Author Topic: [In Progress] Windows 10 sluggish, worried about malware.  (Read 299 times)

Offline Broly3k8

  • Bronze Member
  • Posts: 71
[In Progress] Windows 10 sluggish, worried about malware.
« on: September 18, 2017, 07:56:21 AM »
Hello, unfortunately, again.

I again have a new computer, or rather an old one that was returned to me last year. I've been using it since, and until recently was running fine.

A few months ago though I began noticing some serious irregularities. All of them regarding Windows itself. I'm hoping it's not malware, but I've done MANY Google searches, watched many YouTube videos, etc. etc. all to no avail.

My current issues are: Complete and utter sluggishness/slowness of my Windows operating system.

Examples:
Right clicking on desktop sometimes takes up to 30 seconds before the box appears.
Task bar will freeze on occasion making it difficult to switch programs
Starting task manager if something crashes can take more then a minute at times.
Starting up is fairly quick, but once it gets to the log in screen and you have to push a button or click to bring up the password box, it will sometimes take 2-3 minutes for that password box to show.
Basically doing anything from the desktop or within windows (Files, folders, searches, etc.) takes far longer then it should.

Beyond Windows, everything else seems to run and work fine. I'm still a gamer so the majority of what I do on my PC is gaming. None of my games have any issues, and browsing the web (once it does finally open) is smooth and simple with little to no issue.

I've been through friends and have asked around about what my issue may be, but whatever solutions are suggested are tried and have failed. I've dealt with you all before and to be honest you haven't failed me so.. Might as well give it another go... Let's hope this is the last time?

I do remember the logs not completely fitting before, so here is my initial warning that I might have to double post. Please don't kill me :).

Edit:
My system currently is:
Alienware M14XR2
Intel Core i7-3610QM
8g Ram
64 bit operating sys
and whatever is most up to date on Windows 10 Home

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.15063.608
Run by Broly3k8 at 15:27:26 on 2017-09-18
Microsoft Windows 10 Home  10.0.15063.0.1252.1.1033.18.8074.4574 [GMT 2:00]
.
AV: Avira Antivirus *Enabled/Updated* {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avira Antivirus *Enabled/Updated* {0897D159-75B7-14C4-2E4A-2FC449B26D32}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k localservice -s bthserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NgcSvc
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
C:\Windows\System32\WUDFHost.exe
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localservice -s nsi
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
C:\WINDOWS\system32\nvvsvc.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\dashost.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k localservice -s netprofm
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s NgcCtnrSvc
C:\Program Files (x86)\Avira\Antivirus\sched.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s FDResPub
C:\WINDOWS\sysWow64\CtHdaSvc.exe
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Avira\Antivirus\avguard.exe
c:\windows\system32\svchost.exe -k iissvcs
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
C:\Program Files (x86)\Popcorn Time\Updater.exe
C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s HomeGroupProvider
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
C:\WINDOWS\Explorer.EXE
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Users\Broly3k8\AppData\Local\Akamai\netsession_win.exe
C:\Users\Broly3k8\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Dell\DellDataVault\nvapiw.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files (x86)\Creative\Sound Blaster Recon3Di\Sound Blaster Recon3Di Control Panel\CTJckCfg.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -s wlidsvc
C:\Program Files\Alienware\SupportAssist\uaclauncher.exe
C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DsSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -s CertPropSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -s DPS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -s QWAVE
C:\WINDOWS\System32\svchost.exe -k netsvcs -s SessionEnv
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -s TermService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s lmhosts
C:\WINDOWS\System32\svchost.exe -k netsvcs -s Browser
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -s NcdAutoSetup
C:\Users\Broly3k8\AppData\Local\Discord\app-0.0.298\Discord.exe
C:\Users\Broly3k8\AppData\Local\Discord\app-0.0.298\Discord.exe
C:\Users\Broly3k8\AppData\Local\Discord\app-0.0.298\Discord.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs -s gpsvc
svchost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\AUDIODG.EXE
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearch Bar = Preserve
uProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
uRun: [Akamai NetSession Interface] "C:\Users\Broly3k8\AppData\Local\Akamai\netsession_win.exe"
uRun: [OneDrive] "C:\Users\Broly3k8\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [BingSvc] C:\Users\Broly3k8\AppData\Local\Microsoft\BingSvc\BingSvc.exe
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [RazerCortex] "C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe" -autorun
uRun: [Spotify Web Helper] "C:\Users\Broly3k8\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
uRun: [Spotify] "C:\Users\Broly3k8\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
mRun: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
mRun: [Syncios device service] C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe
mRun: [UpdReg] C:\WINDOWS\UpdReg.EXE
mRun: [Sound Blaster Recon3Di Control Panel] "C:\Program Files (x86)\Creative\Sound Blaster Recon3Di\Sound Blaster Recon3Di Control Panel\SBRcni.exe" /r
StartupFolder: C:\Users\Broly3k8\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MONITO~1.LNK - C:\WINDOWS\System32\RunDll32.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\SCPTOO~1.LNK - C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-System: DSCAutomationHostEnabled = dword:2
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: localhost
Trusted Zone: soe.com
Trusted Zone: sony.com
Trusted Zone: teletech.com
Trusted Zone: teletech.com
Trusted Zone: webcompanion.com
Trusted Zone: workbooth.com
Trusted Zone: workbooth.com
DPF: {414FB93D-DEDD-4FEF-AD7F-167992EBDB52} - hxxps://usden-portal2-b1.workbooth.com//SNX/CSHELL/extender.cab
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {F6962361-AD4A-4897-A356-3E10A15A102C} - hxxps://conference.teletech.com/client/T27LD/webex/ieatgpc1.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
TCP: NameServer = 192.168.2.1 192.168.2.1
TCP: Interfaces\{97e06952-275c-48a4-80d5-f06b83c8b19b} : DHCPNameServer = 192.168.2.1 192.168.2.1
TCP: Interfaces\{efc859a1-d055-4f2c-993f-8eaafbf1c653} : DHCPNameServer = 192.168.2.1 192.168.2.1
TCP: Interfaces\{f9294f9a-56ad-4472-9cc3-03fd9f25ad52} : DHCPNameServer = 192.168.2.1 192.168.2.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
SSODL: WebCheck - <orphaned>
LSA: Security Packages =  kerberos msv1_0 schannel wdigest tspkg pku2u livessp wsauth
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-mStart Page = hxxp://www.alienwarearena.com/welcome-us
x64-mDefault_Page_URL = hxxp://www.alienwarearena.com/welcome-us
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll
x64-Run: [SecurityHealth] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe
x64-Run: [LifeChat] "C:\Program Files\Microsoft LifeChat\LifeChat.exe"
x64-Run: [Malwarebytes TrayApp] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-mPolicies-System: SoftwareSASGeneration = dword:1
x64-IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Broly3k8\AppData\Roaming\Mozilla\Firefox\profiles\7a5287l8.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:blank
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF - prefs.js: network.proxy.type -
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll
FF - plugin: C:\Users\Broly3k8\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll
FF - plugin: C:\Users\Broly3k8\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Users\Broly3k8\AppData\Roaming\Mozilla\plugins\npatgpc.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
.
============= SERVICES / DRIVERS ===============
.
R0 avdevprot;avdevprot;C:\WINDOWS\System32\drivers\avdevprot.sys [2017-6-15 60920]
R0 avusbflt;avusbflt;C:\WINDOWS\System32\drivers\avusbflt.sys [2017-1-19 38048]
R0 EMSC;COMPAL Embedded System Control;C:\WINDOWS\System32\drivers\EMSC.sys [2009-6-26 16752]
R0 iaStorAV;Intel(R) SATA RAID Controller Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2017-3-18 673184]
R0 intelpep;Intel(R) Power Engine Plug-in Driver;C:\WINDOWS\System32\drivers\intelpep.sys [2017-3-18 74840]
R0 iorate;Disk I/O Rate Filter Driver;C:\WINDOWS\System32\drivers\iorate.sys [2017-3-18 49568]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\WINDOWS\System32\drivers\iusb3hcs.sys [2012-9-8 16152]
R0 nvpciflt;nvpciflt;C:\WINDOWS\System32\drivers\nvpciflt.sys [2016-9-12 57400]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\WINDOWS\System32\drivers\stdcfltn.sys [2017-8-1 22128]
R0 volume;Volume driver;C:\WINDOWS\System32\drivers\volume.sys [2017-3-18 16288]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2017-3-18 70232]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2017-3-18 18520]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2017-3-18 208288]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2017-3-18 239616]
R1 avkmgr;avkmgr;C:\WINDOWS\System32\drivers\avkmgr.sys [2017-1-19 44488]
R1 dfmirage;dfmirage;C:\WINDOWS\System32\drivers\dfmirage.sys [2015-2-9 36432]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit;C:\WINDOWS\System32\drivers\mbae64.sys [2017-8-6 77376]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2017-3-18 54272]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-3-18 8192]
R2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\Antivirus\sched.exe [2017-1-19 490968]
R2 AntiVirService;Avira Real-Time Protection;C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2017-1-19 490968]
R2 avgntflt;avgntflt;C:\WINDOWS\System32\drivers\avgntflt.sys [2017-1-19 176856]
R2 avnetflt;avnetflt;C:\WINDOWS\System32\drivers\avnetflt.sys [2017-1-19 88488]
R2 CDPSvc;Connected Devices Platform Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
R2 CDPUserSvc_5ec0c;Connected Devices Platform User Service_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R2 clreg;Virtual Registry for Containers;C:\WINDOWS\System32\drivers\registry.sys [2017-3-18 14336]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2017-3-18 47664]
R2 CtHdaSvc;Sound Core3D Service;C:\Windows\SysWOW64\CtHdaSvc.exe [2012-3-27 122880]
R2 DDVCollectorSvcApi;Dell Data Vault Service API;C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [2017-7-27 208760]
R2 DDVDataCollector;Dell Data Vault Collector;C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [2017-7-27 3294584]
R2 DDVRulesProcessor;Dell Data Vault Processor;C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [2017-7-27 217464]
R2 DiagTrack;Connected User Experiences and Telemetry;C:\WINDOWS\System32\svchost.exe -k utcsvc [2017-3-18 47664]
R2 DusmSvc;Data Usage;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2014-3-27 9728]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe;C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-4-11 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\igfxCUIService.exe [2016-5-3 337888]
R2 IntelHaxm;Intel HAXM Service;C:\WINDOWS\System32\drivers\IntelHaxm.sys [2016-6-18 96776]
R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-3-30 417552]
R2 MBAMService;Malwarebytes Service;C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2017-8-6 4470736]
R2 OneSyncSvc_5ec0c;Sync Host_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R2 rzpmgrk;rzpmgrk;C:\WINDOWS\System32\drivers\rzpmgrk.sys [2014-11-5 45752]
R2 rzpnk;rzpnk;C:\WINDOWS\System32\drivers\rzpnk.sys [2014-11-5 139704]
R2 SecurityHealthService;Windows Defender Security Center Service;C:\WINDOWS\System32\SecurityHealthService.exe [2017-7-11 336320]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
R2 storqosflt;Storage QoS Filter Driver;C:\WINDOWS\System32\drivers\storqosflt.sys [2017-3-18 79872]
R2 SupportAssistAgent;Dell SupportAssist Agent;C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [2017-8-4 53208]
R2 SynTPEnhService;SynTPEnh Caller Service;C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-2-24 263264]
R2 tiledatamodelsvc;Tile Data model server;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
R2 Update service;Update service;C:\Program Files (x86)\Popcorn Time\Updater.exe [2016-12-25 339968]
R2 UserManager;User Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R2 wcifs;Windows Container Isolation;C:\WINDOWS\System32\drivers\wcifs.sys [2017-7-11 142752]
R2 WpnService;Windows Push Notifications System Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R2 WpnUserService_5ec0c;Windows Push Notifications User Service_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\WINDOWS\System32\drivers\AmpPal.sys [2012-1-9 195584]
R3 BthLEEnum;Bluetooth Low Energy Driver;C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-8-9 97280]
R3 CAD;Charge Arbitration Driver;C:\WINDOWS\System32\drivers\CAD.sys [2017-3-18 53664]
R3 ClipSVC;Client License Service (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2017-3-18 47664]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\WINDOWS\System32\drivers\CtClsFlt.sys [2012-9-8 176000]
R3 cthda;Sound Core3D(CtHda.sys);C:\WINDOWS\System32\drivers\cthda.sys [2015-6-5 1052760]
R3 DDDriver;DDDriver;C:\WINDOWS\System32\drivers\DDDriver64Dcsa.sys [2017-4-11 32960]
R3 DellProf;DellProf;C:\WINDOWS\System32\drivers\DellProf.sys [2017-4-11 32568]
R3 DsSvc;Data Sharing Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
R3 ibtfltcoex;Intel Corporation;C:\WINDOWS\System32\drivers\ibtfltcoex.sys [2015-7-2 79632]
R3 IntcDAud;Intel(R) Display Audio;C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-8-21 463112]
R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-1 38896]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\WINDOWS\System32\drivers\L1C63x64.sys [2017-3-18 121344]
R3 lfsvc;Geolocation Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R3 LicenseManager;Windows License Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [2017-8-6 253856]
R3 NcbService;Network Connection Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
R3 NdisVirtualBus;Microsoft Virtual Network Adapter Enumerator;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2017-3-18 20992]
R3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit;C:\WINDOWS\System32\drivers\NETwew01.sys [2017-3-18 3343872]
R3 NgcCtnrSvc;Microsoft Passport Container;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
R3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
R3 PimIndexMaintenanceSvc_5ec0c;Contact Data_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\WINDOWS\System32\drivers\RtsPStor.sys [2015-6-3 374016]
R3 ScpVBus;Scp Virtual Bus Driver;C:\WINDOWS\System32\drivers\ScpVBus.sys [2013-5-19 39168]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service;C:\WINDOWS\System32\drivers\ST_ACCEL.sys [2012-9-8 67184]
R3 StateRepository;State Repository Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
R3 taphss6;Anchorfree HSS VPN Adapter;C:\WINDOWS\System32\drivers\taphss6.sys [2016-11-23 42064]
R3 TimeBrokerSvc;Time Broker;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
R3 TokenBroker;TokenBroker;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
R3 UnistoreSvc_5ec0c;User Data Storage_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 UserDataSvc_5ec0c;User Data Access_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
R3 VBAudioVACMME;@oem171.inf,%DeviceName% (WDM);VB-Audio Virtual Cable (WDM);C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [2017-9-16 41192]
R3 VBAudioVMAUXVAIOMME;@oem147.inf,%DeviceName% (WDM);VB-Audio VoiceMeeter AUX VAIO (WDM);C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win7.sys [2017-9-16 41192]
R3 VBAudioVMVAIOMME;@oem95.inf,%DeviceName% (WDM);VB-Audio VoiceMeeter VAIO (WDM);C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win7.sys [2017-9-16 41192]
R3 XtuAcpiDriver;Intel(R) Extreme Tuning Utility Service;C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [2015-6-6 63840]
S2 AntiVirMailService;Avira Mail Protection;C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2017-1-19 1128432]
S2 AntiVirWebService;Avira Web Protection;C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2017-1-19 1525240]
S2 Avira.ServiceHost;Avira Service Host;C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2017-8-15 404816]
S2 CldFlt;Windows Cloud Files Filter Driver;C:\WINDOWS\System32\drivers\cldflt.sys [2017-3-18 12288]
S2 CronService;Cron Service for Prey;C:\Prey\platform\windows\cronsvc.exe [2011-2-15 19968]
S2 DoSvc;Delivery Optimization;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S2 Ds3Service;SCP DSx Service;C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe [2016-1-10 389632]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service;C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [2015-4-10 708104]
S2 MapsBroker;Downloaded Maps Manager;C:\WINDOWS\System32\svchost.exe -k NetworkService [2017-3-18 47664]
S2 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-9-16 3127192]
S2 Razer Game Manager Service;Razer Game Manager;C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [2017-4-19 147792]
S2 Razer Game Scanner Service;Razer Game Scanner;C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2017-7-20 189264]
S2 RzActionSvc;Razer Central Service;C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [2017-4-14 183680]
S2 RzKLService;RzKLService;C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [2017-4-27 252176]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-2-27 317400]
S3 AcpiDev;ACPI Devices driver;C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-3-18 20480]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2017-3-18 1135512]
S3 AJRouter;AllJoyn Router Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
S3 ampa;ampa;C:\WINDOWS\System32\ampa.sys [2016-1-25 19568]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\WINDOWS\System32\drivers\AmpPal.sys [2012-1-9 195584]
S3 applockerfltr;Smartlocker Filter Driver;C:\WINDOWS\System32\drivers\applockerfltr.sys [2017-3-18 17920]
S3 AppReadiness;App Readiness;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2017-3-18 47664]
S3 AppXSvc;AppX Deployment Service (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2017-3-18 47664]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2017-3-18 9728]
S3 BEService;BattlEye Service;C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-1-16 1533448]
S3 BthHFSrv;Bluetooth Handsfree Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2017-3-18 47664]
S3 buttonconverter;Service for Portable Device Control devices;C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-9-13 39424]
S3 CapImg;HID driver for CapImg touch screen;C:\WINDOWS\System32\drivers\capimg.sys [2017-3-18 122880]
S3 cht4iscsi;cht4iscsi;C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-3-18 347032]
S3 cht4vbd;Chelsio Virtual Bus Driver;C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-3-18 2104224]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2017-8-9 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2017-8-9 79360]
S3 DevicesFlowUserSvc_5ec0c;DevicesFlow_5ec0c;C:\WINDOWS\System32\svchost.exe -k DevicesFlow [2017-3-18 47664]
S3 DevQueryBroker;DevQuery Background Discovery Broker;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudbus.sys [2016-4-25 129152]
S3 diagnosticshub.standardcollector.service;Microsoft (R) Diagnostics Hub Standard Collector Service;C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-3-18 86528]
S3 DmEnrollmentSvc;Device Management Enrollment Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 EasyAntiCheat;EasyAntiCheat;C:\WINDOWS\System32\EasyAntiCheat.exe --> C:\WINDOWS\System32\EasyAntiCheat.exe [?]
S3 embeddedmode;Embedded Mode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter;C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [2016-10-29 18944]
S3 FrameServer;Windows Camera Frame Server;C:\WINDOWS\System32\svchost.exe -k Camera [2017-3-18 47664]
S3 genericusbfn;Generic USB Function Class;C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-3-18 21504]
S3 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-3-30 2490216]
S3 hidinterrupt;Common Driver for HID Buttons implemented with interrupts;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-3-18 51104]
S3 HvHost;HV Host Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 iagpio;Intel Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iagpio.sys [2017-3-18 33280]
S3 iai2c;Intel(R) Serial IO I2C Host Controller;C:\WINDOWS\System32\drivers\iai2c.sys [2017-3-18 81408]
S3 iaLPSS2i_GPIO2;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-3-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;Intel(R) Serial IO GPIO Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-3-18 85504]
S3 iaLPSS2i_I2C;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-3-18 165376]
S3 iaLPSS2i_I2C_BXT_P;Intel(R) Serial IO I2C Driver v2;C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-3-18 168448]
S3 iaLPSSi_GPIO;Intel(R) Serial IO GPIO Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2017-3-18 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2017-3-18 113152]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2017-3-18 526240]
S3 icssvc;Windows Mobile Hotspot Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
S3 IndirectKmd;Indirect Displays Kernel-Mode Driver;C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-3-18 36864]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\WINDOWS\System32\drivers\intelaud.sys [2015-6-26 50240]
S3 IpxlatCfgSvc;IP Translation Configuration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 ISWKLP;ISWKLP;C:\WINDOWS\System32\drivers\ISWKLP.sys [2015-2-9 43368]
S3 libusbK;libusbK USB Driver 08/28/2015 - 3.0.5.16;C:\WINDOWS\System32\drivers\libusbK.sys [2017-2-27 47200]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-3-18 123808]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-3-18 103328]
S3 mausbhost;MA-USB Host Controller Driver;C:\WINDOWS\System32\drivers\mausbhost.sys [2017-3-18 405408]
S3 mausbip;MA-USB IP Filter Driver;C:\WINDOWS\System32\drivers\mausbip.sys [2017-3-18 51104]
S3 MBAMFarflt;MBAMFarflt;C:\WINDOWS\System32\drivers\farflt.sys [2017-8-6 101784]
S3 MBAMProtection;MBAMProtection;C:\WINDOWS\System32\drivers\mbam.sys [2017-8-6 45472]
S3 MBAMWebProtection;MBAMWebProtection;C:\WINDOWS\System32\drivers\mwac.sys [2017-8-6 93600]
S3 megasas2i;megasas2i;C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-3-18 64416]
S3 MessagingService_5ec0c;MessagingService_5ec0c;C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup [2017-3-18 47664]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-3-18 842656]
S3 NaturalAuthentication;Natural Authentication;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 ndfltr;NetworkDirect Service;C:\WINDOWS\System32\drivers\ndfltr.sys [2017-3-18 108960]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library;C:\WINDOWS\System32\drivers\NetAdapterCx.sys [2017-3-18 122368]
S3 NetSetupSvc;Network Setup Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2017-7-11 118784]
S3 nvdimmn;Microsoft NVDIMM-N device driver;C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-3-18 80896]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver;C:\WINDOWS\System32\drivers\nvstusb.sys [2012-9-8 398656]
S3 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe [2016-6-18 2157456]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2017-3-18 58784]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2017-3-18 61848]
S3 PhoneSvc;Phone Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 ReFS;ReFS;C:\WINDOWS\System32\drivers\refs.sys [2017-3-18 1735584]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2017-3-18 936864]
S3 RetailDemo;Retail Demo Service;C:\WINDOWS\System32\svchost.exe -k rdxgroup [2017-3-18 47664]
S3 RZSURROUNDVADService;Razer Surround Audio Service;C:\WINDOWS\System32\drivers\RzSurroundVAD.sys [2016-10-16 49176]
S3 ScDeviceEnum;Smart Card Device Enumeration Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 scmbus;Microsoft Storage Class Memory Bus Driver;C:\WINDOWS\System32\drivers\scmbus.sys [2017-3-18 91040]
S3 SDFRd;SDF Reflector;C:\WINDOWS\System32\drivers\SDFRd.sys [2017-3-18 31128]
S3 SEMgrSvc;Payments and NFC/SE Manager;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 SensorDataService;Sensor Data Service;C:\WINDOWS\System32\SensorDataService.exe [2017-3-18 1284608]
S3 SensorService;Sensor Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2017-3-18 154016]
S3 smphost;Microsoft Storage Spaces SMP;C:\WINDOWS\System32\svchost.exe -k smphost [2017-3-18 47664]
S3 SmsRouter;Microsoft Windows SMS Router Service.;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter;C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-3-18 40352]
S3 spectrum;Windows Perception Service;C:\WINDOWS\System32\Spectrum.exe [2017-3-18 891904]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\WINDOWS\System32\drivers\ssudmdm.sys [2016-4-25 221824]
S3 stornvme;Microsoft Standard NVM Express Driver;C:\WINDOWS\System32\drivers\stornvme.sys [2017-3-18 95648]
S3 storufs;Microsoft Universal Flash Storage (UFS) Driver;C:\WINDOWS\System32\drivers\storufs.sys [2017-3-18 36760]
S3 Te.Service;Te.Service;C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-8-22 119808]
S3 TieringEngineService;Storage Tiers Management;C:\WINDOWS\System32\TieringEngineService.exe [2017-3-18 302592]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2017-9-13 104960]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmTcpciCx.sys [2017-3-18 179200]
S3 UcmUcsi;USB Connector Manager UCSI Client;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2017-8-9 51712]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2017-3-18 45568]
S3 UEFI;Microsoft UEFI Driver;C:\WINDOWS\System32\drivers\uefi.sys [2017-3-18 29600]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2017-3-18 263584]
S3 UfxChipidea;USB Chipidea Controller;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2017-3-18 98712]
S3 ufxsynopsys;USB Synopsys Controller;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2017-3-18 138656]
S3 updater;updater;C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-1-10 464384]
S3 UrsChipidea;Chipidea USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urschipidea.sys [2017-3-18 29600]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2017-3-18 59288]
S3 UrsSynopsys;Synopsys USB Role-Switch Driver;C:\WINDOWS\System32\drivers\urssynopsys.sys [2017-3-18 28064]
S3 UsoSvc;Update Orchestrator Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 vhf;Virtual HID Framework (VHF) Driver;C:\WINDOWS\System32\drivers\vhf.sys [2017-3-18 35328]
S3 vmgid;Microsoft Hyper-V Guest Infrastructure Driver;C:\WINDOWS\System32\drivers\vmgid.sys [2017-3-18 10240]
S3 vmicguestinterface;Hyper-V Guest Service Interface;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 vmicvmsession;Hyper-V PowerShell Direct Service;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2017-3-18 47664]
S3 VNA;Check Point Virtual Network Adapter;C:\WINDOWS\System32\drivers\vna.sys [2014-2-20 161256]
S3 VsEtwService120;Visual Studio ETW Event Collection Service;C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-7-23 89232]
S3 VSStandardCollectorService140;Visual Studio Standard Collector Service;C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [2016-3-23 56552]
S3 w3logsvc;W3C Logging Service;C:\WINDOWS\System32\svchost.exe -k apphost [2017-3-18 47664]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2017-3-18 47664]
S3 wcnfs;Windows Container Name Virtualization;C:\WINDOWS\System32\drivers\wcnfs.sys [2017-3-18 72192]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\WINDOWS\System32\drivers\wdcsam64.sys [2015-4-30 26880]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2017-7-11 757248]
S3 WdNisDrv;Windows Defender Antivirus Network Inspection System Driver;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2017-3-18 121248]
S3 WdNisSvc;Windows Defender Antivirus Network Inspection Service;C:\Program Files\Windows Defender\NisSrv.exe [2017-3-18 342264]
S3 WEPHOSTSVC;Windows Encryption Provider Host Service;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2017-3-18 47664]
S3 WFDSConMgrSvc;Wi-Fi Direct Services Connection Manager Service;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2017-3-18 47664]
S3 WinMad;WinMad Service;C:\WINDOWS\System32\drivers\winmad.sys [2017-3-18 32160]
S3 WinNat;Windows NAT Driver;C:\WINDOWS\System32\drivers\winnat.sys [2017-3-18 217088]
S3 WinVerbs;WinVerbs Service;C:\WINDOWS\System32\drivers\winverbs.sys [2017-3-18 64920]
S3 wisvc;Windows Insider Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 wlpasvc;LPA Service;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 workfolderssvc;Work Folders;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
S3 WSDScan;WSD Scan Support;C:\WINDOWS\System32\drivers\WSDScan.sys [2017-3-18 24576]
S3 xbgm;Xbox Game Monitoring;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 XblAuthManager;Xbox Live Auth Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 XblGameSave;Xbox Live Game Save;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2017-7-11 277504]
S3 XboxGipSvc;Xbox Accessory Management Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 XboxNetApiSvc;Xbox Live Networking Service;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S3 xhunter1;xhunter1;C:\Windows\xhunter1.sys [2017-7-29 38368]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2017-3-18 46592]
S4 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-6-15 14704]
S4 DellDigitalDelivery;Alienware Digital Delivery Service;C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2012-4-10 166912]
S4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-1-11 627936]
S4 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-9-8 161560]
S4 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe [2011-6-17 237008]
S4 SftService;SoftThinks Agent Service;C:\Program Files (x86)\AlienRespawn\SftService.exe [2012-9-8 1695040]
S4 shpamsvc;Shared PC Account Manager;C:\WINDOWS\System32\svchost.exe -k netsvcs [2017-3-18 47664]
S4 tzautoupdate;Auto Time Zone Updater;C:\WINDOWS\System32\svchost.exe -k LocalService [2017-3-18 47664]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
FileExt: .js: JSFile=C:\WINDOWS\System32\WScript.exe "%1" %* [UserChoice]
FileExt: .wsf: WSFFile="C:\WINDOWS\System32\WScript.exe" "%1" %* [UserChoice]
.
=============== Created Last 30 ================
.
2017-09-18 05:49:45   --------   d-----w-   C:\Users\Broly3k8\AppData\Roaming\EasyAntiCheat
2017-09-16 16:40:05   41192   ----a-w-   C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys
2017-09-16 16:16:28   --------   d-----w-   C:\Program Files\VB
2017-09-16 16:16:23   41192   ----a-w-   C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win7.sys
2017-09-16 16:16:22   41192   ----a-w-   C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win7.sys
2017-09-16 16:16:22   --------   d-----w-   C:\Program Files (x86)\VB
2017-09-13 10:35:28   128000   ----a-w-   C:\WINDOWS\System32\mssprxy.dll
2017-09-13 10:35:28   1178624   ----a-w-   C:\WINDOWS\System32\Windows.Networking.Vpn.dll
2017-09-13 10:35:27   2153984   ----a-w-   C:\WINDOWS\System32\wlidsvc.dll
2017-09-13 10:35:26   71680   ----a-w-   C:\WINDOWS\System32\drivers\usbser.sys
2017-09-13 10:35:24   229888   ----a-w-   C:\WINDOWS\System32\SIHClient.exe
2017-09-13 10:35:20   742912   ----a-w-   C:\WINDOWS\System32\nshwfp.dll
2017-09-13 10:33:59   946688   ----a-w-   C:\WINDOWS\System32\rasgcw.dll
2017-09-13 10:32:59   176640   ----a-w-   C:\WINDOWS\System32\wersvc.dll
2017-09-13 10:31:32   39424   ----a-w-   C:\WINDOWS\System32\drivers\buttonconverter.sys
2017-09-13 10:31:32   287648   ----a-w-   C:\WINDOWS\System32\drivers\sdbus.sys
2017-09-13 10:31:32   189344   ----a-w-   C:\WINDOWS\System32\drivers\dumpsd.sys
2017-09-13 10:31:32   130560   ----a-w-   C:\WINDOWS\System32\drivers\bthpan.sys
2017-09-13 10:31:32   107008   ----a-w-   C:\WINDOWS\System32\drivers\hidbth.sys
2017-09-13 10:30:57   431616   ----a-w-   C:\WINDOWS\System32\BthHFSrv.dll
2017-09-09 09:10:36   --------   d--h--w-   C:\OneDriveTemp
.
==================== Find3M  ====================
.
2017-09-18 05:49:48   774184   ----a-w-   C:\WINDOWS\System32\drivers\EasyAntiCheat.sys
2017-09-16 16:44:02   253856   ----a-w-   C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
2017-09-15 16:52:09   38368   ----a-w-   C:\WINDOWS\xhunter1.sys
2017-09-05 05:31:34   1596592   ----a-w-   C:\WINDOWS\System32\gdi32full.dll
2017-09-05 05:31:28   750560   ----a-w-   C:\WINDOWS\System32\fontdrvhost.exe
2017-09-05 05:31:26   1346112   ----a-w-   C:\WINDOWS\System32\user32.dll
2017-09-05 05:31:20   1147296   ----a-w-   C:\WINDOWS\System32\hvix64.exe
2017-09-05 05:31:20   1024928   ----a-w-   C:\WINDOWS\System32\hvax64.exe
2017-09-05 05:31:18   821664   ----a-w-   C:\WINDOWS\System32\hvloader.exe
2017-09-05 05:31:16   115792   ----a-w-   C:\WINDOWS\System32\win32u.dll
2017-09-05 05:27:55   136096   ----a-w-   C:\WINDOWS\System32\drivers\ksecdd.sys
2017-09-05 05:27:02   2399728   ----a-w-   C:\WINDOWS\System32\KernelBase.dll
2017-09-05 05:26:51   8319904   ----a-w-   C:\WINDOWS\System32\ntoskrnl.exe
2017-09-05 05:26:19   1930840   ----a-w-   C:\WINDOWS\System32\ntdll.dll
2017-09-05 05:25:54   159648   ----a-w-   C:\WINDOWS\System32\drivers\partmgr.sys
2017-09-05 05:25:09   2969880   ----a-w-   C:\WINDOWS\System32\CoreUIComponents.dll
2017-09-05 05:24:21   519584   ----a-w-   C:\WINDOWS\System32\drivers\netio.sys
2017-09-05 05:24:11   923040   ----a-w-   C:\WINDOWS\System32\CoreMessaging.dll
2017-09-05 05:23:47   1242528   ----a-w-   C:\WINDOWS\System32\drivers\ndis.sys
2017-09-05 05:23:22   4462120   ----a-w-   C:\WINDOWS\System32\setupapi.dll
2017-09-05 05:20:27   1057824   ----a-w-   C:\WINDOWS\System32\MrmCoreR.dll
2017-09-05 05:19:29   4848960   ----a-w-   C:\WINDOWS\explorer.exe
2017-09-05 05:19:03   2443168   ----a-w-   C:\WINDOWS\System32\drivers\dxgkrnl.sys
2017-09-05 05:18:59   2972552   ----a-w-   C:\WINDOWS\System32\d3d10warp.dll
2017-09-05 05:18:34   7326128   ----a-w-   C:\WINDOWS\System32\windows.storage.dll
2017-09-05 05:18:29   820128   ----a-w-   C:\WINDOWS\System32\WWAHost.exe
2017-09-05 05:18:23   5477096   ----a-w-   C:\WINDOWS\System32\OneCoreUAPCommonProxyStub.dll
2017-09-05 05:18:19   1668344   ----a-w-   C:\WINDOWS\System32\propsys.dll
2017-09-05 05:18:14   212384   ----a-w-   C:\WINDOWS\System32\browserbroker.dll
2017-09-05 05:18:09   685512   ----a-w-   C:\WINDOWS\System32\SHCore.dll
2017-09-05 05:17:08   316320   ----a-w-   C:\WINDOWS\System32\WerFault.exe
2017-09-05 05:16:55   872472   ----a-w-   C:\WINDOWS\System32\ClipSVC.dll
2017-09-05 05:16:50   546208   ----a-w-   C:\WINDOWS\System32\drivers\storport.sys
2017-09-05 05:16:46   1320344   ----a-w-   C:\WINDOWS\System32\wpx.dll
2017-09-05 05:16:41   228256   ----a-w-   C:\WINDOWS\System32\drivers\mrxsmb20.sys
2017-09-05 05:16:39   410168   ----a-w-   C:\WINDOWS\System32\Faultrep.dll
2017-09-05 05:16:36   724200   ----a-w-   C:\WINDOWS\System32\wer.dll
2017-09-05 05:16:30   182688   ----a-w-   C:\WINDOWS\System32\wermgr.exe
2017-09-05 05:16:21   49720   ----a-w-   C:\WINDOWS\System32\tbs.dll
2017-09-05 05:16:17   715168   ----a-w-   C:\WINDOWS\System32\drivers\fvevol.sys
2017-09-05 05:15:49   3116184   ----a-w-   C:\WINDOWS\System32\combase.dll
2017-09-05 05:15:48   871448   ----a-w-   C:\WINDOWS\System32\winhttp.dll
2017-09-05 05:15:44   654976   ----a-w-   C:\WINDOWS\System32\AppXDeploymentClient.dll
2017-09-05 05:15:43   257440   ----a-w-   C:\WINDOWS\System32\AppxAllUserStore.dll
2017-09-05 05:15:42   381824   ----a-w-   C:\WINDOWS\System32\wevtapi.dll
2017-09-05 05:14:56   94624   ----a-w-   C:\WINDOWS\System32\rdpudd.dll
2017-09-05 05:14:44   7907344   ----a-w-   C:\WINDOWS\System32\Windows.Media.Protection.PlayReady.dll
2017-09-05 05:14:41   4708504   ----a-w-   C:\WINDOWS\System32\mfcore.dll
2017-09-05 05:14:24   958664   ----a-w-   C:\WINDOWS\System32\msvproc.dll
2017-09-05 05:14:18   1146176   ----a-w-   C:\WINDOWS\System32\mfds.dll
2017-09-05 05:14:15   254176   ----a-w-   C:\WINDOWS\System32\mfps.dll
2017-09-05 05:13:46   1619816   ----a-w-   C:\WINDOWS\System32\sppobjs.dll
2017-09-05 05:13:15   64680   ----a-w-   C:\WINDOWS\System32\appidapi.dll
2017-09-05 05:12:59   1409048   ----a-w-   C:\WINDOWS\SysWow64\gdi32full.dll
2017-09-05 05:12:57   1292880   ----a-w-   C:\WINDOWS\SysWow64\user32.dll
2017-09-05 05:12:54   627080   ----a-w-   C:\WINDOWS\SysWow64\fontdrvhost.exe
2017-09-05 05:12:49   81176   ----a-w-   C:\WINDOWS\SysWow64\win32u.dll
2017-09-05 05:11:28   2675104   ----a-w-   C:\WINDOWS\System32\drivers\tcpip.sys
2017-09-05 05:11:21   610720   ----a-w-   C:\WINDOWS\System32\drivers\afd.sys
2017-09-05 05:11:13   387936   ----a-w-   C:\WINDOWS\System32\wmpps.dll
2017-09-05 04:53:54   1620880   ----a-w-   C:\WINDOWS\SysWow64\ntdll.dll
2017-09-05 04:53:33   1839872   ----a-w-   C:\WINDOWS\SysWow64\KernelBase.dll
2017-09-05 04:52:15   2259760   ----a-w-   C:\WINDOWS\SysWow64\CoreUIComponents.dll
2017-09-05 04:50:17   4330920   ----a-w-   C:\WINDOWS\SysWow64\setupapi.dll
2017-09-05 04:46:19   4471888   ----a-w-   C:\WINDOWS\SysWow64\explorer.exe
2017-09-05 04:45:57   85784   ----a-w-   C:\WINDOWS\SysWow64\CredentialUIBroker.exe
2017-09-05 04:45:44   2476712   ----a-w-   C:\WINDOWS\SysWow64\d3d10warp.dll
2017-09-05 04:45:09   5821496   ----a-w-   C:\WINDOWS\SysWow64\windows.storage.dll
2017-09-05 04:45:08   750496   ----a-w-   C:\WINDOWS\SysWow64\WWAHost.exe
2017-09-05 04:45:07   23679488   ----a-w-   C:\WINDOWS\System32\edgehtml.dll
2017-09-05 04:44:52   569264   ----a-w-   C:\WINDOWS\SysWow64\SHCore.dll
2017-09-05 04:43:54   280480   ----a-w-   C:\WINDOWS\SysWow64\WerFault.exe
2017-09-05 04:43:24   611096   ----a-w-   C:\WINDOWS\SysWow64\wer.dll
2017-09-05 04:43:19   359560   ----a-w-   C:\WINDOWS\SysWow64\Faultrep.dll
2017-09-05 04:43:17   169376   ----a-w-   C:\WINDOWS\SysWow64\wermgr.exe
2017-09-05 04:43:12   42456   ----a-w-   C:\WINDOWS\SysWow64\tbs.dll
2017-09-05 04:42:31   2330520   ----a-w-   C:\WINDOWS\SysWow64\combase.dll
2017-09-05 04:42:30   519680   ----a-w-   C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
2017-09-05 04:42:28   182688   ----a-w-   C:\WINDOWS\SysWow64\AppxAllUserStore.dll
2017-09-05 04:42:27   291904   ----a-w-   C:\WINDOWS\SysWow64\wevtapi.dll
2017-09-05 04:42:25   703056   ----a-w-   C:\WINDOWS\SysWow64\winhttp.dll
2017-09-05 04:41:24   4671832   ----a-w-   C:\WINDOWS\SysWow64\mfcore.dll
2017-09-05 04:41:23   6761560   ----a-w-   C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
2017-09-05 04:41:06   1106904   ----a-w-   C:\WINDOWS\SysWow64\mfds.dll
2017-09-05 04:41:04   1013912   ----a-w-   C:\WINDOWS\SysWow64\msvproc.dll
2017-09-05 04:40:13   52768   ----a-w-   C:\WINDOWS\SysWow64\appidapi.dll
2017-09-05 04:37:39   583160   ----a-w-   C:\WINDOWS\SysWow64\CoreMessaging.dll
2017-09-05 04:31:02   3668992   ----a-w-   C:\WINDOWS\System32\win32kfull.sys
2017-09-05 04:30:53   463360   ----a-w-   C:\WINDOWS\System32\werui.dll
2017-09-05 04:30:51   1639936   ----a-w-   C:\WINDOWS\System32\GdiPlus.dll
2017-09-05 04:30:47   77824   ----a-w-   C:\WINDOWS\System32\wsqmcons.exe
2017-09-05 04:30:45   1275904   ----a-w-   C:\WINDOWS\System32\werconcpl.dll
2017-09-05 04:30:38   584192   ----a-w-   C:\WINDOWS\System32\UIRibbonRes.dll
2017-09-05 04:30:35   184320   ----a-w-   C:\WINDOWS\System32\DWWIN.EXE
2017-09-05 04:30:24   89088   ----a-w-   C:\WINDOWS\System32\winsrvext.dll
2017-09-05 04:30:22   93184   ----a-w-   C:\WINDOWS\System32\wercplsupport.dll
2017-09-05 04:30:12   447488   ----a-w-   C:\WINDOWS\System32\win32k.sys
2017-09-05 04:29:27   37376   ----a-w-   C:\WINDOWS\System32\SEMgrPS.dll
2017-09-05 04:28:48   2199552   ----a-w-   C:\WINDOWS\System32\Windows.UI.Xaml.Resources.dll
2017-09-05 04:28:15   17371136   ----a-w-   C:\WINDOWS\System32\Windows.UI.Xaml.dll
.
============= FINISH: 15:29:35.80 ===============

--------------END OF DDS.txt--------------
« Last Edit: September 18, 2017, 10:15:45 AM by Hoov »

Offline Broly3k8

  • Bronze Member
  • Posts: 71
Re: Windows 10 sluggish, worried about malware.
« Reply #1 on: September 18, 2017, 07:57:33 AM »
``````````````Start of Attach.txt````````````````
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 10 Home
Boot Device: \Device\HarddiskVolume2
Install Date: 8/1/2017 12:13:50 PM
System Uptime: 9/16/2017 6:42:03 PM (45 hours ago)
.
Motherboard: Alienware |  | M14xR2
Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz | U3E1 | 2301/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 690 GiB total, 150.043 GiB free.
D: is CDROM ()
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP8: 9/5/2017 7:53:42 PM - Scheduled Checkpoint
RP9: 9/13/2017 12:50:15 PM - Windows Update
RP10: 9/13/2017 12:51:48 PM - Windows Update
RP11: 9/16/2017 6:12:55 PM - Removed Razer Synapse.
.
==== Installed Programs ======================
.
 Tools for .Net 3.5
7-Zip 9.29 (x64 edition)
Active Directory Authentication Library for SQL Server
Active Directory Authentication Library for SQL Server (x86)
Adobe AIR
Adobe Flash Player 20 NPAPI
Adobe Help Center 1.0
Adobe Reader X (10.1.16) MUI
Adobe Refresh Manager
Advanced Audio FX Engine
Age of Empires II: HD Edition
Age of Empires® III: Complete Collection
Age of Wonders III
Akamai NetSession Interface
AlienRespawn
AlienRespawn - Support Software
Alienware Command Center
Alienware Digital Delivery
Alienware On-Screen Display
ANT Drivers Installer x64
Apple Mobile Device Support
Apple Software Update
Application Insights Tools for Visual Studio Express 2013 for Web
Avira
Avira Antivirus
Azure AD Authentication Connected Service
AzureTools.Notifications
AzureTools.Notifications.VwdExpress
Baldur's Gate: Enhanced Edition
Banished
Battle.net
Battlefield: Bad Company 2
Behaviors SDK (Windows Phone) for Visual Studio 2013
Behaviors SDK (Windows) for Visual Studio 2013
Black Desert Online
Blend for Visual Studio SDK for .NET 4.5
Bonjour
Build Tools - amd64
Build Tools - x86
Build Tools Language Resources - amd64
Build Tools Language Resources - x86
CCleaner
Command & Conquer™ Red Alert 2 and Yuri’s Revenge
Command & Conquer™ Tiberian Sun™ and Firestorm™
Command & Conquer™: Generals and Zero Hour
Curse
DC Universe Online
Dell SupportAssist
Dell SupportAssistAgent
Dell System Detect
Discord
DOOM II: Hell on Earth
Dotfuscator and Analytics Community Edition 5.19.1
Dragon's Dogma: Dark Arisen
DRAGON BALL XENOVERSE 2
Elevated Installer
EMSC
eReg
Fable Anniversary
FileZilla Client 3.25.1
FINAL FANTASY X/X-2 HD Remaster
FinalAlert 2 Yuri's Revenge
Garmin Express
Garmin Express Tray
Golf With Your Friends
Google Chrome
Google Update Helper
gpedt.msc 1.0
Grand Theft Auto V
Grim Dawn
Happy Cloud Client
Heroes of the Storm
Hi-Rez Studios Authenticate and Update Service
HiPatch
HiSuite
HP Deskjet 3050A J611 series Basic Device Software
HP Deskjet 3050A J611 series Help
HP Deskjet 3050A J611 series Product Improvement Study
HP Photo Creations
HP Update
IIS 10.0 Express
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
IIS URL Rewrite Module 2
Integrated Webcam Live! Central
Intel PROSet Wireless
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology
Intel(R) USB 3.0 eXtensible Host Controller Driver
Intel(R) WiDi
Intel(R) Wireless Display
Intel® Hardware Accelerated Execution Manager
Intel® PROSet/Wireless WiFi Software
Intel® Trusted Connect Service Client
Java 8 Update 111 (64-bit)
Java Auto Updater
Java SE Development Kit 8 Update 20 (64-bit)
Java SE Development Kit 8 Update 92 (64-bit)
Kingdoms of Amalur: Reckoning™
League of Legends
LMMS 1.1.3
Logitech SetPoint 6.32
LogMeIn Hamachi
Malwarebytes version 3.1.2.1733
McAfee Security Scan Plus
Microsoft .NET Core 5.0 SDK
Microsoft .NET Execution Environment (DNX) 1-rc1 (x64) for .NET Core
Microsoft .NET Execution Environment (DNX) 1-rc1 (x64) for .NET Framework 4.6
Microsoft .NET Framework 4 Multi-Targeting Pack
Microsoft .NET Framework 4.5 Multi-Targeting Pack
Microsoft .NET Framework 4.5 SDK
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU)
Microsoft .NET Framework 4.5.1 SDK
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU)
Microsoft .NET Framework 4.6 SDK
Microsoft .NET Framework 4.6 Targeting Pack
Microsoft .NET Framework 4.6 Targeting Pack (ENU)
Microsoft .NET Framework 4.6.1
Microsoft .NET Framework 4.6.1 Developer Pack
Microsoft .NET Framework 4.6.1 SDK
Microsoft .NET Framework 4.6.1 Targeting Pack
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU)
Microsoft .NET Version Manager (x64) 1.0.0-rc1
Microsoft Agents for Visual Studio 2015 Preview
Microsoft Agents for Visual Studio 2015 Preview - ENU
Microsoft ASP.NET 5 RC1 Update 1
Microsoft ASP.NET and Web Tools 2013.3 - Visual Studio Express 12 for Web
Microsoft ASP.NET and Web Tools 2015.1 (RC1 Update 1) - Visual Studio 2015
Microsoft ASP.NET MVC 4 - Visual Studio 2015 - ENU
Microsoft ASP.NET MVC 4 - Visual Studio Express 2013 for Web - ENU
Microsoft ASP.NET MVC 4 Runtime
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2015 - ENU
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio Express 2013 for Web - ENU
Microsoft ASP.NET Web Pages 2 - Visual Studio 2015 - ENU
Microsoft ASP.NET Web Pages 2 - Visual Studio Express 2013 for Web - ENU
Microsoft ASP.NET Web Pages 2 Runtime
Microsoft Azure App Service Tools v2.9 - Visual Studio 2015
Microsoft Azure Data Factory Tools for Visual Studio 2015
Microsoft Azure Mobile Services Connected Service
Microsoft Azure Mobile Services SDK V2.0
Microsoft Azure Mobile Services Tools for Visual Studio - v1.4
Microsoft Azure Shared Components for Visual Studio 2013 - v1.2
Microsoft Azure Shared Components for Visual Studio 2015 - v1.7
Microsoft Azure Storage Connected Service
Microsoft Blend for Visual Studio 2015
Microsoft Blend for Visual Studio 2015 - ENU
Microsoft Build Tools 14.0 (amd64)
Microsoft Build Tools 14.0 (x86)
Microsoft Build Tools Language Resources 14.0 (amd64)
Microsoft Build Tools Language Resources 14.0 (x86)
Microsoft C++ REST SDK for Visual Studio 2013
Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291.0_neutral_~_8wekyb3d8bbwe (x64)
Microsoft Expression Blend SDK for .NET 4
Microsoft Games for Windows - LIVE
Microsoft Games for Windows - LIVE Redistributable
Microsoft Help Viewer 2.1
Microsoft Help Viewer 2.2
Microsoft Hive ODBC Driver
Microsoft LifeChat
Microsoft NuGet - Visual Studio 2015
Microsoft NuGet - Visual Studio Express 2013 for Web
Microsoft OneDrive
Microsoft Portable Library Multi-Targeting Pack
Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
Microsoft Report Viewer Add-On for Visual Studio 2013
Microsoft Security Client
Microsoft SQL Server 2012 Command Line Utilities
Microsoft SQL Server 2012 Data-Tier App Framework
Microsoft SQL Server 2012 Data-Tier App Framework  (x64)
Microsoft SQL Server 2012 Express LocalDB
Microsoft SQL Server 2012 Management Objects
Microsoft SQL Server 2012 Management Objects  (x64)
Microsoft SQL Server 2012 Native Client
Microsoft SQL Server 2012 T-SQL Language Service
Microsoft SQL Server 2012 Transact-SQL ScriptDom
Microsoft SQL Server 2014 Express LocalDB
Microsoft SQL Server 2014 Management Objects
Microsoft SQL Server 2014 Management Objects  (x64)
Microsoft SQL Server 2014 T-SQL Language Service
Microsoft SQL Server 2014 Transact-SQL ScriptDom
Microsoft SQL Server 2016 LocalDB RC0
Microsoft SQL Server 2016 Management Objects RC0
Microsoft SQL Server 2016 Management Objects RC0 (x64)
Microsoft SQL Server 2016 T-SQL Language Service RC0
Microsoft SQL Server 2016 T-SQL ScriptDom RC0
Microsoft SQL Server Compact 4.0 SP1 x64 ENU
Microsoft SQL Server Data Tools - enu (12.0.30919.1)
Microsoft SQL Server Data Tools - enu (14.0.60311.1)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1)
Microsoft SQL Server System CLR Types
Microsoft SQL Server System CLR Types (x64)
Microsoft System CLR Types for SQL Server 2012
Microsoft System CLR Types for SQL Server 2012 (x64)
Microsoft System CLR Types for SQL Server 2014
Microsoft System CLR Types for SQL Server 2016 RC0
Microsoft Team Foundation Server 2013 Update 3 Object Model (x64)
Microsoft Team Foundation Server 2013 Update 3 Object Model Language Pack (x64) - ENU
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816
Microsoft Visual C++ 2015 RC Redistributable (x86) - 14.0.22816
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24215
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24215
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215
Microsoft Visual Studio 2013 Devenv
Microsoft Visual Studio 2013 Devenv Resources
Microsoft Visual Studio 2013 Diagnostic Tools - amd64
Microsoft Visual Studio 2013 Diagnostic Tools - x86
Microsoft Visual Studio 2013 Express Prerequisites x64 - ENU
Microsoft Visual Studio 2013 Preparation
Microsoft Visual Studio 2013 Shell (Integrated)
Microsoft Visual Studio 2013 Shell (Isolated)
Microsoft Visual Studio 2013 Shell (Isolated) Resources
Microsoft Visual Studio 2013 Shell (Minimum)
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies
Microsoft Visual Studio 2013 Shell (Minimum) Resources
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU
Microsoft Visual Studio 2015 Devenv
Microsoft Visual Studio 2015 Devenv Resources
Microsoft Visual Studio 2015 Diagnostic Tools - amd64
Microsoft Visual Studio 2015 Performance Collection Tools
Microsoft Visual Studio 2015 Performance Collection Tools - ENU
Microsoft Visual Studio 2015 Preparation
Microsoft Visual Studio 2015 Profiling Tools
Microsoft Visual Studio 2015 SDK - ENU
Microsoft Visual Studio 2015 Shell (Minimum)
Microsoft Visual Studio 2015 Shell (Minimum) Interop Assemblies
Microsoft Visual Studio 2015 Shell (Minimum) Resources
Microsoft Visual Studio 2015 Test Tools Language Pack - ENU
Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - amd64
Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - ENU
Microsoft Visual Studio 2015 Update 2 Diagnostic Tools - x86
Microsoft Visual Studio 2015 Update 2 Performance Debugger Web Views
Microsoft Visual Studio 2015 Update 2 Team Explorer Language Pack - ENU
Microsoft Visual Studio 2015 VsGraphics Helper Dependencies
Microsoft Visual Studio 2015 Windows Diagnostic Tools
Microsoft Visual Studio 2015 Windows Diagnostic Tools - ENU
Microsoft Visual Studio 2015 XAML Application Timeline
Microsoft Visual Studio 2015 XAML Application Timeline - ENU
Microsoft Visual Studio 2015 XAML Designer
Microsoft Visual Studio 2015 XAML Designer - ENU
Microsoft Visual Studio 2015 XAML Visual Diagnostics
Microsoft Visual Studio 2015 XAML Visual Diagnostics - ENU
Microsoft Visual Studio Community 2015
Microsoft Visual Studio Community 2015 - ENU
Microsoft Visual Studio Connected Services
Microsoft Visual Studio Express 2013 for Web - ENU
Microsoft Visual Studio Express 2013 for Web - ENU with Update 3
Microsoft Visual Studio Services Hub
Microsoft Visual Studio Team Foundation Server 2015 Update 2 Office Integration (x64)
Microsoft Visual Studio Team Foundation Server 2015 Update 2 Office Integration Language Pack (x64) - ENU
Microsoft Visual Studio Team Foundation Server 2015 Update 2 Storyboarding (x64)
Microsoft Visual Studio Team Foundation Server 2015 Update 2 Storyboarding Language Pack (x64) - ENU
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources
Microsoft VisualStudio JavaScript Language Service
Microsoft VisualStudio JavaScript Project System
Microsoft Web Deploy 3.6
Microsoft Web Platform Installer 5.0
Microsoft XNA Framework Redistributable 4.0 Refresh
Microsoft.VisualStudio.Office365
Minecraft
Mixxx 1.11.0 (64-bit)
Mozilla Firefox 43.0.1 (x86 en-US)
Mozilla Maintenance Service
MSBuild/NuGet Integration 14.0 (x86)
Multi-Device Hybrid Apps using C# - Templates - ENU
Mumble 1.2.8
NirSoft BlueScreenView
Notepad++ (32-bit x86)
NVIDIA 3D Vision Driver 331.65
NVIDIA Control Panel 369.09
NVIDIA Graphics Driver 331.65
NVIDIA HD Audio Driver 1.3.26.4
NVIDIA Install Application
NVIDIA Optimus 1.15.2
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.15.2
NVIDIA Update Components
OpenAL
OpenOffice 4.1.3
Origin
Overwatch
Path of Exile
Pixelmon Launcher (Beta)
PLAYERUNKNOWN'S BATTLEGROUNDS
PreEmptive Analytics Visual Studio Components
Prerequisites for SSDT
Prerequisites for SSDT RC0
PunkBuster Services
Python Tools Redirection Template
QualxServ Service Agreement
Raptr
Razer Comms
Rocket League
Rockstar Games Social Club
Roslyn Language Services - x86
Savage Lands
ScpToolkit
Sid Meier's Civilization III: Complete
Sid Meier's Civilization V
SimCity 3000 Unlimited
Skype Click to Call
Skype™ 7.33
Skyrim Script Extender (SKSE)
Smite
Sound Blaster Recon3Di
Sound Blaster Recon3Di Extras
Spotify
ST Microelectronics 3 Axis Digital Accelerometer Solution
Starbound
Stardew Valley
Steam
Synaptics Pointing Device Driver
Syncios 6.1.2
Team Explorer for Microsoft Visual Studio 2013
Team Explorer for Microsoft Visual Studio 2015 Update 2
TeamSpeak 3 Client
Terraria
Test Tools for Microsoft Visual Studio 2015
The Elder Scrolls V: Skyrim
TibEd 1.7
Torchlight II
TS Compatibility Fix
TypeScript Power Tool
TypeScript Tools for Microsoft Visual Studio 2013
TypeScript Tools for Microsoft Visual Studio 2015
Ubisoft Game Launcher
Unity Web Player
Unreal Tournament 2004
Unreal Tournament 3: Black Edition
Unreal Tournament: Game of the Year Edition
Update for  (KB2504637)
Update for Microsoft Visual Studio 2013 (KB2932965)
VBCABLE, The Virtual Audio Cable
VirtualCloneDrive
Visual C++ Compiler/Tools X86 Base Package
Visual C++ Compiler/Tools X86 Base Resource Package
Visual C++ IDE Base Package
Visual C++ IDE Base Resource Package
Visual C++ IDE Common Package
Visual C++ IDE Common Resource Package
Visual C++ IDE Core Package
Visual C++ IDE Core Professional Plus Resource Package
Visual C++ IDE Debugger Package
Visual C++ IDE Debugger Resource Package
Visual C++ IDE Professional Core Package
Visual C++ IDE x64 Package
Visual C++ Library PGO X86 Package
Visual C++ MSBuild ARM Package
Visual C++ MSBuild Base Package
Visual C++ MSBuild Base Resource Package
Visual C++ MSBuild X64 Package
Visual C++ MSBuild X86 Package
Visual Studio 2012 Verification SDK
Visual Studio 2013 Prerequisites
Visual Studio 2013 Prerequisites - ENU Language Pack
Visual Studio 2013 Update 3 (KB2829760)
Visual Studio 2015 Prerequisites
Visual Studio 2015 Prerequisites - ENU Language Pack
Visual Studio 2015 Update 2 (KB3022398)
Visual Studio Extensions for Windows Library for JavaScript
Visual Studio Graphics Analyzer
VLC media player 2.0.0
Voicemeeter, The Virtual Mixing Console
VS Update core components
War for the Overworld
WCF Data Services 5.6.2 Runtime
WCF Data Services 5.6.4 Runtime
WCF Data Services Tools for Microsoft Visual Studio 2015
WestwoodOnline
WinDirStat 1.1.2
Windows 10 Update and Privacy Settings
Windows App Certification Kit Native Components
Windows App Certification Kit x64
Windows Cache Extension 2.0 for PHP 7.0 (x64)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1)
Windows Espc Package
Windows Espc Resource Package
Windows Live ID Sign-in Assistant
Windows Phone SDK 8.0 Assemblies for Visual Studio 2015
Windows Software Development Kit
Windows Software Development Kit DirectX x64 Remote
Windows Software Development Kit DirectX x86 Remote
Windows Software Development Kit for Windows Store Apps
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
WinRAR 5.00 (32-bit)
X2Go Client for Windows
Zandronum
.
==== Event Viewer Messages From Past Week ========
.
9/18/2017 2:57:23 PM, Error: Service Control Manager [7031]  - The Razer Game Scanner service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
9/18/2017 2:57:15 PM, Error: Service Control Manager [7034]  - The Razer Central Service service terminated unexpectedly.  It has done this 2 time(s).
9/18/2017 2:57:14 PM, Error: Service Control Manager [7034]  - The RzKLService service terminated unexpectedly.  It has done this 1 time(s).
9/18/2017 2:57:07 PM, Error: Service Control Manager [7034]  - The Razer Central Service service terminated unexpectedly.  It has done this 1 time(s).
9/18/2017 2:57:05 PM, Error: Service Control Manager [7034]  - The Cron Service for Prey service terminated unexpectedly.  It has done this 1 time(s).
9/18/2017 2:56:50 PM, Error: Service Control Manager [7034]  - The Razer Game Manager service terminated unexpectedly.  It has done this 3 time(s).
9/18/2017 2:56:45 PM, Error: Service Control Manager [7034]  - The Razer Game Manager service terminated unexpectedly.  It has done this 2 time(s).
9/18/2017 2:56:42 PM, Error: Service Control Manager [7034]  - The Razer Game Manager service terminated unexpectedly.  It has done this 1 time(s).
9/17/2017 4:42:38 PM, Error: Microsoft-Windows-DistributedCOM [10016]  - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID  {7022A3B3-D004-4F52-AF11-E9E987FEE25F}  and APPID  {ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}  to the user BROLY3K8\Broly3k8 SID (S-1-5-21-1308960511-1373124003-4152937933-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
9/16/2017 6:49:45 PM, Error: Microsoft-Windows-DistributedCOM [10016]  - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID  {C2F03A33-21F5-47FA-B4BB-156362A2F239}  and APPID  {316CDED5-E4AE-4B15-9113-7055D84DCC97}  to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
9/16/2017 6:49:45 PM, Error: Microsoft-Windows-DistributedCOM [10016]  - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID  {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}  and APPID  {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}  to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
9/16/2017 6:43:50 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Avira.ServiceHost service to connect.
9/16/2017 6:43:48 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the RzActionSvc service to connect.
9/16/2017 6:43:48 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Razer Game Manager Service service to connect.
9/16/2017 6:43:48 PM, Error: Service Control Manager [7000]  - The RzActionSvc service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:43:48 PM, Error: Service Control Manager [7000]  - The Razer Game Manager Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Razer Game Scanner Service service to connect.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the HiPatchService service to connect.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Garmin Device Interaction Service service to connect.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7000]  - The Razer Game Scanner Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7000]  - The Origin Web Helper Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:43:46 PM, Error: Service Control Manager [7000]  - The Garmin Device Interaction Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:43:45 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Ds3Service service to connect.
9/16/2017 6:43:45 PM, Error: Service Control Manager [7000]  - The Ds3Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:43:15 PM, Error: Service Control Manager [7001]  - The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
9/16/2017 6:42:44 PM, Error: Service Control Manager [7000]  - The CldFlt service failed to start due to the following error:  The request is not supported.
9/16/2017 6:40:59 PM, Error: Service Control Manager [7043]  - The Storage Service service did not shut down properly after receiving a preshutdown control.
9/16/2017 6:25:35 PM, Error: Service Control Manager [7022]  - The NVIDIA Update Service Daemon service hung on starting.
9/16/2017 6:21:05 PM, Error: Service Control Manager [7000]  - The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/16/2017 6:21:03 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the FontCache3.0.0.0 service to connect.
9/15/2017 1:56:04 AM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NgcSvc service.
9/14/2017 8:31:07 AM, Error: Service Control Manager [7034]  - The App Readiness service terminated unexpectedly.  It has done this 1 time(s).
9/14/2017 8:25:09 AM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the CronService service to connect.
9/14/2017 8:25:09 AM, Error: Service Control Manager [7000]  - The CronService service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/14/2017 8:17:11 AM, Error: Service Control Manager [7001]  - The Avira Web Protection service depends on the Avira Real-Time Protection service which failed to start because of the following error:  After starting, the service hung in a start-pending state.
9/14/2017 8:17:11 AM, Error: Service Control Manager [7001]  - The Avira Mail Protection service depends on the Avira Real-Time Protection service which failed to start because of the following error:  After starting, the service hung in a start-pending state.
9/14/2017 8:17:10 AM, Error: Service Control Manager [7022]  - The Avira Real-Time Protection service hung on starting.
9/14/2017 3:48:27 PM, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
9/14/2017 3:48:27 PM, Error: Service Control Manager [7000]  - The Steam Client Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
9/14/2017 3:28:24 PM, Error: Service Control Manager [7022]  - The Downloaded Maps Manager service hung on starting.
9/13/2017 11:25:41 PM, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMService service.
9/13/2017 1:17:41 AM, Error: Microsoft-Windows-DistributedCOM [10005]  - DCOM got error "1115" attempting to start the service tiledatamodelsvc with arguments "Unavailable" in order to run the server: {B31118B2-1F49-48E5-B6F5-BC21CAEC56FB}
.
==== End Of File ===========================

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27138
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Re: Windows 10 sluggish, worried about malware.
« Reply #2 on: September 18, 2017, 10:13:17 AM »
Please download and install Speccy. Once that is done, then start it up. Once it is done analyzing, click on File and then on Save Snapshot. Save the snapshot to your desktop and then right click on it and select Send To and then Compressed (Zipped) Folder. I will send you a PM on what to do with the file.

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27138
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Re: [In Progress] Windows 10 sluggish, worried about malware.
« Reply #3 on: September 19, 2017, 01:46:18 PM »
OK, I looked at your Speccy log and the only thing I see is your CPU is warm but not hot, so its not working too hard, but it is also not idling. You also have only about a 50% memory usage, so you have plenty of memory. One thing from the log that does concern me is all the terminated early programs and services. I need to see your even viewer logs.

I need you to go to the administration tools in windows. They are in the program list when you click on the window button in the lower left corner of your desktop. Open the Admin tools, then open the event viewer. Over on the left hand side and click on System. Then up at the top click on Action and then click on Save Events As, type in system as the file name,  make sure file type EVT is selected, and then navigate so it will save the file to your desktop, then click save. Over on the left hand side and click on Application. Then up at the top click on Action and then click on Save Events As, type in application as the file name,  make sure file type EVT is selected, and then navigate so it will save the file to your desktop, then click save. Zip them both up into a single zip file, use the link I sent to your for Speccy and upload the file or files.

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27138
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Re: [In Progress] Windows 10 sluggish, worried about malware.
« Reply #4 on: September 20, 2017, 10:14:32 AM »
Have you run a scan with Avira and Malwarebytes? If not then run those scans and post the logs . If you have already run those, then please run a System File Check.

Select Start , and in the search box, enter Command Prompt. Press and hold (or right-click) Command Prompt (Desktop app) from the search results and select Run as administrator.

Enter sfc /scannow (note the space between "sfc" and "/").

Type the following command and press Enter: findstr /c:"[SR]" %windir%\Logs\CBS\CBS.log >"%userprofile%\Desktop\sfclogs.txt"

Open the sfclogs.txt located on the desktop with Notepad.

Post up the resulting log.

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Broly3k8

  • Bronze Member
  • Posts: 71
Re: [In Progress] Windows 10 sluggish, worried about malware.
« Reply #5 on: September 21, 2017, 06:02:30 AM »
I did a Maleware scan about a week ago but I can do another tonight.

I did the command prompt thing hit X before saving the log :'(. Ill do it again in a bit, but it should be mentioned it said there was nothing wrong with System files so the log should be empty. ill do it again though and post it. Im split right now on time as I am working and doing stuff for wife, so I might not end up posting a reply till tomorrow morning.

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27138
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Re: [In Progress] Windows 10 sluggish, worried about malware.
« Reply #6 on: September 21, 2017, 07:46:51 AM »
No worries

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27138
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Re: [In Progress] Windows 10 sluggish, worried about malware.
« Reply #7 on: September 21, 2017, 07:58:56 AM »
Are you having a problem updating Avira? There appears to be an Avira update that keeps crashing during the install, although it may have finally worked, because it stopped. How reliable is your internet connection? Do you have problems downloading files? Also can you go to settings then to Windows Update and then to update history and see if any updates have failed in the last week or so.
One last question, do you use Cortana?

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!