Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Windows failing to start - MBAMSwissArmy.sys. FRST log included


  • This topic is locked This topic is locked

#1
tubalcain

tubalcain

    Member

  • Member
  • PipPip
  • 11 posts

Hello.

 

This morning, my PC had failed to boot properly. It seems to be due to "MBAMSwissArmy.sys" being corrupt, and after doing some internet searching it sounds like this typically has to do with malware. I ran FRST, but I'm not too good with computers so I'm unsure if this is the case or if there is some other issue.  

 

If someone could help me through the process of fixing my machine, it'd be greatly appreciated. 

Thanks in advance!

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-11-2017 01
Ran by SYSTEM on MININT-I3BTSSS (25-11-2017 10:02:27)
Running from f:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
 
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2013-07-26] (Realtek Semiconductor)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [65120 2017-11-07] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira Safe Shopping] => C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe [546960 2017-10-30] (Avira Operations Gmbh & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-11-13] (Dropbox, Inc.)
HKLM\...\RunOnce: [*Restore] => C:\Windows\system32\rstrui.exe [296960 2017-09-13] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
GroupPolicy: Restriction <==== ATTENTION
 
==================== Services (All) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2017-09-27] (Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-11-14] (Adobe Systems Incorporated)
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [72192 2015-10-29] (Microsoft Corporation)
S3 ALG; C:\Windows\System32\alg.exe [79360 2009-07-13] (Microsoft Corporation)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128944 2017-11-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-11-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-11-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1526832 2017-11-09] (Avira Operations GmbH & Co. KG)
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [34816 2017-09-13] (Microsoft Corporation)
S3 Appinfo; C:\Windows\System32\appinfo.dll [70144 2016-11-09] (Microsoft Corporation)
S4 aspnet_state; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [52856 2017-04-21] (Microsoft Corporation)
S2 ASRockIOMon; C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe [454656 2013-05-28] ()
S2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [680448 2016-06-14] (Microsoft Corporation)
S2 AudioSrv; C:\Windows\System32\Audiosrv.dll [680448 2016-06-14] (Microsoft Corporation)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [434248 2017-11-06] (Avira Operations GmbH & Co. KG)
S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [332016 2017-10-25] (Avira Operations GmbH & Co. KG)
S2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [101792 2017-11-08] (Avira Operations GmbH & Co. KG)
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2010-11-20] (Microsoft Corporation)
S3 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2009-07-13] (Microsoft Corporation)
S2 BFE; C:\Windows\System32\bfe.dll [705024 2010-11-20] (Microsoft Corporation)
S2 BITS; C:\Windows\System32\qmgr.dll [849920 2010-11-20] (Microsoft Corporation)
S4 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-04-18] (Apple Inc.)
S3 Browser; C:\Windows\System32\browser.dll [136704 2012-07-04] (Microsoft Corporation)
S3 bthserv; C:\Windows\system32\bthserv.dll [83968 2009-07-13] (Microsoft Corporation)
S3 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
S2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [726952 2015-09-09] (cFos Software GmbH)
S4 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [67224 2014-03-20] (Microsoft Corporation)
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-20] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [107656 2017-04-21] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [128648 2017-04-21] (Microsoft Corporation)
S2 CryptSvc; C:\Windows\system32\cryptsvc.dll [190976 2017-04-12] (Microsoft Corporation)
S2 CryptSvc; C:\Windows\SysWOW64\cryptsvc.dll [145920 2017-04-12] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-10-07] (Dropbox, Inc.)
S2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51016 2017-11-13] (Dropbox, Inc.)
S2 DcomLaunch; C:\Windows\system32\rpcss.dll [512000 2017-08-10] (Microsoft Corporation)
S3 defragsvc; C:\Windows\System32\defragsvc.dll [291328 2009-07-13] (Microsoft Corporation)
S2 Dhcp; C:\Windows\system32\dhcpcore.dll [317952 2010-11-20] (Microsoft Corporation)
S2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [254464 2010-11-20] (Microsoft Corporation)
S2 DiagTrack; C:\Windows\system32\diagtrack.dll [1386496 2016-08-22] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2289856 2017-07-03] (Disc Soft Ltd)
S2 Dnscache; C:\Windows\System32\dnsrslvr.dll [183296 2011-03-02] (Microsoft Corporation)
S3 dot3svc; C:\Windows\System32\dot3svc.dll [252416 2010-11-20] (Microsoft Corporation)
S2 DPS; C:\Windows\system32\dps.dll [162816 2010-11-20] (Microsoft Corporation)
S3 EapHost; C:\Windows\System32\eapsvc.dll [111104 2009-07-13] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [383016 2017-06-14] (EasyAntiCheat Ltd)
S3 EFS; C:\Windows\System32\lsass.exe [30720 2017-09-13] (Microsoft Corporation)
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2010-11-20] (Microsoft Corporation)
S3 ehSched; C:\Windows\ehome\ehsched.exe [127488 2009-07-13] (Microsoft Corporation)
S2 eventlog; C:\Windows\System32\wevtsvc.dll [1646080 2010-11-20] (Microsoft Corporation)
S2 EventSystem; C:\Windows\system32\es.dll [402944 2009-07-13] (Microsoft Corporation)
S2 EventSystem; C:\Windows\SysWOW64\es.dll [271360 2009-07-13] (Microsoft Corporation)
S3 Fax; C:\Windows\system32\fxssvc.exe [689152 2010-11-20] (Microsoft Corporation)
S3 fdPHost; C:\Windows\system32\fdPHost.dll [16384 2009-07-13] (Microsoft Corporation)
S3 FDResPub; C:\Windows\system32\fdrespub.dll [34816 2009-07-13] (Microsoft Corporation)
S2 FontCache; C:\Windows\system32\FntCache.dll [1180160 2017-05-12] (Microsoft Corporation)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-20] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [487488 2017-07-28] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8163392 2017-07-13] (GOG.com)
S2 gpsvc; C:\Windows\System32\gpsvc.dll [794624 2016-05-12] (Microsoft Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-27] (Google Inc.)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-02-27] (Google Inc.)
S3 hidserv; C:\Windows\system32\hidserv.dll [38912 2009-07-13] (Microsoft Corporation)
S3 hidserv; C:\Windows\SysWOW64\hidserv.dll [49152 2009-07-13] (Microsoft Corporation)
S4 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-05-11] (Hi-Rez Studios)
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [90624 2010-11-20] (Microsoft Corporation)
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [232448 2010-11-20] (Microsoft Corporation)
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [187904 2010-11-20] (Microsoft Corporation)
S3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [165376 2010-11-20] (Microsoft Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [171072 2012-09-18] (Intel Corporation)
S3 idsvc; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [859280 2014-06-30] (Microsoft Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [116224 2017-10-14] (Microsoft Corporation)
S2 IKEEXT; C:\Windows\System32\ikeext.dll [859648 2013-10-11] (Microsoft Corporation)
S2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
S2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel® Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-09-02] (Intel Corporation)
S3 IPBusEnum; C:\Windows\system32\ipbusenum.dll [101888 2009-07-13] (Microsoft Corporation)
S2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [569344 2012-10-03] (Microsoft Corporation)
S2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
S3 KeyIso; C:\Windows\system32\lsass.exe [30720 2017-09-13] (Microsoft Corporation)
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [368640 2009-07-13] (Microsoft Corporation)
S2 LanmanServer; C:\Windows\system32\srvsvc.dll [236032 2010-11-20] (Microsoft Corporation)
S2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2010-11-20] (Microsoft Corporation)
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [300032 2009-07-13] (Microsoft Corporation)
S2 lmhosts; C:\Windows\System32\lmhsvc.dll [23552 2009-07-13] (Microsoft Corporation)
S2 LMS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [390616 2013-09-03] (Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-21] (Malwarebytes)
S4 Mcx2Svc; C:\Windows\system32\Mcx2Svc.dll [84992 2010-11-20] (Microsoft Corporation)
S2 MMCSS; C:\Windows\system32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
S2 MpsSvc; C:\Windows\system32\mpssvc.dll [828416 2010-11-20] (Microsoft Corporation)
S3 MSDTC; C:\Windows\System32\msdtc.exe [141824 2009-07-13] (Microsoft Corporation)
S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [156672 2009-07-13] (Microsoft Corporation)
S3 msiserver; C:\Windows\System32\msiexec.exe [128512 2016-11-09] (Microsoft Corporation)
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [73216 2016-11-09] (Microsoft Corporation)
S3 napagent; C:\Windows\system32\qagentRT.dll [476160 2010-11-20] (Microsoft Corporation)
S3 Netlogon; C:\Windows\system32\lsass.exe [30720 2017-09-13] (Microsoft Corporation)
S3 Netman; C:\Windows\System32\netman.dll [360448 2009-07-13] (Microsoft Corporation)
S4 NetMsmqActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136312 2017-04-21] (Microsoft Corporation)
S4 NetPipeActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136312 2017-04-21] (Microsoft Corporation)
S3 netprofm; C:\Windows\System32\netprofm.dll [459776 2009-07-13] (Microsoft Corporation)
S3 netprofm; C:\Windows\SysWOW64\netprofm.dll [360448 2009-07-13] (Microsoft Corporation)
S4 NetTcpActivator; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136312 2017-04-21] (Microsoft Corporation)
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [136312 2017-04-21] (Microsoft Corporation)
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [303616 2014-12-05] (Microsoft Corporation)
S2 nsi; C:\Windows\system32\nsisvc.dll [26112 2017-08-10] (Microsoft Corporation)
S2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
S2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-07] (NVIDIA Corporation)
S2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-10] (NVIDIA Corporation)
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
S3 p2psvc; C:\Windows\system32\p2psvc.dll [438784 2009-07-13] (Microsoft Corporation)
S2 PcaSvc; C:\Windows\System32\pcasvc.dll [187904 2016-06-14] (Microsoft Corporation)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-13] (Microsoft Corporation)
S3 pla; C:\Windows\system32\pla.dll [1389056 2017-03-10] (Microsoft Corporation)
S3 pla; C:\Windows\SysWOW64\pla.dll [1508352 2017-03-10] (Microsoft Corporation)
S2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [404480 2011-05-24] (Microsoft Corporation)
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25088 2009-07-13] (Microsoft Corporation)
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
S3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [502272 2016-05-12] (Microsoft Corporation)
S2 Power; C:\Windows\system32\umpo.dll [163840 2009-07-13] (Microsoft Corporation)
S2 ProfSvc; C:\Windows\system32\profsvc.dll [210432 2014-12-18] (Microsoft Corporation)
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [30720 2017-09-13] (Microsoft Corporation)
S3 QWAVE; C:\Windows\system32\qwave.dll [242688 2009-07-13] (Microsoft Corporation)
S3 RasAuto; C:\Windows\System32\rasauto.dll [99328 2009-07-13] (Microsoft Corporation)
S3 RasMan; C:\Windows\System32\rasmans.dll [344064 2010-11-20] (Microsoft Corporation)
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2009-07-13] (Microsoft Corporation)
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [75264 2009-07-13] (Microsoft Corporation)
S3 RemoteRegistry; C:\Windows\system32\regsvc.dll [159232 2009-07-13] (Microsoft Corporation)
S2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [67072 2009-07-13] (Microsoft Corporation)
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2009-07-13] (Microsoft Corporation)
S2 RpcSs; C:\Windows\system32\rpcss.dll [512000 2017-08-10] (Microsoft Corporation)
S2 SamSs; C:\Windows\system32\lsass.exe [30720 2017-09-13] (Microsoft Corporation)
S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [190976 2009-07-13] (Microsoft Corporation)
S2 Schedule; C:\Windows\system32\schedsvc.dll [1110016 2015-08-05] (Microsoft Corporation)
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [170496 2010-11-20] (Microsoft Corporation)
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2016-02-09] (Microsoft Corporation)
S2 SENS; C:\Windows\System32\sens.dll [64512 2009-07-13] (Microsoft Corporation)
S2 SENS; C:\Windows\SysWOW64\sens.dll [49664 2009-07-13] (Microsoft Corporation)
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [29184 2009-07-13] (Microsoft Corporation)
S3 SessionEnv; C:\Windows\system32\sessenv.dll [121856 2010-11-20] (Microsoft Corporation)
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [113664 2010-11-20] (Microsoft Corporation)
S4 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-13] (Microsoft Corporation)
S2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [370688 2010-11-20] (Microsoft Corporation)
S2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [328192 2010-11-20] (Microsoft Corporation)
S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [317408 2017-07-18] (Skype Technologies)
S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14336 2009-07-13] (Microsoft Corporation)
S2 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [74256 2017-11-07] (Avira Operations GmbH & Co. KG)
S2 Spooler; C:\Windows\System32\spoolsv.exe [559104 2010-11-20] (Microsoft Corporation)
S2 sppsvc; C:\Windows\system32\sppsvc.exe [3524608 2010-11-20] (Microsoft Corporation)
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [65536 2009-07-13] (Microsoft Corporation)
S3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [193024 2009-07-13] (Microsoft Corporation)
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [75264 2009-07-13] (Microsoft Corporation)
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [1641248 2017-10-30] (Valve Corporation)
S3 stisvc; C:\Windows\System32\wiaservc.dll [580096 2010-11-20] (Microsoft Corporation)
S3 swprv; C:\Windows\System32\swprv.dll [524288 2009-07-13] (Microsoft Corporation)
S2 SysMain; C:\Windows\system32\sysmain.dll [1743360 2015-07-15] (Microsoft Corporation)
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [92672 2010-11-20] (Microsoft Corporation)
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [316928 2010-11-20] (Microsoft Corporation)
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [242176 2010-11-20] (Microsoft Corporation)
S3 TermService; C:\Windows\System32\termsrv.dll [683520 2014-10-13] (Microsoft Corporation)
S2 Themes; C:\Windows\system32\themeservice.dll [44544 2009-07-13] (Microsoft Corporation)
S3 THREADORDER; C:\Windows\system32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
S2 TrkWks; C:\Windows\System32\trkwks.dll [119808 2009-07-13] (Microsoft Corporation)
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [194048 2010-11-20] (Microsoft Corporation)
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2009-07-13] (Microsoft Corporation)
S3 upnphost; C:\Windows\System32\upnphost.dll [353792 2009-07-13] (Microsoft Corporation)
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [266752 2009-07-13] (Microsoft Corporation)
S2 UxSms; C:\Windows\System32\uxsms.dll [38912 2009-07-13] (Microsoft Corporation)
S3 VaultSvc; C:\Windows\system32\lsass.exe [30720 2017-09-13] (Microsoft Corporation)
S3 vds; C:\Windows\System32\vds.exe [533504 2010-11-20] (Microsoft Corporation)
S3 VSS; C:\Windows\system32\vssvc.exe [1600512 2010-11-20] (Microsoft Corporation)
S3 W32Time; C:\Windows\system32\w32time.dll [381952 2009-07-13] (Microsoft Corporation)
S3 WatAdminSvc; C:\Windows\system32\Wat\WatAdminSvc.exe [1255736 2016-02-25] (Microsoft Corporation)
S3 wbengine; C:\Windows\system32\wbengine.exe [1504256 2010-11-20] (Microsoft Corporation)
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [202240 2009-07-13] (Microsoft Corporation)
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [367104 2010-11-20] (Microsoft Corporation)
S3 wcncsvc; C:\Windows\SysWOW64\wcncsvc.dll [276992 2010-11-20] (Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [40960 2017-02-09] (Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [32768 2017-02-09] (Microsoft Corporation)
S3 WdiServiceHost; C:\Windows\system32\wdi.dll [91136 2015-01-08] (Microsoft Corporation)
S3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [76800 2015-01-08] (Microsoft Corporation)
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [91136 2015-01-08] (Microsoft Corporation)
S3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [76800 2015-01-08] (Microsoft Corporation)
S3 WebClient; C:\Windows\System32\webclnt.dll [263680 2016-09-08] (Microsoft Corporation)
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [208896 2016-09-08] (Microsoft Corporation)
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [237568 2009-07-13] (Microsoft Corporation)
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [84480 2009-07-13] (Microsoft Corporation)
S3 WerSvc; C:\Windows\System32\WerSvc.dll [76800 2009-07-13] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)
S3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [444928 2016-05-11] (Microsoft Corporation)
S2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [242688 2009-07-13] (Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2023424 2016-08-06] (Microsoft Corporation)
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [1178112 2016-08-06] (Microsoft Corporation)
S2 Wlansvc; C:\Windows\System32\wlansvc.dll [886272 2017-09-13] (Microsoft Corporation)
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [203264 2009-07-13] (Microsoft Corporation)
S2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1525248 2010-11-20] (Microsoft Corporation)
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2009-07-13] (Microsoft Corporation)
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [10752 2009-07-13] (Microsoft Corporation)
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [117248 2010-11-20] (Microsoft Corporation)
S2 wscsvc; C:\Windows\System32\wscsvc.dll [97280 2009-07-13] (Microsoft Corporation)
S2 WSearch; C:\Windows\system32\SearchIndexer.exe [591872 2017-10-11] (Microsoft Corporation)
S2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [427520 2017-10-11] (Microsoft Corporation)
S2 wuauserv; C:\Windows\system32\wuaueng.dll [2651136 2017-05-10] (Microsoft Corporation)
S3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [84992 2012-07-25] (Microsoft Corporation)
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [228864 2014-01-27] (Microsoft Corporation)
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
 
===================== Drivers (All) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [229888 2010-11-20] (Microsoft Corporation)
S0 ACPI; C:\Windows\System32\drivers\ACPI.sys [334208 2010-11-20] (Microsoft Corporation)
S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [12800 2010-11-20] (Microsoft Corporation)
S3 adp94xx; C:\Windows\system32\drivers\adp94xx.sys [491088 2009-07-13] (Adaptec, Inc.)
S3 adpahci; C:\Windows\system32\drivers\adpahci.sys [339536 2009-07-13] (Adaptec, Inc.)
S3 adpu320; C:\Windows\system32\drivers\adpu320.sys [182864 2009-07-13] (Adaptec, Inc.)
S1 AFD; C:\Windows\system32\drivers\afd.sys [496128 2017-04-04] (Microsoft Corporation)
S3 agp440; C:\Windows\system32\drivers\agp440.sys [61008 2009-07-13] (Microsoft Corporation)
S3 aliide; C:\Windows\system32\drivers\aliide.sys [15440 2009-07-13] (Acer Laboratories Inc.)
S3 amdide; C:\Windows\system32\drivers\amdide.sys [15440 2009-07-13] (Microsoft Corporation)
S3 AmdK8; C:\Windows\system32\drivers\amdk8.sys [64512 2009-07-13] (Microsoft Corporation)
S3 AmdPPM; C:\Windows\system32\drivers\amdppm.sys [60928 2009-07-13] (Microsoft Corporation)
S3 amdsata; C:\Windows\system32\drivers\amdsata.sys [107904 2011-03-10] (Advanced Micro Devices)
S3 amdsbs; C:\Windows\system32\drivers\amdsbs.sys [194128 2009-07-13] (AMD Technologies Inc.)
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [27008 2011-03-10] (Advanced Micro Devices)
S3 AppID; C:\Windows\system32\drivers\appid.sys [62464 2017-09-13] (Microsoft Corporation)
S3 arc; C:\Windows\system32\drivers\arc.sys [87632 2009-07-13] (Adaptec, Inc.)
S3 arcsas; C:\Windows\system32\drivers\arcsas.sys [97856 2009-07-13] (Adaptec, Inc.)
S1 AsrAppCharger; C:\Windows\System32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (Windows ® Win 7 DDK provider)
S0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [40200 2013-05-09] (ASRock Inc.)
S3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [23040 2009-07-13] (Microsoft Corporation)
S0 atapi; C:\Windows\System32\drivers\atapi.sys [24128 2009-07-13] (Microsoft Corporation)
S0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-11-09] (Avira Operations GmbH & Co. KG)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [194272 2017-11-09] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [151128 2017-11-09] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-11-09] (Avira Operations GmbH & Co. KG)
S2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-11-09] (Avira Operations GmbH & Co. KG)
S0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [34128 2017-11-09] (Avira Operations GmbH & Co. KG)
S3 b06bdrv; C:\Windows\system32\drivers\bxvbda.sys [468480 2009-06-10] (Broadcom Corporation)
S3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Broadcom Corporation)
S5 BattC; C:\Windows\System32\Drivers\BattC.sys [28240 2009-07-13] (Microsoft Corporation)
S1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2009-07-13] (Microsoft Corporation)
S1 blbdrive; C:\Windows\System32\DRIVERS\blbdrive.sys [45056 2009-07-13] (Microsoft Corporation)
S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90112 2016-10-05] (Microsoft Corporation)
S3 BrFiltLo; C:\Windows\system32\drivers\BrFiltLo.sys [18432 2009-06-10] (Brother Industries, Ltd.)
S3 BrFiltUp; C:\Windows\system32\drivers\BrFiltUp.sys [8704 2009-06-10] (Brother Industries, Ltd.)
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-13] (Brother Industries Ltd.)
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Brother Industries Ltd.)
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Brother Industries Ltd.)
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Brother Industries Ltd.)
S3 BthEnum; C:\Windows\system32\drivers\BthEnum.sys [41984 2009-07-13] (Microsoft Corporation)
S3 BTHMODEM; C:\Windows\system32\drivers\bthmodem.sys [72192 2009-07-13] (Microsoft Corporation)
S3 BthPan; C:\Windows\system32\drivers\bthpan.sys [119296 2017-07-05] (Microsoft Corporation)
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [552960 2012-07-06] (Microsoft Corporation)
S3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [80384 2011-04-27] (Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92160 2009-07-13] (Microsoft Corporation)
S1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [147456 2010-11-20] (Microsoft Corporation)
S1 cFosSpeed; C:\Windows\System32\DRIVERS\cfosspeed6.sys [2004904 2015-09-09] (cFos Software GmbH)
S3 circlass; C:\Windows\system32\drivers\circlass.sys [45568 2009-07-13] (Microsoft Corporation)
S0 CLFS; C:\Windows\System32\CLFS.sys [370920 2017-07-08] (Microsoft Corporation)
S3 CmBatt; C:\Windows\system32\drivers\CmBatt.sys [17664 2009-07-13] (Microsoft Corporation)
S3 cmdide; C:\Windows\system32\drivers\cmdide.sys [17488 2009-07-13] (CMD Technology, Inc.)
S0 CNG; C:\Windows\System32\Drivers\cng.sys [467392 2016-11-20] (Microsoft Corporation)
S3 Compbatt; C:\Windows\system32\drivers\compbatt.sys [21584 2009-07-13] (Microsoft Corporation)
S3 CompositeBus; C:\Windows\System32\DRIVERS\CompositeBus.sys [38912 2010-11-20] (Microsoft Corporation)
S4 crcdisk; C:\Windows\system32\drivers\crcdisk.sys [24144 2009-07-13] (Microsoft Corporation)
S1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [106496 2016-09-08] (Microsoft Corporation)
S1 discache; C:\Windows\System32\drivers\discache.sys [40448 2009-07-13] (Microsoft Corporation)
S0 Disk; C:\Windows\System32\drivers\disk.sys [73664 2016-01-20] (Microsoft Corporation)
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [5632 2015-12-08] (Microsoft Corporation)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-11-17] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-11-17] (Disc Soft Ltd)
S3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [986856 2017-05-16] (Microsoft Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 elxstor; C:\Windows\system32\drivers\elxstor.sys [530496 2009-07-13] (Emulex)
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [9728 2009-07-13] (Microsoft Corporation)
S1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-11-23] ()
S3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2017-01-08] (Echobit, LLC)
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [195584 2017-03-10] (Microsoft Corporation)
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [205312 2017-03-10] (Microsoft Corporation)
S3 fdc; C:\Windows\system32\drivers\fdc.sys [29696 2009-07-13] (Microsoft Corporation)
S0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [70224 2009-07-13] (Microsoft Corporation)
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34304 2009-07-13] (Microsoft Corporation)
S3 flpydisk; C:\Windows\system32\drivers\flpydisk.sys [24576 2009-07-13] (Microsoft Corporation)
S0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [289664 2010-11-20] (Microsoft Corporation)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2017-08-10] (FNet Co., Ltd.)
S1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2016-02-26] (FNet Co., Ltd.)
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [55376 2009-07-13] (Microsoft Corporation)
S0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [23408 2012-02-29] (Microsoft Corporation)
S0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [223752 2013-01-23] (Microsoft Corporation)
S3 gagp30kx; C:\Windows\system32\drivers\gagp30kx.sys [65088 2009-07-13] (Microsoft Corporation)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [34720 2016-03-22] (LogMeIn, Inc.)
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [31232 2009-06-10] (Hauppauge Computer Works, Inc.)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [350208 2010-11-20] (Microsoft Corporation)
S3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [122368 2010-11-20] (Microsoft Corporation)
S3 HidBatt; C:\Windows\system32\drivers\HidBatt.sys [26624 2009-07-13] (Microsoft Corporation)
S3 HidBth; C:\Windows\system32\drivers\hidbth.sys [100864 2009-07-13] (Microsoft Corporation)
S3 HidIr; C:\Windows\system32\drivers\hidir.sys [46592 2009-07-13] (Microsoft Corporation)
S3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2010-11-20] (Microsoft Corporation)
S3 HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [78720 2010-11-20] (Hewlett-Packard Company)
S3 HTTP; C:\Windows\System32\drivers\HTTP.sys [753664 2017-06-15] (Microsoft Corporation)
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14720 2010-11-20] (Microsoft Corporation)
S3 i8042prt; C:\Windows\system32\drivers\i8042prt.sys [105472 2009-07-13] (Microsoft Corporation)
S3 iaStorV; C:\Windows\system32\drivers\iaStorV.sys [410496 2011-03-10] (Intel Corporation)
S3 iirsp; C:\Windows\system32\drivers\iirsp.sys [44112 2009-07-13] (Intel Corp./ICP vortex GmbH)
S3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
S3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
S3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKVHD64.sys [3564376 2013-07-30] (Realtek Semiconductor Corp.)
S3 intelide; C:\Windows\system32\drivers\intelide.sys [16960 2009-07-13] (Microsoft Corporation)
S3 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [62464 2009-07-13] (Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-20] (Microsoft Corporation)
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [78848 2010-11-20] (Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2009-07-13] (Microsoft Corporation)
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-13] (Microsoft Corporation)
S3 isapnp; C:\Windows\system32\drivers\isapnp.sys [20544 2009-07-13] (Microsoft Corporation)
S3 iScsiPrt; C:\Windows\system32\drivers\msiscsi.sys [274880 2014-02-03] (Microsoft Corporation)
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
S0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [22768 2016-02-25] (Intel Corporation)
S3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [395504 2016-02-25] (Intel Corporation)
S3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [806128 2016-02-25] (Intel Corporation)
S3 kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [50768 2009-07-13] (Microsoft Corporation)
S3 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [33280 2010-11-20] (Microsoft Corporation)
S0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [95464 2017-09-13] (Microsoft Corporation)
S0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [154856 2017-09-13] (Microsoft Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [20992 2009-07-13] (Microsoft Corporation)
S2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-13] (Microsoft Corporation)
S3 LSI_FC; C:\Windows\system32\drivers\lsi_fc.sys [114752 2009-07-13] (LSI Corporation)
S3 LSI_SAS; C:\Windows\system32\drivers\lsi_sas.sys [106560 2009-07-13] (LSI Corporation)
S3 LSI_SAS2; C:\Windows\system32\drivers\lsi_sas2.sys [65600 2009-07-13] (LSI Corporation)
S3 LSI_SCSI; C:\Windows\system32\drivers\lsi_scsi.sys [115776 2009-07-13] (LSI Corporation)
S2 luafv; C:\Windows\system32\drivers\luafv.sys [113152 2017-10-11] (Microsoft Corporation)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [101824 2017-09-12] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [45472 2017-09-12] (Malwarebytes)
S0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2017-11-23] ()
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-09-12] (Malwarebytes)
S3 megasas; C:\Windows\system32\drivers\megasas.sys [35392 2009-07-13] (LSI Corporation)
S3 MegaSR; C:\Windows\system32\drivers\MegaSR.sys [284736 2009-07-13] (LSI Corporation, Inc.)
S3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2009-07-13] (Microsoft Corporation)
S3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2009-07-13] (Microsoft Corporation)
S3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [49216 2009-07-13] (Microsoft Corporation)
S3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-13] (Microsoft Corporation)
S0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94440 2017-05-07] (Microsoft Corporation)
S3 mpio; C:\Windows\system32\drivers\mpio.sys [155008 2010-11-20] (Microsoft Corporation)
S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2009-07-13] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [142336 2016-09-08] (Microsoft Corporation)
S3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [159744 2017-09-13] (Microsoft Corporation)
S3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [291328 2017-09-13] (Microsoft Corporation)
S3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [129536 2017-09-13] (Microsoft Corporation)
S0 msahci; C:\Windows\System32\drivers\msahci.sys [31104 2010-11-20] (Microsoft Corporation)
S3 msdsm; C:\Windows\system32\drivers\msdsm.sys [140672 2010-11-20] (Microsoft Corporation)
S1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2009-07-13] (Microsoft Corporation)
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-13] (Microsoft Corporation)
S0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [15424 2009-07-13] (Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [11136 2009-07-13] (Microsoft Corporation)
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [7168 2009-07-13] (Microsoft Corporation)
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [6784 2009-07-13] (Microsoft Corporation)
S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [366976 2010-11-20] (Microsoft Corporation)
S1 mssmbios; C:\Windows\System32\DRIVERS\mssmbios.sys [32320 2009-07-13] (Microsoft Corporation)
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [8064 2009-07-13] (Microsoft Corporation)
S3 MTConfig; C:\Windows\system32\drivers\MTConfig.sys [15360 2009-07-13] (Microsoft Corporation)
S0 Mup; C:\Windows\System32\Drivers\mup.sys [60496 2009-07-13] (Microsoft Corporation)
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [324608 2017-09-13] (Microsoft Corporation)
S0 NDIS; C:\Windows\System32\drivers\ndis.sys [950720 2015-10-12] (Microsoft Corporation)
S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-13] (Microsoft Corporation)
S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2009-07-13] (Microsoft Corporation)
S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2010-11-20] (Microsoft Corporation)
S3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [164352 2010-11-20] (Microsoft Corporation)
S3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [57856 2010-11-20] (Microsoft Corporation)
S3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0067.sys [38432 2017-07-25] (SoftEther Corporation)
S1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2009-07-13] (Microsoft Corporation)
S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [262656 2017-08-10] (Microsoft Corporation)
S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [1241952 2010-07-27] (Ralink Technology Corp.)
S3 nfrd960; C:\Windows\system32\drivers\nfrd960.sys [51264 2009-07-13] (IBM Corporation)
S1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44032 2009-07-13] (Microsoft Corporation)
S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [26112 2017-08-10] (Microsoft Corporation)
S3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1680616 2017-10-16] (Microsoft Corporation)
S1 Null; C:\Windows\System32\Drivers\Null.sys [6144 2009-07-13] (Microsoft Corporation)
S3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [218712 2017-06-07] (NVIDIA Corporation)
S3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [14276216 2017-06-07] (NVIDIA Corporation)
S3 nvraid; C:\Windows\system32\drivers\nvraid.sys [148352 2011-03-10] (NVIDIA Corporation)
S3 nvstor; C:\Windows\system32\drivers\nvstor.sys [166272 2011-03-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-10] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
S3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-06-07] (NVIDIA Corporation)
S3 nv_agp; C:\Windows\system32\drivers\nv_agp.sys [122960 2009-07-13] (Microsoft Corporation)
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [72832 2009-07-13] (Microsoft Corporation)
S3 Parport; C:\Windows\System32\DRIVERS\parport.sys [97280 2009-07-13] (Microsoft Corporation)
S0 partmgr; C:\Windows\System32\drivers\partmgr.sys [75120 2012-03-16] (Microsoft Corporation)
S0 pci; C:\Windows\System32\drivers\pci.sys [184704 2010-11-20] (Microsoft Corporation)
S3 pciide; C:\Windows\system32\drivers\pciide.sys [12352 2009-07-13] (Microsoft Corporation)
S3 pcmcia; C:\Windows\system32\drivers\pcmcia.sys [220752 2009-07-13] (Microsoft Corporation)
S0 pcw; C:\Windows\System32\drivers\pcw.sys [50768 2009-07-13] (Microsoft Corporation)
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663552 2016-06-14] (Microsoft Corporation)
S3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2010-11-20] (Microsoft Corporation)
S3 Processor; C:\Windows\system32\drivers\processr.sys [60416 2009-07-13] (Microsoft Corporation)
S1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2010-11-20] (Microsoft Corporation)
S3 ql2300; C:\Windows\system32\drivers\ql2300.sys [1524816 2009-07-13] (QLogic Corporation)
S3 ql40xx; C:\Windows\system32\drivers\ql40xx.sys [128592 2009-07-13] (QLogic Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [46592 2009-07-13] (Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [14848 2009-07-13] (Microsoft Corporation)
S3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2009-07-13] (Microsoft Corporation)
S3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [129536 2010-11-20] (Microsoft Corporation)
S3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2009-07-13] (Microsoft Corporation)
S3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [83968 2009-07-13] (Microsoft Corporation)
S1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [309248 2010-11-20] (Microsoft Corporation)
S3 rdpbus; C:\Windows\system32\drivers\rdpbus.sys [24064 2009-07-13] (Microsoft Corporation)
S1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-13] (Microsoft Corporation)
S1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-13] (Microsoft Corporation)
S1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-13] (Microsoft Corporation)
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [19456 2012-08-23] (Microsoft Corporation)
S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [212480 2014-07-16] (Microsoft Corporation)
S0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [213888 2010-11-20] (Microsoft Corporation)
S3 RFCOMM; C:\Windows\System32\DRIVERS\rfcomm.sys [158720 2009-07-13] (Microsoft Corporation)
S2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-13] (Microsoft Corporation)
S3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [986368 2015-07-27] (Realtek )
S3 sbp2port; C:\Windows\system32\drivers\sbp2port.sys [103808 2010-11-20] (Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2010-11-20] (Microsoft Corporation)
S3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-06-15] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 Serenum; C:\Windows\System32\DRIVERS\serenum.sys [23552 2009-07-13] (Microsoft Corporation)
S1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Microsoft Corporation)
S3 sermouse; C:\Windows\system32\drivers\sermouse.sys [26624 2009-07-13] (Microsoft Corporation)
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [14336 2009-07-13] (Microsoft Corporation)
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [13824 2009-07-13] (Microsoft Corporation)
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [14336 2010-11-20] (Microsoft Corporation)
S3 sfloppy; C:\Windows\system32\drivers\sfloppy.sys [16896 2009-07-13] (Microsoft Corporation)
S3 SiSRaid2; C:\Windows\system32\drivers\SiSRaid2.sys [43584 2009-07-13] (Silicon Integrated Systems Corp.)
S3 SiSRaid4; C:\Windows\system32\drivers\sisraid4.sys [80464 2009-07-13] (Silicon Integrated Systems)
S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [93184 2009-07-13] (Microsoft Corporation)
S0 spldr; C:\Windows\System32\Drivers\spldr.sys [19008 2009-07-13] (Microsoft Corporation)
S3 srv; C:\Windows\System32\DRIVERS\srv.sys [461312 2017-09-07] (Microsoft Corporation)
S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [405504 2017-09-07] (Microsoft Corporation)
S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [168448 2017-09-07] (Microsoft Corporation)
S3 stexstor; C:\Windows\system32\drivers\stexstor.sys [24656 2009-07-13] (Promise Technology)
S3 swenum; C:\Windows\System32\DRIVERS\swenum.sys [12496 2009-07-13] (Microsoft Corporation)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (The OpenVPN Project)
S0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1895656 2017-05-29] (Microsoft Corporation)
S3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1895656 2017-05-29] (Microsoft Corporation)
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [46080 2016-07-07] (Microsoft Corporation)
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [15872 2009-07-13] (Microsoft Corporation)
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2012-02-16] (Microsoft Corporation)
S1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [117248 2017-07-29] (Microsoft Corporation)
S1 TermDD; C:\Windows\System32\DRIVERS\termdd.sys [63360 2010-11-20] (Microsoft Corporation)
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [40448 2017-08-13] (Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [56832 2013-10-01] (Microsoft Corporation)
S3 TsUsbGD; C:\Windows\system32\drivers\TsUsbGD.sys [30208 2012-08-23] (Microsoft Corporation)
S3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2010-11-20] (Microsoft Corporation)
S3 uagp35; C:\Windows\system32\drivers\uagp35.sys [64080 2009-07-13] (Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2010-11-20] (Microsoft Corporation)
S3 uliagpkx; C:\Windows\system32\drivers\uliagpkx.sys [64592 2009-07-13] (Microsoft Corporation)
S3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [48640 2010-11-20] (Microsoft Corporation)
S3 UmPass; C:\Windows\system32\drivers\umpass.sys [9728 2009-07-13] (Microsoft Corporation)
S3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [109824 2013-07-12] (Microsoft Corporation)
S3 usbccgp; C:\Windows\system32\drivers\usbccgp.sys [99840 2017-10-17] (Microsoft Corporation)
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [100864 2013-07-12] (Microsoft Corporation)
S3 usbehci; C:\Windows\system32\drivers\usbehci.sys [56320 2017-10-17] (Microsoft Corporation)
S3 usbhub; C:\Windows\system32\drivers\usbhub.sys [344064 2017-10-17] (Microsoft Corporation)
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2017-10-17] (Microsoft Corporation)
S3 usbprint; C:\Windows\system32\drivers\usbprint.sys [25088 2009-07-13] (Microsoft Corporation)
S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2016-02-03] (Microsoft Corporation)
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2017-10-17] (Microsoft Corporation)
S0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [36432 2009-07-13] (Microsoft Corporation)
S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-13] (Microsoft Corporation)
S1 VgaSave; C:\Windows\System32\drivers\vga.sys [29184 2009-07-13] (Microsoft Corporation)
S3 vhdmp; C:\Windows\system32\drivers\vhdmp.sys [215936 2010-11-20] (Microsoft Corporation)
S3 viaide; C:\Windows\system32\drivers\viaide.sys [17488 2009-07-13] (VIA Technologies, Inc.)
S0 volmgr; C:\Windows\System32\drivers\volmgr.sys [71552 2010-11-20] (Microsoft Corporation)
S0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363752 2017-07-07] (Microsoft Corporation)
S0 volsnap; C:\Windows\System32\drivers\volsnap.sys [295808 2010-11-20] (Microsoft Corporation)
S3 vsmraid; C:\Windows\system32\drivers\vsmraid.sys [161872 2009-07-13] (VIA Technologies Inc.,Ltd)
S3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [24576 2009-07-13] (Microsoft Corporation)
S1 vwififlt; C:\Windows\System32\DRIVERS\vwififlt.sys [59904 2009-07-13] (Microsoft Corporation)
S3 WacomPen; C:\Windows\system32\drivers\wacompen.sys [27776 2009-07-13] (Microsoft Corporation)
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] (Microsoft Corporation)
S1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] (Microsoft Corporation)
S3 Wd; C:\Windows\system32\drivers\wd.sys [21056 2009-07-13] (Microsoft Corporation)
S0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [785624 2013-06-25] (Microsoft Corporation)
S1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [12800 2009-07-13] (Microsoft Corporation)
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [22096 2009-07-13] (Microsoft Corporation)
S3 WIMMount; C:\Windows\SysWOW64\drivers\wimmount.sys [19008 2009-07-13] (Microsoft Corporation)
S3 Winsock; no ImagePath
S3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [14336 2009-07-13] (Microsoft Corporation)
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2009-07-13] (Microsoft Corporation)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [87040 2012-07-25] (Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [198656 2012-07-25] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S0 SR; no ImagePath
S2 srservice; no ImagePath
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
 
========================== Drivers MD5 =======================
 
C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 0DC2A9882540DEA4A55B08785E09D8FC
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys C16B5B379A2A79702CC5FF923EAAE3FD
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AsrAppCharger.sys E1AFEE1584C74050DE0DD16DE2A54BF3
C:\Windows\System32\DRIVERS\AsrRamDisk.sys A149C93231945A5118C63AEACA6D1E72
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\avdevprot.sys 6C94D74033458BC2BDF11EED4E78F027
C:\Windows\System32\DRIVERS\avgntflt.sys 5F5A98E76AD853E19253CDC13510AB56
C:\Windows\System32\DRIVERS\avipbb.sys BECC8515CE9E2AD079CF008B5A611446
C:\Windows\System32\DRIVERS\avkmgr.sys 3E0AB8C453FA433B15A30BAA8BD4B275
C:\Windows\System32\DRIVERS\avnetflt.sys 19B6F9073BD606B7ABEC03A0328FDC1B
C:\Windows\System32\Drivers\avusbflt.sys 3954253876E65797A980A2229C187D24
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ABA3984C822E4D3F889699912D85D6C5
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\BthEnum.sys CF98190A94F62E405C8CB255018B2315
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthpan.sys 5A8951D195AFEF979C4AB02A129EBC37
C:\Windows\System32\Drivers\BTHport.sys 738D0E9272F59EB7A1449C3EC118E6C4
C:\Windows\System32\Drivers\BTHUSB.sys F188B7394D81010767B6DF3178519A37
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cfosspeed6.sys 512C91F1261CC0463CAC3C12F142669A
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys 3963FEC1892368DD500E6ED1F5C286CE
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys A98CED39AD91B445E2E442A9BD67E8B4
C:\Windows\system32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys 9B38580063D281A99E68EF5813022A5F
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys 616387BBD83372220B09DE95F4E67BBC
C:\Windows\system32\drivers\drmkaud.sys 26FE888505E5A945B0536AF9A2A27A6F
C:\Windows\System32\DRIVERS\dtlitescsibus.sys 679FF716052109392D870F6A6C4A3535
C:\Windows\System32\DRIVERS\dtliteusbbus.sys E23FDD696839A4790682CA66C48D3F2F
C:\Windows\System32\drivers\dxgkrnl.sys 5CEF80AE869336376F550ECAE91E424A
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbae64.sys 11B9D886D7AE2F2F5C6BC03D7C52FD31
C:\Windows\System32\DRIVERS\evolve.sys A0539478593A00AA64E600CF7E19F195
C:\Windows\System32\Drivers\exfat.sys 7E45F8B117419ABA3BB26579F6E70324
C:\Windows\System32\Drivers\fastfat.sys 6EDFA237D25433C03F42FBFDB16BDD24
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FNETTBOH_305.SYS 508401A63E6B1CBF0B9C9A011498731F
C:\Windows\System32\drivers\FNETURPX.SYS E341178C116DAC6A3A764587E68DFA7B
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hamachi.sys 1450C2E0F977BF881B1C6F3ED49024D2
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys CF5C9BD985120781200D35FD445D0BD5
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ikbevent.sys FF604BCE2537A4734DA0CE19AD9B7B7A
C:\Windows\System32\DRIVERS\imsevent.sys 298E67827BE3C4403C32EAB66987A334
C:\Windows\System32\Drivers\INETMON.sys 0BBE196EED750C18E5D4B3CB55EB097C
C:\Windows\System32\drivers\RTKVHD64.sys E9740A3BC0AE6EA035FF7ECE3A1B27B6
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\ISCTD.sys 35C0995BCDB0E45D1EEBE4FB582D1563
C:\Windows\System32\DRIVERS\iusb3hcs.sys 0EF86A0C2DAA725EAD136867AE30BF16
C:\Windows\System32\DRIVERS\iusb3hub.sys 676660F20C1E2AA257ADB356F682CAE2
C:\Windows\System32\DRIVERS\iusb3xhc.sys 9E6C59172401A3A347669CCEBBF9909A
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys DFE85B031220F8E0271716BBB3C4C8FF
C:\Windows\System32\Drivers\ksecpkg.sys 70D7302DD70B979637179BFD8295C924
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys 5416CEB2916BBE635288C4D1075B045E
C:\Windows\System32\DRIVERS\farflt.sys 4988F9AEE3B9E4545975CAA9381DB0EF
C:\Windows\system32\drivers\mbam.sys 149E252142950594695178971748D056
C:\Windows\System32\Drivers\mbamswissarmy.sys 1768DCDEE7341922DE693E85D12E8C27
C:\Windows\system32\drivers\mwac.sys 530382A92353754F22DF0183D6A74BF8
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\TeeDriverx64.sys 926C135CFB0C75B32FB714B5C0C58FAA
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys 072D8646E23ECF8A3F5F0157017B4DB6
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 98DB1790F0A584E0A2528B92B052417F
C:\Windows\System32\DRIVERS\mrxsmb.sys 767C6DF04C5758B9F0790D400541B44F
C:\Windows\System32\DRIVERS\mrxsmb10.sys BD55F604FFABC911F8E5500186AE70E5
C:\Windows\System32\DRIVERS\mrxsmb20.sys 92EECFB046D4706A4B8D699A4069B6EC
C:\Windows\System32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys 9FB2A095B1166CB3C9A06651863B3452
C:\Windows\System32\drivers\ndis.sys F7309F42555F8AAB7144A51A1F2585B0
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Neo_0067.sys 3351A92971670764F014A566D1106E2B
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys 734837208CAFD6E0959A7A0333C95C9D
C:\Windows\System32\DRIVERS\netr28ux.sys 5EB01F698C4E2C11598934D4540047CA
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys BE313E566EEA2A4B7F9AAC9782A567D4
C:\Windows\System32\Drivers\Ntfs.sys 1065D9AFE491706EB00AD3CBB76C9E54
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\drivers\nvhda64v.sys 4938CCA6E12A7FDA5324FFF0DF5DB8EC
C:\Windows\System32\DRIVERS\nvlddmkm.sys D1393A872DBA06568C04D0842B94A982
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys 23423E859CA253382D80D0321522A171
C:\Windows\System32\drivers\nvvad64v.sys E502016A185B5BB9DC341873F82CD49C
C:\Windows\System32\DRIVERS\nvvhci.sys E922DF7E9767AB997EF82BD8DA37F84A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys EA4D67448BE493D543F1730D6CD04694
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys FE571E088C2D83619D2D48D4E961BF41
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rfcomm.sys 3DD798846E2C28102B922C56E71B7932
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Rt64win7.sys 66E06E5B77F2323B1F11EB4C70B78328
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ScpVBus.sys 0447065A6E10774EFCECFDD0EB970A79
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 72E6A150A8C8530B201832D1C801CDE6
C:\Windows\System32\DRIVERS\srv2.sys C4F67ABCC5033D334613F28F9E782809
C:\Windows\System32\DRIVERS\srvnet.sys C53CB62B0E57488AAE41FDA0FF8A0AB9
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tap0901.sys D765F43CBEA72D14C04AF3D2B9C8E54B
C:\Windows\System32\drivers\tcpip.sys 7FB36A0A036ADDACE0A868E4A43C1C27
C:\Windows\System32\DRIVERS\tcpip.sys 7FB36A0A036ADDACE0A868E4A43C1C27
C:\Windows\System32\drivers\tcpipreg.sys 7FE5586314EE7D6AA8483264A089E5AF
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys 4DD986720F7CB7A8A5D1226793097B9A
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 2CF58216424757ED29605B4F18EC443C
C:\Windows\System32\drivers\tsusbflt.sys E9981ECE8D894CEF7038FD1D040EB426
C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\Windows\System32\drivers\usbaudio.sys B0435098C81D04CAFFF80DDB746CD3A2
C:\Windows\system32\drivers\usbccgp.sys 9E68E917FB4B5C983438969643F53BEF
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 3F9D3902CE931E2A28DD8452AE915B67
C:\Windows\system32\drivers\usbhub.sys 86B65EEBC03B936DE8B26E5A18D98FA2
C:\Windows\system32\drivers\usbohci.sys 099C2931C6F73EB1B9E13C560F61B50D
C:\Windows\system32\drivers\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS D029DD09E22EB24318A8FC3D8138BA43
C:\Windows\system32\drivers\usbuhci.sys 5D7651347C7D702F4A5DE53603DC024F
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys 85C5468BC395819AE2A0C747334BA14C
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Three Months Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-11-25 10:02 - 2017-11-25 10:02 - 000000000 ____D C:\FRST
2017-11-24 07:58 - 2017-11-24 07:58 - 000274920 _____ C:\Windows\System32\FNTCACHE.DAT
2017-11-23 16:55 - 2017-11-23 16:55 - 000060448 _____ C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-23 16:52 - 2017-11-23 16:52 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
2017-11-23 16:51 - 2017-11-23 16:51 - 010849904 _____ (Piriform Ltd) C:\Users\Owner\Downloads\ccsetup537.exe
2017-11-22 07:10 - 2017-11-22 07:10 - 000000000 ____D C:\Users\Owner\AppData\Local\Avira
2017-11-22 06:32 - 2017-11-23 16:37 - 000252232 _____ C:\Windows\System32\Drivers\mbamswissarmy.sys
2017-11-21 08:12 - 2017-11-21 08:13 - 000018088 _____ C:\Windows\SysWOW64\Defrag.debuglog
2017-11-21 08:06 - 2017-11-21 08:06 - 000000000 ____D C:\Users\Owner\AppData\Local\Avira_Operations_Gmbh_&_C
2017-11-21 08:06 - 2017-11-21 08:06 - 000000000 ____D C:\Users\Owner\AppData\Local\Avira Operations Gmbh & Co. KG
2017-11-21 08:05 - 2017-11-21 08:05 - 000003546 _____ C:\Windows\System32\Tasks\Avira Safe Shopping Updater
2017-11-21 08:04 - 2017-11-24 10:10 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2017-11-21 08:04 - 2017-11-21 08:04 - 000000000 ____H C:\Windows\System32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-11-21 08:03 - 2017-11-09 20:31 - 000194272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avgntflt.sys
2017-11-21 08:03 - 2017-11-09 20:31 - 000151128 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avipbb.sys
2017-11-21 08:03 - 2017-11-09 20:31 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2017-11-21 08:03 - 2017-11-09 20:31 - 000064504 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avdevprot.sys
2017-11-21 08:03 - 2017-11-09 20:31 - 000035328 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avkmgr.sys
2017-11-21 08:03 - 2017-11-09 20:31 - 000034128 _____ (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avusbflt.sys
2017-11-21 07:44 - 2017-11-25 09:07 - 000000000 ____D C:\Users\Public\Speedup Sessions
2017-11-21 07:44 - 2017-11-21 07:44 - 000003660 _____ C:\Windows\System32\Tasks\AviraSystemSpeedupUpdate
2017-11-21 07:44 - 2017-11-21 07:44 - 000000000 ____D C:\Windows\System32\Tasks\Avira
2017-11-21 07:36 - 2017-11-21 07:36 - 000000000 ____D C:\Users\Owner\AppData\Roaming\Mozilla
2017-11-21 07:35 - 2017-11-21 08:05 - 000000000 ____D C:\Program Files (x86)\Avira
2017-11-21 07:35 - 2017-11-21 08:03 - 000000000 ____D C:\ProgramData\Avira
2017-11-21 07:35 - 2017-11-21 07:35 - 000003122 _____ C:\Windows\System32\Tasks\Avira SystrayStartTrigger
2017-11-21 07:34 - 2017-11-21 07:35 - 005348656 _____ (Avira Operations GmbH & Co. KG) C:\Users\Owner\Downloads\avira_en_fass0_5a14455b289ce__ws.exe
2017-11-15 22:42 - 2017-11-24 02:31 - 000000453 _____ C:\Users\Owner\Desktop\cotton.txt
2017-11-15 06:04 - 2017-10-17 23:31 - 000395976 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2017-11-15 06:04 - 2017-10-17 22:45 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-11-15 06:04 - 2017-10-17 18:06 - 000344064 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2017-11-15 06:04 - 2017-10-17 18:06 - 000327168 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2017-11-15 06:04 - 2017-10-17 18:06 - 000099840 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2017-11-15 06:04 - 2017-10-17 18:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2017-11-15 06:04 - 2017-10-17 18:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2017-11-15 06:04 - 2017-10-17 18:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2017-11-15 06:04 - 2017-10-17 18:06 - 000007808 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2017-11-15 06:04 - 2017-10-16 15:07 - 001680616 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2017-11-15 06:04 - 2017-10-16 14:34 - 003222528 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2017-11-15 06:04 - 2017-10-16 13:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-15 06:04 - 2017-10-14 00:38 - 025731584 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2017-11-15 06:04 - 2017-10-14 00:23 - 002724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2017-11-15 06:04 - 2017-10-14 00:23 - 000004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll
2017-11-15 06:04 - 2017-10-14 00:13 - 002903552 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2017-11-15 06:04 - 2017-10-14 00:12 - 000066560 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2017-11-15 06:04 - 2017-10-14 00:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2017-11-15 06:04 - 2017-10-14 00:11 - 000417792 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2017-11-15 06:04 - 2017-10-14 00:11 - 000088064 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2017-11-15 06:04 - 2017-10-14 00:11 - 000048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll
2017-11-15 06:04 - 2017-10-14 00:09 - 005979648 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2017-11-15 06:04 - 2017-10-14 00:05 - 000054784 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2017-11-15 06:04 - 2017-10-14 00:04 - 000034304 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2017-11-15 06:04 - 2017-10-14 00:02 - 000615936 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2017-11-15 06:04 - 2017-10-14 00:01 - 000816640 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2017-11-15 06:04 - 2017-10-14 00:01 - 000144384 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2017-11-15 06:04 - 2017-10-14 00:01 - 000116224 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe
2017-11-15 06:04 - 2017-10-14 00:00 - 000814080 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll
2017-11-15 06:04 - 2017-10-13 23:55 - 000968704 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2017-11-15 06:04 - 2017-10-13 23:53 - 000489984 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2017-11-15 06:04 - 2017-10-13 23:47 - 000087552 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2017-11-15 06:04 - 2017-10-13 23:47 - 000077824 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll
2017-11-15 06:04 - 2017-10-13 23:46 - 000107520 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2017-11-15 06:04 - 2017-10-13 23:43 - 000199680 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2017-11-15 06:04 - 2017-10-13 23:43 - 000092160 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2017-11-15 06:04 - 2017-10-13 23:41 - 000315392 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2017-11-15 06:04 - 2017-10-13 23:40 - 000152064 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2017-11-15 06:04 - 2017-10-13 23:31 - 000262144 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2017-11-15 06:04 - 2017-10-13 23:30 - 015266816 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2017-11-15 06:04 - 2017-10-13 23:30 - 000726528 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2017-11-15 06:04 - 2017-10-13 23:29 - 000807936 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2017-11-15 06:04 - 2017-10-13 23:28 - 001359360 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2017-11-15 06:04 - 2017-10-13 23:27 - 002134528 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2017-11-15 06:04 - 2017-10-13 23:21 - 003241472 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2017-11-15 06:04 - 2017-10-13 23:14 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-11-15 06:04 - 2017-10-13 23:09 - 001544704 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2017-11-15 06:04 - 2017-10-13 23:03 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-11-15 06:04 - 2017-10-13 22:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2017-11-15 06:04 - 2017-10-13 22:53 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-11-15 06:04 - 2017-10-13 22:53 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-11-15 06:04 - 2017-10-13 22:52 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-11-15 06:04 - 2017-10-13 22:52 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-11-15 06:04 - 2017-10-13 22:51 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-11-15 06:04 - 2017-10-13 22:50 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-11-15 06:04 - 2017-10-13 22:47 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-11-15 06:04 - 2017-10-13 22:47 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-11-15 06:04 - 2017-10-13 22:46 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-11-15 06:04 - 2017-10-13 22:45 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-11-15 06:04 - 2017-10-13 22:45 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-11-15 06:04 - 2017-10-13 22:45 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-11-15 06:04 - 2017-10-13 22:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-11-15 06:04 - 2017-10-13 22:35 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-11-15 06:04 - 2017-10-13 22:35 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-11-15 06:04 - 2017-10-13 22:34 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-11-15 06:04 - 2017-10-13 22:33 - 004542464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-11-15 06:04 - 2017-10-13 22:33 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-11-15 06:04 - 2017-10-13 22:32 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-11-15 06:04 - 2017-10-13 22:31 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-11-15 06:04 - 2017-10-13 22:30 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-11-15 06:04 - 2017-10-13 22:28 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-11-15 06:04 - 2017-10-13 22:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-11-15 06:04 - 2017-10-13 22:24 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-11-15 06:04 - 2017-10-13 22:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-11-15 06:04 - 2017-10-13 22:23 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-11-15 06:04 - 2017-10-13 22:10 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-11-15 06:04 - 2017-10-13 22:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-11-15 06:04 - 2017-10-13 22:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-11-15 06:04 - 2017-10-11 16:58 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\System32\atmfd.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 014635008 _____ (Microsoft Corporation) C:\Windows\System32\wmp.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 012574720 _____ (Microsoft Corporation) C:\Windows\System32\wmploc.DLL
2017-11-15 06:04 - 2017-10-11 16:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\System32\tquery.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 002222080 _____ (Microsoft Corporation) C:\Windows\System32\mssrch.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 002058240 _____ (Microsoft Corporation) C:\Windows\System32\Query.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000778240 _____ (Microsoft Corporation) C:\Windows\System32\mssvp.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000491520 _____ (Microsoft Corporation) C:\Windows\System32\mssph.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000288256 _____ (Microsoft Corporation) C:\Windows\System32\mssphtb.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000151552 _____ (Microsoft Corporation) C:\Windows\System32\t2embed.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000115200 _____ (Microsoft Corporation) C:\Windows\System32\mssitlb.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000100864 _____ (Microsoft Corporation) C:\Windows\System32\fontsub.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000099840 _____ (Microsoft Corporation) C:\Windows\System32\mssprxy.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\System32\msscntrs.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000046080 _____ (Adobe Systems) C:\Windows\System32\atmlib.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000041472 _____ (Microsoft Corporation) C:\Windows\System32\lpk.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\System32\msshooks.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\System32\dciman32.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\System32\spwmp.dll
2017-11-15 06:04 - 2017-10-11 16:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\System32\msdxm.ocx
2017-11-15 06:04 - 2017-10-11 16:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\System32\dxmasf.dll
2017-11-15 06:04 - 2017-10-11 16:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-11-15 06:04 - 2017-10-11 16:39 - 000591872 _____ (Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
2017-11-15 06:04 - 2017-10-11 16:38 - 000249856 _____ (Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
2017-11-15 06:04 - 2017-10-11 16:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe
2017-11-15 06:04 - 2017-10-11 16:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-11-15 06:04 - 2017-10-11 16:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-11-15 06:04 - 2017-10-11 16:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-11-15 06:04 - 2017-10-11 16:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-11-15 06:04 - 2017-10-11 16:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-11-15 06:04 - 2017-10-11 16:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-11-15 06:04 - 2017-10-11 16:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-11-15 06:04 - 2017-10-11 16:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-11-15 06:04 - 2017-10-11 16:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-11-15 06:04 - 2017-10-11 16:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-11-15 06:04 - 2017-10-11 16:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\luafv.sys
2017-11-15 06:04 - 2017-10-11 16:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000995272 _____ (Microsoft Corporation) C:\Windows\System32\ucrtbase.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000063840 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-private-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000020832 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-math-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000019808 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-string-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000017760 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-stdio-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000016224 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-runtime-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000015712 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-convert-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-time-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000014176 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-2-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000013664 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-process-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-heap-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012640 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-conio-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-utility-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-locale-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-crt-environment-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-2-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000012128 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-1.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l2-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-timezone-l1-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l2-1-0.dll
2017-11-15 06:04 - 2017-09-07 05:05 - 000011616 _____ (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-2-0.dll
2017-11-15 06:03 - 2017-10-17 18:34 - 000134376 _____ (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
2017-11-15 06:03 - 2017-10-17 18:30 - 000605184 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2017-11-15 06:03 - 2017-10-15 14:04 - 000407392 _____ (Microsoft Corporation) C:\Windows\System32\centel.dll
2017-11-15 06:03 - 2017-10-04 05:04 - 002023936 _____ (Microsoft Corporation) C:\Windows\System32\aitstatic.exe
2017-11-15 06:03 - 2017-10-04 05:04 - 001570304 _____ (Microsoft Corporation) C:\Windows\System32\appraiser.dll
2017-11-15 06:03 - 2017-10-04 05:04 - 000670208 _____ (Microsoft Corporation) C:\Windows\System32\generaltel.dll
2017-11-15 06:03 - 2017-10-04 05:04 - 000603648 _____ (Microsoft Corporation) C:\Windows\System32\devinv.dll
2017-11-15 06:03 - 2017-10-04 05:04 - 000370688 _____ (Microsoft Corporation) C:\Windows\System32\invagent.dll
2017-11-15 06:03 - 2017-10-04 05:04 - 000241664 _____ (Microsoft Corporation) C:\Windows\System32\aepic.dll
2017-11-15 06:03 - 2017-10-04 05:04 - 000181760 _____ (Microsoft Corporation) C:\Windows\System32\acmigration.dll
2017-11-14 06:42 - 2017-11-14 06:42 - 000000000 ____D C:\Games
2017-11-13 22:00 - 2017-11-13 22:00 - 000000218 _____ C:\Users\Owner\AppData\Local\recently-used.xbel
2017-11-13 02:26 - 2017-11-13 02:26 - 000051016 _____ (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
2017-11-13 02:26 - 2017-11-13 02:26 - 000045672 _____ (Dropbox, Inc.) C:\Windows\System32\Drivers\dbx-dev.sys
2017-11-13 02:26 - 2017-11-13 02:26 - 000045640 _____ (Dropbox, Inc.) C:\Windows\System32\Drivers\dbx-stable.sys
2017-11-13 02:26 - 2017-11-13 02:26 - 000045640 _____ (Dropbox, Inc.) C:\Windows\System32\Drivers\dbx-canary.sys
2017-11-11 19:36 - 2017-11-11 19:36 - 000000000 ____D C:\Users\Owner\AppData\Local\StreetFighterV
2017-11-11 10:59 - 2017-11-11 10:59 - 000000000 ____D C:\Users\Owner\Documents\Dolphin Emulator
2017-11-11 10:58 - 2017-11-11 10:58 - 000000355 _____ C:\Users\Owner\Homegroup - Shortcut.lnk
2017-11-09 18:12 - 2017-11-09 18:12 - 000000000 ____D C:\Users\Owner\Documents\Larian Studios
2017-11-09 16:08 - 2017-10-10 17:05 - 000050624 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvad64v.sys
2017-11-09 12:21 - 2017-11-09 16:09 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:09 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:08 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:08 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:08 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:08 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:08 - 000003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-11-09 16:08 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-09 12:21 - 2017-10-10 17:05 - 001796032 _____ (NVIDIA Corporation) C:\Windows\System32\nvspcap64.dll
2017-11-09 12:21 - 2017-10-10 17:05 - 001577920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-11-09 12:21 - 2017-10-10 17:05 - 000918976 _____ (NVIDIA Corporation) C:\Windows\System32\NvRtmpStreamer64.dll
2017-11-09 12:21 - 2017-10-10 15:26 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-11-09 12:21 - 2017-06-07 17:35 - 001755072 _____ (NVIDIA Corporation) C:\Windows\System32\nvspbridge64.dll
2017-11-09 12:21 - 2017-06-07 17:35 - 001317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-11-09 12:20 - 2017-09-17 22:55 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2017-11-09 12:20 - 2017-06-07 17:35 - 000512960 _____ (Khronos Group) C:\Windows\System32\OpenCL.dll
2017-11-09 12:20 - 2017-06-07 17:35 - 000418936 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 006467008 _____ (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 002479552 _____ (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 001762936 _____ (NVIDIA Corporation) C:\Windows\System32\nvsvcr.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 000549312 _____ (NVIDIA Corporation) C:\Windows\System32\nv3dappshext.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 000392312 _____ (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 000082040 _____ (NVIDIA Corporation) C:\Windows\System32\nv3dappshextr.dll
2017-11-09 12:20 - 2017-06-07 15:55 - 000069568 _____ (NVIDIA Corporation) C:\Windows\System32\nvshext.dll
2017-11-09 12:20 - 2017-06-07 04:42 - 008075477 _____ C:\Windows\System32\nvcoproc.bin
2017-11-09 12:20 - 2017-03-10 13:17 - 000536864 _____ C:\Windows\System32\vulkan-1.dll
2017-11-09 12:20 - 2017-03-10 13:17 - 000525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-11-09 12:20 - 2017-03-10 13:17 - 000254240 _____ C:\Windows\System32\vulkaninfo.exe
2017-11-09 12:20 - 2017-03-10 13:17 - 000233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-11-09 12:17 - 2017-10-10 17:05 - 000186304 _____ (NVIDIA Corporation) C:\Windows\System32\nvaudcap64v.dll
2017-11-09 12:17 - 2017-10-10 17:05 - 000152512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 040201664 _____ (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 035350136 _____ (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 035281344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 028593272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 020064880 _____ (NVIDIA Corporation) C:\Windows\System32\nvwgf2umx.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 017424984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 016436488 _____ (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 014276216 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2017-11-09 12:17 - 2017-06-07 17:35 - 013402816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 011056272 _____ (NVIDIA Corporation) C:\Windows\System32\nvptxJitCompiler.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 011027968 _____ (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 010551072 _____ (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 009248144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 009014976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 008808488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 004090528 _____ (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 003604368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 003437504 _____ (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 003020920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 001988216 _____ (NVIDIA Corporation) C:\Windows\System32\nvdispco6438253.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 001615448 _____ (NVIDIA Corporation) C:\Windows\System32\nvhdagenco6420103.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 001606776 _____ (NVIDIA Corporation) C:\Windows\System32\nvdispgenco6438253.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 001056192 _____ (NVIDIA Corporation) C:\Windows\System32\NvFBC64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000993728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000964032 _____ (NVIDIA Corporation) C:\Windows\System32\NvIFR64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000688784 _____ (NVIDIA Corporation) C:\Windows\System32\nvfatbinaryLoader.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000609728 _____ (NVIDIA Corporation) C:\Windows\System32\NvIFROpenGL.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000577728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000507688 _____ (NVIDIA Corporation) C:\Windows\System32\nvEncodeAPI64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000499136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000491024 _____ (NVIDIA Corporation) C:\Windows\System32\nvumdshimx.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000426128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000406552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000218712 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys
2017-11-09 12:17 - 2017-06-07 17:35 - 000170360 _____ (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000153184 _____ (NVIDIA Corporation) C:\Windows\System32\nvoglshim64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000057792 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvhci.sys
2017-11-09 12:17 - 2017-06-07 17:35 - 000045976 _____ (NVIDIA Corporation) C:\Windows\System32\nvhdap64.dll
2017-11-09 12:17 - 2017-06-07 17:35 - 000042999 _____ C:\Windows\System32\nvinfo.pb
2017-11-09 12:17 - 2017-06-07 17:35 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-11-09 12:17 - 2017-06-07 17:35 - 000000669 _____ C:\Windows\System32\nv-vk64.json
2017-11-06 16:16 - 2017-11-06 16:16 - 000000000 ____D C:\Users\Owner\Documents\Tribute Games
2017-11-04 16:01 - 2017-11-04 16:01 - 000000000 ____D C:\Users\Owner\AppData\Roaming\FinalEpisodeSetup
2017-11-04 08:28 - 2017-11-04 08:28 - 000000000 ____D C:\Users\Owner\Documents\Rampage Knights
2017-11-03 19:14 - 2017-11-03 19:14 - 001519567 _____ C:\Users\Owner\Downloads\x360ce.zip
2017-11-03 19:12 - 2017-11-03 19:12 - 000000000 ____D C:\ProgramData\X360CE
2017-11-03 18:53 - 2017-11-03 19:00 - 000000000 ____D C:\Users\Owner\AppData\LocalLow\Le Cartel Studio
2017-11-02 20:54 - 2017-11-14 07:58 - 000000000 ___HD C:\Windows\msdownld.tmp
2017-11-02 20:54 - 2017-11-14 07:58 - 000000000 ____D C:\Windows\SysWOW64\directx
2017-11-02 19:56 - 2017-11-02 19:56 - 000000000 ____D C:\Users\Owner\Documents\SEGA Mega Drive Classics
2017-11-02 19:45 - 2017-11-02 19:47 - 000000000 ____D C:\Users\Owner\Documents\SEGA Genesis Classics
2017-11-02 19:32 - 2017-11-02 19:32 - 000000000 ____D C:\Users\Owner\AppData\Roaming\Cuphead
2017-11-02 19:16 - 2017-11-02 19:16 - 000003070 _____ C:\Windows\System32\Tasks\{E83A5FBC-25CB-47C7-BC0B-A4077C830C6D}
2017-10-30 16:21 - 2017-10-30 16:21 - 000000000 ____D C:\Users\Owner\AppData\LocalLow\Freehold Games
2017-10-28 20:30 - 2017-10-28 20:30 - 000000000 ____D C:\Users\Owner\AppData\Roaming\Python
2017-10-11 07:33 - 2017-10-11 07:33 - 126925120 ____C (Microsoft Corporation) C:\Windows\System32\MRT-KB890830.exe
2017-10-11 06:02 - 2017-09-13 07:33 - 000631176 _____ (Microsoft Corporation) C:\Windows\System32\winresume.efi
2017-10-11 06:02 - 2017-09-13 07:32 - 005547752 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2017-10-11 06:02 - 2017-09-13 07:32 - 000706792 _____ (Microsoft Corporation) C:\Windows\System32\winload.efi
2017-10-11 06:02 - 2017-09-13 07:32 - 000154856 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2017-10-11 06:02 - 2017-09-13 07:32 - 000095464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2017-10-11 06:02 - 2017-09-13 07:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\System32\ntdll.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 001212928 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 001068544 _____ (Microsoft Corporation) C:\Windows\System32\msctf.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000886272 _____ (Microsoft Corporation) C:\Windows\System32\wlansvc.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000503808 _____ (Microsoft Corporation) C:\Windows\System32\srcore.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000448512 _____ (Microsoft Corporation) C:\Windows\System32\wlansec.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000414208 _____ (Microsoft Corporation) C:\Windows\System32\wlanmsm.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000362496 _____ (Microsoft Corporation) C:\Windows\System32\wow64win.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000345600 _____ (Microsoft Corporation) C:\Windows\System32\schannel.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000312320 _____ (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000243712 _____ (Microsoft Corporation) C:\Windows\System32\wow64.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000215552 _____ (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000210432 _____ (Microsoft Corporation) C:\Windows\System32\wdigest.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\System32\rpchttp.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\System32\msaudite.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000135680 _____ (Microsoft Corporation) C:\Windows\System32\sspicli.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000118784 _____ (Microsoft Corporation) C:\Windows\System32\wlanhlp.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000113664 _____ (Microsoft Corporation) C:\Windows\System32\wlanapi.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000086528 _____ (Microsoft Corporation) C:\Windows\System32\TSpkg.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\System32\setbcdlocale.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\System32\msobjs.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\System32\srclient.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000028672 _____ (Microsoft Corporation) C:\Windows\System32\sspisrv.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000028160 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000016384 _____ (Microsoft Corporation) C:\Windows\System32\ntvdm64.dll
2017-10-11 06:02 - 2017-09-13 07:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\System32\wow64cpu.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 001460736 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 001163264 _____ (Microsoft Corporation) C:\Windows\System32\kernel32.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000880640 _____ (Microsoft Corporation) C:\Windows\System32\advapi32.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000731648 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000690688 _____ (Microsoft Corporation) C:\Windows\System32\adtschema.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000463872 _____ (Microsoft Corporation) C:\Windows\System32\certcli.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000419840 _____ (Microsoft Corporation) C:\Windows\System32\KernelBase.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000123904 _____ (Microsoft Corporation) C:\Windows\System32\bcrypt.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000059904 _____ (Microsoft Corporation) C:\Windows\System32\appidapi.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000044032 _____ (Microsoft Corporation) C:\Windows\System32\csrsrv.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000043520 _____ (Microsoft Corporation) C:\Windows\System32\cryptbase.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000034816 _____ (Microsoft Corporation) C:\Windows\System32\appidsvc.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000022016 _____ (Microsoft Corporation) C:\Windows\System32\credssp.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000006656 _____ (Microsoft Corporation) C:\Windows\System32\apisetschema.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000006144 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000005120 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000004608 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000004608 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000004096 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003584 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:27 - 000003072 ____H (Microsoft Corporation) C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:13 - 004001512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-10-11 06:02 - 2017-09-13 07:13 - 003945704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-10-11 06:02 - 2017-09-13 07:10 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000830464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-10-11 06:02 - 2017-09-13 07:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:08 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 07:05 - 000324608 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nwifi.sys
2017-10-11 06:02 - 2017-09-13 07:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\System32\appidpolicyconverter.exe
2017-10-11 06:02 - 2017-09-13 07:00 - 000064000 _____ (Microsoft Corporation) C:\Windows\System32\auditpol.exe
2017-10-11 06:02 - 2017-09-13 07:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\appid.sys
2017-10-11 06:02 - 2017-09-13 07:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\System32\appidcertstorecheck.exe
2017-10-11 06:02 - 2017-09-13 06:57 - 000338432 _____ (Microsoft Corporation) C:\Windows\System32\conhost.exe
2017-10-11 06:02 - 2017-09-13 06:56 - 000296960 _____ (Microsoft Corporation) C:\Windows\System32\rstrui.exe
2017-10-11 06:02 - 2017-09-13 06:53 - 000291328 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2017-10-11 06:02 - 2017-09-13 06:53 - 000159744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2017-10-11 06:02 - 2017-09-13 06:53 - 000129536 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2017-10-11 06:02 - 2017-09-13 06:52 - 000112640 _____ (Microsoft Corporation) C:\Windows\System32\smss.exe
2017-10-11 06:02 - 2017-09-13 06:52 - 000030720 _____ (Microsoft Corporation) C:\Windows\System32\lsass.exe
2017-10-11 06:02 - 2017-09-13 06:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-10-11 06:02 - 2017-09-13 06:47 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-10-11 06:02 - 2017-09-13 06:46 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-10-11 06:02 - 2017-09-13 06:46 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-10-11 06:02 - 2017-09-13 06:46 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-10-11 06:02 - 2017-09-13 06:46 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 06:46 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 06:46 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 06:46 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-10-11 06:02 - 2017-09-13 06:46 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-10-11 06:02 - 2017-09-08 07:30 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
2017-10-11 06:02 - 2017-09-08 07:10 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-10-11 06:02 - 2017-09-08 06:20 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-11 06:02 - 2017-09-08 06:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-11 06:02 - 2017-09-07 07:31 - 002851328 _____ (Microsoft Corporation) C:\Windows\System32\themeui.dll
2017-10-11 06:02 - 2017-09-07 07:12 - 002755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2017-10-11 06:02 - 2017-09-07 06:55 - 000461312 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2017-10-11 06:02 - 2017-09-07 06:55 - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2017-10-11 06:02 - 2017-09-07 06:55 - 000168448 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2017-10-11 06:02 - 2017-08-19 07:28 - 004121600 _____ (Microsoft Corporation) C:\Windows\System32\mf.dll
2017-10-11 06:02 - 2017-08-19 07:28 - 000206848 _____ (Microsoft Corporation) C:\Windows\System32\mfps.dll
2017-10-11 06:02 - 2017-08-19 07:28 - 000002048 _____ (Microsoft Corporation) C:\Windows\System32\mferror.dll
2017-10-11 06:02 - 2017-08-19 07:10 - 003209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-10-11 06:02 - 2017-08-19 07:10 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2017-10-11 06:02 - 2017-08-19 07:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2017-10-11 06:02 - 2017-08-19 07:08 - 000055808 _____ (Microsoft Corporation) C:\Windows\System32\rrinstaller.exe
2017-10-11 06:02 - 2017-08-19 07:08 - 000024576 _____ (Microsoft Corporation) C:\Windows\System32\mfpmp.exe
2017-10-11 06:02 - 2017-08-19 06:57 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2017-10-11 06:02 - 2017-08-19 06:57 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2017-10-11 06:02 - 2017-08-14 09:35 - 001032192 _____ (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2017-10-11 06:02 - 2017-08-14 09:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-10-11 06:02 - 2017-08-14 09:35 - 000022528 _____ (Microsoft Corporation) C:\Windows\System32\icaapi.dll
2017-10-11 06:02 - 2017-08-13 13:45 - 000040448 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2017-09-13 06:44 - 2017-09-13 06:44 - 004901928 _____ C:\Users\Owner\Downloads\cfosspeed-v1022.exe
2017-09-12 14:29 - 2017-08-19 07:28 - 000197120 _____ (Microsoft Corporation) C:\Windows\System32\shdocvw.dll
2017-09-12 14:29 - 2017-08-19 07:10 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2017-09-12 14:29 - 2017-08-16 07:29 - 000806912 _____ (Microsoft Corporation) C:\Windows\System32\usp10.dll
2017-09-12 14:29 - 2017-08-16 07:10 - 000629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2017-09-12 14:29 - 2017-08-15 07:29 - 014182400 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2017-09-12 14:29 - 2017-08-15 07:29 - 001867264 _____ (Microsoft Corporation) C:\Windows\System32\ExplorerFrame.dll
2017-09-12 14:29 - 2017-08-15 07:10 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-09-12 14:29 - 2017-08-15 07:10 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 003203584 _____ (Microsoft Corporation) C:\Windows\System32\mmcndmgr.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 002150912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 000355328 _____ (Microsoft Corporation) C:\Windows\System32\mmcbase.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 000303104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcbase.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 000172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cic.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 000131072 _____ (Microsoft Corporation) C:\Windows\System32\mmcshext.dll
2017-09-12 14:29 - 2017-08-14 09:35 - 000128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcshext.dll
2017-09-12 14:29 - 2017-08-14 09:34 - 000211968 _____ (Microsoft Corporation) C:\Windows\System32\cic.dll
2017-09-12 14:29 - 2017-08-13 13:37 - 002144256 _____ (Microsoft Corporation) C:\Windows\System32\mmc.exe
2017-09-12 14:29 - 2017-08-13 13:30 - 001401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2017-09-12 14:29 - 2017-08-10 22:35 - 002065408 _____ (Microsoft Corporation) C:\Windows\System32\ole32.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000757248 _____ (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000512000 _____ (Microsoft Corporation) C:\Windows\System32\rpcss.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000346112 _____ (Microsoft Corporation) C:\Windows\System32\ntprint.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000313856 _____ (Microsoft Corporation) C:\Windows\System32\Wldap32.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000026112 _____ (Microsoft Corporation) C:\Windows\System32\oleres.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000026112 _____ (Microsoft Corporation) C:\Windows\System32\nsisvc.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000025600 _____ (Microsoft Corporation) C:\Windows\System32\winnsi.dll
2017-09-12 14:29 - 2017-08-10 22:35 - 000013312 _____ (Microsoft Corporation) C:\Windows\System32\nsi.dll
2017-09-12 14:29 - 2017-08-10 22:34 - 000971776 _____ (Microsoft Corporation) C:\Windows\System32\localspl.dll
2017-09-12 14:29 - 2017-08-10 22:34 - 000166400 _____ (Microsoft Corporation) C:\Windows\System32\inetpp.dll
2017-09-12 14:29 - 2017-08-10 22:34 - 000022528 _____ (Microsoft Corporation) C:\Windows\System32\inetppui.dll
2017-09-12 14:29 - 2017-08-10 22:34 - 000008704 _____ (Microsoft Corporation) C:\Windows\System32\comcat.dll
2017-09-12 14:29 - 2017-08-10 22:20 - 000061952 _____ (Microsoft Corporation) C:\Windows\System32\ntprint.exe
2017-09-12 14:29 - 2017-08-10 22:20 - 000048640 _____ (Microsoft Corporation) C:\Windows\System32\wpnpinst.exe
2017-09-12 14:29 - 2017-08-10 22:19 - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-09-12 14:29 - 2017-08-10 22:19 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2017-09-12 14:29 - 2017-08-10 22:19 - 000299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2017-09-12 14:29 - 2017-08-10 22:19 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-09-12 14:29 - 2017-08-10 22:19 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-09-12 14:29 - 2017-08-10 22:19 - 000016384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winnsi.dll
2017-09-12 14:29 - 2017-08-10 22:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2017-09-12 14:29 - 2017-08-10 22:12 - 000025088 _____ (Microsoft Corporation) C:\Windows\System32\netbtugc.exe
2017-09-12 14:29 - 2017-08-10 22:09 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2017-09-12 14:29 - 2017-08-10 22:03 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2017-09-12 14:29 - 2017-08-10 22:01 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-09-12 14:29 - 2017-08-10 22:00 - 000262656 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\netbt.sys
2017-09-12 14:29 - 2017-08-10 21:58 - 000026112 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\nsiproxy.sys
2017-09-12 14:29 - 2017-07-07 07:29 - 001143296 _____ (Microsoft Corporation) C:\Windows\System32\DXPTaskRingtone.dll
2017-09-12 14:29 - 2017-07-07 07:10 - 000973312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll
2017-08-29 10:38 - 2017-11-23 16:45 - 000077440 _____ C:\Windows\System32\Drivers\mbae64.sys
2017-08-29 10:38 - 2017-09-12 06:27 - 000101824 _____ (Malwarebytes) C:\Windows\System32\Drivers\farflt.sys
2017-08-29 10:38 - 2017-09-12 06:27 - 000084256 _____ (Malwarebytes) C:\Windows\System32\Drivers\mwac.sys
2017-08-29 10:38 - 2017-09-12 06:27 - 000045472 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbam.sys
2017-08-29 10:38 - 2017-08-29 10:38 - 000192960 _____ (Malwarebytes) C:\Windows\System32\Drivers\MBAMChameleon.sys
2017-08-28 12:01 - 2017-08-29 23:57 - 000000000 ____D C:\Users\Owner\Desktop\Work stuff
 
==================== Three Months Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-11-25 09:07 - 2016-02-27 22:10 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-25 09:07 - 2016-02-24 20:43 - 000000000 ____D C:\users\Owner
2017-11-25 09:07 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\registration
2017-11-25 08:32 - 2011-04-12 00:28 - 000000000 ___RD C:\Users\Public\Recorded TV
2017-11-24 11:20 - 2016-10-07 01:57 - 000000906 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-11-24 08:18 - 2009-07-13 20:45 - 000022080 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-24 08:18 - 2009-07-13 20:45 - 000022080 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-24 08:05 - 2009-07-13 21:13 - 000781790 _____ C:\Windows\System32\PerfStringBackup.INI
2017-11-24 08:05 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\inf
2017-11-24 08:01 - 2016-02-25 09:54 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-24 07:58 - 2016-10-07 01:57 - 000000902 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-11-24 07:58 - 2009-07-13 21:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-23 17:02 - 2017-08-24 15:20 - 000007606 _____ C:\Users\Owner\AppData\Local\Resmon.ResmonCfg
2017-11-23 16:52 - 2016-10-03 14:15 - 000000000 ____D C:\Program Files\CCleaner
2017-11-23 16:06 - 2016-02-27 22:12 - 000000000 ____D C:\Users\Owner\Desktop\bishop's garbage
2017-11-21 08:21 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\System32\Msdtc
2017-11-21 07:35 - 2016-02-25 18:12 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-20 15:49 - 2016-02-27 22:10 - 000000000 ____D C:\Users\Owner\AppData\Roaming\Skype
2017-11-16 08:54 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\rescache
2017-11-16 06:33 - 2016-02-26 12:39 - 000000000 ____D C:\Windows\System32\appraiser
2017-11-16 01:50 - 2016-02-25 10:23 - 000773912 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-11-15 11:27 - 2016-10-07 01:57 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-11-14 19:28 - 2016-08-26 14:48 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-11-14 16:40 - 2017-07-18 00:52 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-11-14 16:40 - 2017-07-18 00:52 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-14 16:40 - 2017-07-18 00:52 - 000004474 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-11-14 16:40 - 2017-07-18 00:52 - 000004324 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-11-14 16:40 - 2017-07-18 00:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-11-14 16:40 - 2017-07-18 00:52 - 000000000 ____D C:\Windows\System32\Macromed
2017-11-14 15:55 - 2016-02-27 22:06 - 000003330 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-14 15:55 - 2016-02-27 22:06 - 000003202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-13 19:09 - 2016-03-03 19:43 - 000000000 ____D C:\Users\Owner\AppData\Roaming\deluge
2017-11-12 20:17 - 2016-03-03 23:55 - 000000000 ____D C:\GOG Games
2017-11-12 12:42 - 2016-11-17 23:19 - 000000000 ____D C:\Users\Owner\AppData\Roaming\DAEMON Tools Lite
2017-11-12 12:41 - 2016-02-28 10:46 - 000000000 ____D C:\Users\Owner\AppData\Local\CrashDumps
2017-11-10 16:39 - 2016-02-25 09:53 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-11-10 16:39 - 2016-02-25 09:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-11-10 15:53 - 2016-03-27 20:10 - 000000000 ____D C:\Users\Owner\AppData\Local\NVIDIA Corporation
2017-11-10 13:42 - 2017-04-24 18:08 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2017-11-10 13:42 - 2017-04-18 22:38 - 000000000 ____D C:\Program Files (x86)\StarCraft
2017-11-10 13:42 - 2016-02-27 22:12 - 000000000 ____D C:\Users\Owner\AppData\Local\Battle.net
2017-11-10 13:31 - 2016-02-28 22:28 - 000000000 ____D C:\Program Files (x86)\StarCraft II
2017-11-10 13:11 - 2016-02-27 22:11 - 000000000 ____D C:\Program Files (x86)\Battle.net
2017-11-09 19:06 - 2016-04-23 09:10 - 000000000 ____D C:\Program Files (x86)\Overwatch
2017-11-09 16:09 - 2016-02-25 09:53 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-11-09 16:04 - 2016-02-28 21:43 - 000000000 ____D C:\Users\Owner\AppData\Roaming\NVIDIA
2017-11-09 12:49 - 2016-02-25 17:39 - 000000000 ____D C:\Users\Owner\AppData\Local\NVIDIA
2017-11-09 12:20 - 2009-07-13 19:20 - 000000000 ____D C:\Windows\Help
2017-11-04 12:29 - 2016-08-05 00:07 - 000000000 ____D C:\Users\Owner\AppData\LocalLow\DNF
2017-10-28 20:30 - 2016-10-22 22:39 - 000000000 ____D C:\Users\Owner\AppData\Roaming\NexonLauncher
 
==================== Known DLLs (All) =========================
 
[2009-07-13 16:00] - [2009-07-13 17:40] - 000607744 _____ (Microsoft Corporation) C:\Windows\System32\clbcatq.dll
[2009-07-13 15:44] - [2009-07-13 17:15] - 000522240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
[2017-09-12 14:29] - [2017-08-10 22:35] - 002065408 _____ (Microsoft Corporation) C:\Windows\System32\ole32.dll
[2017-09-12 14:29] - [2017-08-10 22:19] - 001417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
[2017-10-11 06:02] - [2017-09-13 07:27] - 000880640 _____ (Microsoft Corporation) C:\Windows\System32\advapi32.dll
[2017-10-11 06:02] - [2017-09-13 07:08] - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 000594432 _____ (Microsoft Corporation) C:\Windows\System32\COMDLG32.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 000485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.dll
[2017-10-11 06:02] - [2017-09-08 07:30] - 000405504 _____ (Microsoft Corporation) C:\Windows\System32\gdi32.dll
[2017-10-11 06:02] - [2017-09-08 07:10] - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
[2017-11-15 06:04] - [2017-10-14 00:13] - 002903552 _____ (Microsoft Corporation) C:\Windows\System32\IERTUTIL.dll
[2017-11-15 06:04] - [2017-10-13 22:50] - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IERTUTIL.dll
[2016-02-25 03:25] - [2013-10-18 18:18] - 000081408 _____ (Microsoft Corporation) C:\Windows\System32\IMAGEHLP.dll
[2016-02-25 03:25] - [2013-10-18 17:36] - 000159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMAGEHLP.dll
[2009-07-13 15:38] - [2009-07-13 17:41] - 000167424 _____ (Microsoft Corporation) C:\Windows\System32\IMM32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMM32.dll
[2017-10-11 06:02] - [2017-09-13 07:27] - 001163264 _____ (Microsoft Corporation) C:\Windows\System32\kernel32.dll
[2017-10-11 06:02] - [2017-09-13 07:09] - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
[2017-11-15 06:04] - [2017-10-11 16:55] - 000041472 _____ (Microsoft Corporation) C:\Windows\System32\LPK.dll
[2017-11-15 06:04] - [2017-10-11 16:37] - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LPK.dll
[2017-10-11 06:02] - [2017-09-13 07:28] - 001068544 _____ (Microsoft Corporation) C:\Windows\System32\MSCTF.dll
[2017-10-11 06:02] - [2017-09-13 07:09] - 000830464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCTF.dll
[2016-02-25 03:21] - [2011-12-16 00:46] - 000634880 _____ (Microsoft Corporation) C:\Windows\System32\MSVCRT.dll
[2016-02-25 03:21] - [2011-12-15 23:52] - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCRT.dll
[2009-07-13 15:26] - [2009-07-13 17:31] - 000002560 _____ (Microsoft Corporation) C:\Windows\System32\NORMALIZ.dll
[2009-07-13 15:15] - [2009-07-13 17:09] - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NORMALIZ.dll
[2017-09-12 14:29] - [2017-08-10 22:35] - 000013312 _____ (Microsoft Corporation) C:\Windows\System32\NSI.dll
[2017-09-12 14:29] - [2017-08-10 22:19] - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NSI.dll
[2017-05-09 19:22] - [2017-04-17 07:37] - 000876544 _____ (Microsoft Corporation) C:\Windows\System32\OLEAUT32.dll
[2017-05-09 19:22] - [2017-04-17 07:12] - 000581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OLEAUT32.dll
[2009-07-13 15:26] - [2009-07-13 17:41] - 000009216 _____ (Microsoft Corporation) C:\Windows\System32\PSAPI.DLL
[2009-07-13 15:15] - [2009-07-13 17:16] - 000006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSAPI.DLL
[2017-10-11 06:02] - [2017-09-13 07:28] - 001212928 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
[2017-10-11 06:02] - [2017-09-13 07:09] - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
[2016-02-25 03:25] - [2015-05-25 10:19] - 000113664 _____ (Microsoft Corporation) C:\Windows\System32\sechost.dll
[2016-02-25 03:25] - [2015-05-25 10:01] - 000092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 001900544 _____ (Microsoft Corporation) C:\Windows\System32\Setupapi.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 001667584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Setupapi.dll
[2017-09-12 14:29] - [2017-08-15 07:29] - 014182400 _____ (Microsoft Corporation) C:\Windows\System32\SHELL32.dll
[2017-09-12 14:29] - [2017-08-15 07:10] - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHELL32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 000448512 _____ (Microsoft Corporation) C:\Windows\System32\SHLWAPI.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 000350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHLWAPI.dll
[2017-11-15 06:04] - [2017-10-13 23:09] - 001544704 _____ (Microsoft Corporation) C:\Windows\System32\URLMON.dll
[2017-11-15 06:04] - [2017-10-13 22:07] - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\URLMON.dll
[2016-12-13 13:36] - [2016-11-10 08:32] - 001009152 _____ (Microsoft Corporation) C:\Windows\System32\user32.dll
[2016-12-13 13:36] - [2016-11-10 08:19] - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
[2017-09-12 14:29] - [2017-08-16 07:29] - 000806912 _____ (Microsoft Corporation) C:\Windows\System32\USP10.dll
[2017-09-12 14:29] - [2017-08-16 07:10] - 000629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\USP10.dll
[2017-11-15 06:04] - [2017-10-13 23:21] - 003241472 _____ (Microsoft Corporation) C:\Windows\System32\WININET.dll
[2017-11-15 06:04] - [2017-10-13 22:10] - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WININET.dll
[2017-09-12 14:29] - [2017-08-10 22:35] - 000313856 _____ (Microsoft Corporation) C:\Windows\System32\WLDAP32.dll
[2017-09-12 14:29] - [2017-08-10 22:19] - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WLDAP32.dll
[2016-06-15 11:03] - [2016-05-11 09:02] - 000296448 _____ (Microsoft Corporation) C:\Windows\System32\WS2_32.dll
[2016-06-15 11:03] - [2016-05-11 07:19] - 000206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WS2_32.dll
[2009-07-13 15:27] - [2009-07-13 17:40] - 000504320 _____ (Microsoft Corporation) C:\Windows\System32\difxapi.dll
[2009-07-13 15:16] - [2009-07-13 17:15] - 000315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\difxapi.dll
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
==================== Association (Whitelisted) =============
 
 
==================== Restore Points  =========================
 
Restore point date: 2017-11-25 00:26
 
==================== BCD ================================
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=Y:
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {default}
resumeobject            {fc0d0c98-db71-11e5-adbb-f4c929005fe5}
displayorder            {default}
toolsdisplayorder       {memdiag}
timeout                 30
 
Windows Boot Loader
-------------------
identifier              {default}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {current}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {fc0d0c98-db71-11e5-adbb-f4c929005fe5}
nx                      OptIn
 
Windows Boot Loader
-------------------
identifier              {current}
device                  ramdisk=[C:]\Recovery\fc0d0c9a-db71-11e5-adbb-f4c929005fe5\Winre.wim,{fc0d0c9b-db71-11e5-adbb-f4c929005fe5}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\fc0d0c9a-db71-11e5-adbb-f4c929005fe5\Winre.wim,{fc0d0c9b-db71-11e5-adbb-f4c929005fe5}
systemroot              \windows
nx                      OptIn
winpe                   Yes
 
Resume from Hibernate
---------------------
identifier              {fc0d0c98-db71-11e5-adbb-f4c929005fe5}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
debugoptionenabled      No
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=Y:
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes
 
EMS Settings
------------
identifier              {emssettings}
bootems                 Yes
 
Debugger Settings
-----------------
identifier              {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200
 
RAM Defects
-----------
identifier              {badmemory}
 
Global Settings
---------------
identifier              {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}
 
Boot Loader Settings
--------------------
identifier              {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}
 
Hypervisor Settings
-------------------
identifier              {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200
 
Resume Loader Settings
----------------------
identifier              {resumeloadersettings}
inherit                 {globalsettings}
 
Device options
--------------
identifier              {fc0d0c9b-db71-11e5-adbb-f4c929005fe5}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\fc0d0c9a-db71-11e5-adbb-f4c929005fe5\boot.sdi
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 7%
Total physical RAM: 16304.6 MB
Available physical RAM: 15125.2 MB
Total Virtual: 16302.8 MB
Available Virtual: 15114.98 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:931.41 GB) (Free:423.99 GB) NTFS
Drive f: (Lexar) (Removable) (Total:14.91 GB) (Free:14.86 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1B4491D6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 14.9 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=14.9 GB) - (Type=0C)
 
LastRegBack: 2017-11-19 09:37
 
==================== End of FRST.txt ============================

  • 0

Advertisements


#2
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,792 posts
Hi! My name is zep516 and Welcome to Geekstogo!
I'll do the best I can to resolve your computer issue
Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions! :)

I'll be right with you with a fixlist
  • 0

#3
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,792 posts
Hello,

Copy/Paste the contents of the code box below into Notepad.
GroupPolicy: Restriction <==== ATTENTION
S3 Winsock; no ImagePath
S3 dbx; system32\DRIVERS\dbx.sys [X]
S0 SR; no ImagePath
S2 srservice; no ImagePath
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
C:\Windows\System32\Drivers\mbamswissarmy.sys
  • Click Format and ensure Wordwrap is unchecked.
  • Save as Fixlist.txt to f:\
  • Run FRST/FRST64 and press the Fix button just once and wait.
  • If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
  • The tool will make a log on f:\(Fixlog.txt). Please post it to your reply.

    see if it boots to normal mode now

  • 0

#4
tubalcain

tubalcain

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

Thank you for taking the time to do this!

It seems to have booted up normally. Is there anything else I should be immediately tending to, as a precaution against this sort of thing happening again?

 

 

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 24-11-2017 01
Ran by SYSTEM (25-11-2017 14:36:49) Run:1
Running from f:\
Boot Mode: Recovery
==============================================
 
fixlist content:
*****************
GroupPolicy: Restriction <==== ATTENTION
S3 Winsock; no ImagePath
S3 dbx; system32\DRIVERS\dbx.sys [X]
S0 SR; no ImagePath
S2 srservice; no ImagePath
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
C:\Windows\System32\Drivers\mbamswissarmy.sys
*****************
 
C:\Windows\System32\GroupPolicy\Machine => moved successfully
C:\Windows\System32\GroupPolicy\GPT.ini => moved successfully
HKLM\System\ControlSet001\Services\Winsock => key removed successfully
Winsock => service removed successfully
HKLM\System\ControlSet001\Services\dbx => key removed successfully
dbx => service removed successfully
HKLM\System\ControlSet001\Services\SR => key removed successfully
SR => service removed successfully
HKLM\System\ControlSet001\Services\srservice => key removed successfully
srservice => service removed successfully
HKLM\System\ControlSet001\Services\xhunter1 => key removed successfully
xhunter1 => service removed successfully
C:\Windows\System32\Drivers\mbamswissarmy.sys => moved successfully
 
==== End of Fixlog 14:36:50 ====

  • 0

#5
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,792 posts

Is there anything else I should be immediately tending to, as a precaution against this sort of thing happening again?


It seems to a Malwarebytes program related issue. Malwarebytes is looking into it.

Thanks
Joe :)
  • 0

#6
tubalcain

tubalcain

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

Again, thank you so much for the help. Have a wonderful day! 


  • 0

#7
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,792 posts
You're welcome :)
  • 0

#8
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,792 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.

Thanks
Joe :)
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP