Hi,I inadvertently clicked on an email link and now think I`m infected.My PC is a Medion with AMD A8-5500 ,3.2 GHZ with 4 gig RAM using windows 10 home edition.
I often leave the pc on overnight and the next morning there was a window opened which was blank but the tab was titled DSL-3782 self help,which relates to my router.I`ve managed to change all my financial passwords but having carried out scans with Malwarebytes,Spybot,and Avast anti-virus,I don`t have a clue how to remove the problem.
I ran dds and the results are below.I don`t have a windows disc,it came pre-installed.Kind regards,ingylad99
DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.17134.1 BrowserJavaVersion: 11.191.2 Run by ingylad99 at 13:16:14 on 2018-12-08 Microsoft Windows 10 Home 10.0.17134.0.1252.44.2057.18.3543.1162 [GMT 0:00] . AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Spybot - Search and Destroy *Enabled/Updated* {4C1D9672-63FE-5C90-371E-8FDA591C5B75} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p C:\WINDOWS\system32\fontdrvhost.exe C:\WINDOWS\system32\fontdrvhost.exe C:\WINDOWS\system32\svchost.exe -k RPCSS -p C:\WINDOWS\system32\dwm.exe C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k netsvcs -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\system32\atiesrxx.exe C:\WINDOWS\system32\svchost.exe -k LocalService -p C:\Windows\System32\WUDFHost.exe C:\WINDOWS\system32\atieclxx.exe C:\WINDOWS\System32\svchost.exe -k NetworkService -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k appmodel -p C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k LocalService -p C:\WINDOWS\system32\dashost.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\SysWOW64\CTsvcCDA.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\WINDOWS\system32\DbxSvc.exe C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe svchost.exe C:\Program Files\CyberLink\Shared files\RichVideo64.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p C:\Program Files\Windows Media Player\wmpnetwk.exe C:\WINDOWS\system32\sihost.exe C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup C:\WINDOWS\system32\taskhostw.exe C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Program Files\Windows Defender\MSASCuiL.exe C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Users\ingylad99\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe C:\Users\ingylad99\AppData\Local\Amazon Music\Amazon Music Helper.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\CCleaner\CCleaner64.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe C:\Windows\System32\RuntimeBroker.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Dlna Server.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe C:\Program Files\rempl\sedsvc.exe C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe C:\WINDOWS\system32\ApplicationFrameHost.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe svchost.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\smartscreen.exe C:\WINDOWS\system32\AUDIODG.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxps://www.google.com/?trackid=sp-006 uSearch Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - <orphaned> BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned> BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll uRun: [OneDrive] "C:\Users\ingylad99\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background uRun: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" uRun: [Creative MediaSource Go] "C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe" /SCB uRun: [Amazon Music] C:\Users\ingylad99\AppData\Local\Amazon Music\Amazon Music.exe uRun: [Amazon Music Helper] "C:\Users\ingylad99\AppData\Local\Amazon Music\Amazon Music Helper.exe" uRun: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" uRun: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR mRun: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" mRun: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" mRun: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mPolicies-Explorer: ConfirmFileDelete = dword:1 mPolicies-System: DSCAutomationHostEnabled = dword:2 mPolicies-System: EnableFullTrustStartupTasks = dword:2 mPolicies-System: EnableUwpStartupTasks = dword:2 mPolicies-System: SupportFullTrustStartupTasks = dword:1 mPolicies-System: SupportUwpStartupTasks = dword:1 mPolicies-System: SoftwareSASGeneration = dword:1 . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . TCP: NameServer = 192.168.1.1 TCP: Interfaces\{5ae57723-0e29-442a-86e3-461a23b72aa8} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{f3528235-6914-4b15-93e7-d52d3665993a} : DHCPNameServer = 192.168.1.1 Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Notify: SDWinLogon - SDWinLogon.dll SSODL: WebCheck - <orphaned> mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll x64-BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned> x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll x64-Run: [SecurityHealth] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui x64-mPolicies-Explorer: ConfirmFileDelete = dword:1 x64-mPolicies-System: DSCAutomationHostEnabled = dword:2 x64-mPolicies-System: EnableFullTrustStartupTasks = dword:2 x64-mPolicies-System: EnableUwpStartupTasks = dword:2 x64-mPolicies-System: SupportFullTrustStartupTasks = dword:1 x64-mPolicies-System: SupportUwpStartupTasks = dword:1 x64-mPolicies-System: SoftwareSASGeneration = dword:1 x64-IE: {2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} - <orphaned> . INFO: x64-HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-SSODL: WebCheck - <orphaned> x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll Hosts: 127.0.0.1 Spywareinfo.com Hosts: 0.0.0.0 choice.microsoft.com Hosts: 0.0.0.0 choice.microsoft.com.nstac.net Hosts: 0.0.0.0 df.telemetry.microsoft.com Hosts: 0.0.0.0 oca.telemetry.microsoft.com . Note: multiple HOSTS entries found. Please refer to Attach.txt . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\ingylad99\AppData\Roaming\Mozilla\Firefox\Profiles\0266uzwq.default-1428953881859\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxps://www.google.co.uk/ FF - plugin: C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npdeployJava1.dll FF - plugin: C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll FF - plugin: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll FF - plugin: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll FF - plugin: C:\WINDOWS\System32\Macromed\Flash\NPSWF64_32_0_0_101.dll . ============= SERVICES / DRIVERS =============== . R0 amd_sata;amd_sata;C:\WINDOWS\System32\drivers\amd_sata.sys [2013-4-4 79528] R0 amd_xata;amd_xata;C:\WINDOWS\System32\drivers\amd_xata.sys [2013-4-4 26280] R0 aswbidsh;aswbidsh;C:\WINDOWS\System32\drivers\aswbidsha.sys [2017-3-16 201768] R0 aswblog;aswblog;C:\WINDOWS\System32\drivers\aswbloga.sys [2017-3-16 346592] R0 aswbuniv;aswbuniv;C:\WINDOWS\System32\drivers\aswbuniva.sys [2017-3-16 59496] R0 aswElam;aswElam;C:\WINDOWS\System32\drivers\aswElam.sys [2018-6-25 15360] R0 aswRvrt;aswRvrt;C:\WINDOWS\System32\drivers\aswRvrt.sys [2015-10-10 87432] R0 aswVmm;aswVmm;C:\WINDOWS\System32\drivers\aswVmm.sys [2015-10-10 380464] R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2018-4-11 177192] R0 iorate;Disk I/O Rate Filter Driver;C:\WINDOWS\System32\drivers\iorate.sys [2018-4-11 58272] R0 SgrmAgent;System Guard Runtime Monitor Agent;C:\WINDOWS\System32\drivers\SgrmAgent.sys [2018-4-11 63896] R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2018-4-11 16288] R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2018-7-29 72768] R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2018-4-11 18472] R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2018-4-11 209816] R1 afunix;afunix;C:\WINDOWS\System32\drivers\afunix.sys [2018-4-11 39424] R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2018-4-11 254464] R1 aswArPot;aswArPot;C:\WINDOWS\System32\drivers\aswArPot.sys [2017-11-20 201240] R1 aswbidsdriver;aswbidsdriver;C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [2017-3-16 230344] R1 aswHdsKe;aswHdsKe;C:\WINDOWS\System32\drivers\aswHdsKe.sys [2018-1-10 239840] R1 aswKbd;aswKbd;C:\WINDOWS\System32\drivers\aswKbd.sys [2018-11-1 42288] R1 aswSnx;aswSnx;C:\WINDOWS\System32\drivers\aswSnx.sys [2015-10-10 1028680] R1 aswSP;aswSP;C:\WINDOWS\System32\drivers\aswSP.sys [2015-10-10 469272] R1 bam;Background Activity Moderator Driver;C:\WINDOWS\System32\drivers\bam.sys [2018-4-11 60320] R1 CLVirtualDrive;CLVirtualDrive;C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [2013-4-8 91712] R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2018-4-11 55808] R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-4-11 8192] R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-12-16 255472] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-4 351944] R2 AODDriver4.3;AODDriver4.3;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2014-2-11 59616] R2 aswMonFlt;aswMonFlt;C:\WINDOWS\System32\drivers\aswMonFlt.sys [2015-10-10 163208] R2 aswStm;aswStm;C:\WINDOWS\System32\drivers\aswStm.sys [2015-10-10 208472] R2 avast! Antivirus;Avast Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-12-6 324000] R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] R2 CDPUserSvc_44504;CDPUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] R2 CldFlt;Windows Cloud Files Filter Driver;C:\WINDOWS\System32\drivers\cldflt.sys [2018-7-29 414720] R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p [2018-4-11 51288] R2 CyberLink PowerDVD 10 MS Monitor Service;CyberLink PowerDVD 10 MS Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [2013-3-11 74712] R2 CyberLink PowerDVD 10 MS Service;CyberLink PowerDVD 10 MS Service;C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [2013-3-11 316376] R2 DbxSvc;DbxSvc;C:\WINDOWS\System32\DbxSvc.exe [2018-11-28 51024] R2 DusmSvc;Data Usage;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] R2 MBAMService;Malwarebytes Service;C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2018-10-3 6347056] R2 OneSyncSvc_44504;OneSyncSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] R2 osrss;Windows 10 Update Facilitation Service;C:\WINDOWS\System32\svchost.exe -k osrss [2018-4-11 51288] R2 PlexUpdateService;Plex Update Service;C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2018-7-18 2232296] R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2013-4-8 386344] R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2015-12-12 3892256] R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2015-12-12 3943664] R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2018-11-17 233712] R2 SecurityHealthService;Windows Defender Security Centre Service;C:\WINDOWS\System32\SecurityHealthService.exe [2018-7-29 760888] R2 sedsvc;Windows Remediation Service;C:\Program Files\rempl\sedsvc.exe [2018-12-2 326336] R2 SgrmBroker;System Guard Runtime Monitor Broker;C:\WINDOWS\System32\SgrmBroker.exe [2018-4-11 163336] R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2018-4-11 82432] R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R2 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2018-4-11 151960] R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R2 WpnUserService_44504;WpnUserService_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] R3 aswbIDSAgent;aswbIDSAgent;C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-12-6 8188768] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-8-31 102912] R3 camsvc;Capability Access Manager Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] R3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288] R3 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288] R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2018-12-8 260480] R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2018-4-11 20992] R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2018-4-11 604160] R3 RtlWlanu_OldIC;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;C:\WINDOWS\System32\drivers\rtwlanu_oldIC.sys [2018-4-11 3814400] R3 SEMgrSvc;Payments and NFC/SE Manager;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] R3 TokenBroker;Web Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R3 usbfilter;AMD USB Filter Driver;C:\WINDOWS\System32\drivers\usbfilter.sys [2013-4-4 57000] R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2018-4-11 264192] S2 dbupdate;Dropbox Update Service (dbupdate);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-6-20 143144] S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288] S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-4-11 20480] S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2018-4-11 1135520] S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 amdkmafd;AMD Audio Bus Lower Filter;C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-11-21 40720] S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2018-4-11 18432] S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness -p [2018-4-11 51288] S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288] S3 aswHwid;aswHwid;C:\WINDOWS\System32\drivers\aswHwid.sys [2015-10-10 46384] S3 AvastWscReporter;AvastWscReporter;C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2018-12-6 57504] S3 BcastDVRUserService_44504;BcastDVRUserService_44504;C:\WINDOWS\System32\svchost.exe -k BcastDVRUserService [2018-4-11 51288] S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2018-4-11 9728] S3 bindflt;Windows Bind Filter Driver;C:\WINDOWS\System32\drivers\bindflt.sys [2018-4-11 92056] S3 BluetoothUserService_44504;BluetoothUserService_44504;C:\WINDOWS\System32\svchost.exe -k BthAppGroup [2018-4-11 51288] S3 BTAGService;Bluetooth Audio Gateway Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288] S3 BthAvctpSvc;AVCTP service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 bttflt;Microsoft Hyper-V VHDPMEM BTT Filter;C:\WINDOWS\System32\drivers\bttflt.sys [2018-4-11 38304] S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-4-11 39936] S3 CAD;Charge Arbitration Driver;C:\WINDOWS\System32\drivers\CAD.sys [2018-4-11 60320] S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2018-4-11 123392] S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-4-11 321432] S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-4-11 1836952] S3 dbupdatem;Dropbox Update Service (dbupdatem);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-6-20 143144] S3 DevicePickerUserSvc_44504;DevicePickerUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288] S3 DevicesFlowUserSvc_44504;DevicesFlowUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288] S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2017-5-18 131984] S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-8-14 90624] S3 diagsvc;Diagnostic Execution Service;C:\WINDOWS\System32\svchost.exe -k diagnostics [2018-4-11 51288] S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2018-4-11 51288] S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-4-11 20992] S3 GoogleChromeElevationService;Google Chrome Elevation Service;C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\elevation_service.exe [2018-12-4 375776] S3 GraphicsPerfSvc;GraphicsPerfSvc;C:\WINDOWS\System32\svchost.exe -k GraphicsPerfSvcGroup [2018-4-11 51288] S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-4-11 50592] S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver;C:\WINDOWS\System32\drivers\mshwnclx.sys [2018-4-11 27136] S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2018-4-11 36864] S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2018-4-11 91648] S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-4-11 79360] S3 iaLPSS2i_GPIO2_BXT_P;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-4-11 88576] S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-4-11 171520] S3 iaLPSS2i_I2C_BXT_P;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-4-11 174592] S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2018-4-11 38128] S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2018-4-11 113152] S3 iaStorAVC;Intel Chipset SATA RAID Controller;C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-4-11 885144] S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2018-4-11 526232] S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-4-11 38912] S3 InstallService;Microsoft Store Install Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 IPT;IPT;C:\WINDOWS\System32\drivers\ipt.sys [2018-4-11 32256] S3 IpxlatCfgSvc;IP Translation Configuration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 ItSas35i;ItSas35i;C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-4-11 145816] S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-4-11 124312] S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-4-11 128408] S3 LxpSvc;Language Experience Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2018-4-11 51288] S3 mausbhost;MA-USB Host Controller Driver;C:\WINDOWS\System32\drivers\mausbhost.sys [2018-4-11 505240] S3 mausbip;MA-USB IP Filter Driver;C:\WINDOWS\System32\drivers\mausbip.sys [2018-4-11 56736] S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-4-11 75160] S3 megasas35i;megasas35i;C:\WINDOWS\System32\drivers\megasas35i.sys [2018-4-11 82328] S3 MessagingService_44504;MessagingService_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-4-11 842648] S3 NaturalAuthentication;Natural Authentication;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2018-4-11 108952] S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2018-4-11 175104] S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2018-4-11 197632] S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 nvdimm;Microsoft NVDIMM device driver;C:\WINDOWS\System32\drivers\nvdimm.sys [2018-4-11 104448] S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2018-4-11 58776] S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2018-4-11 61848] S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 PimIndexMaintenanceSvc_44504;PimIndexMaintenanceSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 PNPMEM;Microsoft Memory Module Driver;C:\WINDOWS\System32\drivers\pnpmem.sys [2018-4-11 16896] S3 PrintWorkflowUserSvc_44504;PrintWorkflowUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k PrintWorkflow [2018-4-11 51288] S3 PushToInstall;Windows PushToInstall Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 Ramdisk;Windows RAM Disk Driver;C:\WINDOWS\System32\drivers\ramdisk.sys [2018-4-11 39840] S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2018-7-29 1921944] S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2018-7-29 945568] S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k rdxgroup [2018-4-11 51288] S3 rhproxy;Resource Hub proxy driver;C:\WINDOWS\System32\drivers\rhproxy.sys [2018-4-11 104448] S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2018-4-11 51288] S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2018-8-14 128920] S3 SDFRd;SDF Reflector;C:\WINDOWS\System32\drivers\SDFRd.sys [2018-4-11 33176] S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2018-4-11 1273344] S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2018-4-11 154528] S3 SharedRealitySvc;Spatial Data Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2018-4-11 51288] S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 SpatialGraphFilter;Holographic Spatial Graph Filter;C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-4-11 57752] S3 spectrum;Windows Perception Service;C:\WINDOWS\System32\Spectrum.exe [2018-7-29 976384] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2017-5-18 166288] S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2018-7-29 105368] S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2018-7-29 48544] S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2018-4-11 303616] S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2018-4-11 128512] S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2018-4-11 152576] S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2018-4-11 57856] S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2018-4-11 45056] S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2018-7-29 29600] S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2018-4-11 282008] S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2018-4-11 98200] S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2018-4-11 144288] S3 UnistoreSvc_44504;UnistoreSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2018-4-11 29088] S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2018-4-11 67992] S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2018-4-11 28064] S3 UserDataSvc_44504;UserDataSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 VacSvc;Volumetric Audio Compositor Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2018-11-13 36352] S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2018-8-14 10240] S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 WaaSMedicSvc;Windows Update Medic Service;C:\WINDOWS\System32\svchost.exe -k wusvcs -p [2018-4-11 51288] S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] S3 WarpJITSvc;WarpJITSvc;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288] S3 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2018-4-11 82944] S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2018-11-13 787456] S3 WdmCompanionFilter;WdmCompanionFilter;C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [2018-4-11 21408] S3 WdNisDrv;Windows Defender Antivirus Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2018-4-11 44032] S3 WdNisSvc;Windows Defender Antivirus Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2018-4-11 4451616] S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2018-4-11 51288] S3 WFDSConMgrSvc;Wi-Fi Direct Services Connection Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2018-4-11 32152] S3 WinNat;Windows NAT Driver;C:\WINDOWS\System32\drivers\winnat.sys [2018-11-13 228864] S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2018-4-11 64920] S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 wlpasvc;Local Profile Assistant Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 WpcMonSvc;Parental Controls;C:\WINDOWS\System32\svchost.exe -k LocalService [2018-4-11 51288] S3 xbgm;Xbox Game Monitoring;C:\WINDOWS\System32\xbgmsvc.exe [2018-4-11 59512] S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2018-7-29 295424] S3 XboxGipSvc;Xbox Accessory Management Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2018-4-11 46592] S4 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc -p [2018-4-11 51288] S4 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S4 hvcrash;hvcrash;C:\WINDOWS\System32\drivers\hvcrash.sys [2018-4-11 33184] S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S4 ssh-agent;OpenSSH Authentication Agent;C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-4-12 495616] S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] . =============== File Associations =============== . FileExt: .txt: soffice.StarWriterDocument.6="C:\Program Files (x86)\OpenOffice 4\program\swriter.exe" -o "%1" [UserChoice] . =============== Created Last 30 ================ . 2018-12-08 12:56:36 260480 ----a-w- C:\WINDOWS\System32\drivers\mbamswissarmy.sys 2018-12-08 09:52:59 -------- d-----w- C:\Users\ingylad99\AppData\Local\ESET 2018-12-06 07:38:06 5213184 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerInstaller.exe 2018-11-28 13:09:04 51024 ----a-w- C:\WINDOWS\System32\DbxSvc.exe 2018-11-28 13:09:04 47792 ----a-w- C:\WINDOWS\System32\drivers\dbx-dev.sys 2018-11-28 13:09:04 47792 ----a-w- C:\WINDOWS\System32\drivers\dbx-canary.sys 2018-11-28 13:09:04 45752 ----a-w- C:\WINDOWS\System32\drivers\dbx-stable.sys 2018-11-13 20:16:52 835688 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe 2018-11-13 20:16:52 179808 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl 2018-11-13 18:54:18 7520088 ----a-w- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll 2018-11-13 18:54:18 6570368 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll 2018-11-13 18:54:15 25855488 ----a-w- C:\WINDOWS\System32\edgehtml.dll 2018-11-13 18:54:13 23861760 ----a-w- C:\WINDOWS\System32\Hydrogen.dll 2018-11-13 18:54:06 4527776 ----a-w- C:\WINDOWS\System32\sppsvc.exe 2018-11-13 18:54:03 22015488 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll 2018-11-13 18:54:01 19525120 ----a-w- C:\WINDOWS\System32\HologramCompositor.dll 2018-11-13 18:54:00 9089848 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe . ==================== Find3M ==================== . 2018-12-08 12:51:36 65536 ----a-w- C:\WINDOWS\System32\spu_storage.bin 2018-12-06 18:56:43 239840 ----a-w- C:\WINDOWS\System32\drivers\aswHdsKe.sys 2018-11-01 11:49:26 348160 ----a-w- C:\WINDOWS\System32\MusNotifyIcon.exe 2018-11-01 11:45:20 1376672 ----a-w- C:\WINDOWS\System32\ole32.dll 2018-11-01 11:45:04 1617320 ----a-w- C:\WINDOWS\System32\sppobjs.dll 2018-11-01 11:32:09 64000 ----a-w- C:\WINDOWS\System32\iemigplugin.dll 2018-11-01 11:31:51 6602240 ----a-w- C:\WINDOWS\System32\twinui.dll 2018-11-01 11:30:26 122368 ----a-w- C:\WINDOWS\System32\musdialoghandlers.dll 2018-11-01 11:30:15 29696 ----a-w- C:\WINDOWS\System32\msisip.dll 2018-11-01 11:29:05 73728 ----a-w- C:\WINDOWS\System32\SMSRouter.dll 2018-11-01 11:28:55 253952 ----a-w- C:\WINDOWS\System32\prnntfy.dll 2018-11-01 11:28:25 4491264 ----a-w- C:\WINDOWS\System32\xpsrchvw.exe 2018-11-01 11:28:09 3649024 ----a-w- C:\WINDOWS\System32\win32kfull.sys 2018-11-01 11:27:22 878592 ----a-w- C:\WINDOWS\System32\CPFilters.dll 2018-11-01 11:27:01 1121792 ----a-w- C:\WINDOWS\System32\TSWorkspace.dll 2018-11-01 11:26:51 1364992 ----a-w- C:\WINDOWS\System32\bcastdvruserservice.dll 2018-11-01 11:26:21 503296 ----a-w- C:\WINDOWS\System32\sppcext.dll 2018-11-01 11:25:57 577024 ----a-w- C:\WINDOWS\System32\SppExtComObj.Exe 2018-11-01 10:09:54 1027000 ----a-w- C:\WINDOWS\SysWow64\ole32.dll 2018-11-01 09:59:13 5669888 ----a-w- C:\WINDOWS\SysWow64\twinui.dll 2018-11-01 09:56:37 24576 ----a-w- C:\WINDOWS\SysWow64\msisip.dll 2018-11-01 09:56:03 226304 ----a-w- C:\WINDOWS\SysWow64\prnntfy.dll 2018-11-01 09:54:26 3397632 ----a-w- C:\WINDOWS\SysWow64\xpsrchvw.exe 2018-11-01 09:53:44 908288 ----a-w- C:\WINDOWS\SysWow64\TSWorkspace.dll 2018-11-01 09:52:45 2892800 ----a-w- C:\WINDOWS\SysWow64\win32kfull.sys 2018-11-01 07:39:00 1035256 ----a-w- C:\WINDOWS\System32\ApplyTrustOffline.exe 2018-11-01 07:38:08 269336 ----a-w- C:\WINDOWS\System32\SgrmEnclave_secure.dll 2018-11-01 07:37:57 272408 ----a-w- C:\WINDOWS\System32\SgrmEnclave.dll 2018-11-01 07:28:29 1029944 ----a-w- C:\WINDOWS\System32\hvax64.exe 2018-11-01 07:28:20 1221432 ----a-w- C:\WINDOWS\System32\hvix64.exe 2018-11-01 07:28:17 134968 ----a-w- C:\WINDOWS\System32\hvloader.dll 2018-11-01 07:28:13 566568 ----a-w- C:\WINDOWS\System32\tcblaunch.exe 2018-11-01 07:28:11 76088 ----a-w- C:\WINDOWS\System32\drivers\hvservice.sys 2018-11-01 07:28:09 1062712 ----a-w- C:\WINDOWS\System32\SecConfig.efi 2018-11-01 07:27:52 491200 ----a-w- C:\WINDOWS\System32\mf.dll 2018-11-01 07:27:36 1017152 ----a-w- C:\WINDOWS\System32\msmpeg2adec.dll 2018-11-01 07:26:42 3180080 ----a-w- C:\WINDOWS\System32\d3d11.dll 2018-11-01 07:26:28 3291640 ----a-w- C:\WINDOWS\System32\combase.dll 2018-11-01 07:26:22 1363536 ----a-w- C:\WINDOWS\System32\WinTypes.dll 2018-11-01 07:26:01 7432120 ----a-w- C:\WINDOWS\System32\windows.storage.dll 2018-11-01 07:03:03 34816 ----a-w- C:\WINDOWS\System32\dusmtask.exe 2018-11-01 07:03:00 3397120 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll 2018-11-01 07:02:22 47104 ----a-w- C:\WINDOWS\System32\dusmapi.dll 2018-11-01 07:02:21 23552 ----a-w- C:\WINDOWS\System32\CSystemEventsBrokerClient.dll 2018-11-01 07:01:20 7057408 ----a-w- C:\WINDOWS\System32\mos.dll 2018-11-01 07:01:10 9084928 ----a-w- C:\WINDOWS\System32\BingMaps.dll 2018-11-01 07:00:25 8189440 ----a-w- C:\WINDOWS\System32\Windows.Data.Pdf.dll 2018-11-01 07:00:16 433664 ----a-w- C:\WINDOWS\System32\MusNotification.exe 2018-11-01 07:00:14 3392000 ----a-w- C:\WINDOWS\System32\tquery.dll 2018-11-01 07:00:11 6031360 ----a-w- C:\WINDOWS\System32\d2d1.dll 2018-11-01 07:00:10 209408 ----a-w- C:\WINDOWS\System32\AppXApplicabilityBlob.dll 2018-11-01 06:59:14 241152 ----a-w- C:\WINDOWS\System32\tetheringservice.dll 2018-11-01 06:59:09 107520 ----a-w- C:\WINDOWS\System32\dab.dll 2018-11-01 06:59:04 176128 ----a-w- C:\WINDOWS\System32\WPTaskScheduler.dll 2018-11-01 06:59:02 192000 ----a-w- C:\WINDOWS\System32\scrrun.dll 2018-11-01 06:59:00 322048 ----a-w- C:\WINDOWS\System32\MusNotificationUx.exe 2018-11-01 06:58:48 4383744 ----a-w- C:\WINDOWS\System32\EdgeContent.dll 2018-11-01 06:58:43 530432 ----a-w- C:\WINDOWS\System32\MapConfiguration.dll 2018-11-01 06:58:43 154112 ----a-w- C:\WINDOWS\System32\Chakradiag.dll 2018-11-01 06:58:42 149504 ----a-w- C:\WINDOWS\System32\dssvc.dll 2018-11-01 06:58:11 273408 ----a-w- C:\WINDOWS\System32\ubpm.dll 2018-11-01 06:58:10 4867072 ----a-w- C:\WINDOWS\System32\jscript9.dll 2018-11-01 06:58:03 7573504 ----a-w- C:\WINDOWS\System32\Chakra.dll 2018-11-01 06:57:53 835584 ----a-w- C:\WINDOWS\System32\PhoneService.dll 2018-11-01 06:57:47 356352 ----a-w- C:\WINDOWS\System32\dusmsvc.dll 2018-11-01 06:57:44 898560 ----a-w- C:\WINDOWS\System32\MusUpdateHandlers.dll 2018-11-01 06:57:42 2364928 ----a-w- C:\WINDOWS\System32\OpcServices.dll 2018-11-01 06:57:41 3381248 ----a-w- C:\WINDOWS\System32\MapRouter.dll 2018-11-01 06:57:41 265728 ----a-w- C:\WINDOWS\System32\psmsrv.dll 2018-11-01 06:57:38 2825728 ----a-w- C:\WINDOWS\System32\MapGeocoder.dll 2018-11-01 06:57:27 726528 ----a-w- C:\WINDOWS\System32\jscript9diag.dll 2018-11-01 06:57:19 894464 ----a-w- C:\WINDOWS\System32\webplatstorageserver.dll 2018-11-01 06:57:16 1708544 ----a-w- C:\WINDOWS\System32\MSPhotography.dll 2018-11-01 06:57:14 808448 ----a-w- C:\WINDOWS\System32\EdgeManager.dll 2018-11-01 06:57:04 281600 ----a-w- C:\WINDOWS\System32\SystemEventsBrokerServer.dll 2018-11-01 06:56:57 1768448 ----a-w- C:\WINDOWS\System32\audiosrv.dll 2018-11-01 06:56:53 2172928 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll 2018-11-01 06:56:33 506880 ----a-w- C:\WINDOWS\System32\netprofmsvc.dll 2018-11-01 06:56:25 2929664 ----a-w- C:\WINDOWS\System32\xpsservices.dll 2018-11-01 06:56:19 1395200 ----a-w- C:\WINDOWS\System32\TokenBroker.dll 2018-11-01 06:55:23 2738688 ----a-w- C:\WINDOWS\System32\mssrch.dll 2018-11-01 06:55:15 684544 ----a-w- C:\WINDOWS\System32\AudioEndpointBuilder.dll 2018-11-01 06:55:09 1058304 ----a-w- C:\WINDOWS\System32\SearchIndexer.exe 2018-11-01 06:54:44 1225216 ----a-w- C:\WINDOWS\System32\MapsStore.dll 2018-11-01 06:54:41 916480 ----a-w- C:\WINDOWS\System32\Windows.Security.Authentication.Web.Core.dll 2018-11-01 06:54:39 1551360 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.desktop.dll 2018-11-01 06:54:23 1023488 ----a-w- C:\WINDOWS\System32\ShareHost.dll 2018-11-01 06:54:21 1264640 ----a-w- C:\WINDOWS\System32\JpMapControl.dll 2018-11-01 06:54:13 606208 ----a-w- C:\WINDOWS\System32\updatehandlers.dll 2018-11-01 06:54:12 943616 ----a-w- C:\WINDOWS\System32\BingOnlineServices.dll 2018-11-01 06:54:11 1679360 ----a-w- C:\WINDOWS\System32\wwansvc.dll 2018-11-01 06:54:06 884736 ----a-w- C:\WINDOWS\System32\MapControlCore.dll 2018-11-01 06:54:03 895488 ----a-w- C:\WINDOWS\System32\Windows.Security.Authentication.OnlineId.dll 2018-11-01 06:54:00 796672 ----a-w- C:\WINDOWS\System32\mssvp.dll 2018-11-01 06:53:53 2248192 ----a-w- C:\WINDOWS\System32\wlidsvc.dll 2018-11-01 06:53:53 1159680 ----a-w- C:\WINDOWS\System32\rpcss.dll 2018-11-01 06:53:52 542208 ----a-w- C:\WINDOWS\System32\vbscript.dll 2018-11-01 06:53:51 1373696 ----a-w- C:\WINDOWS\System32\usocore.dll 2018-11-01 06:53:47 889344 ----a-w- C:\WINDOWS\System32\schedsvc.dll 2018-11-01 06:53:26 406528 ----a-w- C:\WINDOWS\System32\SearchProtocolHost.exe . ============= FINISH: 13:17:37.93 ===============
I often leave the pc on overnight and the next morning there was a window opened which was blank but the tab was titled DSL-3782 self help,which relates to my router.I`ve managed to change all my financial passwords but having carried out scans with Malwarebytes,Spybot,and Avast anti-virus,I don`t have a clue how to remove the problem.
I ran dds and the results are below.I don`t have a windows disc,it came pre-installed.Kind regards,ingylad99
DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 11.0.17134.1 BrowserJavaVersion: 11.191.2 Run by ingylad99 at 13:16:14 on 2018-12-08 Microsoft Windows 10 Home 10.0.17134.0.1252.44.2057.18.3543.1162 [GMT 0:00] . AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Spybot - Search and Destroy *Enabled/Updated* {4C1D9672-63FE-5C90-371E-8FDA591C5B75} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p C:\WINDOWS\system32\fontdrvhost.exe C:\WINDOWS\system32\fontdrvhost.exe C:\WINDOWS\system32\svchost.exe -k RPCSS -p C:\WINDOWS\system32\dwm.exe C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k netsvcs -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\system32\atiesrxx.exe C:\WINDOWS\system32\svchost.exe -k LocalService -p C:\Windows\System32\WUDFHost.exe C:\WINDOWS\system32\atieclxx.exe C:\WINDOWS\System32\svchost.exe -k NetworkService -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k appmodel -p C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p C:\WINDOWS\system32\svchost.exe -k LocalService -p C:\WINDOWS\system32\dashost.exe C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p C:\WINDOWS\System32\spoolsv.exe C:\WINDOWS\SysWOW64\CTsvcCDA.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\WINDOWS\system32\DbxSvc.exe C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe svchost.exe C:\Program Files\CyberLink\Shared files\RichVideo64.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p C:\Program Files\Windows Media Player\wmpnetwk.exe C:\WINDOWS\system32\sihost.exe C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup C:\WINDOWS\system32\taskhostw.exe C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\RuntimeBroker.exe C:\Program Files\Windows Defender\MSASCuiL.exe C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Users\ingylad99\AppData\Local\Microsoft\OneDrive\OneDrive.exe C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe C:\Users\ingylad99\AppData\Local\Amazon Music\Amazon Music Helper.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\CCleaner\CCleaner64.exe C:\WINDOWS\system32\wbem\unsecapp.exe C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe C:\Windows\System32\RuntimeBroker.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Dlna Server.exe C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe C:\Program Files\rempl\sedsvc.exe C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe C:\WINDOWS\system32\ApplicationFrameHost.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe svchost.exe C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe C:\Windows\System32\RuntimeBroker.exe C:\Windows\System32\smartscreen.exe C:\WINDOWS\system32\AUDIODG.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxps://www.google.com/?trackid=sp-006 uSearch Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - <orphaned> BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned> BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll uRun: [OneDrive] "C:\Users\ingylad99\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background uRun: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" uRun: [Creative MediaSource Go] "C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe" /SCB uRun: [Amazon Music] C:\Users\ingylad99\AppData\Local\Amazon Music\Amazon Music.exe uRun: [Amazon Music Helper] "C:\Users\ingylad99\AppData\Local\Amazon Music\Amazon Music Helper.exe" uRun: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe" uRun: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR mRun: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" mRun: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" mRun: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mPolicies-Explorer: ConfirmFileDelete = dword:1 mPolicies-System: DSCAutomationHostEnabled = dword:2 mPolicies-System: EnableFullTrustStartupTasks = dword:2 mPolicies-System: EnableUwpStartupTasks = dword:2 mPolicies-System: SupportFullTrustStartupTasks = dword:1 mPolicies-System: SupportUwpStartupTasks = dword:1 mPolicies-System: SoftwareSASGeneration = dword:1 . INFO: HKCU has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . . INFO: HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . TCP: NameServer = 192.168.1.1 TCP: Interfaces\{5ae57723-0e29-442a-86e3-461a23b72aa8} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{f3528235-6914-4b15-93e7-d52d3665993a} : DHCPNameServer = 192.168.1.1 Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Notify: SDWinLogon - SDWinLogon.dll SSODL: WebCheck - <orphaned> mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll x64-BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned> x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll x64-Run: [SecurityHealth] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui x64-mPolicies-Explorer: ConfirmFileDelete = dword:1 x64-mPolicies-System: DSCAutomationHostEnabled = dword:2 x64-mPolicies-System: EnableFullTrustStartupTasks = dword:2 x64-mPolicies-System: EnableUwpStartupTasks = dword:2 x64-mPolicies-System: SupportFullTrustStartupTasks = dword:1 x64-mPolicies-System: SupportUwpStartupTasks = dword:1 x64-mPolicies-System: SoftwareSASGeneration = dword:1 x64-IE: {2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} - <orphaned> . INFO: x64-HKLM has more than 50 listed domains. If you wish to scan all of them, select the 'Force scan all domains' option. . x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-SSODL: WebCheck - <orphaned> x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll Hosts: 127.0.0.1 Spywareinfo.com Hosts: 0.0.0.0 choice.microsoft.com Hosts: 0.0.0.0 choice.microsoft.com.nstac.net Hosts: 0.0.0.0 df.telemetry.microsoft.com Hosts: 0.0.0.0 oca.telemetry.microsoft.com . Note: multiple HOSTS entries found. Please refer to Attach.txt . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\ingylad99\AppData\Roaming\Mozilla\Firefox\Profiles\0266uzwq.default-1428953881859\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxps://www.google.co.uk/ FF - plugin: C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npdeployJava1.dll FF - plugin: C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll FF - plugin: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll FF - plugin: c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrlui.dll FF - plugin: C:\WINDOWS\System32\Macromed\Flash\NPSWF64_32_0_0_101.dll . ============= SERVICES / DRIVERS =============== . R0 amd_sata;amd_sata;C:\WINDOWS\System32\drivers\amd_sata.sys [2013-4-4 79528] R0 amd_xata;amd_xata;C:\WINDOWS\System32\drivers\amd_xata.sys [2013-4-4 26280] R0 aswbidsh;aswbidsh;C:\WINDOWS\System32\drivers\aswbidsha.sys [2017-3-16 201768] R0 aswblog;aswblog;C:\WINDOWS\System32\drivers\aswbloga.sys [2017-3-16 346592] R0 aswbuniv;aswbuniv;C:\WINDOWS\System32\drivers\aswbuniva.sys [2017-3-16 59496] R0 aswElam;aswElam;C:\WINDOWS\System32\drivers\aswElam.sys [2018-6-25 15360] R0 aswRvrt;aswRvrt;C:\WINDOWS\System32\drivers\aswRvrt.sys [2015-10-10 87432] R0 aswVmm;aswVmm;C:\WINDOWS\System32\drivers\aswVmm.sys [2015-10-10 380464] R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2018-4-11 177192] R0 iorate;Disk I/O Rate Filter Driver;C:\WINDOWS\System32\drivers\iorate.sys [2018-4-11 58272] R0 SgrmAgent;System Guard Runtime Monitor Agent;C:\WINDOWS\System32\drivers\SgrmAgent.sys [2018-4-11 63896] R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2018-4-11 16288] R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2018-7-29 72768] R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2018-4-11 18472] R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2018-4-11 209816] R1 afunix;afunix;C:\WINDOWS\System32\drivers\afunix.sys [2018-4-11 39424] R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2018-4-11 254464] R1 aswArPot;aswArPot;C:\WINDOWS\System32\drivers\aswArPot.sys [2017-11-20 201240] R1 aswbidsdriver;aswbidsdriver;C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [2017-3-16 230344] R1 aswHdsKe;aswHdsKe;C:\WINDOWS\System32\drivers\aswHdsKe.sys [2018-1-10 239840] R1 aswKbd;aswKbd;C:\WINDOWS\System32\drivers\aswKbd.sys [2018-11-1 42288] R1 aswSnx;aswSnx;C:\WINDOWS\System32\drivers\aswSnx.sys [2015-10-10 1028680] R1 aswSP;aswSP;C:\WINDOWS\System32\drivers\aswSP.sys [2015-10-10 469272] R1 bam;Background Activity Moderator Driver;C:\WINDOWS\System32\drivers\bam.sys [2018-4-11 60320] R1 CLVirtualDrive;CLVirtualDrive;C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [2013-4-8 91712] R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2018-4-11 55808] R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-4-11 8192] R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-12-16 255472] R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-4 351944] R2 AODDriver4.3;AODDriver4.3;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2014-2-11 59616] R2 aswMonFlt;aswMonFlt;C:\WINDOWS\System32\drivers\aswMonFlt.sys [2015-10-10 163208] R2 aswStm;aswStm;C:\WINDOWS\System32\drivers\aswStm.sys [2015-10-10 208472] R2 avast! Antivirus;Avast Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-12-6 324000] R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] R2 CDPUserSvc_44504;CDPUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] R2 CldFlt;Windows Cloud Files Filter Driver;C:\WINDOWS\System32\drivers\cldflt.sys [2018-7-29 414720] R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p [2018-4-11 51288] R2 CyberLink PowerDVD 10 MS Monitor Service;CyberLink PowerDVD 10 MS Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [2013-3-11 74712] R2 CyberLink PowerDVD 10 MS Service;CyberLink PowerDVD 10 MS Service;C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [2013-3-11 316376] R2 DbxSvc;DbxSvc;C:\WINDOWS\System32\DbxSvc.exe [2018-11-28 51024] R2 DusmSvc;Data Usage;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] R2 MBAMService;Malwarebytes Service;C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2018-10-3 6347056] R2 OneSyncSvc_44504;OneSyncSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] R2 osrss;Windows 10 Update Facilitation Service;C:\WINDOWS\System32\svchost.exe -k osrss [2018-4-11 51288] R2 PlexUpdateService;Plex Update Service;C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2018-7-18 2232296] R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2013-4-8 386344] R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2015-12-12 3892256] R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2015-12-12 3943664] R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2018-11-17 233712] R2 SecurityHealthService;Windows Defender Security Centre Service;C:\WINDOWS\System32\SecurityHealthService.exe [2018-7-29 760888] R2 sedsvc;Windows Remediation Service;C:\Program Files\rempl\sedsvc.exe [2018-12-2 326336] R2 SgrmBroker;System Guard Runtime Monitor Broker;C:\WINDOWS\System32\SgrmBroker.exe [2018-4-11 163336] R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2018-4-11 82432] R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R2 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2018-4-11 151960] R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R2 WpnUserService_44504;WpnUserService_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] R3 aswbIDSAgent;aswbIDSAgent;C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-12-6 8188768] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-8-31 102912] R3 camsvc;Capability Access Manager Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] R3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288] R3 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288] R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2018-12-8 260480] R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2018-4-11 20992] R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2018-4-11 604160] R3 RtlWlanu_OldIC;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;C:\WINDOWS\System32\drivers\rtwlanu_oldIC.sys [2018-4-11 3814400] R3 SEMgrSvc;Payments and NFC/SE Manager;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] R3 TokenBroker;Web Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] R3 usbfilter;AMD USB Filter Driver;C:\WINDOWS\System32\drivers\usbfilter.sys [2013-4-4 57000] R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2018-4-11 264192] S2 dbupdate;Dropbox Update Service (dbupdate);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-6-20 143144] S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288] S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-4-11 20480] S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2018-4-11 1135520] S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 amdkmafd;AMD Audio Bus Lower Filter;C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-11-21 40720] S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2018-4-11 18432] S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness -p [2018-4-11 51288] S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288] S3 aswHwid;aswHwid;C:\WINDOWS\System32\drivers\aswHwid.sys [2015-10-10 46384] S3 AvastWscReporter;AvastWscReporter;C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2018-12-6 57504] S3 BcastDVRUserService_44504;BcastDVRUserService_44504;C:\WINDOWS\System32\svchost.exe -k BcastDVRUserService [2018-4-11 51288] S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2018-4-11 9728] S3 bindflt;Windows Bind Filter Driver;C:\WINDOWS\System32\drivers\bindflt.sys [2018-4-11 92056] S3 BluetoothUserService_44504;BluetoothUserService_44504;C:\WINDOWS\System32\svchost.exe -k BthAppGroup [2018-4-11 51288] S3 BTAGService;Bluetooth Audio Gateway Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288] S3 BthAvctpSvc;AVCTP service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 bttflt;Microsoft Hyper-V VHDPMEM BTT Filter;C:\WINDOWS\System32\drivers\bttflt.sys [2018-4-11 38304] S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-4-11 39936] S3 CAD;Charge Arbitration Driver;C:\WINDOWS\System32\drivers\CAD.sys [2018-4-11 60320] S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2018-4-11 123392] S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-4-11 321432] S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-4-11 1836952] S3 dbupdatem;Dropbox Update Service (dbupdatem);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-6-20 143144] S3 DevicePickerUserSvc_44504;DevicePickerUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288] S3 DevicesFlowUserSvc_44504;DevicesFlowUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288] S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2017-5-18 131984] S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-8-14 90624] S3 diagsvc;Diagnostic Execution Service;C:\WINDOWS\System32\svchost.exe -k diagnostics [2018-4-11 51288] S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2018-4-11 51288] S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-4-11 20992] S3 GoogleChromeElevationService;Google Chrome Elevation Service;C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\elevation_service.exe [2018-12-4 375776] S3 GraphicsPerfSvc;GraphicsPerfSvc;C:\WINDOWS\System32\svchost.exe -k GraphicsPerfSvcGroup [2018-4-11 51288] S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-4-11 50592] S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver;C:\WINDOWS\System32\drivers\mshwnclx.sys [2018-4-11 27136] S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2018-4-11 36864] S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2018-4-11 91648] S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-4-11 79360] S3 iaLPSS2i_GPIO2_BXT_P;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-4-11 88576] S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-4-11 171520] S3 iaLPSS2i_I2C_BXT_P;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-4-11 174592] S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2018-4-11 38128] S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2018-4-11 113152] S3 iaStorAVC;Intel Chipset SATA RAID Controller;C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-4-11 885144] S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2018-4-11 526232] S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-4-11 38912] S3 InstallService;Microsoft Store Install Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 IPT;IPT;C:\WINDOWS\System32\drivers\ipt.sys [2018-4-11 32256] S3 IpxlatCfgSvc;IP Translation Configuration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 ItSas35i;ItSas35i;C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-4-11 145816] S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-4-11 124312] S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-4-11 128408] S3 LxpSvc;Language Experience Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2018-4-11 51288] S3 mausbhost;MA-USB Host Controller Driver;C:\WINDOWS\System32\drivers\mausbhost.sys [2018-4-11 505240] S3 mausbip;MA-USB IP Filter Driver;C:\WINDOWS\System32\drivers\mausbip.sys [2018-4-11 56736] S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-4-11 75160] S3 megasas35i;megasas35i;C:\WINDOWS\System32\drivers\megasas35i.sys [2018-4-11 82328] S3 MessagingService_44504;MessagingService_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-4-11 842648] S3 NaturalAuthentication;Natural Authentication;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2018-4-11 108952] S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2018-4-11 175104] S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2018-4-11 197632] S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 nvdimm;Microsoft NVDIMM device driver;C:\WINDOWS\System32\drivers\nvdimm.sys [2018-4-11 104448] S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2018-4-11 58776] S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2018-4-11 61848] S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 PimIndexMaintenanceSvc_44504;PimIndexMaintenanceSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 PNPMEM;Microsoft Memory Module Driver;C:\WINDOWS\System32\drivers\pnpmem.sys [2018-4-11 16896] S3 PrintWorkflowUserSvc_44504;PrintWorkflowUserSvc_44504;C:\WINDOWS\System32\svchost.exe -k PrintWorkflow [2018-4-11 51288] S3 PushToInstall;Windows PushToInstall Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 Ramdisk;Windows RAM Disk Driver;C:\WINDOWS\System32\drivers\ramdisk.sys [2018-4-11 39840] S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2018-7-29 1921944] S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2018-7-29 945568] S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k rdxgroup [2018-4-11 51288] S3 rhproxy;Resource Hub proxy driver;C:\WINDOWS\System32\drivers\rhproxy.sys [2018-4-11 104448] S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2018-4-11 51288] S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2018-8-14 128920] S3 SDFRd;SDF Reflector;C:\WINDOWS\System32\drivers\SDFRd.sys [2018-4-11 33176] S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2018-4-11 1273344] S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2018-4-11 154528] S3 SharedRealitySvc;Spatial Data Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2018-4-11 51288] S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 SpatialGraphFilter;Holographic Spatial Graph Filter;C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-4-11 57752] S3 spectrum;Windows Perception Service;C:\WINDOWS\System32\Spectrum.exe [2018-7-29 976384] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2017-5-18 166288] S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2018-7-29 105368] S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2018-7-29 48544] S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2018-4-11 303616] S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2018-4-11 128512] S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2018-4-11 152576] S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2018-4-11 57856] S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2018-4-11 45056] S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2018-7-29 29600] S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2018-4-11 282008] S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2018-4-11 98200] S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2018-4-11 144288] S3 UnistoreSvc_44504;UnistoreSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2018-4-11 29088] S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2018-4-11 67992] S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2018-4-11 28064] S3 UserDataSvc_44504;UserDataSvc_44504;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288] S3 VacSvc;Volumetric Audio Compositor Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2018-11-13 36352] S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2018-8-14 10240] S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288] S3 WaaSMedicSvc;Windows Update Medic Service;C:\WINDOWS\System32\svchost.exe -k wusvcs -p [2018-4-11 51288] S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288] S3 WarpJITSvc;WarpJITSvc;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288] S3 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2018-4-11 82944] S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2018-11-13 787456] S3 WdmCompanionFilter;WdmCompanionFilter;C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [2018-4-11 21408] S3 WdNisDrv;Windows Defender Antivirus Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2018-4-11 44032] S3 WdNisSvc;Windows Defender Antivirus Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2018-4-11 4451616] S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2018-4-11 51288] S3 WFDSConMgrSvc;Wi-Fi Direct Services Connection Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2018-4-11 32152] S3 WinNat;Windows NAT Driver;C:\WINDOWS\System32\drivers\winnat.sys [2018-11-13 228864] S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2018-4-11 64920] S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 wlpasvc;Local Profile Assistant Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288] S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] S3 WpcMonSvc;Parental Controls;C:\WINDOWS\System32\svchost.exe -k LocalService [2018-4-11 51288] S3 xbgm;Xbox Game Monitoring;C:\WINDOWS\System32\xbgmsvc.exe [2018-4-11 59512] S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2018-7-29 295424] S3 XboxGipSvc;Xbox Accessory Management Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2018-4-11 46592] S4 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc -p [2018-4-11 51288] S4 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S4 hvcrash;hvcrash;C:\WINDOWS\System32\drivers\hvcrash.sys [2018-4-11 33184] S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288] S4 ssh-agent;OpenSSH Authentication Agent;C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-4-12 495616] S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288] . =============== File Associations =============== . FileExt: .txt: soffice.StarWriterDocument.6="C:\Program Files (x86)\OpenOffice 4\program\swriter.exe" -o "%1" [UserChoice] . =============== Created Last 30 ================ . 2018-12-08 12:56:36 260480 ----a-w- C:\WINDOWS\System32\drivers\mbamswissarmy.sys 2018-12-08 09:52:59 -------- d-----w- C:\Users\ingylad99\AppData\Local\ESET 2018-12-06 07:38:06 5213184 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerInstaller.exe 2018-11-28 13:09:04 51024 ----a-w- C:\WINDOWS\System32\DbxSvc.exe 2018-11-28 13:09:04 47792 ----a-w- C:\WINDOWS\System32\drivers\dbx-dev.sys 2018-11-28 13:09:04 47792 ----a-w- C:\WINDOWS\System32\drivers\dbx-canary.sys 2018-11-28 13:09:04 45752 ----a-w- C:\WINDOWS\System32\drivers\dbx-stable.sys 2018-11-13 20:16:52 835688 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe 2018-11-13 20:16:52 179808 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl 2018-11-13 18:54:18 7520088 ----a-w- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll 2018-11-13 18:54:18 6570368 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll 2018-11-13 18:54:15 25855488 ----a-w- C:\WINDOWS\System32\edgehtml.dll 2018-11-13 18:54:13 23861760 ----a-w- C:\WINDOWS\System32\Hydrogen.dll 2018-11-13 18:54:06 4527776 ----a-w- C:\WINDOWS\System32\sppsvc.exe 2018-11-13 18:54:03 22015488 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll 2018-11-13 18:54:01 19525120 ----a-w- C:\WINDOWS\System32\HologramCompositor.dll 2018-11-13 18:54:00 9089848 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe . ==================== Find3M ==================== . 2018-12-08 12:51:36 65536 ----a-w- C:\WINDOWS\System32\spu_storage.bin 2018-12-06 18:56:43 239840 ----a-w- C:\WINDOWS\System32\drivers\aswHdsKe.sys 2018-11-01 11:49:26 348160 ----a-w- C:\WINDOWS\System32\MusNotifyIcon.exe 2018-11-01 11:45:20 1376672 ----a-w- C:\WINDOWS\System32\ole32.dll 2018-11-01 11:45:04 1617320 ----a-w- C:\WINDOWS\System32\sppobjs.dll 2018-11-01 11:32:09 64000 ----a-w- C:\WINDOWS\System32\iemigplugin.dll 2018-11-01 11:31:51 6602240 ----a-w- C:\WINDOWS\System32\twinui.dll 2018-11-01 11:30:26 122368 ----a-w- C:\WINDOWS\System32\musdialoghandlers.dll 2018-11-01 11:30:15 29696 ----a-w- C:\WINDOWS\System32\msisip.dll 2018-11-01 11:29:05 73728 ----a-w- C:\WINDOWS\System32\SMSRouter.dll 2018-11-01 11:28:55 253952 ----a-w- C:\WINDOWS\System32\prnntfy.dll 2018-11-01 11:28:25 4491264 ----a-w- C:\WINDOWS\System32\xpsrchvw.exe 2018-11-01 11:28:09 3649024 ----a-w- C:\WINDOWS\System32\win32kfull.sys 2018-11-01 11:27:22 878592 ----a-w- C:\WINDOWS\System32\CPFilters.dll 2018-11-01 11:27:01 1121792 ----a-w- C:\WINDOWS\System32\TSWorkspace.dll 2018-11-01 11:26:51 1364992 ----a-w- C:\WINDOWS\System32\bcastdvruserservice.dll 2018-11-01 11:26:21 503296 ----a-w- C:\WINDOWS\System32\sppcext.dll 2018-11-01 11:25:57 577024 ----a-w- C:\WINDOWS\System32\SppExtComObj.Exe 2018-11-01 10:09:54 1027000 ----a-w- C:\WINDOWS\SysWow64\ole32.dll 2018-11-01 09:59:13 5669888 ----a-w- C:\WINDOWS\SysWow64\twinui.dll 2018-11-01 09:56:37 24576 ----a-w- C:\WINDOWS\SysWow64\msisip.dll 2018-11-01 09:56:03 226304 ----a-w- C:\WINDOWS\SysWow64\prnntfy.dll 2018-11-01 09:54:26 3397632 ----a-w- C:\WINDOWS\SysWow64\xpsrchvw.exe 2018-11-01 09:53:44 908288 ----a-w- C:\WINDOWS\SysWow64\TSWorkspace.dll 2018-11-01 09:52:45 2892800 ----a-w- C:\WINDOWS\SysWow64\win32kfull.sys 2018-11-01 07:39:00 1035256 ----a-w- C:\WINDOWS\System32\ApplyTrustOffline.exe 2018-11-01 07:38:08 269336 ----a-w- C:\WINDOWS\System32\SgrmEnclave_secure.dll 2018-11-01 07:37:57 272408 ----a-w- C:\WINDOWS\System32\SgrmEnclave.dll 2018-11-01 07:28:29 1029944 ----a-w- C:\WINDOWS\System32\hvax64.exe 2018-11-01 07:28:20 1221432 ----a-w- C:\WINDOWS\System32\hvix64.exe 2018-11-01 07:28:17 134968 ----a-w- C:\WINDOWS\System32\hvloader.dll 2018-11-01 07:28:13 566568 ----a-w- C:\WINDOWS\System32\tcblaunch.exe 2018-11-01 07:28:11 76088 ----a-w- C:\WINDOWS\System32\drivers\hvservice.sys 2018-11-01 07:28:09 1062712 ----a-w- C:\WINDOWS\System32\SecConfig.efi 2018-11-01 07:27:52 491200 ----a-w- C:\WINDOWS\System32\mf.dll 2018-11-01 07:27:36 1017152 ----a-w- C:\WINDOWS\System32\msmpeg2adec.dll 2018-11-01 07:26:42 3180080 ----a-w- C:\WINDOWS\System32\d3d11.dll 2018-11-01 07:26:28 3291640 ----a-w- C:\WINDOWS\System32\combase.dll 2018-11-01 07:26:22 1363536 ----a-w- C:\WINDOWS\System32\WinTypes.dll 2018-11-01 07:26:01 7432120 ----a-w- C:\WINDOWS\System32\windows.storage.dll 2018-11-01 07:03:03 34816 ----a-w- C:\WINDOWS\System32\dusmtask.exe 2018-11-01 07:03:00 3397120 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll 2018-11-01 07:02:22 47104 ----a-w- C:\WINDOWS\System32\dusmapi.dll 2018-11-01 07:02:21 23552 ----a-w- C:\WINDOWS\System32\CSystemEventsBrokerClient.dll 2018-11-01 07:01:20 7057408 ----a-w- C:\WINDOWS\System32\mos.dll 2018-11-01 07:01:10 9084928 ----a-w- C:\WINDOWS\System32\BingMaps.dll 2018-11-01 07:00:25 8189440 ----a-w- C:\WINDOWS\System32\Windows.Data.Pdf.dll 2018-11-01 07:00:16 433664 ----a-w- C:\WINDOWS\System32\MusNotification.exe 2018-11-01 07:00:14 3392000 ----a-w- C:\WINDOWS\System32\tquery.dll 2018-11-01 07:00:11 6031360 ----a-w- C:\WINDOWS\System32\d2d1.dll 2018-11-01 07:00:10 209408 ----a-w- C:\WINDOWS\System32\AppXApplicabilityBlob.dll 2018-11-01 06:59:14 241152 ----a-w- C:\WINDOWS\System32\tetheringservice.dll 2018-11-01 06:59:09 107520 ----a-w- C:\WINDOWS\System32\dab.dll 2018-11-01 06:59:04 176128 ----a-w- C:\WINDOWS\System32\WPTaskScheduler.dll 2018-11-01 06:59:02 192000 ----a-w- C:\WINDOWS\System32\scrrun.dll 2018-11-01 06:59:00 322048 ----a-w- C:\WINDOWS\System32\MusNotificationUx.exe 2018-11-01 06:58:48 4383744 ----a-w- C:\WINDOWS\System32\EdgeContent.dll 2018-11-01 06:58:43 530432 ----a-w- C:\WINDOWS\System32\MapConfiguration.dll 2018-11-01 06:58:43 154112 ----a-w- C:\WINDOWS\System32\Chakradiag.dll 2018-11-01 06:58:42 149504 ----a-w- C:\WINDOWS\System32\dssvc.dll 2018-11-01 06:58:11 273408 ----a-w- C:\WINDOWS\System32\ubpm.dll 2018-11-01 06:58:10 4867072 ----a-w- C:\WINDOWS\System32\jscript9.dll 2018-11-01 06:58:03 7573504 ----a-w- C:\WINDOWS\System32\Chakra.dll 2018-11-01 06:57:53 835584 ----a-w- C:\WINDOWS\System32\PhoneService.dll 2018-11-01 06:57:47 356352 ----a-w- C:\WINDOWS\System32\dusmsvc.dll 2018-11-01 06:57:44 898560 ----a-w- C:\WINDOWS\System32\MusUpdateHandlers.dll 2018-11-01 06:57:42 2364928 ----a-w- C:\WINDOWS\System32\OpcServices.dll 2018-11-01 06:57:41 3381248 ----a-w- C:\WINDOWS\System32\MapRouter.dll 2018-11-01 06:57:41 265728 ----a-w- C:\WINDOWS\System32\psmsrv.dll 2018-11-01 06:57:38 2825728 ----a-w- C:\WINDOWS\System32\MapGeocoder.dll 2018-11-01 06:57:27 726528 ----a-w- C:\WINDOWS\System32\jscript9diag.dll 2018-11-01 06:57:19 894464 ----a-w- C:\WINDOWS\System32\webplatstorageserver.dll 2018-11-01 06:57:16 1708544 ----a-w- C:\WINDOWS\System32\MSPhotography.dll 2018-11-01 06:57:14 808448 ----a-w- C:\WINDOWS\System32\EdgeManager.dll 2018-11-01 06:57:04 281600 ----a-w- C:\WINDOWS\System32\SystemEventsBrokerServer.dll 2018-11-01 06:56:57 1768448 ----a-w- C:\WINDOWS\System32\audiosrv.dll 2018-11-01 06:56:53 2172928 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll 2018-11-01 06:56:33 506880 ----a-w- C:\WINDOWS\System32\netprofmsvc.dll 2018-11-01 06:56:25 2929664 ----a-w- C:\WINDOWS\System32\xpsservices.dll 2018-11-01 06:56:19 1395200 ----a-w- C:\WINDOWS\System32\TokenBroker.dll 2018-11-01 06:55:23 2738688 ----a-w- C:\WINDOWS\System32\mssrch.dll 2018-11-01 06:55:15 684544 ----a-w- C:\WINDOWS\System32\AudioEndpointBuilder.dll 2018-11-01 06:55:09 1058304 ----a-w- C:\WINDOWS\System32\SearchIndexer.exe 2018-11-01 06:54:44 1225216 ----a-w- C:\WINDOWS\System32\MapsStore.dll 2018-11-01 06:54:41 916480 ----a-w- C:\WINDOWS\System32\Windows.Security.Authentication.Web.Core.dll 2018-11-01 06:54:39 1551360 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.desktop.dll 2018-11-01 06:54:23 1023488 ----a-w- C:\WINDOWS\System32\ShareHost.dll 2018-11-01 06:54:21 1264640 ----a-w- C:\WINDOWS\System32\JpMapControl.dll 2018-11-01 06:54:13 606208 ----a-w- C:\WINDOWS\System32\updatehandlers.dll 2018-11-01 06:54:12 943616 ----a-w- C:\WINDOWS\System32\BingOnlineServices.dll 2018-11-01 06:54:11 1679360 ----a-w- C:\WINDOWS\System32\wwansvc.dll 2018-11-01 06:54:06 884736 ----a-w- C:\WINDOWS\System32\MapControlCore.dll 2018-11-01 06:54:03 895488 ----a-w- C:\WINDOWS\System32\Windows.Security.Authentication.OnlineId.dll 2018-11-01 06:54:00 796672 ----a-w- C:\WINDOWS\System32\mssvp.dll 2018-11-01 06:53:53 2248192 ----a-w- C:\WINDOWS\System32\wlidsvc.dll 2018-11-01 06:53:53 1159680 ----a-w- C:\WINDOWS\System32\rpcss.dll 2018-11-01 06:53:52 542208 ----a-w- C:\WINDOWS\System32\vbscript.dll 2018-11-01 06:53:51 1373696 ----a-w- C:\WINDOWS\System32\usocore.dll 2018-11-01 06:53:47 889344 ----a-w- C:\WINDOWS\System32\schedsvc.dll 2018-11-01 06:53:26 406528 ----a-w- C:\WINDOWS\System32\SearchProtocolHost.exe . ============= FINISH: 13:17:37.93 ===============
