Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help

User Tag List

Clock resetting to incorrect time

This is a discussion on Clock resetting to incorrect time within the Virus/Trojan/Spyware Help forums, part of the Tech Support Forum category. I am experiencing a new problem with my Windows 10 laptop. My clock on the bottom right of my desktop


Closed Thread
 
Thread Tools Search this Thread
Old 06-14-2018, 10:40 PM   #1
Registered Member
 
Join Date: Jun 2018
Posts: 1
OS:



I am experiencing a new problem with my Windows 10 laptop. My clock on the bottom right of my desktop keeps setting itself back. The amount of time is inconsistent, but it seems to be about 12 hours behind much of the time (I have not even seen it set in the future). I can reset the clock, but it revert to a prior time within a few hours.

I have followed the instructions for a potential virus or spyware issue. I have attached the attach.txt file as a .zip file. The following is my complete DDS.txt log. Thank you for any help you can offer.

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.17134.1
Run by DSimkins at 12:17:13 on 2018-06-14
Microsoft Windows 10 Enterprise 10.0.17134.0.1252.1.1033.18.16196.11891 [GMT -4:00]
.
AV: Spybot - Search and Destroy *Enabled/Updated* {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Spybot - Search and Destroy *Enabled/Updated* {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\fontdrvhost.exe
C:\Windows\System32\WUDFHost.exe
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_150c36a550ed11f0\igfxCUIService.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservicenonetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
C:\WINDOWS\system32\ibtsiva.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
C:\Program Files (x86)\Identity Finder 9\idfEndpoint.exe
C:\Program Files (x86)\Identity Finder 9\idfEndpointWatcher64.exe
C:\Program Files (x86)\Identity Finder 9\idfServicesMonitor.exe
C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_150c36a550ed11f0\igfxEM.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\WINDOWS\system32\wbem\unsecapp.exe
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SearchIndexer.exe
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18041.14611.0_x64__8wekyb3d8bbwe\Video.UI.exe
C:\Windows\System32\RuntimeBroker.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Users\DSimkins\AppData\Local\Programs\CrashPlan\CrashPlanService.exe
C:\Users\DSimkins\AppData\Local\Programs\CrashPlan\electron\CrashPlanDesktop.exe
C:\Users\DSimkins\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Users\DSimkins\AppData\Local\Programs\CrashPlan\electron\CrashPlanDesktop.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
c:\windows\system32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.10.0_x64__8wekyb3d8bbwe\WinStore.App.exe
C:\Windows\System32\RuntimeBroker.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k localservice -s W32Time
C:\Windows\ImmersiveControlPanel\SystemSettings.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s seclogon
C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s Eaphost
C:\WINDOWS\system32\AUDIODG.EXE
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\Program Files (x86)\Microsoft Office\Office16\MsoSync.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\splwow64.exe
c:\windows\system32\svchost.exe -k printworkflow -s PrintWorkflowUserSvc
C:\Windows\System32\smartscreen.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uLocal Page = %11%\blank.htm
BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL
BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
uRun: [OneDrive] "C:\Users\DSimkins\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [CrashPlanServiceUser] C:\Users\DSimkins\AppData\Local\Programs\CrashPlan\CrashPlanService.vbs
uRun: [CrashPlanService] C:\Users\DSimkins\AppData\Local\Programs\CrashPlan\CrashPlanService.vbs
uRun: [CrashPlanTray] "C:\Users\DSimkins\AppData\Local\Programs\CrashPlan\electron\CrashPlanDesktop.exe" --menubar --desktop=false --user.install
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [Discord] C:\Users\DSimkins\AppData\Local\Discord\app-0.0.301\Discord.exe
uRun: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
uRun: [Spotify Web Helper] C:\Users\DSimkins\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
uRun: [Lync] "C:\Program Files (x86)\Microsoft Office\Office16\lync.exe" /fromrunkey
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRunOnce: [Application Restart #3] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session -- "https://home.mcafee.com/SecurityScanner/SSLandPage.aspx?ss=3&avs=3&avu=1&avm=0&av=Windows%20Defender&fws=3&fwu=1&fwm=0&fw=Windows%20Firewall&sa=0&ths=3&trj=0&vir=0&pup=0&webd=0&web=0&virc=0&trjc=0&pupc=0&cver=3.11.717.1&avn=3&fwn=3&Pkg=n&tid=UA-49812791-4&uid=8CF7E669-68E8-4134-9306-0077A577CEDF&idt=16042018&Osn=Windows%2010%2064%20bit&geo=244&mbxr=true&clkcnt=0&scncnt=5&Pavn=Windows Defender&Pavs=Enabled&wts=Unknown&rid=10&affid=739&culture=en-US&src=top&srclbl=Mbox Fix"
mRun: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
mRun: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
mRun: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
mPolicies-System: DSCAutomationHostEnabled = dword:2
mPolicies-System: EnableFullTrustStartupTasks = dword:2
mPolicies-System: EnableUwpStartupTasks = dword:2
mPolicies-System: SupportFullTrustStartupTasks = dword:1
mPolicies-System: SupportUwpStartupTasks = dword:1
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office16\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{118eafea-5e29-495e-af2f-8553a7964a42} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\1647F535451425245534B435F5759623 : DHCPNameServer = 103.5.140.1 103.5.140.2
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\259445 : DHCPNameServer = 129.21.3.17 129.21.4.18
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\321447458656D4F68797 : DHCPNameServer = 172.20.26.1
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\4456C6471635B69734C65726 : DHCPNameServer = 192.168.208.1
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\4456C6471675966496 : DHCPNameServer = 172.19.134.2
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\4475350286F6473707F647 : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{e6ee7e9a-e236-4d70-a4ad-3e87e3d64595}\530313847516D2430373145413 : DHCPNameServer = 192.168.128.1 192.168.128.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WebCheck - <orphaned>
LSA: Security Packages = ""
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office16\OCHelper.dll
x64-BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll
x64-BHO: Microsoft OneDrive for Business Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL
x64-BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll
x64-TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll
x64-Run: [SecurityHealth] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [AdobeGCInvoker-1.0] "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-mPolicies-System: EnableFullTrustStartupTasks = dword:2
x64-mPolicies-System: EnableUwpStartupTasks = dword:2
x64-mPolicies-System: SupportFullTrustStartupTasks = dword:1
x64-mPolicies-System: SupportUwpStartupTasks = dword:1
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office16\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office16\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
.
INFO: x64-HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL
x64-Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - <orphaned>
x64-Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - <orphaned>
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
Hosts: 127.0.0.1 spywareinfo.com*-*This website is for sale!*-*spywareinfo Resources and Information.
Hosts: 0.0.0.1 mssplus.mcafee.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\DSimkins\AppData\Roaming\Mozilla\Firefox\Profiles\z8ubvpmk.default\
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files\VideoLAN\VLC\npvlc.dll
.
============= SERVICES / DRIVERS ===============
.
R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2018-4-11 177192]
R0 iorate;Disk I/O Rate Filter Driver;C:\WINDOWS\System32\drivers\iorate.sys [2018-4-11 58272]
R0 MsSecFlt;Microsoft Security Events Component Minifilter;C:\WINDOWS\System32\drivers\mssecflt.sys [2018-4-11 304032]
R0 SgrmAgent;System Guard Runtime Monitor Agent;C:\WINDOWS\System32\drivers\SgrmAgent.sys [2018-4-11 63896]
R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2018-4-11 16288]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2018-4-11 72232]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2018-4-11 18472]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2018-4-11 209816]
R1 afunix;afunix;C:\WINDOWS\System32\drivers\afunix.sys [2018-4-11 39424]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2018-4-11 254464]
R1 bam;Background Activity Moderator Driver;C:\WINDOWS\System32\drivers\bam.sys [2018-4-11 60320]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2018-4-11 55808]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-4-11 8192]
R1 SDHookDriver;Hook Test Driver;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHookDrv64.sys [2018-6-13 92032]
R2 AdAppMgrSvc;Autodesk Desktop App Service;C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2018-3-8 1364904]
R2 AdobeUpdateService;AdobeUpdateService;C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2018-4-24 818128]
R2 AGMService;Adobe Genuine Monitor Service;C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-5-10 2321384]
R2 AGSService;Adobe Genuine Software Integrity Service;C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-8-23 2128872]
R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
R2 CDPUserSvc_5b547;Connected Devices Platform User Service_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R2 CldFlt;Windows Cloud Files Filter Driver;C:\WINDOWS\System32\drivers\cldflt.sys [2018-4-11 414208]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p [2018-4-11 51288]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc -p [2018-4-11 51288]
R2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288]
R2 DusmSvc;Data Usage;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2018-5-30 3346856]
R2 ibtsiva;Intel Bluetooth Service;C:\WINDOWS\System32\ibtsiva --> C:\WINDOWS\System32\ibtsiva [?]
R2 IdentityFinderEndpointService;Identity Finder Endpoint Service;C:\Program Files (x86)\Identity Finder 9\idfEndpoint.exe [2016-4-27 12964408]
R2 IdentityFinderEndpointWatcher;Identity Finder Endpoint Watcher;C:\Program Files (x86)\Identity Finder 9\idfEndpointWatcher64.exe [2016-4-27 5206016]
R2 IdentityFinderServicesMonitor;Identity Finder Services Monitor;C:\Program Files (x86)\Identity Finder 9\idfServicesMonitor.exe [2016-4-27 3673656]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_150c36a550ed11f0\igfxCUIService.exe [2018-1-25 415696]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc);C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2017-9-28 21304]
R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-5-27 419248]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-3-8 462968]
R2 OneSyncSvc_5b547;Sync Host_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2018-6-13 3892256]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2018-6-13 3943664]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2018-6-13 233712]
R2 SecurityHealthService;Windows Defender Security Center Service;C:\WINDOWS\System32\SecurityHealthService.exe [2018-4-11 761440]
R2 SgrmBroker;System Guard Runtime Monitor Broker;C:\WINDOWS\System32\SgrmBroker.exe [2018-4-11 163336]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2018-4-11 82432]
R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-11-3 279128]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R2 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R2 vpnagent;Cisco AnyConnect Secure Mobility Agent;C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [2013-10-10 558480]
R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2018-4-11 151960]
R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R2 WpnUserService_5b547;Windows Push Notifications User Service_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R3 AirplaneModeHid;Insyde Airplane Mode HID Mini-Driver;C:\WINDOWS\System32\drivers\AirplaneModeHid.sys [2017-10-25 46512]
R3 CAD;Charge Arbitration Driver;C:\WINDOWS\System32\drivers\CAD.sys [2018-4-11 60320]
R3 camsvc;Capability Access Manager Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
R3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\WINDOWS\System32\drivers\ibtusb.sys [2018-1-10 136128]
R3 IntcDAud;Intel(R) Display Audio;C:\WINDOWS\System32\drivers\IntcDAud.sys [2017-12-8 820168]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
R3 MBfilt;MBfilt;C:\WINDOWS\System32\drivers\MBfilt64.sys [2016-11-17 41080]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2018-4-11 20992]
R3 Netwtw04;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit;C:\WINDOWS\System32\drivers\Netwtw04.sys [2018-4-11 7689728]
R3 PimIndexMaintenanceSvc_5b547;Contact Data_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R3 PrintWorkflowUserSvc_5b547;PrintWorkflow_5b547;C:\WINDOWS\System32\svchost.exe -k PrintWorkflow [2018-4-11 51288]
R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2018-4-11 604160]
R3 RTSPER;Realtek PCIE Card Reader - PER;C:\WINDOWS\System32\drivers\RtsPer.sys [2017-1-18 787968]
R3 SEMgrSvc;Payments and NFC/SE Manager;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
R3 SmbDrvI;SmbDrvI;C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2018-3-8 72792]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
R3 TokenBroker;Web Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
R3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2018-6-12 29600]
R3 UnistoreSvc_5b547;User Data Storage_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R3 UserDataSvc_5b547;User Data Access_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
R3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2018-6-12 781824]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2018-4-11 264192]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService -p [2018-4-11 51288]
S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-4-11 20480]
S3 acsock;acsock;C:\WINDOWS\System32\drivers\acsock64.sys [2018-3-8 112496]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2018-4-11 1135520]
S3 aftap0901;AnchorFree TAP-Windows Adapter V9;C:\WINDOWS\System32\drivers\aftap0901.sys [2018-3-6 48624]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2018-4-11 18432]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness -p [2018-4-11 51288]
S3 AppvStrm;AppvStrm;C:\WINDOWS\System32\drivers\AppVStrm.sys [2018-4-11 127384]
S3 AppvVemgr;AppvVemgr;C:\WINDOWS\System32\drivers\AppvVemgr.sys [2018-4-11 162712]
S3 AppvVfs;AppvVfs;C:\WINDOWS\System32\drivers\AppvVfs.sys [2018-4-11 143768]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288]
S3 AssignedAccessManagerSvc;AssignedAccessManager Service;C:\WINDOWS\System32\svchost.exe -k AssignedAccessManagerSvc [2018-4-11 51288]
S3 BcastDVRUserService_5b547;GameDVR and Broadcast User Service_5b547;C:\WINDOWS\System32\svchost.exe -k BcastDVRUserService [2018-4-11 51288]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2018-4-11 9728]
S3 bindflt;Windows Bind Filter Driver;C:\WINDOWS\System32\drivers\bindflt.sys [2018-4-11 92056]
S3 BluetoothUserService_5b547;Bluetooth User Support Service_5b547;C:\WINDOWS\System32\svchost.exe -k BthAppGroup [2018-4-11 51288]
S3 BTAGService;Bluetooth Audio Gateway Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288]
S3 BthAvctpSvc;AVCTP service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 bttflt;Microsoft Hyper-V VHDPMEM BTT Filter;C:\WINDOWS\System32\drivers\bttflt.sys [2018-4-11 38304]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-4-11 39936]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2018-4-11 123392]
S3 CaptureService_5b547;CaptureService_5b547;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-4-11 321432]
S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-4-11 1836952]
S3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx -p [2018-4-11 51288]
S3 cplspcon;Intel(R) Content Protection HDCP Service;C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_150c36a550ed11f0\IntelCpHDCPSvc.exe [2018-1-25 479184]
S3 DevicePickerUserSvc_5b547;DevicePicker_5b547;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288]
S3 DevicesFlowUserSvc_5b547;DevicesFlow_5b547;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2018-4-11 51288]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2017-5-18 131984]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-4-11 90624]
S3 diagsvc;Diagnostic Execution Service;C:\WINDOWS\System32\svchost.exe -k diagnostics [2018-4-11 51288]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2018-3-8 1591264]
S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2018-4-11 51288]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-4-11 20992]
S3 GraphicsPerfSvc;GraphicsPerfSvc;C:\WINDOWS\System32\svchost.exe -k GraphicsPerfSvcGroup [2018-4-11 51288]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-4-11 50592]
S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver;C:\WINDOWS\System32\drivers\mshwnclx.sys [2018-4-11 27136]
S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2018-4-11 36864]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2018-4-11 91648]
S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-4-11 79360]
S3 iaLPSS2i_GPIO2_BXT_P;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-4-11 88576]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-4-11 171520]
S3 iaLPSS2i_I2C_BXT_P;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-4-11 174592]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2018-4-11 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2018-4-11 113152]
S3 iaStorAVC;Intel Chipset SATA RAID Controller;C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-4-11 885144]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2018-4-11 526232]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 idfEndpointWatcherDriver;Identity Finder Endpoint Watcher Driver;C:\WINDOWS\System32\drivers\idfEndpointWatcherDriver.sys [2018-3-8 37432]
S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-4-11 38912]
S3 InstallService;Microsoft Store Install Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 IPT;IPT;C:\WINDOWS\System32\drivers\ipt.sys [2018-4-11 32256]
S3 IpxlatCfgSvc;IP Translation Configuration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 ItSas35i;ItSas35i;C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-4-11 145816]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-4-11 124312]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-4-11 128408]
S3 LxpSvc;Language Experience Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2018-4-11 51288]
S3 mausbhost;MA-USB Host Controller Driver;C:\WINDOWS\System32\drivers\mausbhost.sys [2018-4-11 505240]
S3 mausbip;MA-USB IP Filter Driver;C:\WINDOWS\System32\drivers\mausbip.sys [2018-4-11 56736]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [2018-3-27 405392]
S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-4-11 75160]
S3 megasas35i;megasas35i;C:\WINDOWS\System32\drivers\megasas35i.sys [2018-4-11 82328]
S3 MessagingService_5b547;MessagingService_5b547;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2018-4-11 51288]
S3 mi-raysat_3dsmax2017_64;mental ray Satellite for Autodesk 3ds Max 2017 64-bit;C:\Program Files\Autodesk\3ds Max 2017\raysat_3dsmax2017_64server.exe [2011-9-15 86016]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-4-11 842648]
S3 NaturalAuthentication;Natural Authentication;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2018-4-11 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2018-4-11 175104]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2018-4-11 197632]
S3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 nvdimm;Microsoft NVDIMM device driver;C:\WINDOWS\System32\drivers\nvdimm.sys [2018-4-11 104448]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2018-4-11 58776]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2018-4-11 61848]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 PNPMEM;Microsoft Memory Module Driver;C:\WINDOWS\System32\drivers\pnpmem.sys [2018-4-11 16896]
S3 PushToInstall;Windows PushToInstall Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 Ramdisk;Windows RAM Disk Driver;C:\WINDOWS\System32\drivers\ramdisk.sys [2018-4-11 39840]
S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2018-6-12 1921952]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2018-6-12 945568]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k rdxgroup [2018-4-11 51288]
S3 rhproxy;Resource Hub proxy driver;C:\WINDOWS\System32\drivers\rhproxy.sys [2018-4-11 104448]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2018-4-11 51288]
S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2018-4-11 128416]
S3 SDFRd;SDF Reflector;C:\WINDOWS\System32\drivers\SDFRd.sys [2018-4-11 33176]
S3 Sense;Windows Defender Advanced Threat Protection Service;C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2018-4-11 4737448]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2018-4-11 1273344]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2018-4-11 154528]
S3 SharedRealitySvc;Spatial Data Service;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 smbdirect;smbdirect;C:\WINDOWS\System32\drivers\smbdirect.sys [2018-4-11 152064]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2018-4-11 51288]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter;C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2018-4-11 57752]
S3 spectrum;Windows Perception Service;C:\WINDOWS\System32\Spectrum.exe [2018-6-12 976384]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2017-5-18 166288]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2018-5-26 105368]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2018-4-11 48544]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [2017-9-28 187904]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2018-4-11 303616]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2018-4-11 128512]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2018-4-11 152576]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2018-4-11 57856]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2018-4-11 45056]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2018-4-11 282008]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2018-4-11 98200]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2018-4-11 144288]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2018-4-11 29088]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2018-4-11 67992]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2018-4-11 28064]
S3 VacSvc;Volumetric Audio Compositor Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2018-4-11 35328]
S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2018-4-11 10240]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p [2018-4-11 51288]
S3 VSStandardCollectorService150;Visual Studio Standard Collector Service 150;C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [2017-12-14 142440]
S3 WaaSMedicSvc;Windows Update Medic Service;C:\WINDOWS\System32\svchost.exe -k wusvcs -p [2018-4-11 51288]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel -p [2018-4-11 51288]
S3 WarpJITSvc;WarpJITSvc;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2018-4-11 51288]
S3 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2018-4-11 82944]
S3 WdmCompanionFilter;WdmCompanionFilter;C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [2018-4-11 21408]
S3 WdNisDrv;Windows Defender Antivirus Network Inspection System Driver;C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [2018-5-31 61992]
S3 WdNisSvc;Windows Defender Antivirus Network Inspection Service;C:\ProgramData\Microsoft\Windows Defender\Platform\4.16.17656.18052-0\NisSrv.exe [2018-5-31 4682552]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2018-4-11 51288]
S3 WFDSConMgrSvc;Wi-Fi Direct Services Connection Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2018-4-11 32152]
S3 WinNat;Windows NAT Driver;C:\WINDOWS\System32\drivers\winnat.sys [2018-4-11 227840]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2018-4-11 64920]
S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 wlpasvc;Local Profile Assistant Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p [2018-4-11 51288]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S3 WpcMonSvc;Parental Controls;C:\WINDOWS\System32\svchost.exe -k LocalService [2018-4-11 51288]
S3 xbgm;Xbox Game Monitoring;C:\WINDOWS\System32\xbgmsvc.exe [2018-4-11 59512]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2018-4-11 292864]
S3 XboxGipSvc;Xbox Accessory Management Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S3 XeroxProdRegManager;Xerox PowerENGAGE Maintenance Service;C:\Program Files (x86)\Xerox PowerENGAGE\EngageService.exe [2016-9-13 293608]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2018-4-11 46592]
S4 AppVClient;Microsoft App-V Client;C:\WINDOWS\System32\AppVClient.exe [2018-5-26 826776]
S4 hvcrash;hvcrash;C:\WINDOWS\System32\drivers\hvcrash.sys [2018-4-11 33184]
S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs -p [2018-4-11 51288]
S4 ssh-agent;OpenSSH Authentication Agent;C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [2018-4-12 495616]
S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService -p [2018-4-11 51288]
S4 UevAgentDriver;UevAgentDriver;C:\WINDOWS\System32\drivers\UevAgentDriver.sys [2018-4-11 40344]
S4 UevAgentService;User Experience Virtualization Service;C:\WINDOWS\System32\AgentService.exe [2018-4-11 1189376]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
ShellExec: Dreamweaver.exe: Open="C:\Program Files\Adobe\Adobe Dreamweaver CC 2018\Dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2018-06-14 17:00:43 -------- d-----w- C:\Program Files (x86)\LogMeIn Hamachi
2018-06-13 17:22:49 32168 ----a-w- C:\WINDOWS\System32\sdnclean64.exe
2018-06-13 17:22:48 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2018-06-13 17:22:31 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy 2
2018-06-13 00:36:12 14600328 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{02C32D3C-82B9-4EE1-A797-9864FE6DBE98}\mpengine.dll
2018-05-31 05:25:55 95128 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Platform\4.16.17656.18052-0\X86\MpAsDesc.dll
2018-05-26 17:51:14 -------- d-----w- C:\WINDOWS\System32\Microsoft
2018-05-26 17:51:14 -------- d-----w- C:\WINDOWS\ServiceProfiles
2018-05-26 17:50:02 4529664 ----a-w- C:\WINDOWS\SysWow64\VsGraphicsDesktopEngine.exe
2018-05-26 17:48:22 925696 ----a-w- C:\WINDOWS\System32\XpsFilt.dll
2018-05-26 00:49:41 -------- d-----w- C:\Users\DSimkins\AppData\Local\D3DSCache
2018-05-26 00:49:15 -------- d-----w- C:\ProgramData\Microsoft OneDrive
2018-05-26 00:47:48 2752000 ----a-w- C:\WINDOWS\SysWow64\PrintConfig.dll
2018-05-26 00:47:48 -------- d-----w- C:\ProgramData\USOShared
2018-05-26 00:47:43 -------- d-sh--we C:\ProgramData\Documents
2018-05-26 00:47:20 134592 ----a-w- C:\WINDOWS\SysWow64\nvStreaming.exe
2018-05-26 00:46:03 136144 ----a-w- C:\WINDOWS\System32\OpenCL.DLL
2018-05-26 00:45:30 -------- d-----w- C:\WINDOWS\System32\wbem\MOF
2018-05-26 00:45:29 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\good
2018-05-26 00:45:29 -------- d-----w- C:\WINDOWS\System32\wbem\MOF\bad
2018-05-26 00:45:20 -------- d-----w- C:\WINDOWS\System32\SleepStudy
2018-05-26 00:13:25 -------- d-----w- C:\Users\DSimkins\Tracing
2018-05-26 00:13:17 -------- d-----r- C:\Program Files (x86)\Skype
2018-05-25 00:57:09 -------- dc----w- C:\WINDOWS\Panther
2018-05-16 22:38:59 -------- d-----w- C:\Program Files\VideoLAN
.
==================== Find3M ====================
.
2018-06-12 23:28:40 133315992 -c--a-w- C:\WINDOWS\System32\MRT-KB890830.exe
2018-06-08 19:07:20 2266520 ----a-w- C:\WINDOWS\System32\AppVEntSubsystems64.dll
2018-06-08 19:07:13 40864 ----a-w- C:\WINDOWS\System32\AppVClientPS.dll
2018-06-08 19:07:09 19872 ----a-w- C:\WINDOWS\System32\AppVTerminator.dll
2018-06-08 19:07:09 183712 ----a-w- C:\WINDOWS\System32\mavinject.exe
2018-06-08 19:07:06 506184 ----a-w- C:\WINDOWS\System32\systemreset.exe
2018-06-08 19:05:19 94112 ----a-w- C:\WINDOWS\System32\rdpudd.dll
2018-06-08 19:02:55 661160 ----a-w- C:\WINDOWS\System32\GenValObj.exe
2018-06-08 19:02:48 4527680 ----a-w- C:\WINDOWS\System32\sppsvc.exe
2018-06-08 19:02:19 1634808 ----a-w- C:\WINDOWS\System32\gdi32full.dll
2018-06-08 19:01:11 1046944 ----a-w- C:\WINDOWS\System32\ReAgent.dll
2018-06-08 18:48:47 64000 ----a-w- C:\WINDOWS\System32\iemigplugin.dll
2018-06-08 18:47:25 144384 ----a-w- C:\WINDOWS\System32\drivers\mrxdav.sys
2018-06-08 18:46:37 584192 ----a-w- C:\WINDOWS\System32\UIRibbonRes.dll
2018-06-08 18:45:54 4392448 ----a-w- C:\WINDOWS\System32\SettingsHandlers_nt.dll
2018-06-08 18:45:53 808960 ----a-w- C:\WINDOWS\System32\MBR2GPT.EXE
2018-06-08 18:45:39 1560576 ----a-w- C:\WINDOWS\System32\msdt.exe
2018-06-08 18:44:44 285184 ----a-w- C:\WINDOWS\System32\wlidcredprov.dll
2018-06-08 18:44:40 340992 ----a-w- C:\WINDOWS\System32\AcGenral.dll
2018-06-08 18:44:27 625152 ----a-w- C:\WINDOWS\System32\BootMenuUX.dll
2018-06-08 18:44:03 1121792 ----a-w- C:\WINDOWS\System32\TSWorkspace.dll
2018-06-08 18:43:24 1719808 ----a-w- C:\WINDOWS\System32\dui70.dll
2018-06-08 18:43:20 1659904 ----a-w- C:\WINDOWS\System32\XpsPrint.dll
2018-06-08 18:43:15 2922496 ----a-w- C:\WINDOWS\System32\Windows.UI.Logon.dll
2018-06-08 18:43:11 3640832 ----a-w- C:\WINDOWS\System32\mstsc.exe
2018-06-08 18:43:06 1543680 ----a-w- C:\WINDOWS\System32\msdtctm.dll
2018-06-08 18:43:05 1364992 ----a-w- C:\WINDOWS\System32\bcastdvruserservice.dll
2018-06-08 18:42:57 1605632 ----a-w- C:\WINDOWS\System32\rdpcorets.dll
2018-06-08 18:42:50 3999232 ----a-w- C:\WINDOWS\System32\UIRibbon.dll
2018-06-08 18:42:39 3653120 ----a-w- C:\WINDOWS\System32\win32kfull.sys
2018-06-08 18:42:36 463872 ----a-w- C:\WINDOWS\System32\rdpshell.exe
2018-06-08 18:42:21 2084864 ----a-w- C:\WINDOWS\System32\inetcpl.cpl
2018-06-08 18:42:19 800256 ----a-w- C:\WINDOWS\System32\pwcreator.exe
2018-06-08 18:42:17 327168 ----a-w- C:\WINDOWS\System32\rdpinit.exe
2018-06-08 18:42:01 503296 ----a-w- C:\WINDOWS\System32\sppcext.dll
2018-06-08 18:41:45 878080 ----a-w- C:\WINDOWS\System32\CPFilters.dll
2018-06-08 18:41:22 182272 ----a-w- C:\WINDOWS\System32\easwrt.dll
2018-06-08 18:41:13 577024 ----a-w- C:\WINDOWS\System32\SppExtComObj.Exe
2018-06-08 18:41:06 2019840 ----a-w- C:\WINDOWS\System32\ResetEngine.dll
2018-06-08 18:41:02 1180672 ----a-w- C:\WINDOWS\System32\reseteng.dll
2018-06-08 18:40:48 465920 ----a-w- C:\WINDOWS\System32\DXP.dll
2018-06-08 17:07:31 148896 ----a-w- C:\WINDOWS\SysWow64\mavinject.exe
2018-06-08 1754 1539488 ----a-w- C:\WINDOWS\SysWow64\AppVEntSubsystems32.dll
2018-06-08 17:04:16 1454024 ----a-w- C:\WINDOWS\SysWow64\gdi32full.dll
2018-06-08 16:58:40 917408 ----a-w- C:\WINDOWS\SysWow64\ReAgent.dll
2018-06-08 16:50:10 1508352 ----a-w- C:\WINDOWS\SysWow64\msdt.exe
2018-06-08 16:47:51 231936 ----a-w- C:\WINDOWS\SysWow64\wlidcredprov.dll
2018-06-08 16:47:50 1032704 ----a-w- C:\WINDOWS\SysWow64\XpsPrint.dll
2018-06-08 16:47:31 2895872 ----a-w- C:\WINDOWS\SysWow64\win32kfull.sys
2018-06-08 16:47:30 3492864 ----a-w- C:\WINDOWS\SysWow64\UIRibbon.dll
2018-06-08 16:47:19 703488 ----a-w- C:\WINDOWS\SysWow64\CPFilters.dll
2018-06-08 16:47:12 1462784 ----a-w- C:\WINDOWS\SysWow64\dui70.dll
2018-06-08 16:46:55 908288 ----a-w- C:\WINDOWS\SysWow64\TSWorkspace.dll
2018-06-08 16:46:41 2016256 ----a-w- C:\WINDOWS\SysWow64\inetcpl.cpl
2018-06-08 16:46:35 3444224 ----a-w- C:\WINDOWS\SysWow64\mstsc.exe
2018-06-08 16:45:51 2401280 ----a-w- C:\WINDOWS\SysWow64\AcGenral.dll
2018-06-08 1633 976384 ----a-w- C:\WINDOWS\System32\Spectrum.exe
2018-06-08 16:05:59 944640 ----a-w- C:\WINDOWS\System32\Windows.Mirage.Internal.dll
2018-06-08 16:05:24 1008640 ----a-w- C:\WINDOWS\System32\Windows.Media.MixedRealityCapture.dll
2018-06-08 14:00:19 658432 ----a-w- C:\WINDOWS\SysWow64\Windows.Mirage.Internal.dll
2018-06-08 14:00:16 868864 ----a-w- C:\WINDOWS\SysWow64\Windows.Media.MixedRealityCapture.dll
2018-06-08 10:38:23 5821544 ----a-w- C:\WINDOWS\SysWow64\d3d10warp.dll
2018-06-08 10:37:27 2417840 ----a-w- C:\WINDOWS\SysWow64\d3d11.dll
2018-06-08 10:35:52 613144 ----a-w- C:\WINDOWS\SysWow64\dxgi.dll
2018-06-08 10:35:09 1613200 ----a-w- C:\WINDOWS\System32\D3D12.dll
2018-06-08 10:34:40 748512 ----a-w- C:\WINDOWS\System32\dxgi.dll
2018-06-08 10:34:21 1299056 ----a-w- C:\WINDOWS\SysWow64\D3D12.dll
2018-06-08 10:31:54 3180176 ----a-w- C:\WINDOWS\System32\d3d11.dll
2018-06-08 10:31:39 7900984 ----a-w- C:\WINDOWS\System32\d3d10warp.dll
2018-06-08 10:31:08 29600 ----a-w- C:\WINDOWS\System32\drivers\uefi.sys
2018-06-08 10:30:11 705440 ----a-w- C:\WINDOWS\System32\drivers\vhdmp.sys
2018-06-08 09:34:40 1140576 ----a-w- C:\WINDOWS\System32\winresume.efi
2018-06-08 09:34:11 983016 ----a-w- C:\WINDOWS\System32\winresume.exe
2018-06-08 09:33:58 1034632 ----a-w- C:\WINDOWS\System32\ApplyTrustOffline.exe
2018-06-08 09:33:53 1213368 ----a-w- C:\WINDOWS\System32\ClipUp.exe
2018-06-08 09:33:24 272296 ----a-w- C:\WINDOWS\System32\SgrmEnclave.dll
2018-06-08 09:33:22 269224 ----a-w- C:\WINDOWS\System32\SgrmEnclave_secure.dll
2018-06-08 09:31:16 226720 ----a-w- C:\WINDOWS\System32\drivers\Ucx01000.sys
2018-06-08 09:31:07 1012640 ----a-w- C:\WINDOWS\System32\hvax64.exe
2018-06-08 09:31:00 1174432 ----a-w- C:\WINDOWS\System32\hvix64.exe
2018-06-08 09:29:47 1026976 ----a-w- C:\WINDOWS\System32\drivers\http.sys
2018-06-08 09:13:12 25846784 ----a-w- C:\WINDOWS\System32\edgehtml.dll
2018-06-08 09:12:12 786176 ----a-w- C:\WINDOWS\SysWow64\rpcrt4.dll
2018-06-08 09:12:04 861616 ----a-w- C:\WINDOWS\SysWow64\msmpeg2adec.dll
2018-06-08 09:11:59 550616 ----a-w- C:\WINDOWS\SysWow64\mf.dll
2018-06-08 09:11:05 1461744 ----a-w- C:\WINDOWS\SysWow64\twinapi.appcore.dll
2018-06-08 09:10:39 97176 ----a-w- C:\WINDOWS\SysWow64\bcrypt.dll
2018-06-08 09:10:35 2479272 ----a-w- C:\WINDOWS\SysWow64\combase.dll
2018-06-08 09:10:32 880152 ----a-w- C:\WINDOWS\SysWow64\WinTypes.dll
2018-06-08 09:10:31 457152 ----a-w- C:\WINDOWS\SysWow64\MSAudDecMFT.dll
2018-06-08 09:10:30 1988072 ----a-w- C:\WINDOWS\SysWow64\msxml6.dll
2018-06-08 09:10:25 2331584 ----a-w- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
2018-06-08 09:10:19 1397200 ----a-w- C:\WINDOWS\SysWow64\MSVP9DEC.dll
2018-06-08 09:10:09 2307336 ----a-w- C:\WINDOWS\SysWow64\WMVDECOD.DLL
2018-06-08 09:10:03 1011992 ----a-w- C:\WINDOWS\SysWow64\AudioSes.dll
2018-06-08 09:04:02 4706816 ----a-w- C:\WINDOWS\System32\cdp.dll
2018-06-08 09:03:35 22005760 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll
2018-06-08 09:03:34 38400 ----a-w- C:\WINDOWS\System32\Windows.StateRepositoryCore.dll
2018-06-08 09:03:14 32256 ----a-w- C:\WINDOWS\System32\drivers\mskssrv.sys
2018-06-08 09:03:12 185344 ----a-w- C:\WINDOWS\System32\InstallServiceTasks.dll
.
============= FINISH: 12:18:53.54 ===============
Attached Files
File Type: zip attach.zip (4.4 KB, 15 views)
dwsimkins is offline  
Sponsored Links
Advertisement
 
Old 06-15-2018, 03:09 AM   #2
Microsoft-Team Manager
Hardware - Team Manager
 
joeten's Avatar
 
Join Date: Dec 2008
Location: Glasgow Scotland
Posts: 68,182
OS: win 10 Home



Just a quick suggestion before going down the malware route it may be something as simple as the cmos battery needing replaced.
__________________






Eliminate all other factors, and the one which remains must be the truth.
joeten is offline  
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
BSOD help Windows 7 64 bit
Over the last months I have had different BSOD's. I have little time have not been really been able to post information, but today I have some time finally (plus getting tired of it). Could you help me out identifying what the driver, hardware, problem is? Thanks so much in advance! ...
HardTrance9 BSOD, App Crashes And Hangs 24 02-18-2014 06:01 PM
New Pages go to Ads - Malware or Spyware
Hello! Recently every time I try to go to a new page, it directs me to an ad page. I have tried to remove programs I do not use and do not recognize and change settings to fix automatic redirects but I have not found the problem. Very frustrating....Below is my dds.txt I tried to zip the other...
lorit999 Resolved HJT Threads 16 01-29-2014 01:15 PM
BSOD 0x1A running Viber 3.1.1.60 on W7x64
Hello. I've installed Viber for Windows onto my stable system. Now I'm getting occasionally a BSOD 0x1A during first running hour. Now I killed the Viber app after Windows start and work ok for 3 hours. The Viber log.log file says: Product version 3.0.0.133634 The viber.exe file version is...
pieceofbrain BSOD, App Crashes And Hangs 2 09-28-2013 08:43 AM
[SOLVED] BSOD when accessing internet
Hi, OS - Vista/ Windows 7 ? : Vista SP 2 x86 (32-bit) or x64 : 32-bit What was original installed OS on system? :Vista Is the OS an OEM version (came pre-installed on system) or full retail version (YOU purchased it from retailer)? : Full retail Age of system (hardware): 3-4 years ...
eraonel BSOD, App Crashes And Hangs 11 02-01-2012 12:41 PM
computer restarts
computer keeps restarting when I am online. got pc checked fully. no problem. thought usb modem used for dsl connection (speedtouch 330) may be the problem. so shifted to dialup but the problem continues. what can be the problem? am attaching a dump file which was created. would deeply appreciate...
kpsomu BSOD, App Crashes And Hangs 11 10-05-2011 11:47 PM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 05:40 PM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts