Not sure what's going on but my computer is so slow it's difficult to do anything. Please help...
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.19155
Run by Hodie at 13:10:17 on 2018-11-05
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3894.1243 [GMT -6:00]
.
AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\system32\ptumlcmsvc64.exe
C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
C:\Windows\sysWow64\SearchProtocolHost.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uProxyServer = localhost:8080
mWinlogon: Userinit = userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
BHO: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - <orphaned>
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
uRun: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN1BU22BX505NR:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
uRun: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
uRun: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
dRunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://uhc.webex.com/client/WBXclient-T27L10NSP32EP5-14362/webex/ieatgpc1.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{61A21C53-CE0F-4214-BA30-8A64E88F8D1B} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{695076B3-72BF-4452-8C0C-61DD9CF93C7E} : DHCPNameServer = 172.20.10.1
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\2375942554431383 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\2375942554638333 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\4415C4F4447454 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\44F65726C65645275656022697028496C647F6E6 : DHCPNameServer = 8.8.8.8 8.8.4.4
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
LSA: Notification Packages = scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL
x64-BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
x64-Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - <orphaned>
x64-Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Hodie\AppData\Roaming\Mozilla\Firefox\Profiles\km5jf2y2.default-1473202271514\
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Hodie\AppData\Local\Citrix\Plugins\104\npappdetector.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswbidsh;aswbidsh;C:\Windows\System32\drivers\aswbidsha.sys [2017-2-3 201928]
R0 aswblog;aswblog;C:\Windows\System32\drivers\aswbloga.sys [2017-2-3 346760]
R0 aswbuniv;aswbuniv;C:\Windows\System32\drivers\aswbuniva.sys [2017-2-3 59664]
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2014-2-3 88112]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2014-2-3 381144]
R1 aswArPot;aswArPot;C:\Windows\System32\drivers\aswArPot.sys [2017-10-27 201408]
R1 aswbidsdriver;aswbidsdriver;C:\Windows\System32\drivers\aswbidsdrivera.sys [2017-2-3 230512]
R1 aswHdsKe;aswHdsKe;C:\Windows\System32\drivers\aswHdsKe.sys [2017-11-24 185240]
R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2018-9-4 42456]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2014-2-3 1028840]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2014-2-3 467904]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-8-23 83768]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-2-3 163376]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2014-2-3 208640]
R2 avast! Antivirus;Avast Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-10-8 325024]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service;C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-2-7 9667872]
R2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-11-4 92160]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-7-21 103992]
R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-8-5 291896]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-3-5 35200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-2-20 13592]
R2 ptumlcmsvc;PTUML290 Connection Manager Service;C:\Windows\System32\ptumlcmsvc64.exe [2012-3-8 174592]
R2 RoxioNow Service;RoxioNow Service;C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe [2010-9-11 399344]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-2-20 2320920]
R3 aswbIDSAgent;aswbIDSAgent;C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-10-4 8188768]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2011-3-23 31088]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2009-9-17 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-12-8 158976]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-4-2 317440]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-1-17 565352]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2015-6-10 54784]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-3-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-3-26 128584]
S3 aswHwid;aswHwid;C:\Windows\System32\drivers\aswHwid.sys [2014-5-6 47064]
S3 aswTap;avast! SecureLine TAP Adapter v3;C:\Windows\System32\drivers\aswTap.sys [2014-7-17 44640]
S3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\System32\drivers\btwampfl.sys [2011-2-20 620584]
S3 BTWDPAN;Bluetooth Personal Area Network;C:\Windows\System32\drivers\btwdpan.sys [2012-1-18 89640]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2011-2-20 39976]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2018-10-9 116224]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\System32\drivers\netaapl64.sys [2013-7-25 23040]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
S3 PTUMLBUS;PTUML USB Composite Device Driver;C:\Windows\System32\drivers\PTUMLBUS.sys [2012-3-8 105600]
S3 PTUMLCVsp;PANTECH UML290 Connection Manager Port;C:\Windows\System32\drivers\PTUMLCVsp.sys [2012-3-8 183424]
S3 PTUMLMBMP;PANTECH UML290 Mobile Broadband;C:\Windows\System32\drivers\PTUMLMBMP.sys [2012-3-8 235776]
S3 PTUMLMdm;PANTECH UML290;C:\Windows\System32\drivers\PTUMLMdm.sys [2012-3-8 183424]
S3 PTUMLNET61;PANTECH UML290 WWAN (NDIS6.1);C:\Windows\System32\drivers\PTUMLNET61.sys [2012-3-8 111872]
S3 PTUMLNVsp;PANTECH UML290 NMEA Port;C:\Windows\System32\drivers\PTUMLNVsp.sys [2012-3-8 184448]
S3 PTUMLRMNET;PANTECH UML290 RMNET Service;C:\Windows\System32\drivers\PTUMLRMNET.sys [2012-3-8 63744]
S3 PTUMLVsp;PANTECH UML290 Diagnostic Port;C:\Windows\System32\drivers\PTUMLVsp.sys [2012-3-8 183424]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-12-18 19456]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2011-2-20 329832]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-12-18 56832]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-12-27 1255736]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
.
=============== Created Last 30 ================
.
2018-11-03 20:08:36 52296 ----a-w- C:\Windows\System32\drivers\staport.sys
2018-10-25 18:42:18 -------- d-----w- C:\ProgramData\LightScribe
2018-10-25 05:10:54 214824 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
2018-10-25 05:10:34 474904 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\LICLUA.EXE
2018-10-25 05:10:34 29976 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\pkeyconfig.companion.dll
.
==================== Find3M ====================
.
2018-10-04 18:32:14 842240 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2018-10-04 18:32:14 175104 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2018-09-19 08:08:04 343552 ----a-w- C:\Windows\SysWow64\msrd3x40.dll
2018-09-18 05:38:18 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2018-09-18 05:38:08 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2018-09-18 05:26:12 66560 ----a-w- C:\Windows\System32\iesetup.dll
2018-09-18 05:25:37 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2018-09-18 05:25:33 417280 ----a-w- C:\Windows\System32\html.iec
2018-09-18 05:25:22 576512 ----a-w- C:\Windows\System32\vbscript.dll
2018-09-18 05:25:10 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2018-09-18 05:15:16 116224 ----a-w- C:\Windows\System32\ieetwcollector.exe
2018-09-18 05:15:14 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2018-09-18 05:14:56 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2018-09-18 05:14:25 5779456 ----a-w- C:\Windows\System32\jscript9.dll
2018-09-18 05:09:50 969216 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2018-09-18 05:01:21 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2018-09-18 05:00:55 87552 ----a-w- C:\Windows\System32\tdc.ocx
2018-09-18 04:41:40 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2018-09-18 04:41:37 2136064 ----a-w- C:\Windows\System32\inetcpl.cpl
2018-09-18 04:35:18 4510720 ----a-w- C:\Windows\System32\wininet.dll
2018-09-18 04:31:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2018-09-18 04:21:27 497664 ----a-w- C:\Windows\SysWow64\vbscript.dll
2018-09-18 04:21:13 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2018-09-18 04:20:44 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2018-09-18 04:20:37 341504 ----a-w- C:\Windows\SysWow64\html.iec
2018-09-18 04:19:54 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2018-09-18 04:13:13 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2018-09-18 04:12:57 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2018-09-18 04:03:14 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2018-09-18 04:02:54 73216 ----a-w- C:\Windows\SysWow64\tdc.ocx
2018-09-18 03:57:45 4494848 ----a-w- C:\Windows\SysWow64\jscript9.dll
2018-09-18 03:50:59 2059776 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2018-09-18 03:50:44 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2018-09-18 03:37:53 4037632 ----a-w- C:\Windows\SysWow64\wininet.dll
2018-09-11 18:28:58 3227136 ----a-w- C:\Windows\System32\win32k.sys
2018-09-11 18:23:29 161280 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2018-09-11 18:22:58 129536 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2018-09-09 01:02:22 986824 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2018-09-09 01:02:17 631680 ----a-w- C:\Windows\System32\winresume.efi
2018-09-09 01:02:15 5552328 ----a-w- C:\Windows\System32\ntoskrnl.exe
2018-09-09 01:02:12 708296 ----a-w- C:\Windows\System32\winload.efi
2018-09-09 01:02:12 1680072 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2018-09-09 01:02:11 95432 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2018-09-09 01:02:11 265416 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2018-09-09 01:02:11 154824 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2018-09-09 01:01:09 1664320 ----a-w- C:\Windows\System32\ntdll.dll
2018-09-09 00:58:55 1461760 ----a-w- C:\Windows\System32\lsasrv.dll
2018-09-09 00:58:53 731648 ----a-w- C:\Windows\System32\kerberos.dll
2018-09-09 00:58:53 419840 ----a-w- C:\Windows\System32\KernelBase.dll
2018-09-09 00:58:38 405504 ----a-w- C:\Windows\System32\gdi32.dll
2018-09-09 00:58:18 44032 ----a-w- C:\Windows\System32\csrsrv.dll
2018-09-09 00:58:17 43520 ----a-w- C:\Windows\System32\cryptbase.dll
2018-09-09 00:58:17 22016 ----a-w- C:\Windows\System32\credssp.dll
2018-09-09 00:46:39 3959496 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2018-09-09 00:46:29 4054216 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2018-09-09 00:46:11 1314072 ----a-w- C:\Windows\SysWow64\ntdll.dll
2018-09-09 00:44:18 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2018-09-09 00:44:18 666112 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2018-09-09 00:44:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2018-09-09 00:44:18 275968 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2018-09-09 00:44:14 82944 ----a-w- C:\Windows\SysWow64\bcrypt.dll
2018-09-09 00:44:14 313344 ----a-w- C:\Windows\SysWow64\gdi32.dll
2018-09-09 00:44:11 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2018-09-09 00:44:07 70144 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2018-09-09 00:44:07 2755584 ----a-w- C:\Windows\SysWow64\themeui.dll
2018-09-09 00:44:04 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2018-09-09 00:43:57 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2018-09-09 00:43:56 254464 ----a-w- C:\Windows\SysWow64\schannel.dll
2018-09-09 00:43:55 141312 ----a-w- C:\Windows\SysWow64\rpchttp.dll
2018-09-09 00:43:46 223232 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2018-09-09 00:43:42 261120 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2018-09-09 00:43:42 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2018-09-09 00:43:42 1391104 ----a-w- C:\Windows\SysWow64\msxml6.dll
2018-09-09 00:43:41 60416 ----a-w- C:\Windows\SysWow64\msobjs.dll
2018-09-09 00:43:38 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll
2018-09-09 00:43:30 554496 ----a-w- C:\Windows\SysWow64\kerberos.dll
2018-09-09 00:43:07 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2018-09-09 00:25:59 148480 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
2018-09-09 00:25:56 62464 ----a-w- C:\Windows\System32\drivers\appid.sys
2018-09-09 00:25:55 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
2018-09-09 00:25:11 64000 ----a-w- C:\Windows\System32\auditpol.exe
2018-09-09 00:21:34 338432 ----a-w- C:\Windows\System32\conhost.exe
2018-09-09 00:21:02 129024 ----a-w- C:\Windows\System32\drivers\videoprt.sys
2018-09-09 00:20:35 296960 ----a-w- C:\Windows\System32\rstrui.exe
2018-09-09 00:18:10 50176 ----a-w- C:\Windows\SysWow64\auditpol.exe
2018-09-09 00:16:54 291328 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2018-09-09 00:15:58 30720 ----a-w- C:\Windows\System32\lsass.exe
2018-09-09 00:15:55 112640 ----a-w- C:\Windows\System32\smss.exe
2018-09-09 00:15:51 64512 ----a-w- C:\Windows\System32\drivers\amdk8.sys
2018-09-09 00:15:51 62464 ----a-w- C:\Windows\System32\drivers\intelppm.sys
2018-09-09 00:15:51 60928 ----a-w- C:\Windows\System32\drivers\processr.sys
2018-09-09 00:15:51 60928 ----a-w- C:\Windows\System32\drivers\amdppm.sys
2018-09-09 00:13:19 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2018-09-09 00:13:17 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2018-09-09 00:13:17 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2018-09-09 00:13:16 2048 ----a-w- C:\Windows\SysWow64\user.exe
2018-09-09 00:12:14 36352 ----a-w- C:\Windows\SysWow64\cryptbase.dll
2018-09-09 00:12:06 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2018-09-09 00:12:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2018-09-09 00:12:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
.
============= FINISH: 13:12:35.10 ===============
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.19155
Run by Hodie at 13:10:17 on 2018-11-05
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3894.1243 [GMT -6:00]
.
AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\system32\ptumlcmsvc64.exe
C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
C:\Windows\sysWow64\SearchProtocolHost.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uProxyServer = localhost:8080
mWinlogon: Userinit = userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
BHO: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - <orphaned>
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
uRun: [HP Photosmart 5510 series (NET)] "C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN1BU22BX505NR:NW" -scfn "HP Photosmart 5510 series (NET)" -AutoStart 1
uRun: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
uRun: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
dRunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://uhc.webex.com/client/WBXclient-T27L10NSP32EP5-14362/webex/ieatgpc1.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{61A21C53-CE0F-4214-BA30-8A64E88F8D1B} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{695076B3-72BF-4452-8C0C-61DD9CF93C7E} : DHCPNameServer = 172.20.10.1
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\2375942554431383 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\2375942554638333 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\4415C4F4447454 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{FC761777-E592-4B4B-A5E1-2F915004E613}\44F65726C65645275656022697028496C647F6E6 : DHCPNameServer = 8.8.8.8 8.8.4.4
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
LSA: Notification Packages = scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.84\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL
x64-BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
x64-Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - <orphaned>
x64-Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - <orphaned>
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Hodie\AppData\Roaming\Mozilla\Firefox\Profiles\km5jf2y2.default-1473202271514\
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Hodie\AppData\Local\Citrix\Plugins\104\npappdetector.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswbidsh;aswbidsh;C:\Windows\System32\drivers\aswbidsha.sys [2017-2-3 201928]
R0 aswblog;aswblog;C:\Windows\System32\drivers\aswbloga.sys [2017-2-3 346760]
R0 aswbuniv;aswbuniv;C:\Windows\System32\drivers\aswbuniva.sys [2017-2-3 59664]
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2014-2-3 88112]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2014-2-3 381144]
R1 aswArPot;aswArPot;C:\Windows\System32\drivers\aswArPot.sys [2017-10-27 201408]
R1 aswbidsdriver;aswbidsdriver;C:\Windows\System32\drivers\aswbidsdrivera.sys [2017-2-3 230512]
R1 aswHdsKe;aswHdsKe;C:\Windows\System32\drivers\aswHdsKe.sys [2017-11-24 185240]
R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2018-9-4 42456]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2014-2-3 1028840]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2014-2-3 467904]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-8-23 83768]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-2-3 163376]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2014-2-3 208640]
R2 avast! Antivirus;Avast Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-10-8 325024]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service;C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-2-7 9667872]
R2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-11-4 92160]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-7-21 103992]
R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-8-5 291896]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-3-5 35200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-2-20 13592]
R2 ptumlcmsvc;PTUML290 Connection Manager Service;C:\Windows\System32\ptumlcmsvc64.exe [2012-3-8 174592]
R2 RoxioNow Service;RoxioNow Service;C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe [2010-9-11 399344]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-2-20 2320920]
R3 aswbIDSAgent;aswbIDSAgent;C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-10-4 8188768]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2011-3-23 31088]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2009-9-17 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-12-8 158976]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-4-2 317440]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-1-17 565352]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2015-6-10 54784]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-3-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-3-26 128584]
S3 aswHwid;aswHwid;C:\Windows\System32\drivers\aswHwid.sys [2014-5-6 47064]
S3 aswTap;avast! SecureLine TAP Adapter v3;C:\Windows\System32\drivers\aswTap.sys [2014-7-17 44640]
S3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\System32\drivers\btwampfl.sys [2011-2-20 620584]
S3 BTWDPAN;Bluetooth Personal Area Network;C:\Windows\System32\drivers\btwdpan.sys [2012-1-18 89640]
S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2011-2-20 39976]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2018-10-9 116224]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\System32\drivers\netaapl64.sys [2013-7-25 23040]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
S3 PTUMLBUS;PTUML USB Composite Device Driver;C:\Windows\System32\drivers\PTUMLBUS.sys [2012-3-8 105600]
S3 PTUMLCVsp;PANTECH UML290 Connection Manager Port;C:\Windows\System32\drivers\PTUMLCVsp.sys [2012-3-8 183424]
S3 PTUMLMBMP;PANTECH UML290 Mobile Broadband;C:\Windows\System32\drivers\PTUMLMBMP.sys [2012-3-8 235776]
S3 PTUMLMdm;PANTECH UML290;C:\Windows\System32\drivers\PTUMLMdm.sys [2012-3-8 183424]
S3 PTUMLNET61;PANTECH UML290 WWAN (NDIS6.1);C:\Windows\System32\drivers\PTUMLNET61.sys [2012-3-8 111872]
S3 PTUMLNVsp;PANTECH UML290 NMEA Port;C:\Windows\System32\drivers\PTUMLNVsp.sys [2012-3-8 184448]
S3 PTUMLRMNET;PANTECH UML290 RMNET Service;C:\Windows\System32\drivers\PTUMLRMNET.sys [2012-3-8 63744]
S3 PTUMLVsp;PANTECH UML290 Diagnostic Port;C:\Windows\System32\drivers\PTUMLVsp.sys [2012-3-8 183424]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-12-18 19456]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2011-2-20 329832]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-12-18 56832]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-12-27 1255736]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120]
.
=============== Created Last 30 ================
.
2018-11-03 20:08:36 52296 ----a-w- C:\Windows\System32\drivers\staport.sys
2018-10-25 18:42:18 -------- d-----w- C:\ProgramData\LightScribe
2018-10-25 05:10:54 214824 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
2018-10-25 05:10:34 474904 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\LICLUA.EXE
2018-10-25 05:10:34 29976 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\pkeyconfig.companion.dll
.
==================== Find3M ====================
.
2018-10-04 18:32:14 842240 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2018-10-04 18:32:14 175104 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2018-09-19 08:08:04 343552 ----a-w- C:\Windows\SysWow64\msrd3x40.dll
2018-09-18 05:38:18 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2018-09-18 05:38:08 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2018-09-18 05:26:12 66560 ----a-w- C:\Windows\System32\iesetup.dll
2018-09-18 05:25:37 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2018-09-18 05:25:33 417280 ----a-w- C:\Windows\System32\html.iec
2018-09-18 05:25:22 576512 ----a-w- C:\Windows\System32\vbscript.dll
2018-09-18 05:25:10 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2018-09-18 05:15:16 116224 ----a-w- C:\Windows\System32\ieetwcollector.exe
2018-09-18 05:15:14 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2018-09-18 05:14:56 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2018-09-18 05:14:25 5779456 ----a-w- C:\Windows\System32\jscript9.dll
2018-09-18 05:09:50 969216 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2018-09-18 05:01:21 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2018-09-18 05:00:55 87552 ----a-w- C:\Windows\System32\tdc.ocx
2018-09-18 04:41:40 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2018-09-18 04:41:37 2136064 ----a-w- C:\Windows\System32\inetcpl.cpl
2018-09-18 04:35:18 4510720 ----a-w- C:\Windows\System32\wininet.dll
2018-09-18 04:31:20 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2018-09-18 04:21:27 497664 ----a-w- C:\Windows\SysWow64\vbscript.dll
2018-09-18 04:21:13 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2018-09-18 04:20:44 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2018-09-18 04:20:37 341504 ----a-w- C:\Windows\SysWow64\html.iec
2018-09-18 04:19:54 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2018-09-18 04:13:13 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2018-09-18 04:12:57 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2018-09-18 04:03:14 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2018-09-18 04:02:54 73216 ----a-w- C:\Windows\SysWow64\tdc.ocx
2018-09-18 03:57:45 4494848 ----a-w- C:\Windows\SysWow64\jscript9.dll
2018-09-18 03:50:59 2059776 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2018-09-18 03:50:44 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2018-09-18 03:37:53 4037632 ----a-w- C:\Windows\SysWow64\wininet.dll
2018-09-11 18:28:58 3227136 ----a-w- C:\Windows\System32\win32k.sys
2018-09-11 18:23:29 161280 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2018-09-11 18:22:58 129536 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2018-09-09 01:02:22 986824 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2018-09-09 01:02:17 631680 ----a-w- C:\Windows\System32\winresume.efi
2018-09-09 01:02:15 5552328 ----a-w- C:\Windows\System32\ntoskrnl.exe
2018-09-09 01:02:12 708296 ----a-w- C:\Windows\System32\winload.efi
2018-09-09 01:02:12 1680072 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2018-09-09 01:02:11 95432 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2018-09-09 01:02:11 265416 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2018-09-09 01:02:11 154824 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2018-09-09 01:01:09 1664320 ----a-w- C:\Windows\System32\ntdll.dll
2018-09-09 00:58:55 1461760 ----a-w- C:\Windows\System32\lsasrv.dll
2018-09-09 00:58:53 731648 ----a-w- C:\Windows\System32\kerberos.dll
2018-09-09 00:58:53 419840 ----a-w- C:\Windows\System32\KernelBase.dll
2018-09-09 00:58:38 405504 ----a-w- C:\Windows\System32\gdi32.dll
2018-09-09 00:58:18 44032 ----a-w- C:\Windows\System32\csrsrv.dll
2018-09-09 00:58:17 43520 ----a-w- C:\Windows\System32\cryptbase.dll
2018-09-09 00:58:17 22016 ----a-w- C:\Windows\System32\credssp.dll
2018-09-09 00:46:39 3959496 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2018-09-09 00:46:29 4054216 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2018-09-09 00:46:11 1314072 ----a-w- C:\Windows\SysWow64\ntdll.dll
2018-09-09 00:44:18 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2018-09-09 00:44:18 666112 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2018-09-09 00:44:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2018-09-09 00:44:18 275968 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2018-09-09 00:44:14 82944 ----a-w- C:\Windows\SysWow64\bcrypt.dll
2018-09-09 00:44:14 313344 ----a-w- C:\Windows\SysWow64\gdi32.dll
2018-09-09 00:44:11 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2018-09-09 00:44:07 70144 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2018-09-09 00:44:07 2755584 ----a-w- C:\Windows\SysWow64\themeui.dll
2018-09-09 00:44:04 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2018-09-09 00:43:57 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2018-09-09 00:43:56 254464 ----a-w- C:\Windows\SysWow64\schannel.dll
2018-09-09 00:43:55 141312 ----a-w- C:\Windows\SysWow64\rpchttp.dll
2018-09-09 00:43:46 223232 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2018-09-09 00:43:42 261120 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2018-09-09 00:43:42 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2018-09-09 00:43:42 1391104 ----a-w- C:\Windows\SysWow64\msxml6.dll
2018-09-09 00:43:41 60416 ----a-w- C:\Windows\SysWow64\msobjs.dll
2018-09-09 00:43:38 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll
2018-09-09 00:43:30 554496 ----a-w- C:\Windows\SysWow64\kerberos.dll
2018-09-09 00:43:07 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2018-09-09 00:25:59 148480 ----a-w- C:\Windows\System32\appidpolicyconverter.exe
2018-09-09 00:25:56 62464 ----a-w- C:\Windows\System32\drivers\appid.sys
2018-09-09 00:25:55 17920 ----a-w- C:\Windows\System32\appidcertstorecheck.exe
2018-09-09 00:25:11 64000 ----a-w- C:\Windows\System32\auditpol.exe
2018-09-09 00:21:34 338432 ----a-w- C:\Windows\System32\conhost.exe
2018-09-09 00:21:02 129024 ----a-w- C:\Windows\System32\drivers\videoprt.sys
2018-09-09 00:20:35 296960 ----a-w- C:\Windows\System32\rstrui.exe
2018-09-09 00:18:10 50176 ----a-w- C:\Windows\SysWow64\auditpol.exe
2018-09-09 00:16:54 291328 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2018-09-09 00:15:58 30720 ----a-w- C:\Windows\System32\lsass.exe
2018-09-09 00:15:55 112640 ----a-w- C:\Windows\System32\smss.exe
2018-09-09 00:15:51 64512 ----a-w- C:\Windows\System32\drivers\amdk8.sys
2018-09-09 00:15:51 62464 ----a-w- C:\Windows\System32\drivers\intelppm.sys
2018-09-09 00:15:51 60928 ----a-w- C:\Windows\System32\drivers\processr.sys
2018-09-09 00:15:51 60928 ----a-w- C:\Windows\System32\drivers\amdppm.sys
2018-09-09 00:13:19 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2018-09-09 00:13:17 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2018-09-09 00:13:17 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2018-09-09 00:13:16 2048 ----a-w- C:\Windows\SysWow64\user.exe
2018-09-09 00:12:14 36352 ----a-w- C:\Windows\SysWow64\cryptbase.dll
2018-09-09 00:12:06 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2018-09-09 00:12:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2018-09-09 00:12:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
.
============= FINISH: 13:12:35.10 ===============