmp4srcsnk.dll
2016-12-21 07:42:55 1702392 ----a-w- C:\Windows\System32\mfasfsrcsnk.dll
2016-12-21 07:42:54 1300600 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll
2016-12-21 07:42:27 241504 ----a-w- C:\Windows\System32\CloudExperienceHost.dll
2016-12-21 07:41:56 1600632 ----a-w- C:\Windows\System32\sppobjs.dll
2016-12-21 07:37:23 455520 ----a-w- C:\Windows\System32\securekernel.exe
2016-12-21 07:15:01 22563840 ----a-w- C:\Windows\System32\edgehtml.dll
2016-12-21 07:14:11 43008 ----a-w- C:\Windows\System32\LaunchWinApp.exe
2016-12-21 07:13:54 119808 ----a-w- C:\Windows\System32\KnobsCsp.dll
2016-12-21 07:12:14 83968 ----a-w- C:\Windows\System32\ProvPluginEng.dll
2016-12-21 07:10:22 175104 ----a-w- C:\Windows\System32\wbem\netswitchteamcim.dll
2016-12-21 07:10:09 234496 ----a-w- C:\Windows\System32\KnobsCore.dll
2016-12-21 07:09:56 363520 ----a-w- C:\Windows\System32\Windows.UI.BioFeedback.dll
2016-12-21 07:09:13 368640 ----a-w- C:\Windows\System32\OneBackupHandler.dll
2016-12-21 07:08:35 211968 ----a-w- C:\Windows\System32\InstallAgent.exe
2016-12-21 07:08:33 261632 ----a-w- C:\Windows\System32\wbem\ndisimplatcim.dll
2016-12-21 07:08:27 360448 ----a-w- C:\Windows\System32\rdpencom.dll
2016-12-21 07:08:23 289792 ----a-w- C:\Windows\System32\DeveloperOptionsSettingsHandlers.dll
2016-12-21 07:08:14 418304 ----a-w- C:\Windows\System32\Windows.UI.BlockedShutdown.dll
2016-12-21 07:08:06 349184 ----a-w- C:\Windows\System32\provengine.dll
2016-12-21 07:08:03 1292288 ----a-w- C:\Windows\System32\MSVPXENC.dll
2016-12-21 07:07:10 748544 ----a-w- C:\Windows\System32\StoreAgent.dll
2016-12-21 07:06:49 260608 ----a-w- C:\Windows\System32\InstallAgentUserBroker.exe
2016-12-21 07:06:49 147456 ----a-w- C:\Windows\System32\winsrv.dll
2016-12-21 07:06:26 310784 ----a-w- C:\Windows\System32\SyncSettings.dll
2016-12-21 07:06:05 6285312 ----a-w- C:\Windows\System32\Windows.Media.dll
2016-12-21 07:05:21 261632 ----a-w- C:\Windows\System32\indexeddbserver.dll
2016-12-21 07:05:01 49152 ----a-w- C:\Windows\System32\Windows.UI.Shell.dll
2016-12-21 07:05:01 425984 ----a-w- C:\Windows\System32\aadcloudap.dll
2016-12-21 07:01:42 9131008 ----a-w- C:\Windows\System32\twinui.dll
2016-12-21 07:00:29 440320 ----a-w- C:\Windows\System32\fhcfg.dll
2016-12-21 06:59:50 883712 ----a-w- C:\Windows\System32\samsrv.dll
2016-12-21 06:59:31 1908224 ----a-w- C:\Windows\System32\AzureSettingSyncProvider.dll
2016-12-21 06:57:48 462336 ----a-w- C:\Windows\System32\fhsettingsprovider.dll
2016-12-21 06:56:56 936960 ----a-w- C:\Windows\System32\MCRecvSrc.dll
2016-12-21 06:56:14 947712 ----a-w- C:\Windows\System32\MSVP9DEC.dll
2016-12-21 06:55:16 8129536 ----a-w- C:\Windows\System32\Chakra.dll
2016-12-21 06:55:09 4749312 ----a-w- C:\Windows\System32\SettingsHandlers_nt.dll
2016-12-21 06:54:14 5511680 ----a-w- C:\Windows\System32\aclui.dll
2016-12-21 06:53:19 6664192 ----a-w- C:\Windows\System32\mspaint.exe
2016-12-21 06:53:13 4474368 ----a-w- C:\Windows\System32\D3DCompiler_47.dll
2016-12-21 06:53:10 1692672 ----a-w- C:\Windows\System32\AppXDeploymentExtensions.onecore.dll
2016-12-21 06:51:56 5611008 ----a-w- C:\Windows\System32\d2d1.dll
2016-12-21 06:51:53 2275840 ----a-w- C:\Windows\System32\AppXDeploymentServer.dll
2016-12-21 06:51:41 8075776 ----a-w- C:\Windows\System32\mstscax.dll
2016-12-21 06:50:57 1490432 ----a-w- C:\Windows\System32\lsasrv.dll
2016-12-21 06:49:55 2691072 ----a-w- C:\Windows\System32\Windows.UI.Logon.dll
2016-12-21 06:49:43 1062912 ----a-w- C:\Windows\System32\SettingSyncCore.dll
2016-12-21 06:49:25 4149248 ----a-w- C:\Windows\System32\rdpcorets.dll
2016-12-21 06:47:47 1121280 ----a-w- C:\Windows\System32\aadtb.dll
2016-12-21 05:59:21 218976 ----a-w- C:\Windows\SysWow64\offlinesam.dll
2016-12-21 05:09:45 263472 ----a-w- C:\Windows\SysWow64\Windows.Storage.ApplicationData.dll
2016-12-21 05:02:16 1852720 ----a-w- C:\Windows\SysWow64\mfmp4srcsnk.dll
2016-12-21 05:02:12 3892864 ----a-w- C:\Windows\SysWow64\mfcore.dll
2016-12-21 05:02:09 1277344 ----a-w- C:\Windows\SysWow64\mfasfsrcsnk.dll
2016-12-21 05:02:02 1360464 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll
2016-12-21 05:02:01 980832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll
2016-12-21 05:02:00 1201872 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2016-12-21 04:46:55 34304 ----a-w- C:\Windows\SysWow64\LaunchWinApp.exe
.
============= FINISH: 23:48:33.70 ===============
Since I reinstalled Windows a few weeks ago, I've been having some issues. The issues regarding games have been fixed, but my browsers are almost unuseable now. At first I thought it was just Chrome, even though I had AdBlock, Pop-Up Blocker installed, but after my Chrome started refusing to open/reinstall, I found the same issue on Edge. Now I have regained access to Chrome, I have come to this forum for help. I think I may have downloaded a dodgy piece of software at some point when reinstalling my programs. Any help would be appreciated, because at this point I can't even click on the internet without a pop-up opening. I've tried all the obvious things like clean reinstalls, virus scans, etc.
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.14393.0
Run by david at 23:48:18 on 2017-03-03
Microsoft Windows 10 Home 10.0.14393.0.1252.44.1033.18.16303.10604 [GMT 0:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Kaspersky Internet Security *Enabled/Updated* {3D579475-6DDE-A186-1569-44B9F9DE8725}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\System32\spoolsv.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\sysWow64\CtHdaSvc.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
C:\Users\david\AppData\Local\Temp\ds93_l\DisplayService.exe
C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
C:\Windows\SysWoW64\NetUtils2016.exe
C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
C:\Windows\system32\svchost.exe -k appmodel
C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Origin\OriginWebHelperService.exe
C:\Windows\System32\dwm.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
C:\Windows\system32\sihost.exe
C:\Windows\system32\svchost.exe -k UnistackSvcGroup
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe
C:\Windows\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\Explorer.EXE
C:\Program Files\Classic Shell\ClassicStartMenu.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\SettingSyncHost.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
C:\Program Files (x86)\ROCCAT\Kone Mouse\KoneHID.EXE
C:\Windows\System32\fontdrvhost.exe
C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
C:\Program Files (x86)\ROCCAT\Kone Mouse\osd.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
C:\Windows\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaAppManager.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\Windows\system32\browser_broker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
C:\Windows\System32\InstallAgent.exe
C:\Windows\System32\smartscreen.exe
svchost.exe
C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\backgroundTaskHost.exe
C:\Windows\system32\msfeedssync.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uLocal Page = %11%\blank.htm
BHO: Kaspersky Protection: {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll
BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
uRun: [OneDrive] "C:\Users\david\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [Discord] C:\Users\david\AppData\Local\Discord\app-0.0.297\Discord.exe
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [Spotify Web Helper] "C:\Users\david\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Spotify] "C:\Users\david\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
uRun: [ffdvox] rundll32.exe "C:\Users\david\AppData\Local\ffdvox.dll",ffdvox
uRun: [WallpaperEngine] "C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe" -silent
uRun: [GoogleChromeAutoLaunch_C8D43A3EEFF19C42AA31C68EEE7A5AF4] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
mRun: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
mRun: [RoccatIsku] "C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE"
mRun: [Kone] "C:\Program Files (x86)\ROCCAT\Kone Mouse\KoneHID.EXE"
mRun: [Kraken71ChromaHelper] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe /start
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [Sound Blaster Z-Series Control Panel] "C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe" /r
mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
mPolicies-System: DSCAutomationHostEnabled = dword:2
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{0189f978-6f52-4f4c-b880-eaac2c836213} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{0189f978-6f52-4f4c-b880-eaac2c836213} : DHCPNameServer = 192.168.0.1
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
SSODL: WebCheck - <orphaned>
LSA: Security Packages = ""
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\windows.storage.dll
x64-BHO: Kaspersky Protection: {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll
x64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll
x64-TB: Kaspersky Protection Toolbar: {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll
x64-Run: [WindowsDefender] "C:\Program Files (x86)\Windows Defender\MSASCuiL.exe"
x64-Run: [Classic Start Menu] "C:\Program Files\Classic Shell\ClassicStartMenu.exe" -autorun
x64-Run: [ShadowPlay] "C:\Windows\System32\rundll32.exe" C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:60
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\windows.storage.dll
.
============= SERVICES / DRIVERS ===============
.
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit);C:\Windows\System32\drivers\cm_km.sys [2016-6-10 238936]
R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\Windows\System32\drivers\intelpep.sys [2016-7-16 48152]
R0 iorate;iorate;C:\Windows\System32\drivers\iorate.sys [2017-2-13 48992]
R0 klbackupdisk;Kaspersky Lab klbackupdisk;C:\Windows\System32\drivers\klbackupdisk.sys [2016-6-7 63920]
R0 klupd_klif_arkmon;klupd_klif_arkmon;C:\Windows\System32\drivers\klupd_klif_arkmon.sys [2017-2-23 218920]
R0 klupd_klif_klbg;klupd_klif_klbg;C:\Windows\System32\drivers\klupd_klif_klbg.sys [2017-2-23 104720]
R0 volume;Volume driver;C:\Windows\System32\drivers\volume.sys [2016-7-16 16224]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\Windows\System32\drivers\WindowsTrustedRT.sys [2016-7-16 107032]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [2016-7-16 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\Windows\System32\drivers\wof.sys [2017-2-13 199008]
R1 ahcache;Application Compatibility Cache;C:\Windows\System32\drivers\ahcache.sys [2017-2-13 227328]
R1 FileCrypt;FileCrypt;C:\Windows\System32\drivers\filecrypt.sys [2016-7-16 88576]
R1 GpuEnergyDrv;GPU Energy Driver;C:\Windows\System32\drivers\gpuenergydrv.sys [2016-7-16 8192]
R1 klbackupflt;Kaspersky Lab klbackupflt;C:\Windows\System32\drivers\klbackupflt.sys [2016-6-15 86352]
R1 klhk;Kaspersky Lab service driver;C:\Windows\System32\drivers\klhk.sys [2017-2-23 435032]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2016-6-20 57424]
R1 klpd;Kaspersky Lab format recognizer driver;C:\Windows\System32\drivers\klpd.sys [2016-5-31 45488]
R1 klwfp;klwfp;C:\Windows\System32\drivers\klwfp.sys [2016-6-18 85320]
R1 Klwtp;KLwtp - WFP callout traffic inspector;C:\Windows\System32\drivers\klwtp.sys [2016-6-2 134880]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2016-6-14 194480]
R1 NetUtils2016;NetUtils2016;C:\Windows\System32\drivers\NetUtils2016.sys [2017-2-17 909944]
R2 AVP17.0.0;Kaspersky Anti-Virus Service 17.0.0;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [2016-6-28 241544]
R2 CDPSvc;Connected Devices Platform Service;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
R2 CDPUserSvc_1c4d49f;CDPUserSvc_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R2 clreg;Virtual Registry for Containers;C:\Windows\System32\drivers\registry.sys [2016-7-16 70144]
R2 CoreMessagingRegistrar;CoreMessaging;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2016-7-16 44496]
R2 CtHdaSvc;Sound Blaster Audio Service;C:\Windows\SysWOW64\CtHdaSvc.exe [2015-6-22 122880]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\Windows\System32\svchost.exe -k utcsvc [2016-7-16 44496]
R2 Installer;Installer;C:\Users\david\AppData\Local\Temp\ds93_l\DisplayService.exe [2017-2-17 8192]
R2 kldisk;kldisk;C:\Windows\System32\drivers\kldisk.sys [2016-5-31 78216]
R2 NetUtils2016srv;NetUtils2016srv;C:\Windows\System32\NetUtils2016.exe --> C:\Windows\System32\NetUtils2016.exe [?]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-2-13 464440]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-2-13 464440]
R2 NvTelemetryContainer;NVIDIA Telemetry Container;C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-2-13 427064]
R2 OneSyncSvc_1c4d49f;Sync Host_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R2 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-2-13 2184208]
R2 Razer Chroma SDK Service;Razer Chroma SDK Service;C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [2017-1-17 63488]
R2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2016-9-24 189264]
R2 rzpmgrk;rzpmgrk;C:\Windows\System32\drivers\rzpmgrk.sys [2017-2-13 44144]
R2 rzpnk;rzpnk;C:\Windows\System32\drivers\rzpnk.sys [2017-2-13 137840]
R2 storqosflt;Storage QoS Filter Driver;C:\Windows\System32\drivers\storqosflt.sys [2016-7-16 78336]
R2 TeamViewer;TeamViewer 12;C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-2-18 10351856]
R2 tiledatamodelsvc;Tile Data model server;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
R2 UserManager;User Manager;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
R2 Wallpaper Engine Service;Wallpaper Engine Service;C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe -x64 --> C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe -x64 [?]
R2 wcifs;Windows Container Isolation;C:\Windows\System32\drivers\wcifs.sys [2017-2-13 119648]
R2 wcnfs;Windows Container Name Virtualization;C:\Windows\System32\drivers\wcnfs.sys [2016-7-16 66560]
R2 WpnService;Windows Push Notifications System Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
R3 AppXSvc;AppX Deployment Service (AppXSVC);C:\Windows\System32\svchost.exe -k wsappx [2016-7-16 44496]
R3 cthda;Sound Blaster Audio Driver;C:\Windows\System32\drivers\cthda.sys [2015-6-22 1074984]
R3 cthdb;Sound Blaster Audio Controller Driver;C:\Windows\System32\drivers\cthdb.sys [2015-6-22 42792]
R3 DsSvc;Data Sharing Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
R3 klflt;Kaspersky Lab Kernel DLL;C:\Windows\System32\drivers\klflt.sys [2017-2-23 191312]
R3 klids;klids;C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [2017-2-23 182360]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2016-5-19 52136]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2015-6-7 41656]
R3 klupd_klif_kimul;klupd_klif_kimul;C:\Windows\System32\drivers\klupd_klif_kimul.sys [2017-2-23 85984]
R3 klupd_klif_klark;klupd_klif_klark;C:\Windows\System32\drivers\klupd_klif_klark.sys [2017-2-23 245512]
R3 klupd_klif_mark;klupd_klif_mark;C:\Windows\System32\drivers\klupd_klif_mark.sys [2017-2-23 164888]
R3 lfsvc;Geolocation Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
R3 LicenseManager;Windows License Manager Service;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
R3 NcbService;Network Connection Broker;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\Windows\System32\drivers\NdisVirtualBus.sys [2016-7-16 20480]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2017-2-13 47672]
R3 nvvhci;NVVHCI Enumerator Service;C:\Windows\System32\drivers\nvvhci.sys [2017-2-13 59448]
R3 PimIndexMaintenanceSvc_1c4d49f;Contact Data_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R3 rt640x64;Realtek RT640 NT Driver;C:\Windows\System32\drivers\rt640x64.sys [2016-7-16 589824]
R3 RtlWlanu_OldIC;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\System32\drivers\rtwlanu_oldIC.sys [2016-7-16 3814400]
R3 StateRepository;State Repository Service;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
R3 TimeBrokerSvc;Time Broker;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
R3 UnistoreSvc_1c4d49f;User Data Storage_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
R3 UserDataSvc_1c4d49f;User Data Access_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
S0 klelam;klelam;C:\Windows\System32\drivers\klelam.sys [2016-3-31 28792]
S2 DoSvc;Delivery Optimization;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S2 MapsBroker;Downloaded Maps Manager;C:\Windows\System32\svchost.exe -k NetworkService [2016-7-16 44496]
S2 MOh3iXFrKcal Updater;MOh3iXFrKcal Updater;C:\Program Files (x86)\MOh3iXFrKcal Updater\MOh3iXFrKcal Updater.exe --> C:\Program Files (x86)\MOh3iXFrKcal Updater\MOh3iXFrKcal Updater.exe [?]
S2 serverss;SSServiceComponent;C:\Windows\Temp\B22C.tmp --> C:\Windows\Temp\B22C.tmp [?]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-1-16 317400]
S3 AcpiDev;ACPI Devices driver;C:\Windows\System32\drivers\AcpiDev.sys [2016-7-16 18432]
S3 ADP80XX;ADP80XX;C:\Windows\System32\drivers\adp80xx.sys [2016-7-16 1135456]
S3 AJRouter;AllJoyn Router Service;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
S3 applockerfltr;Smartlocker Filter Driver;C:\Windows\System32\drivers\applockerfltr.sys [2016-7-16 15360]
S3 AppReadiness;App Readiness;C:\Windows\System32\svchost.exe -k AppReadiness [2016-7-16 44496]
S3 bcmfn;bcmfn Service;C:\Windows\System32\drivers\bcmfn.sys [2016-7-16 9728]
S3 bcmfn2;bcmfn2 Service;C:\Windows\System32\drivers\bcmfn2.sys [2016-7-16 9728]
S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-2-25 1465352]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2016-7-16 44496]
S3 buttonconverter;Service for Portable Device Control devices;C:\Windows\System32\drivers\buttonconverter.sys [2016-7-16 38912]
S3 CapImg;HID driver for CapImg touch screen;C:\Windows\System32\drivers\capimg.sys [2017-2-13 118272]
S3 cht4iscsi;cht4iscsi;C:\Windows\System32\drivers\cht4sx64.sys [2016-7-16 346976]
S3 cht4vbd;Chelsio Virtual Bus Driver;C:\Windows\System32\drivers\cht4vx64.sys [2016-7-16 2104160]
S3 ClipSVC;Client License Service (ClipSVC);C:\Windows\System32\svchost.exe -k wsappx [2016-7-16 44496]
S3 DcpSvc;DataCollectionPublishingService;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-7-16 93184]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 dmwappushservice;dmwappushsvc;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 EasyAntiCheat;EasyAntiCheat;C:\Windows\System32\EasyAntiCheat.exe --> C:\Windows\System32\EasyAntiCheat.exe [?]
S3 embeddedmode;Embedded Mode;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 EntAppSvc;Enterprise App Management Service;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
S3 FrameServer;Windows Camera Frame Server;C:\Windows\System32\svchost.exe -k Camera [2016-7-16 44496]
S3 genericusbfn;Generic USB Function Class;C:\Windows\System32\drivers\genericusbfn.sys [2016-7-16 20480]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\Windows\System32\drivers\hidinterrupt.sys [2016-7-16 50016]
S3 HvHost;HV Host Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\Windows\System32\drivers\iagpio.sys [2016-7-16 33280]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\Windows\System32\drivers\iai2c.sys [2016-7-16 81408]
S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2016-7-16 64512]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2016-7-16 176384]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [2016-7-16 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\Windows\System32\drivers\iaLPSSi_I2C.sys [2016-7-16 113152]
S3 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\Windows\System32\drivers\iaStorAV.sys [2016-7-16 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\Windows\System32\drivers\ibbus.sys [2016-7-16 526176]
S3 icssvc;Windows Mobile Hotspot Service;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\Windows\System32\drivers\IndirectKmd.sys [2016-7-16 35840]
S3 klvssbrigde64;klvssbrigde64;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [2016-6-28 77328]
S3 LSI_SAS2i;LSI_SAS2i;C:\Windows\System32\drivers\lsi_sas2i.sys [2016-7-16 105824]
S3 LSI_SAS3i;LSI_SAS3i;C:\Windows\System32\drivers\lsi_sas3i.sys [2016-7-16 101216]
S3 megasas2i;megasas2i;C:\Windows\System32\drivers\MegaSas2i.sys [2017-2-13 64352]
S3 MessagingService_1c4d49f;MessagingService_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\Windows\System32\drivers\mlx4_bus.sys [2016-7-16 842584]
S3 ndfltr;NetworkDirect Service;C:\Windows\System32\drivers\ndfltr.sys [2016-7-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\Windows\System32\drivers\NetAdapterCx.sys [2016-7-16 90624]
S3 NetSetupSvc;Network Setup Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2016-7-16 44496]
S3 NgcSvc;Microsoft Passport;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-2-13 464440]
S3 NvStreamKms;NVIDIA KMS;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-2-13 29240]
S3 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe [2017-2-13 2122248]
S3 percsas2i;percsas2i;C:\Windows\System32\drivers\percsas2i.sys [2016-7-16 58720]
S3 percsas3i;percsas3i;C:\Windows\System32\drivers\percsas3i.sys [2016-7-16 61792]
S3 PhoneSvc;Phone Service;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
S3 ReFSv1;ReFSv1;C:\Windows\System32\drivers\refsv1.sys [2016-7-16 928608]
S3 RetailDemo;Retail Demo Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\Windows\System32\drivers\scmbus.sys [2016-7-16 88416]
S3 scmdisk0101;Microsoft NVDIMM-N disk driver;C:\Windows\System32\drivers\scmdisk0101.sys [2016-7-16 123904]
S3 SensorDataService;Sensor Data Service;C:\Windows\System32\SensorDataService.exe [2017-2-13 1312768]
S3 SensorService;Sensor Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 SerCx2;Serial UART Support Library;C:\Windows\System32\drivers\SerCx2.sys [2016-7-16 151904]
S3 smphost;Microsoft Storage Spaces SMP;C:\Windows\System32\svchost.exe -k smphost [2016-7-16 44496]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\Windows\System32\drivers\stornvme.sys [2017-2-13 81760]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\Windows\System32\drivers\storufs.sys [2016-7-16 32096]
S3 TieringEngineService;Storage Tiers Management;C:\Windows\System32\TieringEngineService.exe [2016-7-16 287744]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\Windows\System32\drivers\UcmCx.sys [2016-7-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\Windows\System32\drivers\UcmTcpciCx.sys [2016-7-16 108544]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\Windows\System32\drivers\UcmUcsi.sys [2016-7-16 50688]
S3 UdeCx;USB Device Emulation Support Library;C:\Windows\System32\drivers\Udecx.sys [2016-7-16 45568]
S3 UEFI;Microsoft UEFI Driver;C:\Windows\System32\drivers\uefi.sys [2016-7-16 28512]
S3 Ufx01000;USB Function Class Extension;C:\Windows\System32\drivers\ufx01000.sys [2016-7-16 263008]
S3 UfxChipidea;USB Chipidea Controller;C:\Windows\System32\drivers\UfxChipidea.sys [2016-7-16 96608]
S3 ufxsynopsys;USB Synopsys Controller;C:\Windows\System32\drivers\ufxsynopsys.sys [2016-7-16 137056]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\Windows\System32\drivers\urschipidea.sys [2016-7-16 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\Windows\System32\drivers\urscx01000.sys [2016-7-16 57696]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\Windows\System32\drivers\urssynopsys.sys [2016-7-16 27488]
S3 UsoSvc;Update Orchestrator Service for Windows Update;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\Windows\System32\drivers\vhf.sys [2016-7-16 32256]
S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\Windows\System32\drivers\vmgid.sys [2016-7-16 10240]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2016-7-16 44496]
S3 WalletService;WalletService;C:\Windows\System32\svchost.exe -k appmodel [2016-7-16 44496]
S3 wdiwifi;WDI Driver Framework;C:\Windows\System32\drivers\WdiWiFi.sys [2017-2-13 719360]
S3 WdNisDrv;Windows Defender Network Inspection System Driver;C:\Windows\System32\drivers\WdNisDrv.sys [2016-7-16 123232]
S3 WdNisSvc;Windows Defender Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2016-7-16 347328]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\Windows\System32\svchost.exe -k WepHostSvcGroup [2016-7-16 44496]
S3 WinMad;WinMad Service;C:\Windows\System32\drivers\winmad.sys [2016-7-16 32096]
S3 WinVerbs;WinVerbs Service;C:\Windows\System32\drivers\winverbs.sys [2016-7-16 64864]
S3 wisvc;Windows Insider Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 workfolderssvc;Work Folders;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
S3 WpnUserService_1c4d49f;Windows Push Notifications User Service_1c4d49f;C:\Windows\System32\svchost.exe -k UnistackSvcGroup [2016-7-16 44496]
S3 XblAuthManager;Xbox Live Auth Manager;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 XblGameSave;Xbox Live Game Save;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\Windows\System32\drivers\xboxgip.sys [2017-2-13 258560]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S3 xinputhid;XINPUT HID Filter Driver;C:\Windows\System32\drivers\xinputhid.sys [2017-2-13 43520]
S4 shpamsvc;Shared PC Account Manager;C:\Windows\System32\svchost.exe -k netsvcs [2016-7-16 44496]
S4 tzautoupdate;Auto Time Zone Updater;C:\Windows\System32\svchost.exe -k LocalService [2016-7-16 44496]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2017-03-02 18:56:26 395024 ----a-w- C:\Windows\SysWow64\EasyAntiCheat.exe
2017-02-28 16:14:44 -------- d-----w- C:\Users\david\AppData\Roaming\OBS
2017-02-25 22:17:46 -------- d-----w- C:\Program Files (x86)\Common Files\BattlEye
2017-02-25 22:15:22 -------- d-----w- C:\Users\david\AppData\Local\SCE
2017-02-25 22:15:21 -------- d-----w- C:\Users\david\AppData\Local\Daybreak Game Company
2017-02-24 14:32:46 -------- d-----w- C:\Program Files (x86)\Powght_
2017-02-24 14:32:46 -------- d-----w- C:\Program Files (x86)\Powght
2017-02-24 00:36:23 -------- d-----w- C:\Users\david\AppData\Local\Google
2017-02-23 23:22:23 245512 ----a-w- C:\Windows\System32\drivers\klupd_klif_klark.sys
2017-02-23 23:20:10 85984 ----a-w- C:\Windows\System32\drivers\klupd_klif_kimul.sys
2017-02-23 23:20:10 218920 ----a-w- C:\Windows\System32\drivers\klupd_klif_arkmon.sys
2017-02-23 23:20:10 164888 ----a-w- C:\Windows\System32\drivers\klupd_klif_mark.sys
2017-02-23 23:20:10 104720 ----a-w- C:\Windows\System32\drivers\klupd_klif_klbg.sys
2017-02-23 23:19:54 110176 ----a-w- C:\Windows\System32\klfphc.dll
2017-02-23 23:19:51 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2017-02-23 23:19:47 435032 ----a-w- C:\Windows\System32\drivers\klhk.sys
2017-02-23 23:19:47 191312 ----a-w- C:\Windows\System32\drivers\klflt.sys
2017-02-23 23:01:45 -------- d-----w- C:\Program Files (x86)\Platcerhesy_
2017-02-23 23:01:45 -------- d-----w- C:\Program Files (x86)\Platcerhesy
2017-02-23 23:01:07 -------- d-----w- C:\Users\david\AppData\Roaming\EasyAntiCheat
2017-02-23 18:01:34 -------- d-----w- C:\ProgramData\Electronic Arts
2017-02-23 11:01:49 -------- d-----w- C:\Program Files (x86)\Phudikthwisy_
2017-02-23 11:01:49 -------- d-----w- C:\Program Files (x86)\Phudikthwisy
2017-02-22 17:11:50 -------- d-----w- C:\Program Files (x86)\Rokaphdruzitain_
2017-02-22 17:11:50 -------- d-----w- C:\Program Files (x86)\Rokaphdruzitain
2017-02-20 10:43:18 -------- d--h--w- C:\$WINDOWS.~BT
2017-02-20 10:32:54 -------- d-----w- C:\Program Files (x86)\Werroge_
2017-02-20 10:32:54 -------- d-----w- C:\Program Files (x86)\Werroge
2017-02-19 20:24:50 -------- d-----w- C:\Users\david\AppData\Local\Deployment
2017-02-19 20:24:50 -------- d-----w- C:\Users\david\AppData\Local\Apps
2017-02-19 05:42:41 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
2017-02-19 05:40:16 -------- d-----w- C:\Users\david\AppData\Local\Adobe
2017-02-19 05:29:06 778936 ----a-w- C:\Windows\SysWow64\PresentationNative_v0300.dll
2017-02-19 05:29:06 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2017-02-19 05:29:06 103120 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2017-02-19 05:29:05 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe
2017-02-19 05:29:05 124624 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2017-02-19 05:29:05 1166520 ----a-w- C:\Windows\System32\PresentationNative_v0300.dll
2017-02-18 19:54:24 -------- d-----w- C:\Users\david\AppData\Roaming\TeamViewer
2017-02-18 19:54:21 -------- d---a-w- C:\Program Files (x86)\TeamViewer
2017-02-18 11:59:56 -------- d-----w- C:\Users\david\AppData\Local\My Games
2017-02-18 10:33:41 -------- d-----w- C:\Users\david\AppData\Local\Rockstar Games
2017-02-18 10:33:34 -------- d-----w- C:\Program Files (x86)\Rockstar Games
2017-02-18 10:33:25 -------- d-----w- C:\Program Files\Rockstar Games
2017-02-17 23:25:22 -------- d-----w- C:\Program Files\Common Files\AV
2017-02-17 23:25:16 -------- d-----w- C:\ProgramData\Kaspersky Lab
2017-02-17 23:04:10 -------- d-----w- C:\Users\david\AppData\Local\app
2017-02-17 23:03:08 -------- d-----w- C:\ProgramData\Zaamlas
2017-02-17 23:03:03 2048 ----a-w- C:\Users\david\AppData\Local\uninstallro.exe
2017-02-17 23:03:02 -------- d-----w- C:\Program Files\Common Files\Noobzo
2017-02-17 23:01:57 -------- d-----w- C:\Microsoft
2017-02-17 23:01:56 -------- d-----w- C:\Windows\System32\SSL
2017-02-17 23:01:54 -------- d-----w- C:\Users\david\AppData\Local\AnonymizerLauncher
2017-02-17 23:01:54 -------- d-----w- C:\Users\david\.proxycheck
2017-02-17 23:01:54 -------- d-----w- C:\Users\david\.AnonymizerLauncher
2017-02-17 15:46:51 12229912 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3895A3A5-99A1-462F-8A29-65C0967B4E27}\mpengine.dll
2017-02-16 19:41:53 555048 ----a-w- C:\Windows\System32\drivers\EasyAntiCheat.sys
2017-02-16 17:23:48 12229912 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2017-02-15 13:18:43 285184 ---ha-w- C:\Windows\System32\BITCF4D.tmp
2017-02-15 13:18:43 285184 ---ha-w- C:\Windows\System32\BIT8EC.tmp
2017-02-14 20:49:50 -------- d--h--w- C:\Program Files\Common FilesEAInstaller
2017-02-14 17:37:04 -------- d-----w- C:\HammerAutosave
2017-02-14 07:20:59 508264 ----a-w- C:\Windows\System32\d3dx10_36.dll
2017-02-14 04:57:00 -------- d-----w- C:\Windows\Panther
2017-02-14 04:48:24 -------- d-----w- C:\Windows.old
2017-02-14 00:48:11 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller
2017-02-13 22:11:54 -------- d--h--w- C:\Program Files\Common Files\EAInstaller
2017-02-13 21:59:16 -------- d-----w- C:\Users\david\AppData\Roaming\ROCCAT
2017-02-13 21:55:23 -------- d-----w- C:\Program Files (x86)\Origin Games
2017-02-13 21:54:44 -------- d-----w- C:\Users\david\AppData\Roaming\Origin
2017-02-13 21:54:24 -------- d---a-w- C:\Program Files (x86)\Origin
2017-02-13 21:53:53 -------- d-----w- C:\Users\david\AppData\Local\Ubisoft Game Launcher
2017-02-13 21:53:37 -------- d-----w- C:\Users\david\.QtWebEngineProcess
2017-02-13 21:53:37 -------- d-----w- C:\Users\david\.Origin
2017-02-13 21:53:35 -------- d-----w- C:\ProgramData\Origin
2017-02-13 21:53:33 -------- d-----w- C:\Users\david\AppData\Local\Origin
2017-02-13 21:53:32 134080 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2017-02-13 21:53:29 273696 ----a-w- C:\Windows\SysWow64\vulkan-1.dll
2017-02-13 21:53:29 266528 ----a-w- C:\Windows\System32\vulkan-1.dll
2017-02-13 21:53:29 125728 ----a-w- C:\Windows\System32\vulkaninfo.exe
2017-02-13 21:53:29 111392 ----a-w- C:\Windows\SysWow64\vulkaninfo.exe
2017-02-13 21:52:08 90112 ------w- C:\Windows\Updreg.EXE
2017-02-13 21:52:08 466520 ----a-w- C:\Windows\System32\wrap_oal.dll
2017-02-13 21:52:08 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2017-02-13 21:52:08 123480 ----a-w- C:\Windows\System32\OpenAL32.dll
2017-02-13 21:52:07 1898496 ------w- C:\Windows\System32\Sens_oal.dll
2017-02-13 21:52:07 1609728 ------w- C:\Windows\SysWow64\Sens_oal.dll
2017-02-13 21:52:07 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2017-02-13 21:52:06 647872 ------w- C:\Windows\SysWow64\Mscomct2.ocx
2017-02-13 21:52:06 53248 ------w- C:\Windows\Ctregrun.exe
2017-02-13 21:52:03 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd
2017-02-13 21:52:00 42496 ------w- C:\Windows\System32\AddCat.exe
2017-02-13 21:52:00 183808 ------w- C:\Windows\System32\CTOPT352.dll
2017-02-13 21:49:38 137840 ----a-w- C:\Windows\System32\drivers\rzpnk.sys
2017-02-13 21:49:27 44144 ----a-w- C:\Windows\System32\drivers\rzpmgrk.sys
2017-02-13 21:49:12 -------- d---a-w- C:\Program Files\TeamSpeak 3 Client
2017-02-13 21:47:54 1951 ----a-w- C:\Windows\NvTelemetryContainerRecovery.bat
2017-02-13 21:47:51 -------- d-----w- C:\ProgramData\Package Cache
2017-02-13 21:47:49 -------- d-----w- C:\Program Files\Razer Chroma SDK
2017-02-13 21:47:49 -------- d-----w- C:\Program Files (x86)\Razer Chroma SDK
2017-02-13 21:47:18 59448 ----a-w- C:\Windows\System32\drivers\nvvhci.sys
2017-02-13 21:47:18 47672 ----a-w- C:\Windows\System32\drivers\nvvad64v.sys
2017-02-13 21:47:18 158264 ----a-w- C:\Windows\System32\nvaudcap64v.dll
2017-02-13 21:47:18 126008 ----a-w- C:\Windows\SysWow64\nvaudcap32v.dll
2017-02-13 21:47:08 -------- d-----w- C:\ProgramData\ROCCAT
2017-02-13 21:46:43 -------- d-----w- C:\Program Files (x86)\ROCCAT
2017-02-13 21:46:32 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2017-02-13 21:46:32 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2017-02-13 21:46:32 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2017-02-13 21:46:32 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2017-02-13 21:46:32 176128 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2017-02-13 21:44:43 -------- d-----w- C:\Users\david\AppData\Local\Razer
2017-02-13 21:37:51 -------- d-----w- C:\Users\david\Tracing
2017-02-13 21:37:49 -------- d-----r- C:\Program Files (x86)\Skype
2017-02-13 21:36:20 -------- d-----w- C:\Users\david\AppData\Roaming\discord
2017-02-13 21:36:16 -------- d-----w- C:\Users\david\AppData\Local\Discord
2017-02-13 21:36:15 -------- d-----w- C:\Users\david\AppData\Local\SquirrelTemp
2017-02-13 21:36:15 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2017-02-13 21:35:49 1167568 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\NisBackup\gapaengine.dll
2017-02-13 21:35:49 1167568 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2F3BCB78-1F4E-4FF3-8AFD-BFDCD0902D8C}\gapaengine.dll
2017-02-13 21:35:28 485032 ------w- C:\Windows\System32\MpSigStub.exe
2017-02-13 21:35:17 -------- d-----w- C:\Users\david\AppData\Local\ClassicShell
2017-02-13 21:35:16 -------- d-----w- C:\Users\david\AppData\Roaming\ClassicShell
2017-02-13 21:34:45 -------- d-----w- C:\Windows\System32\MRT
2017-02-13 21:34:15 -------- d-----w- C:\ProgramData\ClassicShell
2017-02-13 21:32:41 -------- d-----w- C:\Program Files\Classic Shell
2017-02-13 21:29:26 -------- d-----w- C:\Users\david\AppData\Local\Steam
2017-02-13 21:29:10 -------- d-----w- C:\Program Files (x86)\Steam
2017-02-13 21:27:31 142848 ----a-w- C:\Windows\System32\poqexec.exe
2017-02-13 21:27:31 120320 ----a-w- C:\Windows\SysWow64\poqexec.exe
2017-02-13 21:23:18 -------- d-----w- C:\Users\david\AppData\Local\MicrosoftEdge
2017-02-13 21:21:59 57856 ----a-w- C:\Windows\SysWow64\LicenseManagerApi.dll
2017-02-13 21:18:39 -------- d-----w- C:\Users\david\AppData\Local\CrashDumps
2017-02-13 21:16:10 -------- d-----w- C:\Users\david\AppData\Local\CEF
2017-02-13 21:16:09 -------- d-----w- C:\Users\david\AppData\Local\Chromium
2017-02-13 21:16:08 -------- d-----w- C:\Users\david\AppData\Local\NVIDIA Corporation
2017-02-13 21:06:31 -------- d-----w- C:\Users\david\AppData\Local\Razer_Inc
2017-02-13 21:06:10 -------- d-----w- C:\Users\david\AppData\Local\PackageStaging
2017-02-13 21:02:54 -------- d-----w- C:\Users\david\AppData\Local\NetworkTiles
2017-02-13 21:02:19 -------- d-----w- C:\Windows\System32\wbem\Performance
2017-02-13 21:02:06 -------- d-----r- C:\Users\david\OneDrive
2017-02-13 21:02:00 -------- d-----w- C:\ProgramData\Microsoft OneDrive
2017-02-13 21:00:23 -------- d-----w- C:\Users\david\AppData\Local\Publishers
2017-02-13 21:00:21 -------- d-----w- C:\Users\david\AppData\Local\Comms
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\VirtualStore
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\TileDataLayer
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\Packages
2017-02-13 21:00:16 -------- d-----w- C:\Users\david\AppData\Local\ConnectedDevicesPlatform
2017-02-13 21:00:16 -------- d-----r- C:\Users\david\Searches
2017-02-13 21:00:16 -------- d-----r- C:\Users\david\Contacts
2017-02-13 20:58:25 2716672 ----a-w- C:\Windows\SysWow64\PrintConfig.dll
2017-02-13 20:58:19 -------- d-sh--we C:\ProgramData\Documents
2017-02-13 20:58:19 -------- d-sh--we C:\Documents and Settings
2017-02-13 20:58:19 -------- d-----w- C:\Windows\System32\wbem\MOF\good
2017-02-13 20:58:19 -------- d-----w- C:\Windows\System32\wbem\MOF\bad
2017-02-13 20:57:53 -------- d-sh--w- C:\Recovery
2017-02-13 20:57:24 -------- d-----w- C:\Windows\System32\wbem\MOF
2017-02-13 20:57:18 -------- d-s---w- C:\Windows\System32\Microsoft
2017-02-13 20:57:18 -------- d-----w- C:\Windows\System32\SleepStudy
2017-02-13 20:57:18 -------- d-----w- C:\Windows\ServiceProfiles
.
==================== Find3M ====================
.
2017-03-02 20:33:46 625272 ----a-w- C:\Windows\System32\NetUtils2016.dll
2017-02-23 23:21:11 134880 ----a-w- C:\Windows\System32\drivers\klwtp.sys
2017-02-23 23:21:09 57424 ----a-w- C:\Windows\System32\drivers\klim6.sys
2017-02-17 23:02:57 187904 ----a-w- C:\Windows\rsrcs.dll
2017-02-17 23:02:55 326144 ----a-w- C:\ProgramData\smp2.exe
2017-02-17 23:02:37 909944 ----a-w- C:\Windows\System32\drivers\NetUtils2016.sys
2017-02-17 23:02:37 470592 ----a-w- C:\Windows\SysWow64\NetUtils2016.exe
2017-02-06 19:48:07 835576 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2017-02-06 19:48:07 177656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2017-01-24 00:00:01 47664 ----a-w- C:\Windows\System32\nvhdap64.dll
2017-01-24 00:00:01 217528 ----a-w- C:\Windows\System32\drivers\nvhda64v.sys
2017-01-24 00:00:01 1600056 ----a-w- C:\Windows\System32\nvhdagenco6420103.dll
2017-01-20 18:36:54 1873976 ----a-w- C:\Windows\System32\nvspcap64.dll
2017-01-20 18:36:54 1756728 ----a-w- C:\Windows\System32\nvspbridge64.dll
2017-01-20 18:36:54 1466424 ----a-w- C:\Windows\SysWow64\nvspcap.dll
2017-01-20 18:36:53 1318968 ----a-w- C:\Windows\SysWow64\nvspbridge.dll
2017-01-20 18:36:53 121912 ----a-w- C:\Windows\System32\NvRtmpStreamer64.dll
2017-01-20 15:13:06 6401984 ----a-w- C:\Windows\System32\nvcpl.dll
2017-01-20 15:13:06 2479160 ----a-w- C:\Windows\System32\nvsvc64.dll
2017-01-20 15:13:04 83512 ----a-w- C:\Windows\System32\nv3dappshextr.dll
2017-01-20 15:13:04 69568 ----a-w- C:\Windows\System32\nvshext.dll
2017-01-20 15:13:04 548800 ----a-w- C:\Windows\System32\nv3dappshext.dll
2017-01-20 15:13:04 393784 ----a-w- C:\Windows\System32\nvmctray.dll
2017-01-20 15:13:04 1762752 ----a-w- C:\Windows\System32\nvsvcr.dll
2017-01-20 14:04:17 1951 ----a-w- C:\Windows\NvContainerRecovery.bat
2017-01-18 12:57:23 7755067 ----a-w- C:\Windows\System32\nvcoproc.bin
2017-01-17 06:21:14 42496 ----a-w- C:\Windows\SysWow64\RzAPIChromaSDK.dll
2017-01-17 06:21:10 98304 ----a-w- C:\Windows\SysWow64\RzChromaSDK.dll
2017-01-17 06:21:00 108544 ----a-w- C:\Windows\System32\RzChromaSDK64.dll
2017-01-09 03:46:26 15816 ----a-w- C:\Windows\SysWow64\RzStats.IPC.dll
2017-01-04 15:19:08 1600056 ----a-w- C:\Windows\System32\nvdispgenco6437653.dll
2017-01-04 15:19:02 1964600 ----a-w- C:\Windows\System32\nvdispco6437653.dll
2016-12-21 08:08:31 245600 ----a-w- C:\Windows\System32\offlinesam.dll
2016-12-21 08:08:17 136032 ----a-w- C:\Windows\System32\ImplatSetup.dll
2016-12-21 08:04:10 7816032 ----a-w- C:\Windows\System32\ntoskrnl.exe
2016-12-21 07:49:39 328008 ----a-w- C:\Windows\System32\Windows.Storage.ApplicationData.dll
2016-12-21 07:46:39 624048 ----a-w- C:\Windows\System32\drivers\cng.sys
2016-12-21 07:43:56 92512 ----a-w- C:\Windows\System32\rdpudd.dll
2016-12-21 07:43:06 4130440 ----a-w- C:\Windows\System32\mfcore.dll
2016-12-21 07:43:01 1454504 ----a-w- C:\Windows\System32\mfnetsrc.dll
2016-12-21 07:43:00 1071736 ----a-w- C:\Windows\System32\mfnetcore.dll
2016-12-21 07:42:59 1988560 ----a-w- C:\Windows\System32\mfmp4srcsnk.dll
2016-12-21 07:42:55 1702392 ----a-w- C:\Windows\System32\mfasfsrcsnk.dll
2016-12-21 07:42:54 1300600 ----a-w- C:\Windows\System32\mfmpeg2srcsnk.dll
2016-12-21 07:42:27 241504 ----a-w- C:\Windows\System32\CloudExperienceHost.dll
2016-12-21 07:41:56 1600632 ----a-w- C:\Windows\System32\sppobjs.dll
2016-12-21 07:37:23 455520 ----a-w- C:\Windows\System32\securekernel.exe
2016-12-21 07:15:01 22563840 ----a-w- C:\Windows\System32\edgehtml.dll
2016-12-21 07:14:11 43008 ----a-w- C:\Windows\System32\LaunchWinApp.exe
2016-12-21 07:13:54 119808 ----a-w- C:\Windows\System32\KnobsCsp.dll
2016-12-21 07:12:14 83968 ----a-w- C:\Windows\System32\ProvPluginEng.dll
2016-12-21 07:10:22 175104 ----a-w- C:\Windows\System32\wbem\netswitchteamcim.dll
2016-12-21 07:10:09 234496 ----a-w- C:\Windows\System32\KnobsCore.dll
2016-12-21 07:09:56 363520 ----a-w- C:\Windows\System32\Windows.UI.BioFeedback.dll
2016-12-21 07:09:13 368640 ----a-w- C:\Windows\System32\OneBackupHandler.dll
2016-12-21 07:08:35 211968 ----a-w- C:\Windows\System32\InstallAgent.exe
2016-12-21 07:08:33 261632 ----a-w- C:\Windows\System32\wbem\ndisimplatcim.dll
2016-12-21 07:08:27 360448 ----a-w- C:\Windows\System32\rdpencom.dll
2016-12-21 07:08:23 289792 ----a-w- C:\Windows\System32\DeveloperOptionsSettingsHandlers.dll
2016-12-21 07:08:14 418304 ----a-w- C:\Windows\System32\Windows.UI.BlockedShutdown.dll
2016-12-21 07:08:06 349184 ----a-w- C:\Windows\System32\provengine.dll
2016-12-21 07:08:03 1292288 ----a-w- C:\Windows\System32\MSVPXENC.dll
2016-12-21 07:07:10 748544 ----a-w- C:\Windows\System32\StoreAgent.dll
2016-12-21 07:06:49 260608 ----a-w- C:\Windows\System32\InstallAgentUserBroker.exe
2016-12-21 07:06:49 147456 ----a-w- C:\Windows\System32\winsrv.dll
2016-12-21 07:06:26 310784 ----a-w- C:\Windows\System32\SyncSettings.dll
2016-12-21 07:06:05 6285312 ----a-w- C:\Windows\System32\Windows.Media.dll
2016-12-21 07:05:21 261632 ----a-w- C:\Windows\System32\indexeddbserver.dll
2016-12-21 07:05:01 49152 ----a-w- C:\Windows\System32\Windows.UI.Shell.dll
2016-12-21 07:05:01 425984 ----a-w- C:\Windows\System32\aadcloudap.dll
2016-12-21 07:01:42 9131008 ----a-w- C:\Windows\System32\twinui.dll
2016-12-21 07:00:29 440320 ----a-w- C:\Windows\System32\fhcfg.dll
2016-12-21 06:59:50 883712 ----a-w- C:\Windows\System32\samsrv.dll
2016-12-21 06:59:31 1908224 ----a-w- C:\Windows\System32\AzureSettingSyncProvider.dll
2016-12-21 06:57:48 462336 ----a-w- C:\Windows\System32\fhsettingsprovider.dll
2016-12-21 06:56:56 936960 ----a-w- C:\Windows\System32\MCRecvSrc.dll
2016-12-21 06:56:14 947712 ----a-w- C:\Windows\System32\MSVP9DEC.dll
2016-12-21 06:55:16 8129536 ----a-w- C:\Windows\System32\Chakra.dll
2016-12-21 06:55:09 4749312 ----a-w- C:\Windows\System32\SettingsHandlers_nt.dll
2016-12-21 06:54:14 5511680 ----a-w- C:\Windows\System32\aclui.dll
2016-12-21 06:53:19 6664192 ----a-w- C:\Windows\System32\mspaint.exe
2016-12-21 06:53:13 4474368 ----a-w- C:\Windows\System32\D3DCompiler_47.dll
2016-12-21 06:53:10 1692672 ----a-w- C:\Windows\System32\AppXDeploymentExtensions.onecore.dll
2016-12-21 06:51:56 5611008 ----a-w- C:\Windows\System32\d2d1.dll
2016-12-21 06:51:53 2275840 ----a-w- C:\Windows\System32\AppXDeploymentServer.dll
2016-12-21 06:51:41 8075776 ----a-w- C:\Windows\System32\mstscax.dll
2016-12-21 06:50:57 1490432 ----a-w- C:\Windows\System32\lsasrv.dll
2016-12-21 06:49:55 2691072 ----a-w- C:\Windows\System32\Windows.UI.Logon.dll
2016-12-21 06:49:43 1062912 ----a-w- C:\Windows\System32\SettingSyncCore.dll
2016-12-21 06:49:25 4149248 ----a-w- C:\Windows\System32\rdpcorets.dll
2016-12-21 06:47:47 1121280 ----a-w- C:\Windows\System32\aadtb.dll
2016-12-21 05:59:21 218976 ----a-w- C:\Windows\SysWow64\offlinesam.dll
2016-12-21 05:09:45 263472 ----a-w- C:\Windows\SysWow64\Windows.Storage.ApplicationData.dll
2016-12-21 05:02:16 1852720 ----a-w- C:\Windows\SysWow64\mfmp4srcsnk.dll
2016-12-21 05:02:12 3892864 ----a-w- C:\Windows\SysWow64\mfcore.dll
2016-12-21 05:02:09 1277344 ----a-w- C:\Windows\SysWow64\mfasfsrcsnk.dll
2016-12-21 05:02:02 1360464 ----a-w- C:\Windows\SysWow64\mfnetsrc.dll
2016-12-21 05:02:01 980832 ----a-w- C:\Windows\SysWow64\mfnetcore.dll
2016-12-21 05:02:00 1201872 ----a-w- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2016-12-21 04:46:55 34304 ----a-w- C:\Windows\SysWow64\LaunchWinApp.exe
.
============= FINISH: 23:48:33.70 ===============