smartpackagetracker popups

Without deliberately installing anything, malware (smartpackagetracker) now causes popups several times a day.
Example screenshot attached.
Please help.
**********************
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.17134.1 BrowserJavaVersion: 11.201.2
Run by Kenneth Rivalsi at 17:51:17 on 2019-02-02
Microsoft Windows 10 Home 10.0.17134.0.1252.1.1033.18.7990.3923 [GMT -5:00]
.
AV: Norton Internet Security *Enabled/Updated* {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security *Enabled* {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
.
============== Running Processes ===============
.
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\Windows\System32\WUDFHost.exe
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\Hpservice.exe
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\dashost.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
C:\WINDOWS\system32\DbxSvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k iissvcs
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k SPOCJS
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
C:\Program Files (x86)\Norton Internet Security\Engine\22.16.3.21\NortonSecurity.exe
C:\WINDOWS\system32\SearchIndexer.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\mqsvc.exe
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
C:\Program Files\rempl\sedsvc.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\System32\fontdrvhost.exe
C:\WINDOWS\System32\dwm.exe
C:\WINDOWS\system32\atieclxx.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Norton Internet Security\Engine\22.16.3.21\NortonSecurity.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\taskhostw.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Users\Kenneth Rivalsi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\ImmersiveControlPanel\SystemSettings.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
C:\WINDOWS\system32\browser_broker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\Video.UI.exe
C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\WINDOWS\system32\AUDIODG.EXE
C:\WINDOWS\splwow64.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\prevhost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxps://search.norton.com/?prt=NIS&chn=1550&geo=US&ver=22.11.2.7&locale=en_US&guid=C2839700-452A-11E0-874C-EB4BB1146502&doi=2018-02-01&o=APN11915
uSearch Bar = Preserve
uProxyOverride = <-loopback>;*.local
BHO: Norton Password Manager: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine32\22.16.3.21\coIEPlg.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine32\22.16.3.21\coIEPlg.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine32\22.16.3.21\coIEPlg.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
EB: {1A6FE369-F28C-4AD9-A3E6-2BCB50807CF1} - <orphaned>
uRun: [googletalk] C:\Users\Kenneth Rivalsi\AppData\Roaming\Google\Google Talk\googletalk.exe /autostart
uRun: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
uRun: [OneDrive] "C:\Users\Kenneth Rivalsi\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [Corel Photo Downloader] "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
uRun: [GoogleChromeAutoLaunch_1CCAC9EBABA8234BAB75526DDDC69B7B] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
mRun: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
mRun: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\KENNET~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
StartupFolder: C:\Users\KENNET~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\PMBMED~1.LNK - C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
StartupFolder: C:\Users\KENNET~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\SENDTO~1.LNK - C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
mPolicies-System: DSCAutomationHostEnabled = dword:2
mPolicies-System: EnableFullTrustStartupTasks = dword:2
mPolicies-System: EnableUwpStartupTasks = dword:2
mPolicies-System: SupportFullTrustStartupTasks = dword:1
mPolicies-System: SupportUwpStartupTasks = dword:1
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{d49ed8a4-1478-4426-9e3d-52970edcd979} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{efa0cdec-f76a-4709-b1d4-4b5f82b2f6f1} : DHCPNameServer = 192.168.1.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\msosb.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll
x64-BHO: Norton Password Manager: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.16.3.21\coIEPlg.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.16.3.21\coIEPlg.dll
x64-Run: [SecurityHealth] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background
x64-Run: [AdobeGCInvoker-1.0] "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
x64-Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
x64-Run: [Persistence] C:\WINDOWS\System32\igfxpers.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-mPolicies-System: EnableFullTrustStartupTasks = dword:2
x64-mPolicies-System: EnableUwpStartupTasks = dword:2
x64-mPolicies-System: SupportFullTrustStartupTasks = dword:1
x64-mPolicies-System: SupportUwpStartupTasks = dword:1
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
.
============= SERVICES / DRIVERS ===============
.
R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\WINDOWS\System32\drivers\amdkmpfd.sys [2016-7-1 82664]
R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2018-4-11 177192]
R0 iorate;Disk I/O Rate Filter Driver;C:\WINDOWS\System32\drivers\iorate.sys [2018-12-12 58168]
R0 PxHlpa64;PxHlpa64;C:\WINDOWS\System32\drivers\PxHlpa64.sys [2011-3-3 56336]
R0 SgrmAgent;System Guard Runtime Monitor Agent;C:\WINDOWS\System32\drivers\SgrmAgent.sys [2018-4-11 63896]
R0 SymEFASI;Symantec Extended File Attributes (SI);C:\WINDOWS\System32\drivers\NGCx64\1610030.015\SymEFASI64.sys [2019-1-19 1969328]
R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2018-4-11 16288]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2018-7-11 72768]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2018-4-11 18472]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2018-4-11 209816]
R1 afunix;afunix;C:\WINDOWS\System32\drivers\afunix.sys [2018-4-11 39424]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2018-4-11 254464]
R1 bam;Background Activity Moderator Driver;C:\WINDOWS\System32\drivers\bam.sys [2018-4-11 60320]
R1 BHDrvx64;BHDrvx64;C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\BASHDefs\20190129.006\BHDrvx64.sys [2019-1-31 1925104]
R1 ccSet_NGC;NGC Settings Manager;C:\WINDOWS\System32\drivers\NGCx64\1610030.015\ccsetx64.sys [2019-1-19 189152]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2018-4-11 55808]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-4-11 8192]
R1 IDSVia64;IDSVia64;C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20190201.062\IDSvia64.sys [2019-2-1 1424904]
R1 SymIRON;Symantec Iron Driver;C:\WINDOWS\System32\drivers\NGCx64\1610030.015\IRONx64.sys [2019-1-19 308416]
R1 SymNetS;Symantec Network Security WFP Driver;C:\WINDOWS\System32\drivers\NGCx64\1610030.015\symnets.sys [2019-1-19 567024]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2016-10-6 89600]
R2 AGMService;Adobe Genuine Monitor Service;C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-5-11 2917864]
R2 AGSService;Adobe Genuine Software Integrity Service;C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-8-2 2709480]
R2 AMD External Events Utility;AMD External Events Utility;C:\WINDOWS\System32\atiesrxx.exe [2015-12-16 255472]
R2 Apple Mobile Device Service;Apple Mobile Device Service;C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-8-23 83768]
R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
R2 CDPUserSvc_3fa73c4;Connected Devices Platform User Service_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R2 CinemaNow Service;CinemaNow Service;C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe [2010-6-12 400368]
R2 CldFlt;Windows Cloud Files Filter Driver;C:\WINDOWS\System32\drivers\cldflt.sys [2018-8-15 414720]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2015-1-18 3058392]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p [2018-4-11 51288]
R2 DbxSvc;DbxSvc;C:\WINDOWS\System32\DbxSvc.exe [2019-1-22 51024]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc -p [2018-4-11 51288]
R2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288]
R2 DusmSvc;Data Usage;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
R2 hpsrv;HP Service;C:\WINDOWS\System32\hpservice.exe [2011-5-13 30520]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-2-15 34872]
R2 IntelHaxm;Intel HAXM Service;C:\WINDOWS\System32\drivers\IntelHaxm.sys [2017-4-13 180904]
R2 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-6-1 2804568]
R2 NortonSecurity;Norton Security;C:\Program Files (x86)\Norton Internet Security\Engine\22.16.3.21\NortonSecurity.exe [2019-1-19 328648]
R2 nsWscSvc;Norton WSC Service;C:\Program Files (x86)\Norton Internet Security\Engine\22.16.3.21\nsWscSvc.exe [2019-1-19 915712]
R2 OneSyncSvc_3fa73c4;Sync Host_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R2 PSI_SVC_2_x64;Corel License Validation Service V2 x64, Powered by arvato;C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2014-4-30 337776]
R2 SecurityHealthService;Windows Defender Security Center Service;C:\WINDOWS\System32\SecurityHealthService.exe [2018-8-15 760888]
R2 sedsvc;Windows Remediation Service;C:\Program Files\rempl\sedsvc.exe [2019-1-11 325432]
R2 SgrmBroker;System Guard Runtime Monitor Broker;C:\WINDOWS\System32\SgrmBroker.exe [2018-4-11 163336]
R2 SPOCJS;Jack Sensing Service for USB Audio;C:\WINDOWS\System32\svchost.exe -k SPOCJS [2018-4-11 51288]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2018-12-12 82432]
R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-3-30 253960]
R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-2-8 2533400]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R2 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2018-4-11 151960]
R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R2 WpnUserService_3fa73c4;Windows Push Notifications User Service_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R3 CAD;Charge Arbitration Driver;C:\WINDOWS\System32\drivers\CAD.sys [2018-4-11 60320]
R3 camsvc;Capability Access Manager Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
R3 clwvd;HP Webcam Splitter;C:\WINDOWS\System32\drivers\clwvd.sys [2010-6-25 32880]
R3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2018-4-11 153296]
R3 HECIx64;Intel(R) Management Engine Interface;C:\WINDOWS\System32\drivers\HECIx64.sys [2010-4-30 56344]
R3 Impcd;Impcd;C:\WINDOWS\System32\drivers\Impcd.sys [2009-10-26 151936]
R3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-4-11 38912]
R3 LAN9500;LAN9500 USB 2.0 to Ethernet 10/100 Adapter Service;C:\WINDOWS\System32\drivers\lan9500-x64-n650f.sys [2018-1-18 111312]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2018-4-11 20992]
R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2018-4-11 604160]
R3 SEMgrSvc;Payments and NFC/SE Manager;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
R3 SmbDrvI;SmbDrvI;C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2016-3-30 52904]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
R3 TokenBroker;Web Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R3 usbaud;HP USB Media Port Rep Audio;C:\WINDOWS\System32\drivers\usbaud64.sys [2011-11-16 232064]
R3 wdkmd;Intel WiDi KMD;C:\WINDOWS\System32\drivers\WDKMD.sys [2010-4-16 39832]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2018-4-11 264192]
S0 SymELAM;Symantec ELAM Driver;C:\WINDOWS\System32\drivers\NGCx64\1610030.015\SymELAM.sys [2019-1-19 25744]
S2 CLKMSVC10_C6F09094;CyberLink Product - 2011/02/08 00:50:00;C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\HDDVD\NavFilter\kmsvc.exe [2011-2-8 245232]
S2 dbupdate;Dropbox Update Service (dbupdate);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-6-27 143144]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-4-11 20480]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2018-4-11 1135520]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2018-4-11 18432]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness -p [2018-4-11 51288]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\WINDOWS\System32\drivers\AtihdWT6.sys [2015-5-28 102912]
S3 BcastDVRUserService_3fa73c4;GameDVR and Broadcast User Service_3fa73c4;C:\WINDOWS\System32\svchost.exe -k BcastDVRUserService [2018-4-11 51288]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2018-4-11 9728]
S3 bindflt;Windows Bind Filter Driver;C:\WINDOWS\System32\drivers\bindflt.sys [2018-12-12 92688]
S3 BluetoothUserService_3fa73c4;Bluetooth User Support Service_3fa73c4;C:\WINDOWS\System32\svchost.exe -k BthAppGroup [2018-4-11 51288]
S3 BTAGService;Bluetooth Audio Gateway Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288]
S3 BthAvctpSvc;AVCTP service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 bttflt;Microsoft Hyper-V VHDPMEM BTT Filter;C:\WINDOWS\System32\drivers\bttflt.sys [2018-4-11 38304]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-4-11 39936]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2018-4-11 123392]
S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-4-11 321432]
S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-4-11 1836952]
S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288]
S3 dbupdatem;Dropbox Update Service (dbupdatem);C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-6-27 143144]
S3 DevicePickerUserSvc_3fa73c4;DevicePicker_3fa73c4;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288]
S3 DevicesFlowUserSvc_3fa73c4;DevicesFlow_3fa73c4;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2017-5-18 131984]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-8-15 90624]
S3 diagsvc;Diagnostic Execution Service;C:\WINDOWS\System32\svchost.exe -k diagnostics [2018-4-11 51288]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2018-4-11 51288]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-4-11 20992]
S3 GoogleChromeElevationService;Google Chrome Elevation Service;C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [2018-12-13 443872]
S3 GraphicsPerfSvc;GraphicsPerfSvc;C:\WINDOWS\System32\svchost.exe -k GraphicsPerfSvcGroup [2018-4-11 51288]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-4-11 50592]
S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver;C:\WINDOWS\System32\drivers\mshwnclx.sys [2018-4-11 27136]
S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2018-4-11 36864]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2018-4-11 91648]
S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-4-11 79360]
S3 iaLPSS2i_GPIO2_BXT_P;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-4-11 88576]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-4-11 171520]
S3 iaLPSS2i_I2C_BXT_P;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-4-11 174592]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2018-4-11 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2018-4-11 113152]
S3 iaStorAVC;Intel Chipset SATA RAID Controller;C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-4-11 885144]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2018-4-11 526232]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 InstallService;Microsoft Store Install Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 IPT;IPT;C:\WINDOWS\System32\drivers\ipt.sys [2018-4-11 32256]
S3 IpxlatCfgSvc;IP Translation Configuration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 ItSas35i;ItSas35i;C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-4-11 145816]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-4-11 124312]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-4-11 128408]
S3 LxpSvc;Language Experience Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2018-4-11 51288]
S3 mausbhost;MA-USB Host Controller Driver;C:\WINDOWS\System32\drivers\mausbhost.sys [2018-4-11 505240]
S3 mausbip;MA-USB IP Filter Driver;C:\WINDOWS\System32\drivers\mausbip.sys [2018-4-11 56736]
S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-4-11 75160]
S3 megasas35i;megasas35i;C:\WINDOWS\System32\drivers\megasas35i.sys [2018-4-11 82328]
S3 MessagingService_3fa73c4;MessagingService_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-4-11 842648]
S3 NaturalAuthentication;Natural Authentication;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2018-4-11 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2018-4-11 175104]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2018-4-11 197632]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 nvdimm;Microsoft NVDIMM device driver;C:\WINDOWS\System32\drivers\nvdimm.sys [2018-4-11 104448]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2018-4-11 58776]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2018-4-11 61848]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 PimIndexMaintenanceSvc_3fa73c4;Contact Data_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
S3 PNPMEM;Microsoft Memory Module Driver;C:\WINDOWS\System32\drivers\pnpmem.sys [2018-4-11 16896]
S3 PrintWorkflowUserSvc_3fa73c4;PrintWorkflow_3fa73c4;C:\WINDOWS\System32\svchost.exe -k PrintWorkflow [2018-4-11 51288]
S3 PushToInstall;Windows PushToInstall Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 Ramdisk;Windows RAM Disk Driver;C:\WINDOWS\System32\drivers\ramdisk.sys [2018-4-11 39840]
S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2018-7-11 1921944]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2018-7-11 945568]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k rdxgroup [2018-4-11 51288]
S3 rhproxy;Resource Hub proxy driver;C:\WINDOWS\System32\drivers\rhproxy.sys [2018-4-11 104448]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\WINDOWS\System32\drivers\RtsUStor.sys [2011-2-8 232992]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2018-4-11 51288]
S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2018-8-15 128920]
S3 SDFRd;SDF Reflector;C:\WINDOWS\System32\drivers\SDFRd.sys [2018-4-11 33176]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2018-4-11 1273344]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2018-4-11 154528]
S3 SharedRealitySvc;Spatial Data Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2018-4-11 51288]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter;C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-4-11 57752]
S3 spectrum;Windows Perception Service;C:\WINDOWS\System32\Spectrum.exe [2018-6-13 976384]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2017-5-18 166288]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2018-6-2 105368]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2018-7-11 48544]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2018-4-11 303616]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2018-4-11 128512]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2018-4-11 152576]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2018-4-11 57856]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2018-4-11 45056]
S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2018-6-13 29600]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2018-4-11 282008]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2018-4-11 98200]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2018-4-11 144288]
S3 UnistoreSvc_3fa73c4;User Data Storage_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2018-4-11 29088]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2018-4-11 67992]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2018-4-11 28064]
S3 UserDataSvc_3fa73c4;User Data Access_3fa73c4;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
S3 VacSvc;Volumetric Audio Compositor Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2018-11-13 36352]
S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2018-8-15 10240]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2018-4-11 51288]
S3 WaaSMedicSvc;Windows Update Medic Service;C:\WINDOWS\System32\svchost.exe -k wusvcs -p [2018-4-11 51288]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
S3 WarpJITSvc;WarpJITSvc;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288]
S3 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2018-12-12 83456]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2018-11-13 787456]
S3 WdmCompanionFilter;WdmCompanionFilter;C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [2018-4-11 21408]
S3 WdNisDrv;Windows Defender Antivirus Network Inspection System Driver;C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [2018-6-3 61992]
S3 WdNisSvc;Windows Defender Antivirus Network Inspection Service;C:\ProgramData\Microsoft\Windows Defender\Platform\4.16.17656.18052-0\NisSrv.exe [2018-6-3 4682552]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2018-4-11 51288]
S3 WFDSConMgrSvc;Wi-Fi Direct Services Connection Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2018-4-11 32152]
S3 WinNat;Windows NAT Driver;C:\WINDOWS\System32\drivers\winnat.sys [2018-11-13 228864]
S3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Users\Kenneth Rivalsi\Downloads\RealTemp_370\WinRing0x64.sys [2008-7-26 14544]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2018-4-11 64920]
S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 wlpasvc;Local Profile Assistant Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 WpcMonSvc;Parental Controls;C:\WINDOWS\System32\svchost.exe -k LocalService [2018-4-11 51288]
S3 wpCtrlDrv_NGC;Symantec Webcam Control functional driver;C:\WINDOWS\System32\drivers\NGCx64\1610030.015\wpCtrlDrv.sys [2019-1-19 1011056]
S3 xbgm;Xbox Game Monitoring;C:\WINDOWS\System32\xbgmsvc.exe [2018-4-11 59512]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2018-7-11 295424]
S3 XboxGipSvc;Xbox Accessory Management Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2018-4-11 46592]
S4 hvcrash;hvcrash;C:\WINDOWS\System32\drivers\hvcrash.sys [2018-4-11 33184]
S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S4 ssh-agent;OpenSSH Authentication Agent;C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-4-12 495616]
S4 SymEvnt;Symantec Eventing Platform;C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\SymPlatform\SymEvnt.sys [2018-10-31 678616]
S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2019-02-02 12:44:30 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{DB2F1EDA-8BDF-431C-9D9D-ACC43068430C}
2019-02-01 22:04:06 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{7B00B56A-BF9B-4A57-B726-40F8386A44C9}
2019-02-01 03:53:43 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{48D85AA0-4352-4CDE-A03F-E92B4903C7F6}
2019-01-31 15:53:24 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{C8632BF5-8216-42CA-B816-1D9F1D1E57FD}
2019-01-31 03:53:08 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{A1710E35-1571-421E-BC56-C0CFC48DE8EA}
2019-01-31 01:19:51 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\Corel
2019-01-30 15:53:06 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{9DD22711-FE3D-4307-8C85-D8143D13999E}
2019-01-30 12:59:59 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\NPE
2019-01-30 03:52:49 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{37979D0F-6AD2-486F-8526-CC4FEBD02181}
2019-01-29 13:59:19 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{443520E7-1D7D-4716-8041-DF507332C9D0}
2019-01-29 01:47:17 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{871B61C0-4631-4874-A435-32B1D179D053}
2019-01-28 13:46:57 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{632F33DA-3902-4340-8873-FA8384994BE9}
2019-01-28 01:46:39 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{E5C22127-8DF2-4E29-BB41-66B16EF400AC}
2019-01-27 13:46:34 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{BEB1308B-4C01-4293-80E0-1F5588C5A5D6}
2019-01-27 01:46:15 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{BE134CAC-9173-4AB0-AC55-A4AD02F6A165}
2019-01-27 00:04:12 -------- d-----w- C:\Program Files\Common Files\Protexis
2019-01-26 23:52:54 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\Corel PhotoMirage
2019-01-26 23:40:13 -------- d-----w- C:\Program Files (x86)\Pic to Painting
2019-01-26 23:00:10 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\Corel PaintShop Pro
2019-01-26 22:59:25 -------- d-----w- C:\Program Files (x86)\Common Files\Protexis
2019-01-26 22:55:41 -------- d-----w- C:\Program Files\Corel
2019-01-26 22:51:21 -------- d-----w- C:\Program Files (x86)\Corel
2019-01-26 13:45:47 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{F6B042D4-1BD0-4387-A25C-43C88CB59779}
2019-01-26 01:17:34 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{143DC145-EF4B-44B5-B16C-5BF00D727582}
2019-01-25 13:17:25 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{BF1FDE1B-F8B8-4DB1-AFBA-6404FD65FE64}
2019-01-25 01:10:35 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{F689CC1C-9B73-4FF2-8ADE-76A5137BB5DD}
2019-01-24 13:10:13 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{076721B4-D008-4144-9BA4-532D43682CBF}
2019-01-23 14:02:47 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{7E107F90-4C8F-4BC9-ADDE-F771579CEFAA}
2019-01-23 02:02:23 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{899EC385-3E36-4262-BF77-BAC53A401987}
2019-01-22 14:00:54 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{AC561291-B94F-4E92-84DD-2145787BBBFF}
2019-01-22 13:14:16 51024 ----a-w- C:\WINDOWS\System32\DbxSvc.exe
2019-01-22 13:14:16 47800 ----a-w- C:\WINDOWS\System32\drivers\dbx-stable.sys
2019-01-22 13:14:16 47800 ----a-w- C:\WINDOWS\System32\drivers\dbx-dev.sys
2019-01-22 13:14:16 47800 ----a-w- C:\WINDOWS\System32\drivers\dbx-canary.sys
2019-01-22 02:00:38 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{93DD09F3-1CA1-4452-8AD2-8E28F3FD0B1E}
2019-01-21 14:00:17 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{C30691BF-8144-4C62-B66C-BA0351F1A0C1}
2019-01-21 02:00:01 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{380ADDEF-4864-4EAF-9E51-EAACA59B79AF}
2019-01-20 13:59:36 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{93E7171C-560A-44C8-8451-309CD6F21D5C}
2019-01-20 00:43:08 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{552F86BE-B751-49B3-9496-86C9F0777686}
2019-01-19 12:54:13 -------- d-----w- C:\Program Files (x86)\Common Files\Oracle
2019-01-19 12:50:07 468616 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\symtdiv.sys
2019-01-19 12:50:07 1011056 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\wpCtrlDrv.sys
2019-01-19 12:50:06 855256 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\srtsp64.sys
2019-01-19 12:50:06 567024 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\symnets.sys
2019-01-19 12:50:06 49880 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\srtspx64.sys
2019-01-19 12:50:06 308416 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\IRONx64.sys
2019-01-19 12:50:06 25744 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\SymELAM.sys
2019-01-19 12:50:06 1969328 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\SymEFASI64.sys
2019-01-19 12:50:06 189152 ----a-w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015\ccsetx64.sys
2019-01-19 12:49:39 -------- d-----w- C:\WINDOWS\System32\drivers\NGCx64\1610030.015
2019-01-19 12:42:50 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{B3349087-0FD0-478F-833E-71AAF27C6B9C}
2019-01-18 22:33:14 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{C375CB9F-9825-4ED0-9FA4-131C5C26C642}
2019-01-18 02:08:09 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{9F98F57B-CD78-4DA0-8851-F025120EC003}
2019-01-17 14:07:01 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{C3DBA6E3-407D-47C2-B3B0-5127E0A7BDEF}
2019-01-17 07:49:36 18650984 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
2019-01-16 18:19:30 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{0416AFAC-3F62-4605-86E6-DA7192BE0294}
2019-01-16 03:45:48 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{F16E8C41-A57F-4455-A9C8-2ACE0EA185F0}
2019-01-15 15:45:45 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{D5B8C18A-102A-476E-8F35-20D0B632E96C}
2019-01-15 03:45:29 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{28EAD64A-76D8-444B-B184-2BB856192E56}
2019-01-14 22:56:48 -------- d-----w- C:\ProgramData\Protexis64
2019-01-14 15:45:24 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{A263B674-C2E6-448D-9BF4-7C47C13F40ED}
2019-01-14 03:45:08 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{17A3666E-2543-460C-92B1-8460CB3BFC6F}
2019-01-13 15:45:05 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{9E8C03C8-89D0-4D15-AF7A-C9B9B6EDBE12}
2019-01-13 03:44:45 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{1AF0A363-0B8E-40C8-9959-A16BF84DDDE0}
2019-01-12 14:47:45 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{DD95300F-7E0A-4A17-AABF-D0AAA54BA8FF}
2019-01-12 01:51:09 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{6942C30F-5FDC-4166-A6A7-66B16EB40C2C}
2019-01-11 13:51:03 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{A3AD598E-9E6B-42C5-B1FB-D0A6A927D2D2}
2019-01-10 20:16:40 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{37EC8F1A-B9A0-4A73-BCB1-9683B6D8E634}
2019-01-10 20:14:05 6161920 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerInstaller.exe
2019-01-08 13:21:35 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{BA34B9D9-9026-4D2D-9888-F53B78B0017D}
2019-01-07 16:00:34 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{6B55169D-6CE7-4EF1-8777-5C893D6353E1}
2019-01-07 04:00:18 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{58F6D167-C9BE-40B1-8B8E-17526BF6B8EF}
2019-01-06 16:00:15 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{D520E386-FCB8-455B-AC37-F1E7442910F2}
2019-01-06 03:59:58 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{3B02DB7F-EB73-4480-9D00-AF6C547B1E39}
2019-01-05 13:48:13 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{D1D55737-8256-4F07-AB95-A4FA1AFA2EE8}
2019-01-05 01:47:55 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{BD3F0196-89F2-4EC1-9C31-A2F70CD5FF67}
2019-01-04 13:47:51 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{74EC8F9E-E99A-428A-86D1-326EC3777978}
2019-01-04 01:47:33 -------- d-----w- C:\Users\Kenneth Rivalsi\AppData\Local\{79B8308F-3F89-4D75-81A2-369CA6B94897}
.
==================== Find3M ====================
.
2019-01-30 15:24:29 144368 ------w- C:\WINDOWS\System32\drivers\rikvm_C6F09094.sys
2019-01-19 12:51:24 99192 ----a-w- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
2019-01-02 19:41:40 835480 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2019-01-02 19:41:40 179600 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2019-01-01 13:50:14 64000 ----a-w- C:\WINDOWS\System32\iemigplugin.dll
2019-01-01 13:47:36 225792 ----a-w- C:\WINDOWS\System32\windowslivelogin.dll
2019-01-01 13:45:57 285184 ----a-w- C:\WINDOWS\System32\wlidcredprov.dll
2019-01-01 13:45:47 714752 ----a-w- C:\WINDOWS\System32\wlidcli.dll
2019-01-01 13:43:48 1364992 ----a-w- C:\WINDOWS\System32\bcastdvruserservice.dll
2019-01-01 13:20:16 165888 ----a-w- C:\WINDOWS\SysWow64\windowslivelogin.dll
2019-01-01 13:18:05 500736 ----a-w- C:\WINDOWS\SysWow64\wlidcli.dll
2019-01-01 13:17:39 231936 ----a-w- C:\WINDOWS\SysWow64\wlidcredprov.dll
2019-01-01 07:14:47 1063224 ----a-w- C:\WINDOWS\System32\SecConfig.efi
2019-01-01 07:14:47 1029944 ----a-w- C:\WINDOWS\System32\hvax64.exe
2019-01-01 07:14:46 76088 ----a-w- C:\WINDOWS\System32\drivers\hvservice.sys
2019-01-01 07:14:39 566568 ----a-w- C:\WINDOWS\System32\tcblaunch.exe
2019-01-01 07:14:39 1221432 ----a-w- C:\WINDOWS\System32\hvix64.exe
2019-01-01 07:14:37 134968 ----a-w- C:\WINDOWS\System32\hvloader.dll
2019-01-01 07:13:36 709728 ----a-w- C:\WINDOWS\System32\drivers\cng.sys
2019-01-01 07:13:36 3292152 ----a-w- C:\WINDOWS\System32\combase.dll
2019-01-01 07:13:30 436024 ----a-w- C:\WINDOWS\System32\msv1_0.dll
2019-01-01 07:13:30 1363536 ----a-w- C:\WINDOWS\System32\WinTypes.dll
2019-01-01 07:13:21 170808 ----a-w- C:\WINDOWS\System32\drivers\ksecpkg.sys
2019-01-01 07:12:59 7520104 ----a-w- C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll
2019-01-01 07:12:53 9084216 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe
2019-01-01 07:12:45 2465792 ----a-w- C:\WINDOWS\System32\msxml6.dll
2019-01-01 07:12:39 268304 ----a-w- C:\WINDOWS\System32\browserbroker.dll
2019-01-01 07:12:35 2421288 ----a-w- C:\WINDOWS\System32\drivers\ntfs.sys
2019-01-01 07:12:29 43536 ----a-w- C:\WINDOWS\System32\browser_broker.exe
2019-01-01 07:12:26 713272 ----a-w- C:\WINDOWS\System32\MSVideoDSP.dll
2019-01-01 07:12:20 128824 ----a-w- C:\WINDOWS\System32\drivers\tm.sys
2019-01-01 06:55:34 25856512 ----a-w- C:\WINDOWS\System32\edgehtml.dll
2019-01-01 06:50:40 4383744 ----a-w- C:\WINDOWS\System32\EdgeContent.dll
2019-01-01 06:48:10 79360 ----a-w- C:\WINDOWS\System32\Print.Workflow.Source.dll
2019-01-01 06:48:03 81920 ----a-w- C:\WINDOWS\System32\drivers\wanarp.sys
2019-01-01 06:48:01 342528 ----a-w- C:\WINDOWS\System32\browserexport.exe
2019-01-01 06:47:38 433152 ----a-w- C:\WINDOWS\System32\MusNotification.exe
2019-01-01 06:47:17 808448 ----a-w- C:\WINDOWS\System32\EdgeManager.dll
2019-01-01 06:46:47 153088 ----a-w- C:\WINDOWS\System32\dssvc.dll
2019-01-01 06:46:13 154112 ----a-w- C:\WINDOWS\System32\Chakradiag.dll
2019-01-01 06:46:03 209408 ----a-w- C:\WINDOWS\System32\MicrosoftAccountTokenProvider.dll
2019-01-01 06:45:47 352768 ----a-w- C:\WINDOWS\System32\dhcpcore.dll
2019-01-01 06:45:13 2368512 ----a-w- C:\WINDOWS\System32\WebRuntimeManager.dll
2019-01-01 06:45:03 7573504 ----a-w- C:\WINDOWS\System32\Chakra.dll
2019-01-01 06:44:49 1708544 ----a-w- C:\WINDOWS\System32\MSPhotography.dll
2019-01-01 06:44:46 456192 ----a-w- C:\WINDOWS\System32\Windows.Graphics.Printing.Workflow.dll
2019-01-01 06:44:44 894464 ----a-w- C:\WINDOWS\System32\webplatstorageserver.dll
2019-01-01 06:44:28 662528 ----a-w- C:\WINDOWS\System32\wlidprov.dll
2019-01-01 06:44:03 1549824 ----a-w- C:\WINDOWS\System32\lsasrv.dll
2019-01-01 06:42:36 1371136 ----a-w- C:\WINDOWS\System32\aadtb.dll
2019-01-01 06:42:29 2247680 ----a-w- C:\WINDOWS\System32\wlidsvc.dll
2019-01-01 06:42:17 717312 ----a-w- C:\WINDOWS\System32\Windows.Web.dll
2019-01-01 06:42:11 4939776 ----a-w- C:\WINDOWS\System32\wininet.dll
2019-01-01 06:41:40 1159680 ----a-w- C:\WINDOWS\System32\rpcss.dll
2019-01-01 06:41:32 895488 ----a-w- C:\WINDOWS\System32\Windows.Security.Authentication.OnlineId.dll
2019-01-01 06:41:22 505344 ----a-w- C:\WINDOWS\System32\edgeIso.dll
2019-01-01 06:41:04 899072 ----a-w- C:\WINDOWS\System32\kerberos.dll
2019-01-01 06:37:59 2478664 ----a-w- C:\WINDOWS\SysWow64\combase.dll
2019-01-01 06:37:58 880048 ----a-w- C:\WINDOWS\SysWow64\WinTypes.dll
2019-01-01 06:37:56 381240 ----a-w- C:\WINDOWS\SysWow64\msv1_0.dll
2019-01-01 06:37:50 1989040 ----a-w- C:\WINDOWS\SysWow64\msxml6.dll
2019-01-01 06:37:32 6571584 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
2019-01-01 06:37:13 581808 ----a-w- C:\WINDOWS\SysWow64\MSVideoDSP.dll
2019-01-01 06:29:00 22016512 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll
2019-01-01 06:17:25 153088 ----a-w- C:\WINDOWS\SysWow64\MicrosoftAccountTokenProvider.dll
2019-01-01 06:16:52 1361408 ----a-w- C:\WINDOWS\SysWow64\MSPhotography.dll
2019-01-01 06:16:49 5775872 ----a-w- C:\WINDOWS\SysWow64\Chakra.dll
2019-01-01 06:16:41 310272 ----a-w- C:\WINDOWS\SysWow64\wincorlib.dll
2019-01-01 06:15:47 331264 ----a-w- C:\WINDOWS\SysWow64\edgeIso.dll
2019-01-01 06:15:37 5307392 ----a-w- C:\WINDOWS\SysWow64\d2d1.dll
2019-01-01 06:15:18 608768 ----a-w- C:\WINDOWS\SysWow64\EdgeManager.dll
2019-01-01 06:15:13 317440 ----a-w- C:\WINDOWS\SysWow64\dhcpcore.dll
2019-01-01 06:14:50 578560 ----a-w- C:\WINDOWS\SysWow64\webplatstorageserver.dll
2019-01-01 06:14:08 4514816 ----a-w- C:\WINDOWS\SysWow64\wininet.dll
2019-01-01 06:14:06 330752 ----a-w- C:\WINDOWS\SysWow64\Windows.Graphics.Printing.Workflow.dll
2019-01-01 06:13:26 251904 ----a-w- C:\WINDOWS\SysWow64\msIso.dll
2019-01-01 06:13:16 594432 ----a-w- C:\WINDOWS\SysWow64\Windows.Web.dll
2019-01-01 06:12:54 1036288 ----a-w- C:\WINDOWS\SysWow64\aadtb.dll
2019-01-01 06:12:44 795648 ----a-w- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
2019-01-01 06:12:18 516608 ----a-w- C:\WINDOWS\SysWow64\wlidprov.dll
2019-01-01 06:12:11 778240 ----a-w- C:\WINDOWS\SysWow64\kerberos.dll
2018-12-19 04:49:12 352768 ----a-w- C:\WINDOWS\SysWow64\msrd3x40.dll
2018-12-14 07:29:22 1130760 ----a-w- C:\WINDOWS\SysWow64\msvproc.dll
2018-12-14 07:25:40 1035256 ----a-w- C:\WINDOWS\System32\ApplyTrustOffline.exe
2018-12-14 07:21:46 1098064 ----a-w- C:\WINDOWS\System32\msvproc.dll
2018-12-14 07:21:44 1457240 ----a-w- C:\WINDOWS\System32\winload.efi
2018-12-14 07:21:43 1140480 ----a-w- C:\WINDOWS\System32\winresume.efi
2018-12-14 07:21:42 982912 ----a-w- C:\WINDOWS\System32\winresume.exe
2018-12-14 07:21:42 1257672 ----a-w- C:\WINDOWS\System32\winload.exe
2018-12-14 07:10:38 1295360 ----a-w- C:\WINDOWS\SysWow64\MSVPXENC.dll
2018-12-14 06:55:44 3396608 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll
2018-12-14 06:55:04 209408 ----a-w- C:\WINDOWS\System32\AppXApplicabilityBlob.dll
2018-12-14 06:54:39 1307648 ----a-w- C:\WINDOWS\System32\MSVPXENC.dll
2018-12-14 06:54:31 6032384 ----a-w- C:\WINDOWS\System32\d2d1.dll
2018-12-14 06:52:49 2173440 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.onecore.dll
2018-12-14 06:52:44 1826816 ----a-w- C:\WINDOWS\System32\Windows.CloudStore.dll
2018-12-14 06:51:24 1551360 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.desktop.dll
2018-12-08 12:47:28 1048712 ----a-w- C:\WINDOWS\System32\Windows.Internal.Shell.Broker.dll
2018-12-08 12:47:15 645320 ----a-w- C:\WINDOWS\System32\advapi32.dll
2018-12-08 12:46:44 549760 ----a-w- C:\WINDOWS\System32\AppResolver.dll
.
============= FINISH: 17:53:13.16 ===============

Attached Thumbnails

 

Attached Files

attach.txt (18.7 KB)