Thank you in advanced for assisting me in working out what the problem is on my laptop. I am fairly well across the basics on PC's and I'm even comfortable to undertake many (specific) intermediate level activities however I must admit there is ALOT I'm lacking which I'm conceding may be a contributing factor to this all.
***Lead up story to the issue/current environment below, skip this if you just want to know about this specific device***
So essentially this issue is happening to my laptop (this current device) and my desktop PC. I run a Archer A9 router/modem which connects all my devices to the internet. I have the following devices connected to the Archer/Internet:
-A custom gaming PC which connects to the router via USB plug in TP-Link AC1300 Dual Band Wireless Adapter (too far from router hence the adapter plus faster speeds).
-WIFI printer/scanner (Brother HL-L2380DW).
-MacBook Pro (Model A1502).
-Two new iPhone 7 +.
-TV (Panasonic TX55EX600E).
-Sync 3 (Ford Ranger occasionally connects to the WIFI for automatic updates).
I am very security conscious and am aware how real and potentially crippling IoT infections are/can be/will be and how potentially dangerous UPnP is and so on. That's why I have never set up or wanted to set up any kind of home network, I do not need all my devices communicating with one another, I do not want ANY of my devices "automatically" doing anything with one another without my explicit actions or knowledge. Yes I'm going overboard, yes it will probably be fine but I cannot feel comfortable until each device is accounted for and I know what device is accessing which port for what reason. I need each separate device being exactly that, separate I only need these device to access the internet to be able to function properly i.e. TV to have whatever it needs enabled to stream Netflix but not be enabled as a media server or have mirror view enabled and constantly searching for something to connect to.
When going through the fix and/or possible issues please keep the above in mind, it will explain a lot of what you will find (disabled services, deleted/paused/uninstalled devices/services/drivers etc) and as I said at the very top - probably is not helping at all and may even be the cause!
Current Device + Issues
-Laptop - Lenovo ideapad 100s Windows 10 Home x64
-Processor Intel® Pentium® CPU N3710 @ 1.60GHz, 1601 Mhz, 4 Core(s), 4 Logical Processor(s)
-RAM type unknown (4gb/3.85gb available)
-HDD unknown (NTFS - 118gb - 63 available)
Essentially I have noticed many folders/files/programs being installed without my knowledge and a vast majority have been to do with services/programs with the words remote/network/connection/wireless/firmware/proxy/stream/mobile/server/client/web/host/shell/routing/net/share/gateway/DNS/virtual and so on. Now I understand what each of these items are alone and I understand this is a laptop and it is essentially a portable computer which needs many "non hard wired" capabilities to be able to do whatever a buyer may want it to. Its just the amount of services/programs I have noticed devoted to these things is massively excessive and unnecessary. I may be wrong and each item may be 100% legitimate and have its reason for being there but have noticed new one appearing frequently. I have also stressed that my understanding of any of these may be out of context/they have other meanings when used in different contexts so forgive my ignorance if ive completely missed something. Also even when logged in as administrator I seem to get plenty of "access denied" and system options that I know are suppose to be there but are either greyed out or missing. Any attempt to work through all this makes me feel like I'm chasing a ghost. A few more issues/questions:
- Some processes running x64, some in x86 - normal?
- I thought group policy is disabled in Win10 Home however it seems to be enabled/restricting my movements.
- I suspect my drivers may be contributing to some sort of issue.
- Windows update/Windows Defender/Signed drivers/Certificates etc seem to report no issues however upon look in detail at each on I find updates failed, definitions failed to load/download/signed drivers and certificates that expired or cant be trusted.
- Using different security tools (Have used GMER/CCleaner/Rootkit Revealer/Malwarebytes etc etc) show contradictory results and most show signs of some underlying problem that I can never uncover.
- Selecting settings for any system setting may or may not still be selected once a reboot happens, essentially the system goes back to default regardless of what's selected.
- Duplicates and/or incorrect locations for system processes (lsass/csrss/smss etc)
- New/Strange/unnecessary drivers/devices sometimes 2/3/4/5 different devices (mostly hidden) for the same simple device which already is installed.
I guess I just need someone with knowledge in this department to have a look at my logs, clean any infection/issue and possibly enlighten me in some areas to fill the gaps in my knowledge base to help me work through these things without the need of assistance in the future.
Apologies for the novel, I just felt it was important to get down everything up front so we an save time and work through the next steps quickly, future posts will not be excessive I promise!
Thanks again for any help!