Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Win7 PC not starting - mbamswissarmy.sys is missing or corrupted.

Started by abakan1g , Dec 12 2017 08:36 AM

  • This topic is locked This topic is locked

#1
abakan1g
Posted 12 December 2017 - 08:36 AM

abakan1g

    New Member

  • Member
  • Pip
  • 5 posts

Hi.
Yesterday my PC turned off normally, but today it can't boot. Gave me startup repair and etc, all that useless stuff that never works. After some digging around I managed to get to this screen, which shows the mbamswissarmy error. https://i.imgur.com/XpsV6SI.jpg I can't get any further than this - safe mode doesn't work, my windows usb gives an error (shown below) and the USB with FRST just loads this same screen.
Before all this, I've tried to boot Win7 from my 2gb usb, but it only gave me this error. https://i.imgur.com/4x2nPtA.jpg
I've done a little bit of research and I've downloaded FRST, but what do I do after that?
Also, does the usb boot error mean that my usb is infected/os in it somehow got broken?

Edited by abakan1g, 12 December 2017 - 11:49 AM.

  • 0

Advertisements

#2
JSntgRvr
Posted 12 December 2017 - 01:22 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Hi, and welcome :)

Are you able to get to the Recovery Environment (WinRE) Command prompt taping on F8 at startup and selecting Repair my computer?
  • 0

#3
abakan1g
Posted 12 December 2017 - 01:58 PM

abakan1g

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Hey, thanks for the swift reply. No, tapping F8 gets me into the Windows Error Recovery window, where I have the options to launch safe modes (with networking, with command prompt), last known good configuration and to start windows normally.
Picking the safe mode with cmd prompt shows for a second how its "loading files" and that ends up in the same black mbamswissarmy error.
My motherboard is H61M-S1 just incase.
  • 0

#4
abakan1g
Posted 12 December 2017 - 02:00 PM

abakan1g

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Accidental double post. Anyhow, this is the window I get after tapping F8 appropriately (i was doing it wrong i guess).

Attached Thumbnails

  • IMG_20171212_220037_HHT.jpg

Edited by abakan1g, 12 December 2017 - 02:02 PM.

  • 0

#5
JSntgRvr
Posted 12 December 2017 - 05:00 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
You may be able to create a bootable CD on any other Windows 7 working machine. These are the instructions to run FRST.


Please download Farbar Recovery Scan Tool and save it to a flash drive.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Plug the flash drive into the infected PC.
  • If you are using Windows 8 consult How to use the Windows 8 System Recovery Environment Command Prompt to enter System Recovery Command prompt.

    If you are using Vista or Windows 7 enter System Recovery Options.

    To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
  • Note: In case you can not enter System Recovery Options by using F8 method, you can use Windows installation disc, or make a repair disc. Any Windows installation disc or a repair disc made on another computer can be used.
    To make a repair disk on Windows 7 consult: http://www.sevenforu...isc-create.html


    To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
  • On the System Recovery Options menu you will get the following options:
  • Startup Repair
  • System Restore
  • Windows Complete PC Restore
  • Windows Memory Diagnostic Tool
  • Command Prompt
  • Select Command Prompt

    Once in the Command Prompt:
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst (for x64 bit version type e:\frst64) and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

  • 0

#6
abakan1g
Posted 12 December 2017 - 10:52 PM

abakan1g

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Bought a new flash drive and got Win10 on it. Managed to run startup repair and here are the scan results.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-12-2017
Ran by SYSTEM on MININT-LMFUDOU (13-12-2017 17:13:07)
Running from d:\
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United Kingdom)
Internet Explorer Version 11
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
 
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13370472 2011-11-18] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKLM\...\RunOnce: [*Restore] => C:\Windows\system32\rstrui.exe [296960 2017-04-28] (Microsoft Corporation)
HKU\LJ1G\...\Run: [BitTorrent] => C:\Users\LJ1G\AppData\Roaming\BitTorrent\BitTorrent.exe [1988552 2017-12-08] (BitTorrent Inc.)
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6998536 2017-12-08] ()
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
S2 MBAMService; C:\Program Files\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2134848 2017-12-08] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3014472 2017-12-08] (Electronic Arts)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2017-12-09] ()
S2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2017-12-09] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2017-05-11] (Microsoft Corporation)
S2 wuauserv; C:\Windows\system32\wuaueng2.dll [2651136 2017-05-11] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] ()
S2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-07] (Malwarebytes)
S3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-12-10] (Malwarebytes)
S3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-12-10] (Malwarebytes)
S0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-08] ()
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
 
========================== Drivers MD5 =======================
 
C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 0DC2A9882540DEA4A55B08785E09D8FC
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys 00D77B30CA9CB1D7793AC952549331A0
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ABA3984C822E4D3F889699912D85D6C5
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys 3D67C27DD17B254D7915FA16A5AE3573
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys A98CED39AD91B445E2E442A9BD67E8B4
C:\Windows\System32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys 9B38580063D281A99E68EF5813022A5F
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys 616387BBD83372220B09DE95F4E67BBC
C:\Windows\System32\drivers\drmkaud.sys 26FE888505E5A945B0536AF9A2A27A6F
C:\Windows\System32\drivers\dxgkrnl.sys 30545EF2A1E3EF79450AED5DF80F5884
C:\Windows\System32\DRIVERS\E1G6032E.sys ==> MD5 is legit
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\system32\drivers\mbae64.sys 680AF1647150CF9B061FF40E71C7396A
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys F61634BEC53F73702A10DE69F6DCAF57
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\RTKVHD64.sys 16FCA7101F0A3B1742E089AA4C306475
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 15682ED7B70B186C9C2BE6CA423D8E74
C:\Windows\System32\Drivers\ksecpkg.sys 945F4DA63A76EB2725C070BF3A86B5A5
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MbamChameleon.sys 5C3083CDE45F25797F6B4310BF916394
C:\Windows\System32\DRIVERS\farflt.sys 20046A5DB1466EBD0DCAEB84D00C5432
C:\Windows\System32\DRIVERS\mbam.sys 29BD0BB2CD7E37B8C248CFA933FBD1F4
C:\Windows\System32\Drivers\mbamswissarmy.sys C5CA8D33F3DD5C3579BBCA9556DD633C
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys 8ADB5445B29941CB41AF2846FD5C93C7
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 98DB1790F0A584E0A2528B92B052417F
C:\Windows\System32\DRIVERS\mrxsmb.sys 054F780A442DB96F9FE10501B35E75CA
C:\Windows\System32\DRIVERS\mrxsmb10.sys A1EAC982807B3179DD92235B6B709C0A
C:\Windows\System32\DRIVERS\mrxsmb20.sys E6B504F163094F2DB84F7D34A893FA00
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys AA0C2BA3782E92BD85E2264BE418E67C
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys F7309F42555F8AAB7144A51A1F2585B0
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys E47D571FEC2C76E867935109AB2A770C
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys 47B2D0B31BDC3EBE6090228E2BA3764D
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nvlddmkm.sys 417660347EF07FF511284E668C9E2CB6
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys F82BCEB9F57B2959F6AAE2A3DDA892A8
C:\Windows\System32\drivers\nvvad64v.sys F37FE6B15A987AEEC08EEF531F2FAED7
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys EA4D67448BE493D543F1730D6CD04694
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys 71B6F78D6444CCE6F77BC42917A4E8F7
C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys FE571E088C2D83619D2D48D4E961BF41
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Rt64win7.sys 9140DB0911DE035FED0A9A77A2D156EA
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\Drivers\SCDEmu.sys 92EAE8DEC1F992DB12AA23D9D55F264A
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 546C81F238F084A393EC54114741A0A8
C:\Windows\System32\DRIVERS\srv2.sys 431D2B06E8F93EAEC53E8FA37FCFF2F1
C:\Windows\System32\DRIVERS\srvnet.sys 42EDAB3E3E8E25C7093674936C2DB4BD
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 351A21ED3971ADD558956FF3EB0F6FED
C:\Windows\System32\DRIVERS\tcpip.sys 351A21ED3971ADD558956FF3EB0F6FED
C:\Windows\System32\drivers\tcpipreg.sys 7FE5586314EE7D6AA8483264A089E5AF
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys EC75A942C32F7F405659D86156DCE4C5
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\Windows\system32\drivers\terminpt.sys EF4469AB69EB15E5D3754E6AEAFBCD3D
C:\Windows\System32\DRIVERS\tssecsrv.sys 19BEDA57F3E0A06B8D5EB6D619BD5624
C:\Windows\System32\drivers\tsusbflt.sys E9981ECE8D894CEF7038FD1D040EB426
C:\Windows\system32\drivers\TsUsbGD.sys D34789988234DCC8FA55FA9A485AF0EC
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\Windows\system32\drivers\usbccgp.sys 28B81917A195B67617AF7DCF4DFE5736
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\System32\DRIVERS\usbehci.sys B626F048318DAE65A3317F0592BE592C
C:\Windows\System32\DRIVERS\usbhub.sys 390109E8E05BA00375DCB1ED64DC60AF
C:\Windows\system32\drivers\usbohci.sys B4DF0F4C1D9D25DFE1DAD1D8670F1D4F
C:\Windows\system32\drivers\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS D029DD09E22EB24318A8FC3D8138BA43
C:\Windows\system32\drivers\usbuhci.sys CFEAAF96E666E3DCBD8F6DFF516784AE
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-12-13 17:12 - 2017-12-13 17:12 - 000000000 ____D C:\FRST
2017-12-11 22:04 - 2017-12-12 21:03 - 000000000 ____D C:\Program Files\CCleaner
2017-12-11 19:32 - 2017-12-12 21:03 - 000000000 ____D C:\Users\LJ1G\Desktop\War on Terror
2017-12-11 13:27 - 2017-12-11 13:27 - 000000000 ____D C:\Users\LJ1G\AppData\LocalLow\Adobe
2017-12-11 13:26 - 2017-12-11 13:28 - 000000000 ____D C:\ProgramData\Adobe
2017-12-11 13:26 - 2017-12-11 13:26 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-12-11 13:25 - 2017-12-11 13:27 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Adobe
2017-12-10 18:17 - 2017-12-11 20:21 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\Opera Software
2017-12-10 18:17 - 2017-12-11 20:21 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Opera Software
2017-12-10 18:17 - 2017-12-11 20:21 - 000000000 ____D C:\Program Files\Opera
2017-12-10 12:41 - 2017-12-10 12:41 - 000005362 _____ C:\Users\LJ1G\AppData\Local\recently-used.xbel
2017-12-10 11:03 - 2017-12-10 11:03 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Nexus
2017-12-10 10:33 - 2017-12-10 10:34 - 000000000 ____D C:\Users\LJ1G\AppData\Local\LOOT
2017-12-09 23:02 - 2017-12-12 22:40 - 000000000 ____D C:\Users\LJ1G\AppData\Local\gtk-2.0
2017-12-09 23:01 - 2017-12-09 23:01 - 000000000 ____D C:\Users\LJ1G\.thumbnails
2017-12-09 22:58 - 2017-12-10 12:42 - 000000000 ____D C:\Users\LJ1G\.gimp-2.8
2017-12-09 22:58 - 2017-12-09 22:58 - 000000000 ____D C:\Users\LJ1G\AppData\Local\gegl-0.2
2017-12-09 22:58 - 2017-12-09 22:58 - 000000000 ____D C:\Users\LJ1G\AppData\Local\fontconfig
2017-12-09 22:55 - 2017-12-09 22:56 - 000000000 ____D C:\Program Files\GIMP 2
2017-12-09 12:54 - 2017-12-09 12:54 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Skyrim
2017-12-09 12:40 - 2017-12-09 12:40 - 000189248 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-12-09 12:40 - 2017-12-09 12:40 - 000189248 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2017-12-09 12:40 - 2017-12-09 12:40 - 000075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2017-12-09 12:13 - 2017-12-09 12:13 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\WinRAR
2017-12-09 12:13 - 2017-12-09 12:13 - 000000000 ____D C:\Program Files\WinRAR
2017-12-09 10:50 - 2017-12-09 10:50 - 000029197 _____ C:\Users\LJ1G\Desktop\$UICIDE.xspf
2017-12-09 10:30 - 2017-12-09 10:30 - 000000000 ____H C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-12-08 17:42 - 2017-12-12 22:40 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\BitTorrent
2017-12-08 17:41 - 2017-12-08 17:41 - 000000000 ____D C:\Program Files\PowerISO
2017-12-08 17:41 - 2017-06-07 00:36 - 000138296 _____ (Power Software Ltd) C:\Windows\System32\Drivers\scdemu.sys
2017-12-08 17:40 - 2017-12-09 12:29 - 000000000 ____D C:\Program Files (x86)\Origin Games
2017-12-08 17:35 - 2017-12-09 15:41 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\Origin
2017-12-08 17:34 - 2017-12-08 17:35 - 000000000 ____D C:\Program Files (x86)\Origin
2017-12-08 17:33 - 2017-12-09 15:41 - 000000000 ____D C:\ProgramData\Origin
2017-12-08 17:33 - 2017-12-08 17:40 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Origin
2017-12-08 17:33 - 2017-12-08 17:33 - 000000000 ____D C:\Users\LJ1G\.QtWebEngineProcess
2017-12-08 17:33 - 2017-12-08 17:33 - 000000000 ____D C:\Users\LJ1G\.Origin
2017-12-08 16:48 - 2017-12-08 16:48 - 000000000 ____D C:\Users\LJ1G\Documents\Lightshot
2017-12-08 16:34 - 2017-12-08 16:34 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\NVIDIA
2017-12-08 02:26 - 2017-12-08 02:26 - 000000000 ____H C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-12-07 17:37 - 2017-12-07 17:37 - 000000000 ____D C:\Program Files\Speccy
2017-12-07 17:25 - 2017-12-07 17:25 - 000000000 ____D C:\Users\LJ1G\AppData\Local\UnrealEngine
2017-12-07 17:25 - 2017-12-07 17:25 - 000000000 ____D C:\Users\LJ1G\AppData\Local\TslGame
2017-12-07 16:51 - 2017-12-07 16:51 - 000000000 ____D C:\Users\LJ1G\AppData\Local\CEF
2017-12-07 16:51 - 2017-12-07 15:53 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Steam
2017-12-07 16:50 - 2017-12-07 16:50 - 000001036 _____ C:\Users\LJ1G\Desktop\My Documents.lnk
2017-12-07 16:49 - 2017-12-07 16:49 - 000058016 _____ C:\Users\LJ1G\AppData\Local\GDIPFONTCACHEV1.DAT
2017-12-07 16:49 - 2017-12-07 16:49 - 000003330 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-07 16:49 - 2017-12-07 16:49 - 000003202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-07 16:49 - 2017-12-07 16:49 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Deployment
2017-12-07 16:49 - 2017-12-07 16:49 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Apps\2.0
2017-12-07 16:49 - 2017-12-07 16:49 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-07 16:49 - 2017-12-07 16:22 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Google
2017-12-07 16:47 - 2011-08-23 13:57 - 000565352 _____ (Realtek ) C:\Windows\System32\Drivers\Rt64win7.sys
2017-12-07 16:47 - 2011-08-23 13:57 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\System32\RTNUninst64.dll
2017-12-07 16:47 - 2011-08-23 13:57 - 000074272 _____ C:\Windows\System32\RtNicProp64.dll
2017-12-07 16:46 - 2017-12-07 16:47 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-12-07 16:46 - 2017-12-07 16:47 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-12-07 16:46 - 2017-12-07 16:46 - 000000000 ___HD C:\Program Files (x86)\Temp
2017-12-07 16:46 - 2017-12-07 16:46 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2017-12-07 16:46 - 2017-12-07 16:46 - 000000000 ____D C:\Program Files\Realtek
2017-12-07 16:46 - 2011-11-22 14:30 - 003745384 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RtkAPO64.dll
2017-12-07 16:46 - 2011-11-22 10:02 - 002955496 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RTKVHD64.sys
2017-12-07 16:46 - 2011-11-22 09:13 - 000188328 _____ C:\Windows\System32\Drivers\RTAIODAT.DAT
2017-12-07 16:46 - 2011-11-22 08:28 - 000014952 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RtkCoLDR64.dll
2017-12-07 16:46 - 2011-11-22 08:21 - 000099944 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RCoInstII64.dll
2017-12-07 16:46 - 2011-11-22 03:36 - 002615400 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RtPgEx64.dll
2017-12-07 16:46 - 2011-11-14 06:38 - 001966184 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RtkApi64.dll
2017-12-07 16:46 - 2011-11-10 08:14 - 000891992 _____ (Creative Technology Ltd.) C:\Windows\System32\MBAPO64.dll
2017-12-07 16:46 - 2011-11-10 08:14 - 000749144 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2017-12-07 16:46 - 2011-10-18 05:55 - 000331880 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RtlCPAPI64.dll
2017-12-07 16:46 - 2011-08-31 11:12 - 001698408 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2017-12-07 16:46 - 2011-08-19 13:10 - 000064600 _____ (Creative Technology Ltd.) C:\Windows\System32\MBppld64.dll
2017-12-07 16:46 - 2011-07-27 16:55 - 002604376 _____ (Waves Audio Ltd.) C:\Windows\System32\WavesGUILib.dll
2017-12-07 16:46 - 2011-07-27 16:55 - 002132824 _____ (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioEQ.dll
2017-12-07 16:46 - 2011-07-22 11:35 - 001247848 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RTCOM64.dll
2017-12-07 16:46 - 2011-06-30 08:14 - 001560168 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RTSnMg64.cpl
2017-12-07 16:46 - 2011-05-05 07:24 - 002085440 _____ (Fortemedia Corporation) C:\Windows\System32\FMAPO64.dll
2017-12-07 16:46 - 2010-11-07 23:31 - 000375128 _____ (Dolby Laboratories, Inc.) C:\Windows\System32\RTEEP64A.dll
2017-12-07 16:46 - 2010-11-07 23:31 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\System32\RP3DHT64.dll
2017-12-07 16:46 - 2010-11-07 23:31 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\System32\RP3DAA64.dll
2017-12-07 16:46 - 2010-11-07 23:31 - 000204120 _____ (Dolby Laboratories, Inc.) C:\Windows\System32\RTEED64A.dll
2017-12-07 16:46 - 2010-11-07 23:31 - 000101208 _____ (Dolby Laboratories, Inc.) C:\Windows\System32\RTEEL64A.dll
2017-12-07 16:46 - 2010-11-07 23:31 - 000078680 _____ (Dolby Laboratories, Inc.) C:\Windows\System32\RTEEG64A.dll
2017-12-07 16:46 - 2010-11-03 10:30 - 000149608 _____ (Realtek Semiconductor Corp.) C:\Windows\System32\RtkCfg64.dll
2017-12-07 16:46 - 2010-09-27 01:34 - 000318808 _____ (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioAPO20.dll
2017-12-07 16:46 - 2010-07-22 08:37 - 000200800 _____ (Andrea Electronics Corporation) C:\Windows\System32\AERTAC64.dll
2017-12-07 16:46 - 2010-07-02 11:40 - 000080984 _____ (Creative Technology Ltd.) C:\Windows\System32\MBWrp64.dll
2017-12-07 16:46 - 2009-11-24 01:55 - 000518896 _____ (SRS Labs, Inc.) C:\Windows\System32\SRSTSX64.dll
2017-12-07 16:46 - 2009-11-24 01:55 - 000211184 _____ (SRS Labs, Inc.) C:\Windows\System32\SRSTSH64.dll
2017-12-07 16:46 - 2009-11-24 01:55 - 000198896 _____ (SRS Labs, Inc.) C:\Windows\System32\SRSHP64.dll
2017-12-07 16:46 - 2009-11-24 01:55 - 000155888 _____ (SRS Labs, Inc.) C:\Windows\System32\SRSWOW64.dll
2017-12-07 16:46 - 2009-11-17 23:13 - 000060504 _____ (Creative Technology Ltd.) C:\Windows\System32\MBPPCn64.dll
2017-12-07 16:46 - 2009-11-17 10:12 - 000108960 _____ (Andrea Electronics Corporation) C:\Windows\System32\AERTAR64.dll
2017-12-07 16:45 - 2017-12-07 16:45 - 000000010 _____ C:\Windows\GSetup.ini
2017-12-07 16:43 - 2017-12-12 22:40 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\vlc
2017-12-07 16:37 - 2017-12-09 21:33 - 000000386 _____ C:\Windows\Tasks\update-sys.job
2017-12-07 16:37 - 2017-12-09 20:40 - 000000386 _____ C:\Windows\Tasks\update-S-1-5-21-3282252803-478096436-3489367552-1000.job
2017-12-07 16:37 - 2017-12-07 16:37 - 000003282 _____ C:\Windows\System32\Tasks\update-sys
2017-12-07 16:37 - 2017-12-07 16:37 - 000003258 _____ C:\Windows\System32\Tasks\update-S-1-5-21-3282252803-478096436-3489367552-1000
2017-12-07 16:37 - 2017-12-07 16:37 - 000000425 _____ C:\Users\LJ1G\AppData\Local\UserProducts.xml
2017-12-07 16:37 - 2017-12-07 16:37 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2017-12-07 16:33 - 2017-12-11 13:27 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\Adobe
2017-12-07 16:33 - 2017-12-07 16:33 - 000000000 ____D C:\Users\LJ1G\AppData\Local\VirtualStore
2017-12-07 16:32 - 2017-12-12 22:40 - 000000000 ____D C:\users\LJ1G
2017-12-07 16:32 - 2017-12-07 16:32 - 000000020 ___SH C:\Users\LJ1G\ntuser.ini
2017-12-07 16:32 - 2011-04-12 08:28 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\Media Center Programs
2017-12-07 16:32 - 2010-06-02 02:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2017-12-07 16:32 - 2010-06-02 02:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2017-12-07 16:32 - 2010-06-02 02:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2017-12-07 16:32 - 2010-06-02 02:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2017-12-07 16:32 - 2010-06-02 02:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2017-12-07 16:32 - 2010-06-02 02:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2017-12-07 16:32 - 2010-05-26 09:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_6.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_6.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_4.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_7.dll
2017-12-07 16:32 - 2010-02-04 08:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2017-12-07 16:32 - 2009-09-04 15:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2017-12-07 16:32 - 2009-09-04 15:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2017-12-07 16:32 - 2009-09-04 15:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2017-12-07 16:32 - 2009-09-04 15:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2017-12-07 16:32 - 2009-09-04 15:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2017-12-07 16:32 - 2009-09-04 15:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2017-12-07 16:32 - 2009-09-04 15:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2017-12-07 16:32 - 2009-03-16 12:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2017-12-07 16:32 - 2009-03-16 12:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2017-12-07 16:32 - 2009-03-16 12:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2017-12-07 16:32 - 2009-03-16 12:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2017-12-07 16:32 - 2009-03-16 12:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2017-12-07 16:32 - 2009-03-16 12:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2017-12-07 16:32 - 2009-03-09 13:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2017-12-07 16:32 - 2009-03-09 13:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2017-12-07 16:32 - 2009-03-09 13:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2017-12-07 16:32 - 2009-03-09 13:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2017-12-07 16:32 - 2009-03-09 13:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2017-12-07 16:32 - 2009-03-09 13:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_3.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_3.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_2.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_5.dll
2017-12-07 16:32 - 2008-10-27 08:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2017-12-07 16:32 - 2008-10-15 04:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2017-12-07 16:32 - 2008-10-15 04:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2017-12-07 16:32 - 2008-10-15 04:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2017-12-07 16:32 - 2008-10-15 04:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2017-12-07 16:32 - 2008-10-15 04:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2017-12-07 16:32 - 2008-10-15 04:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2017-12-07 16:32 - 2008-07-31 08:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2017-12-07 16:32 - 2008-07-31 08:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2017-12-07 16:32 - 2008-07-31 08:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2017-12-07 16:32 - 2008-07-31 08:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2017-12-07 16:32 - 2008-07-31 08:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2017-12-07 16:32 - 2008-07-31 08:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2017-12-07 16:32 - 2008-07-10 09:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2017-12-07 16:32 - 2008-07-10 09:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_39.dll
2017-12-07 16:32 - 2008-07-10 09:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2017-12-07 16:32 - 2008-07-10 09:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_39.dll
2017-12-07 16:32 - 2008-07-10 09:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2017-12-07 16:32 - 2008-07-10 09:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_39.dll
2017-12-07 16:32 - 2008-05-30 12:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_1.dll
2017-12-07 16:32 - 2008-05-30 12:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2017-12-07 16:32 - 2008-05-30 12:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2017-12-07 16:32 - 2008-05-30 12:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_1.dll
2017-12-07 16:32 - 2008-05-30 12:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\System32\XAPOFX1_0.dll
2017-12-07 16:32 - 2008-05-30 12:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2017-12-07 16:32 - 2008-05-30 12:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2017-12-07 16:32 - 2008-05-30 12:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_4.dll
2017-12-07 16:32 - 2008-05-30 12:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_38.dll
2017-12-07 16:32 - 2008-05-30 12:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2017-12-07 16:32 - 2008-05-30 12:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_38.dll
2017-12-07 16:32 - 2008-05-30 12:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2017-12-07 16:32 - 2008-05-30 12:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_38.dll
2017-12-07 16:32 - 2008-05-30 12:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2017-12-07 16:32 - 2008-03-05 14:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\System32\XAudio2_0.dll
2017-12-07 16:32 - 2008-03-05 14:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2017-12-07 16:32 - 2008-03-05 14:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2017-12-07 16:32 - 2008-03-05 14:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\System32\xactengine3_0.dll
2017-12-07 16:32 - 2008-03-05 14:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_3.dll
2017-12-07 16:32 - 2008-03-05 14:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2017-12-07 16:32 - 2008-03-05 13:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\System32\D3DX9_37.dll
2017-12-07 16:32 - 2008-03-05 13:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2017-12-07 16:32 - 2008-03-05 13:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_37.dll
2017-12-07 16:32 - 2008-03-05 13:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2017-12-07 16:32 - 2008-02-05 21:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_37.dll
2017-12-07 16:32 - 2008-02-05 21:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2017-12-07 16:32 - 2007-10-22 01:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_10.dll
2017-12-07 16:32 - 2007-10-22 01:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2017-12-07 16:32 - 2007-10-22 01:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\System32\X3DAudio1_2.dll
2017-12-07 16:32 - 2007-10-22 01:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2017-12-07 16:32 - 2007-10-12 13:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_36.dll
2017-12-07 16:32 - 2007-10-12 13:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2017-12-07 16:32 - 2007-10-12 13:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_36.dll
2017-12-07 16:32 - 2007-10-12 13:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2017-12-07 16:32 - 2007-10-02 07:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_36.dll
2017-12-07 16:32 - 2007-10-02 07:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2017-12-07 16:32 - 2007-07-19 22:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_9.dll
2017-12-07 16:32 - 2007-07-19 22:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2017-12-07 16:32 - 2007-07-19 16:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2017-12-07 16:32 - 2007-07-19 16:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2017-12-07 16:32 - 2007-07-19 16:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_35.dll
2017-12-07 16:32 - 2007-07-19 16:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2017-12-07 16:32 - 2007-07-19 16:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_35.dll
2017-12-07 16:32 - 2007-07-19 16:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2017-12-07 16:32 - 2007-06-20 18:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_8.dll
2017-12-07 16:32 - 2007-06-20 18:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2017-12-07 16:32 - 2007-05-16 14:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_34.dll
2017-12-07 16:32 - 2007-05-16 14:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2017-12-07 16:32 - 2007-05-16 14:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_34.dll
2017-12-07 16:32 - 2007-05-16 14:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2017-12-07 16:32 - 2007-05-16 14:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_34.dll
2017-12-07 16:32 - 2007-05-16 14:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2017-12-07 16:32 - 2007-04-04 16:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_7.dll
2017-12-07 16:32 - 2007-04-04 16:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2017-12-07 16:32 - 2007-04-04 16:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_3.dll
2017-12-07 16:32 - 2007-04-04 16:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2017-12-07 16:32 - 2007-03-15 14:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10_33.dll
2017-12-07 16:32 - 2007-03-15 14:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2017-12-07 16:32 - 2007-03-12 14:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_33.dll
2017-12-07 16:32 - 2007-03-12 14:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2017-12-07 16:32 - 2007-03-12 14:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_33.dll
2017-12-07 16:32 - 2007-03-12 14:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2017-12-07 16:32 - 2007-03-05 10:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_1.dll
2017-12-07 16:32 - 2007-03-05 10:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2017-12-07 16:32 - 2007-01-24 13:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_6.dll
2017-12-07 16:32 - 2007-01-24 13:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2017-12-07 16:32 - 2006-12-08 10:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2017-12-07 16:32 - 2006-12-08 10:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_5.dll
2017-12-07 16:32 - 2006-11-29 11:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2017-12-07 16:32 - 2006-11-29 11:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2017-12-07 16:32 - 2006-11-29 11:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\System32\d3dx10.dll
2017-12-07 16:32 - 2006-11-29 11:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2017-12-07 16:32 - 2006-09-28 14:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_31.dll
2017-12-07 16:32 - 2006-09-28 14:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2017-12-07 16:32 - 2006-09-28 14:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2017-12-07 16:32 - 2006-09-28 14:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_4.dll
2017-12-07 16:32 - 2006-07-28 07:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_2.dll
2017-12-07 16:32 - 2006-07-28 07:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_3.dll
2017-12-07 16:32 - 2006-07-28 07:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2017-12-07 16:32 - 2006-07-28 07:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2017-12-07 16:32 - 2006-05-31 05:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2017-12-07 16:32 - 2006-05-31 05:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_2.dll
2017-12-07 16:32 - 2006-03-31 10:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2017-12-07 16:32 - 2006-03-31 10:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2017-12-07 16:32 - 2006-03-31 10:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_1.dll
2017-12-07 16:32 - 2006-03-31 10:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2017-12-07 16:32 - 2006-03-31 10:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\System32\xinput1_1.dll
2017-12-07 16:32 - 2006-03-31 10:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2017-12-07 16:32 - 2006-02-03 06:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_29.dll
2017-12-07 16:32 - 2006-02-03 06:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2017-12-07 16:32 - 2006-02-03 06:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\System32\xactengine2_0.dll
2017-12-07 16:32 - 2006-02-03 06:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2017-12-07 16:32 - 2006-02-03 06:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\System32\x3daudio1_0.dll
2017-12-07 16:32 - 2006-02-03 06:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2017-12-07 16:32 - 2005-12-05 16:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_28.dll
2017-12-07 16:32 - 2005-12-05 16:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2017-12-07 16:32 - 2005-07-22 17:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_27.dll
2017-12-07 16:32 - 2005-07-22 17:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2017-12-07 16:32 - 2005-05-26 13:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_26.dll
2017-12-07 16:32 - 2005-05-26 13:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2017-12-07 16:32 - 2005-03-18 15:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_25.dll
2017-12-07 16:32 - 2005-03-18 15:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2017-12-07 16:32 - 2005-02-05 17:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\System32\d3dx9_24.dll
2017-12-07 16:32 - 2005-02-05 17:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2017-12-07 16:21 - 2017-12-07 16:21 - 000000000 ____D C:\Program Files (x86)\VLC
2017-12-07 16:16 - 2017-12-10 09:07 - 000110016 _____ (Malwarebytes) C:\Windows\System32\Drivers\farflt.sys
2017-12-07 16:16 - 2017-12-10 09:07 - 000046008 _____ (Malwarebytes) C:\Windows\System32\Drivers\mbam.sys
2017-12-07 16:16 - 2017-12-07 16:16 - 000193968 _____ (Malwarebytes) C:\Windows\System32\Drivers\MbamChameleon.sys
2017-12-07 16:15 - 2017-12-12 22:40 - 000000000 ____D C:\Program Files\Anti-Malware
2017-12-07 16:15 - 2017-12-08 18:57 - 000253880 _____ C:\Windows\System32\Drivers\mbamswissarmy.sys
2017-12-07 16:15 - 2017-12-07 16:15 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-07 16:15 - 2017-11-29 07:11 - 000077432 _____ C:\Windows\System32\Drivers\mbae64.sys
2017-12-07 16:07 - 2017-12-12 22:40 - 000000000 ___RD C:\Users\LJ1G\Desktop\Zaidimai
2017-12-07 16:05 - 2017-12-07 17:25 - 000000000 ____D C:\Users\LJ1G\AppData\Local\NVIDIA Corporation
2017-12-07 16:04 - 2017-12-07 16:04 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-07 16:01 - 2017-12-07 16:01 - 000000000 ____D C:\Users\LJ1G\AppData\Local\NVIDIA
2017-12-07 16:01 - 2016-06-14 20:01 - 001767944 _____ (NVIDIA Corporation) C:\Windows\System32\nvspcap64.dll
2017-12-07 16:01 - 2016-06-14 20:01 - 001756424 _____ (NVIDIA Corporation) C:\Windows\System32\nvspbridge64.dll
2017-12-07 16:01 - 2016-06-14 20:01 - 001377800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-12-07 16:01 - 2016-06-14 20:01 - 001316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-12-07 16:01 - 2016-06-14 20:01 - 000112216 _____ C:\Windows\System32\NvRtmpStreamer64.dll
2017-12-07 16:00 - 2016-05-04 02:23 - 000129824 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-12-07 16:00 - 2016-05-04 02:22 - 000130848 _____ C:\Windows\System32\vulkan-1.dll
2017-12-07 16:00 - 2016-05-04 02:22 - 000045344 _____ C:\Windows\System32\vulkaninfo.exe
2017-12-07 16:00 - 2016-05-04 02:22 - 000040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-12-07 15:59 - 2017-12-08 10:43 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-07 15:59 - 2017-12-07 15:59 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-12-07 15:59 - 2016-08-11 14:31 - 000213952 _____ (Khronos Group) C:\Windows\System32\OpenCL.dll
2017-12-07 15:59 - 2016-08-11 14:31 - 000201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 006384576 _____ (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 002469944 _____ (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 001764408 _____ (NVIDIA Corporation) C:\Windows\System32\nvsvcr.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 001363392 _____ (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
2017-12-07 15:59 - 2016-08-11 11:49 - 000548920 _____ (NVIDIA Corporation) C:\Windows\System32\nv3dappshext.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 000392128 _____ (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 000081856 _____ (NVIDIA Corporation) C:\Windows\System32\nv3dappshextr.dll
2017-12-07 15:59 - 2016-08-11 11:49 - 000069568 _____ (NVIDIA Corporation) C:\Windows\System32\nvshext.dll
2017-12-07 15:59 - 2016-08-08 11:54 - 007255045 _____ C:\Windows\System32\nvcoproc.bin
2017-12-07 15:58 - 2017-12-07 16:01 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-12-07 15:57 - 2017-12-08 19:03 - 000000000 ____D C:\Users\LJ1G\AppData\Roaming\discord
2017-12-07 15:57 - 2017-12-07 17:23 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-07 15:57 - 2017-12-07 15:57 - 000000000 ____D C:\Users\LJ1G\Documents\My Games
2017-12-07 15:56 - 2017-12-07 15:57 - 000000000 ____D C:\Users\LJ1G\AppData\Local\SquirrelTemp
2017-12-07 15:56 - 2017-12-07 15:57 - 000000000 ____D C:\Users\LJ1G\AppData\Local\Discord
2017-12-07 15:56 - 2016-08-11 14:31 - 040068544 _____ C:\Windows\System32\nvcompiler.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 035182648 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 034798528 _____ (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 028203968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 019832440 _____ (NVIDIA Corporation) C:\Windows\System32\nvwgf2umx.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 017462904 _____ (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 017249896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 014352304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 014075960 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2017-12-07 15:56 - 2016-08-11 14:31 - 010719920 _____ (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 010530960 _____ C:\Windows\System32\nvptxJitCompiler.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 010264136 _____ (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 009078776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 008674320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 008644640 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 003911624 _____ (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 003597248 _____ (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 003451904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 003166264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 001922616 _____ (NVIDIA Corporation) C:\Windows\System32\nvdispco6437254.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 001586744 _____ (NVIDIA Corporation) C:\Windows\System32\nvdispgenco6437254.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 001021888 _____ (NVIDIA Corporation) C:\Windows\System32\NvFBC64.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000958912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000945088 _____ (NVIDIA Corporation) C:\Windows\System32\NvIFR64.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000897592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000695136 _____ C:\Windows\System32\nvfatbinaryLoader.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000584896 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000494120 _____ (NVIDIA Corporation) C:\Windows\System32\nvumdshimx.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000409624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000181488 _____ (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000159352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000153368 _____ (NVIDIA Corporation) C:\Windows\System32\nvoglshim64.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-12-07 15:56 - 2016-08-11 14:31 - 000039731 _____ C:\Windows\System32\nvinfo.pb
2017-12-07 15:56 - 2016-08-11 14:31 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-12-07 15:56 - 2016-08-11 14:31 - 000000669 _____ C:\Windows\System32\nv-vk64.json
2017-12-07 15:56 - 2016-04-14 05:38 - 000113216 _____ (NVIDIA Corporation) C:\Windows\System32\nvaudcap64v.dll
2017-12-07 15:56 - 2016-04-14 05:38 - 000102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-12-07 15:56 - 2016-04-14 05:38 - 000056384 _____ (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvad64v.sys
2017-12-07 15:53 - 2017-12-07 16:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-07 15:52 - 2017-12-12 22:39 - 000000000 ____D C:\NVIDIA
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-12-12 22:40 - 2009-07-14 03:20 - 000000000 ____D C:\Windows\registration
2017-12-12 22:40 - 2009-07-14 03:20 - 000000000 ____D C:\Windows\inf
2017-12-12 22:40 - 2009-07-14 03:20 - 000000000 ____D C:\Windows\AppCompat
2017-12-11 22:06 - 2017-05-11 18:24 - 000000000 ____D C:\Windows\Panther
2017-12-10 09:12 - 2009-07-14 05:13 - 000781298 _____ C:\Windows\System32\PerfStringBackup.INI
2017-12-10 09:09 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-10 09:09 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-10 09:06 - 2009-07-14 05:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-08 17:35 - 2009-07-14 03:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-12-08 02:31 - 2009-07-14 03:20 - 000000000 ____D C:\Windows\rescache
2017-12-08 02:25 - 2009-07-14 05:32 - 000032768 _____ C:\Windows\System32\config\BCD-Template
2017-12-07 17:25 - 2009-07-14 03:20 - 000000000 ____D C:\Windows\LiveKernelReports
2017-12-07 16:33 - 2009-07-14 04:45 - 000000000 ____D C:\Windows\Setup
2017-12-07 15:59 - 2009-07-14 03:20 - 000000000 ____D C:\Windows\Help
 
Some files in TEMP:
====================
2017-12-07 17:31 - 2017-12-07 17:31 - 000000180 _____ () C:\Users\LJ1G\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll
2017-12-07 17:31 - 2017-12-08 21:01 - 000000017 _____ () C:\Users\LJ1G\AppData\Local\Temp\9f995fb5178b8e49f2fb9598f05ea81b.dll
 
==================== Known DLLs (Whitelisted) =========================
 
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2017-05-11 18:05] - [2017-04-17 15:37] - 000512000 _____ (Microsoft Corporation) 5E9F8D029D9B03110D835CBFC058068B
 
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
==================== Association (Whitelisted) =============
 
 
==================== Restore Points  =========================
 
Restore point date: 2017-12-11 15:22
 
==================== BCD ================================
 
Windows Boot Manager
--------------------
identifier              {bootmgr}
device                  partition=Y:
path                    \bootmgr
description             Windows Boot Manager
locale                  en-US
default                 {default}
displayorder            {default}
timeout                 30
 
Windows Boot Loader
-------------------
identifier              {default}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7 Home Premium
locale                  en-US
osdevice                partition=C:
systemroot              \Windows
 
Windows Memory Tester
---------------------
identifier              {memdiag}
device                  partition=Y:
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 10%
Total physical RAM: 8156.09 MB
Available physical RAM: 7287.32 MB
Total Virtual: 8156.09 MB
Available Virtual: 7377.2 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:100 GB) (Free:34.92 GB) NTFS
Drive d: (ESD-USB) (Removable) (Total:14.39 GB) (Free:10.84 GB) FAT32
Drive f: () (Fixed) (Total:365.66 GB) (Free:253.46 GB) NTFS
Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS
Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 70C4DB79)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=365.7 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 14.4 GB) (Disk ID: C6745C34)
Partition 1: (Active) - (Size=14.4 GB) - (Type=0C)
 
LastRegBack: 2017-12-09 21:31
 
==================== End of FRST.txt ============================

 


Edited by abakan1g, 13 December 2017 - 09:17 AM.

  • 0

#7
abakan1g
Posted 14 December 2017 - 07:17 AM

abakan1g

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Well, can be locked I guess. I formated my HDD and installed Windows 10. After several reboots, it seems to be working fine, but is there anything else that I should do just incase?


  • 0

#8
JSntgRvr
Posted 14 December 2017 - 02:55 PM

JSntgRvr

    Global Moderator

  • Global Moderator
  • 11,579 posts
Thanks for the feedback.
  • 0
Back to Computer Won't Boot - Malware Related · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Computer Won't Boot - Malware Related

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP