Jump to content

Search the Community

Showing results for tags 'Safe Mode'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. Hi. I was browsing my computer when Windows Explorer suddenly crashed. My discord window was still open and working fine. I tried pressing the windows key and nothing happened. I then tried opening task manager through ctrl+alt+delete, but it wouldn't open. I then tried to open my computer in safe mode with networking, but it will not connect to a network (even ethernet), leaving me unable to sign into my windows account. I tried anyway and was left with a never ending loading screen after putting in my passcode. I grabbed my windows installation disk, a flash drive with Farbar Recovery Scan Tool, opened the bios, ran it through the cmd prompt, and have attached the FRST.txt file to this post. If anyone knows a way to help, I'd sure appreciate it. Thanks! FRST.txt
  2. Hi All, I have done quite a bit of searching on this topic but can only come up with really old answers! I was given a relative's laptop and they told me it suddenly went "wonky". I installed and ran Malwarebytes. The results of the scan showed 113 "PUPS". A cursory look at the log shows a LOT of Chrome extension foolishness. However, now none of the browsers work fully. They will load "Google" but nothing else. I tried waking up the administrator account and the behavior is the same. I restarted into safe mode, and voila! The browsers all work as expected now. Here's what I'm using Windows 10 ver 1909 fully patched Firefox Ver 75.0 Chrome Version 81.0.4044.92 (Official Build) (64-bit) A lot of the previous searches turned up a bunch of dead links and outdated advise. Can anyone point me in the right direction? Thanks! And, yes, Hacker is my REAL last name. :-/
  3. Long story short, I downloaded a file which contains a virus; tried to run CCleaner, Avast, and finally Safe mode, when I realized keyboard is disabled during boot. I thought of system restoring using Comodo Time Machine, but that was after booting Safe Mode. After I reboot, I can't boot into safe mode, and Comodo is hindering me with something I need to press OK for, but keyboard isn't working.
  4. I got a virus from supposedly installshield in the syswow64 folder and it suspends antivirus programs and web browsers when trying to search for antivirus also pops up with ads
  5. Hello, a few weeks ago my brother had downloaded a "csgo hack" onto my PC. I allowed him to play. I had this application open and ready to use. Windows kept sending me a warning and of it automatically quarantining the Trojans. But it wasnt helping. There were 2 applications called "letsee1.0" and the same name but in a 2.0 variant. I deleted the 1.0 I believe, but upon deleting the other, my PC crashed. I loaded back up normally, but tool a bit longer than usual. Signed in and it gave me a black screen then blue screen sayin "checking updates". After that I knew I was screwed. I know the virus basics and how to retract them, i.e going into safe mode and using antivirus apps. Completely wiping my HDD(s) and using another computer for an OS boot. But I cant do any of those. Scenario 1. I would go to wipe my hard drives but every time whether it was full wipe or restore back to last known download, it would always say "there isnt enough storage in your harddrive" or "process could not be completed" I have two 2TB hard drives and a 500gb ssd as well as a 250gb M.2. Scenario 2. I go to any of the safe mode options and it would try to boot it up but it always says "failed to boot into safe mode, try using another boot method" And I have that much storage, more than your average person whomst has a PC. My OS is valid and not pirated, so to me this makes no sense. To be more clear if you didnt get what I said I will be more in depth here: When I turn on my PC it loads MSI bios screen, then goes to running windows, THEN running diagnostics. Which from there goes to the options/troubleshooting area of the diagnostics. This happens EVERY time I turn my PC on. I've tried to do the download the OS on another PC and redo all that, but that dosnt work at all. And I cant boof info safe mode. I wanna fix this PC before I make the decision to buy a new one, instead of wasting money on something that can be fixed. I believe there is a way. I hope there are gonna be a lot of people responding and trying to help cause using the windows forums was the worst. Takes for ever to respond and when someone does, it's a stupid troubleshoot I already know about then when explained they leave it there as if im not there. As of the matter, I would try to use another PC or laptop get a USB and download a bootable virus cleaner but I cant get into safe mode to do that. Thanks for your help if any!
  6. I was playing innocently on my phone (with an app I've played several times this month) when Malwarebytes suddenly popped up talking about a safemode tutorial. I tried to bring down my dropdown menu at the top of the screen to push the notification away, but it popped up so fast again I couldn't even do that. After a lot of screaming I managed to get a malwarebytes scan going-- it was clear. I gave up and pressed the safemode button, with instructions of how to boot in safe mode. I tried to power down, but again the popup blocked me. So I did a hard reset and now my phone seems fine. Malwarebytes didn't find anything (of course). The only thing I did recently was to open a Reddit thread and opened to enlarge the image (which stayed on Reddit, no outbound site) and open Dx2: Liberation (which was absolutely fine a few hours ago). I'm not sure if I just installed malware from that safemode crap (probably), but I couldn't find any threads on it. One other thing to mention: I'm job searching and got an email this afternoon labeled "You should have warned me", from "Troy, Local Jobs" and starting out (I turned my phone sideways to see the first few lines without opening the email) "Hey (name), Troy from Local Jobs. Let's recount the last few minutes, because...". I sent the email to the trash and soon this crap happened. I have no idea who the hell this is, what he wants or if he's related to this. But I thought I would note it, even if I never opened the email. I'm sorry since I'm giving you what may be two reports, but I have a bad feeling about this. EDIT: I found an email that didn't show up in an earlier search (I think?) from Local Jobs: Job Alert: Name, Company is hiring near ZipCode. Turned the phone again, "Hello Name, Congratulations! We were able to match you with...". It's also unread, marked an hour earlier from now (I don't think I've seen this email at all). I'm starting to freak out now, please help!!
  7. Hello, my computer has very high RAM usage ~90% for no apparent reason. I restarted it in safe mode w/ networking and tried to run malwarebytes to do a malware scan. But when i did, it said "unable to connect to service". I've attached the logs for FRST and the Addition.txt. mb-check-results.zip FRST.txt Addition.txt
  8. I have posted a question "Unable to remove exclusions files and location (Either in Safe mode run Windows Defender or in Registry Editor) " in Mircosoft Community. Anyone can help me solve
  9. So I recently got hacked due to some remnants of a trojan, had to wipe, and have had trouble getting Malwarebytes to work properly on this computer. See this thread for more background info, including logs: Before, it wouldn't start at all in Safe Mode. Now, no matter how many times I uninstall and reinstall, I cannot start the real time protection in safe mode, and in safe mode only. I plan on restoring from an External HDD backup and scanning the External HDD to make sure it's safe in safe mode (due to a random black screen reset problem in normal mode), but I can't do that without making sure I have real time protection, and no matter how many times I click the buttons in safe mode to turn each node of Real Time Protection on, they will not toggle on. I'm not even sure my PC is 100% clean now, even after a full wipe.
  10. Our technicians have noticed this on multiple Windows 10 machines we service. If the system is running in Safe Mode (with and without Networking), there is a white bar covering part of the UI towards the top (see attached image). This bar covers the Dashboard button, the result count of a scan, and the tabs when under Settings. Does not reproduce in normal mode. I have not been able to reproduce it on a Windows 7 VM (don't have a 10 VM to test currently). The machine that this was screenshot on was running Windows 10 Version 1709 (Build 16299.248), but we have seen it on multiple Windows 10 machines with the latest build numbers. I have also attached the MB-Check archive from a sample machine (that is super duper infected). mb-check-results.zip
  11. Hi, Having massive issues with my windows 7 laptop. I tried to login and it was stuck on the windows loading icon (>1 hour) before booting into a black screen showing just the mouse pointer which I could move around. Tried to boot it into safe mode but the exact same thing happened. I can get into the system recovery tool so tried a system restore but no matter what point in time I choose it fails. Trying to boot in to the last known good config also fails to produce a result. I can open the cmd prompt but don’t really know where to go from here. Considered downloading a win 7 iso image from them but as the product key on the back of the laptop comes up as (essentially) “this a pre installed key, please get in touch with your provider”. Please help!
  12. I downloaded and ran Malwarebytes last week. The original reason was to scan an infected HDD from another PC, connected via USB. Six viruses were found. Fine, to this point. I then set up a scheduled scan of my C drive to run every night. It found 93 PUPs, apparently all dealing with the Chrome browser. No big deal, I thought. After putting the found files in quarantine. I restarted. This is where my problems started. The Windows 10 OS would not start. Instead Automatic Repair ran and indicated there were problems with the PC. Standard message. I tried letting the system repair the problem but it couldn't. I tried booting into Safe Mode but it instead cycled through Auto Repair with the same result. I disabled Auto Repair but it then stopped as before saying my PC had problems. There were 3 options involving Safe Mode. I tried them all to no avail. I can open a command prompt and see my C drive and the Program Files folder but I'm unsure what to do next. Is there a way to unquarantine those files?
  13. Hi there, after the last Malwarebytes update on Thursday or Friday, Windows 7 will no longer boot properly. I can't get it to start in safe mode either, I get an error in mbamchameleon.sys. At first, I encountered the problem everybody else was having. I then followed the instructions to update Malwarebytes and my computer ran for a couple minutes, then completely froze. Couldn't cntrl-alt-delete or anything. So I had to hard boot my computer, and from then on it would never boot up, and seemed to always error out when loading mbamchameleon.sys. I did get a BSOD during one of the boot up sequences, but the prevailing error on boot up was with mbamchameleon.sys. So, to reiterate, Windows 7 will not start, even in safe mode and also trying to get a dos prompt. How do I fix this issue while keeping my data on the SSD intact? I sent in a support request a few days ago, but no response. I also reinstalled windows 7 on another SSD in the computer, so there's that..but I really need the data that is on the other hard drive. Patrick
  14. Hello, Yesterday my computer was infected with what I think is a malware virus of some form. I downloaded a new program and shortly afterwards my computer began to act up and suddenly it dawned on me that my computer was infected. I have a startup menu which allows me to select between using Linux or Windows 7. The computer infection occurred on my Windows 7 operating system so I switched to Linux where it is relatively functional and I am able to access it unlike Windows 7 where I have to revert to safe mode just to access the operating system and cripple the virus. I immediately went onto YouTube to get this issue resolved and learned about Malwarebytes and realized that it is a viable solution to my problem. I learned how to go into safe mode on Windows 7, I learned how to access the internet despite the infection, and I attempted to download Malwarebytes but unfortunately the virus is preventing me from accessing it even if I'm in safe mode on Windows 7 so I went to another computer and used my thumb drive on another computer to install the program and then transfer it to my computer but that did not work as expected. I cannot install Malwarebytes on LInux either. I browsed the internet for all of the information I was able to seek until I learned about Chameleon which is intended to be used if my computer is infected and is preventing my from installing and using Malwarebytes to resolve the infection. Unfortunately, after I saved the file and attempted to begin using Chameleon I clicked every button to launch the black DOS command prompt but it never launched despite several attempts to do so. I don't know what to do at this point to remove the malware virus from my computer and it is clear that I am ignorant of a proper solution. I know that I cannot resolve this infection on my own and I require the assistance of experts immediately to resolve this very serious issue. I cannot do this on my own so I am turning to all of you here for help in my hour of darkness and desperation. Please help me, I have no one else to turn to. - Flux FRST.txt Addition.txt
  15. I recently got a virus called double agent and I'm trying to get into safe mode but I can't because I don't have wifi to use my password. To use my password I need wifi. To connect to wifi I need my password. Please help as I am stuck on the login screen on safe mode without wifi.
  16. I am locked out of all malware sites, JRT and CCleaner and windows defender. My grandson installed something and tried to Uninstall it with disastrous results. I tried booting in safe mode without any luck. I am writing this on my tablet since I can't get to the site on the windows 10 computer. When I run JRT, I get an error "could not overwrite file (directory) clean_shortcut. vbs. Access denied." When I try to delete in directory it says I need permission.
  17. Hi Kevin, I've been following along with this thread because I have the exact same problems as the previous user. I've ran the repair tool in safe mode. Restarted back into normal boot mode and tried to open MalwareBytes still getting the resource is in use error. Tried to re-install MalwareBytes after the repair tool and still getting the same error. I've attached my log file from the repair tool. Thanks, Logan _Windows_Repair_Log.txt
  18. When I started my Windows 10 PC in Safe Mode. I started up Malwarebytes, it didn't auto start either. It reverted to the free version of Malwarebytes 3.0! Before it was Malwarebytes Premium 3.0.4! What is the problem with this program? Anyways, I did a scan with the free version in Safe Mode since it reverted from premium to free while launching in Safe Mode. Then I restarted my machine, and it did revert back to the premium version. However the program was still the 3.0 version while I had the latest version 3.0.4 before I did the Safe Mode scan with Malwarebytes. I tried to install updates for Malwarebytes VIA GUI than it didn't even install correctly. I had to uninstall the 3.0 version of Malwarebytes. Download a fresh copy from malwarebytes.com and reenter my Premium ID and Serial. What is going on? I never had a problem like this in 2.0. It is really bad since you reccommend people to do a scan in safe mode in Windows PC's. Please fix these issues, it is awfully weird and inconvenient. I don't have log files of any of the events. Since I had to reinstall the program since it downgraded itself from 3.0.4 to 3.0 for some reason in safe mode. Why is this happening? Sebastian
  19. I have a windows XP SP2 hand-me-down computer that desperately needs some antivirus help as programs and files wont open unless in safemode. However, when I install Malwarebytes on launch it says: "The application failed to initialize properly (0xc000001d). Click on OK to terminate the program." I have no idea what to do and currently I can only use my computer in safe mode. FRST.txt and Addition.txt are attatched to this post. Any help would be much appreciated. FRST.txt Addition.txt
  20. Dear Sir, i had several malware problem so i installed advanced system care.I used a cracked version. As popups continued from google Later i used malwarebytes to remove other malware. now after restarting windows 8.1 it goes into black screen. i cant got to safe mode. Please help me.
  21. Hi, I am glad I found this forum, please help. Malware bytes shuts down befor finished, I also have trend micro antivirus and tried using Microsoft malware tool, no help. I don't know what else to do.
  22. Hi, I successfully downloaded Malwarebytes via Chameleon because I had the 4dsply virus. Plus, before shutting down my laptop would display a webpage to something called sportolife and other pages. I ran Malwarebytes several times, and it found multiple threats. When I downloaded MB there were two files on my desktop, the MB zip and a file called desktop.ini. My question is: Now that MB is installed and ran can I delete the desktop.ini file from the desktop? When I right click it says (paraphrased) "if deleted associated program may not run".
  23. Hello, I saw that you posted some information in regards to a similar problem that i seem to be having with my Dell Inspiron Laptop that is running Windows Vista. I was trying to run a virus scan with Malwarebytes and then the computer just shut down. I also tried to boot the computer in safe mode and i tried running the scan and the same thing, the computer wanted to shut down randomly. I tried downloading the Combofix program and it would be great if I can send you the log to analyze (if that is ok?). Also i tried running Malwarebytes Scan after doing the Combofix and the Scan worked properly this time however it still keeps finding tons of Malware issues on the computer and I quarantine all the virus files. Then I try running the scan again and the Malwarebytes program continues to find infected issues on the computer. It never seems to completely clean out all the infected issues. Looking forward to your response. Thank you, Jazzfactor
  24. Just today I was with my brother when he turned on his computer to find that his profile was gone and replaced with a windows profile for "Johnny". We assumed that this is the person that last owned the computer, but we have had no luck trying to contact that person again. Since I felt impatient, I have tried going around the pass word by pressing the F8 key to get to safe mode with command prompts but found that I was lead back to the Window's profile list showing just Johnny. I have tried every safe mode option but the computer refuses to boot in safe mode. Additionally, I have tried the "repair your computer" option and I am given a list of two profiles that I could choose to enter a password for (neither of them that I know). There seems to be no way of getting around this. I have followed the steps from this thread but as I just said I was unable to progress past "repair your computer" due to the password. I have a good USB clear and ready if it needs to be used.
  25. Hello After installing and running malwarebytes it did a scan and i choose to put the bad files in quarentine. After that he asked to restart and since then I can't do anything anymore including running windows 7 in safe mode. So I ran the farbar recovery tool and this is what I got but I don't know what to do next. Thanks Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-08-2014 Ran by SYSTEM on MININT-V08F039 on 03-08-2014 19:22:17 Running from F:\ Platform: Windows 7 Home Basic Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Recovery The current controlset is ControlSet001 ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log. The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\RunOnce: [*Restore] => C:\Windows\system32\rstrui.exe [296960 2010-11-20] (Microsoft Corporation) HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2014-05-11] (Malwarebytes Corporation) HKU\-\...\Run: [uTorrent] => C:\Users\-\AppData\Roaming\uTorrent\uTorrent.exe [1413200 2014-08-01] (BitTorrent Inc.) HKU\Default\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\Default User\...\Run: [sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S2 TBSrv; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [350528 2014-04-10] (ClientConnect Ltd.) S3 sppsvc; %SystemRoot%\system32\sppsvc.exe [X] S3 sppuinotify; %SystemRoot%\system32\sppuinotify.dll [X] S3 WatAdminSvc; %SystemRoot%\system32\Wat\WatAdminSvc.exe [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S0 bjxsqjjm; C:\Windows\System32\drivers\ofch.sys [79064 2014-08-03] (Malwarebytes Corporation) S2 secdrv; No ImagePath S3 AcpiPmi; \SystemRoot\system32\drivers\acpipmi.sys [X] S3 adp94xx; \SystemRoot\system32\drivers\adp94xx.sys [X] S3 adpahci; \SystemRoot\system32\drivers\adpahci.sys [X] S3 adpu320; \SystemRoot\system32\drivers\adpu320.sys [X] S3 agp440; \SystemRoot\system32\drivers\agp440.sys [X] S3 aliide; \SystemRoot\system32\drivers\aliide.sys [X] S3 amdide; \SystemRoot\system32\drivers\amdide.sys [X] S3 AmdK8; \SystemRoot\system32\drivers\amdk8.sys [X] S3 amdkmdag; system32\DRIVERS\atikmdag.sys [X] S3 amdkmdap; system32\DRIVERS\atikmpag.sys [X] S3 AmdPPM; \SystemRoot\system32\drivers\amdppm.sys [X] S3 amdsata; \SystemRoot\system32\drivers\amdsata.sys [X] S3 amdsbs; \SystemRoot\system32\drivers\amdsbs.sys [X] S0 amdxata; system32\drivers\amdxata.sys [X] S3 arc; \SystemRoot\system32\drivers\arc.sys [X] S3 arcsas; \SystemRoot\system32\drivers\arcsas.sys [X] S3 b06bdrv; \SystemRoot\system32\drivers\bxvbda.sys [X] S3 b57nd60a; system32\DRIVERS\b57nd60a.sys [X] S3 BCM43XX; system32\DRIVERS\bcmwl664.sys [X] S1 blbdrive; system32\DRIVERS\blbdrive.sys [X] S3 BrFiltLo; \SystemRoot\system32\drivers\BrFiltLo.sys [X] S3 BrFiltUp; \SystemRoot\system32\drivers\BrFiltUp.sys [X] S3 Brserid; \SystemRoot\System32\Drivers\Brserid.sys [X] S3 BrSerWdm; \SystemRoot\System32\Drivers\BrSerWdm.sys [X] S3 BrUsbMdm; \SystemRoot\System32\Drivers\BrUsbMdm.sys [X] S3 BrUsbSer; \SystemRoot\System32\Drivers\BrUsbSer.sys [X] S3 BTHMODEM; \SystemRoot\system32\drivers\bthmodem.sys [X] S3 circlass; \SystemRoot\system32\drivers\circlass.sys [X] S3 cmdide; \SystemRoot\system32\drivers\cmdide.sys [X] S0 Compbatt; system32\DRIVERS\compbatt.sys [X] S4 crcdisk; \SystemRoot\system32\drivers\crcdisk.sys [X] S3 ebdrv; \SystemRoot\system32\drivers\evbda.sys [X] S3 elxstor; \SystemRoot\system32\drivers\elxstor.sys [X] S3 ErrDev; \SystemRoot\system32\drivers\errdev.sys [X] S3 fdc; \SystemRoot\system32\drivers\fdc.sys [X] S3 flpydisk; \SystemRoot\system32\drivers\flpydisk.sys [X] S3 gagp30kx; \SystemRoot\system32\drivers\gagp30kx.sys [X] S3 hcw85cir; \SystemRoot\system32\drivers\hcw85cir.sys [X] S3 HECIx64; system32\DRIVERS\HECIx64.sys [X] S3 HidBatt; \SystemRoot\system32\drivers\HidBatt.sys [X] S3 HidBth; \SystemRoot\system32\drivers\hidbth.sys [X] S3 HidIr; \SystemRoot\system32\drivers\hidir.sys [X] S3 HpSAMD; \SystemRoot\system32\drivers\HpSAMD.sys [X] S3 iaStorV; \SystemRoot\system32\drivers\iaStorV.sys [X] S3 iirsp; \SystemRoot\system32\drivers\iirsp.sys [X] S3 intelide; \SystemRoot\system32\drivers\intelide.sys [X] S3 IPMIDRV; \SystemRoot\system32\drivers\IPMIDrv.sys [X] S3 isapnp; \SystemRoot\system32\drivers\isapnp.sys [X] S3 LSI_FC; \SystemRoot\system32\drivers\lsi_fc.sys [X] S3 LSI_SAS; \SystemRoot\system32\drivers\lsi_sas.sys [X] S3 LSI_SAS2; \SystemRoot\system32\drivers\lsi_sas2.sys [X] S3 LSI_SCSI; \SystemRoot\system32\drivers\lsi_scsi.sys [X] S3 megasas; \SystemRoot\system32\drivers\megasas.sys [X] S3 MegaSR; \SystemRoot\system32\drivers\MegaSR.sys [X] S3 mpio; \SystemRoot\system32\drivers\mpio.sys [X] S0 msahci; system32\drivers\msahci.sys [X] S3 msdsm; \SystemRoot\system32\drivers\msdsm.sys [X] S3 MTConfig; \SystemRoot\system32\drivers\MTConfig.sys [X] S3 nfrd960; \SystemRoot\system32\drivers\nfrd960.sys [X] S3 nvraid; \SystemRoot\system32\drivers\nvraid.sys [X] S3 nvstor; \SystemRoot\system32\drivers\nvstor.sys [X] S3 nv_agp; \SystemRoot\system32\drivers\nv_agp.sys [X] S3 ohci1394; \SystemRoot\system32\drivers\ohci1394.sys [X] S3 Parport; \SystemRoot\system32\drivers\parport.sys [X] S3 pcmcia; \SystemRoot\system32\drivers\pcmcia.sys [X] S3 Processor; \SystemRoot\system32\drivers\processr.sys [X] S3 ql2300; \SystemRoot\system32\drivers\ql2300.sys [X] S3 ql40xx; \SystemRoot\system32\drivers\ql40xx.sys [X] S3 rdpbus; \SystemRoot\system32\drivers\rdpbus.sys [X] S3 RTL8167; system32\DRIVERS\Rt64win7.sys [X] S3 sbp2port; \SystemRoot\system32\drivers\sbp2port.sys [X] S3 Serenum; \SystemRoot\system32\drivers\serenum.sys [X] S3 Serial; \SystemRoot\system32\drivers\serial.sys [X] S3 sffdisk; \SystemRoot\system32\drivers\sffdisk.sys [X] S3 sffp_mmc; \SystemRoot\system32\drivers\sffp_mmc.sys [X] S3 sffp_sd; \SystemRoot\system32\drivers\sffp_sd.sys [X] S3 sfloppy; \SystemRoot\system32\drivers\sfloppy.sys [X] S3 SiSRaid2; \SystemRoot\system32\drivers\SiSRaid2.sys [X] S3 SiSRaid4; \SystemRoot\system32\drivers\sisraid4.sys [X] S3 stexstor; \SystemRoot\system32\drivers\stexstor.sys [X] S3 swenum; system32\DRIVERS\swenum.sys [X] S3 TsUsbGD; \SystemRoot\system32\drivers\TsUsbGD.sys [X] S3 uagp35; \SystemRoot\system32\drivers\uagp35.sys [X] S3 uliagpkx; \SystemRoot\system32\drivers\uliagpkx.sys [X] S3 UmPass; \SystemRoot\system32\drivers\umpass.sys [X] S3 usbcir; \SystemRoot\system32\drivers\usbcir.sys [X] S3 usbohci; \SystemRoot\system32\drivers\usbohci.sys [X] S3 usbprint; \SystemRoot\system32\drivers\usbprint.sys [X] S3 usbuhci; \SystemRoot\system32\drivers\usbuhci.sys [X] S3 vhdmp; \SystemRoot\system32\drivers\vhdmp.sys [X] S3 viaide; \SystemRoot\system32\drivers\viaide.sys [X] S3 vsmraid; \SystemRoot\system32\drivers\vsmraid.sys [X] S3 WacomPen; \SystemRoot\system32\drivers\wacompen.sys [X] S3 Wd; \SystemRoot\system32\drivers\wd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-03 19:17 - 2014-08-03 19:22 - 00000000 ____D () C:\FRST 2014-08-03 02:36 - 2014-08-03 02:36 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\ofch.sys 2014-08-03 02:14 - 2014-08-03 02:14 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys 2014-08-03 02:13 - 2014-08-03 17:44 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-08-03 02:13 - 2014-08-03 02:13 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\-\Downloads\mbam-setup-2.0.2.1012.exe 2014-08-03 02:13 - 2014-08-03 02:13 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-08-03 02:13 - 2014-08-03 02:13 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-03 02:13 - 2014-05-11 21:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbamchameleon.sys 2014-08-03 02:13 - 2014-05-11 21:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mwac.sys 2014-08-03 02:13 - 2014-05-11 21:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys 2014-08-03 02:11 - 2014-08-03 02:36 - 2552701033 _____ () C:\Users\-\Downloads\Blitzkrieg.rar 2014-08-03 01:51 - 2014-08-03 17:44 - 00000000 ____D () C:\Users\-\Documents\Command And Conquer Generals Zero Hour Data 2014-08-03 01:51 - 2014-08-03 01:51 - 00000000 ____D () C:\Users\-\Documents\Command and Conquer Generals Data 2014-08-02 10:23 - 2014-08-02 18:24 - 00000000 ____D () C:\Users\-\Downloads\Western Gold 2014-08-02 10:06 - 2014-08-03 02:36 - 1713151515 _____ () C:\Users\-\Downloads\The_Island.mov 2014-08-02 08:45 - 2014-08-03 17:44 - 00000000 ____D () C:\Users\-\Downloads\Die.Trying.S01E03.Yosemite.Death.Climb.PROPER.480p.HDTV.x264-mSD 2014-08-02 08:27 - 2014-08-02 10:11 - 3932717648 _____ () C:\Users\-\Downloads\BBC.The.Great.Climb.2010.Sron.Uladail.1080p.HDTV.x264.AC3.MVGroup.org.mkv 2014-08-02 08:24 - 2014-08-02 10:19 - 1832471202 _____ () C:\Users\-\Downloads\Smitten.2011.720p.mov 2014-08-02 08:21 - 2014-08-02 09:14 - 2127868769 _____ () C:\Users\-\Downloads\The Network 2013 (climbing movie).mp4 2014-08-02 08:20 - 2014-08-02 08:53 - 00000000 ____D () C:\Users\-\Downloads\The Long Hope 720p 2014-08-02 08:18 - 2014-08-02 08:18 - 00000000 ____D () C:\Users\-\Downloads\Mountaineering Freedom 2014-08-02 06:05 - 2014-08-03 17:44 - 00000000 ____D () C:\Users\-\Downloads\Subtitles-ChinaJam 2014-08-02 04:54 - 2014-08-02 05:33 - 1904167415 _____ () C:\Users\-\Downloads\China%20Jam-HD.mp4 2014-08-02 04:50 - 2014-08-02 04:50 - 00000000 ____D () C:\ProgramData\Sun 2014-08-02 04:50 - 2014-08-02 04:50 - 00000000 ____D () C:\ProgramData\Oracle 2014-08-02 04:50 - 2014-08-02 04:49 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-08-02 04:49 - 2014-08-02 04:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-08-02 04:49 - 2014-08-02 04:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-08-02 04:49 - 2014-08-02 04:49 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-08-02 04:49 - 2014-08-02 04:49 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-02 04:38 - 2014-08-02 04:54 - 1845970051 _____ () C:\Users\-\Downloads\Venezuela_Jungle_Jam.HD.mp4 2014-08-01 02:04 - 2014-08-01 02:58 - 00000000 ____D () C:\Users\-\Downloads\Gomorra stagione 1 - ITA 2014-08-01 01:20 - 2014-08-02 08:33 - 00000112 _____ () C:\Windows\setupact.log 2014-08-01 01:20 - 2014-08-01 01:20 - 00000000 _____ () C:\Windows\setuperr.log 2014-08-01 01:19 - 2014-08-02 08:33 - 00001884 _____ () C:\Windows\PFRO.log 2014-07-31 07:06 - 2014-07-31 07:06 - 00000000 ____D () C:\Users\-\Downloads\Basecamp Freizeitkarte 2014-07-31 06:11 - 2014-07-31 07:37 - 00281768 _____ () C:\Users\-\Documents\BaseCamp 2014-07-31.Backup 2014-07-30 06:15 - 2014-07-30 06:16 - 10569893 _____ () C:\Users\-\Downloads\presentatie Italie.pptx 2014-07-30 04:08 - 2014-07-30 04:08 - 00220047 _____ () C:\Users\-\Documents\Kroatie 2007.gpx 2014-07-30 01:48 - 2014-08-03 17:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-07-30 01:42 - 2014-07-30 01:42 - 00052667 _____ () C:\Users\-\Documents\4DAAGSE.gpx 2014-07-30 01:42 - 2014-07-30 01:42 - 00017190 _____ () C:\Users\-\Documents\4DAAGSE.txt 2014-07-30 00:29 - 2014-07-30 00:29 - 00000000 ____D () C:\Users\-\Documents\My Garmin 2014-07-29 23:56 - 2014-07-30 02:45 - 00000000 ____D () C:\Users\-\Documents\Topo 2014-07-29 23:56 - 2014-07-29 23:56 - 00000000 ____D () C:\Garmin 2014-07-29 23:50 - 2014-08-03 17:44 - 00000000 ____D () C:\Users\-\AppData\Local\GARMIN_Corp 2014-07-29 23:50 - 2014-07-30 02:33 - 00000000 ____D () C:\Users\-\AppData\Local\Garmin 2014-07-29 23:50 - 2014-07-30 01:42 - 00000000 ____D () C:\ProgramData\Garmin 2014-07-29 09:31 - 2014-08-03 17:44 - 00000000 ____D () C:\Freizeitkarte 2014-07-29 09:30 - 2014-08-03 17:44 - 00000000 ____D () C:\Program Files\DIFX 2014-07-29 09:30 - 2014-07-30 02:34 - 00000000 ____D () C:\Users\-\AppData\Roaming\Garmin 2014-07-29 09:30 - 2014-07-29 09:30 - 00000000 ____D () C:\Program Files (x86)\Garmin 2014-07-29 09:22 - 2014-07-29 09:23 - 53913608 _____ () C:\Users\-\Downloads\BaseCamp_434.exe 2014-07-29 08:04 - 2014-07-29 08:04 - 00000000 ____D () C:\Users\-\AppData\Local\Adobe 2014-07-29 08:03 - 2014-07-30 04:45 - 00000000 ____D () C:\ProgramData\Adobe 2014-07-29 08:03 - 2014-07-29 08:03 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-07-29 07:06 - 2010-02-04 00:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2014-07-29 07:06 - 2010-02-04 00:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2014-07-29 07:06 - 2010-02-04 00:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2014-07-29 07:06 - 2010-02-04 00:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2014-07-29 07:06 - 2009-09-04 07:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2014-07-29 07:06 - 2009-09-04 07:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2014-07-29 07:06 - 2009-09-04 07:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2014-07-29 07:06 - 2009-09-04 07:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2014-07-29 07:06 - 2009-09-04 07:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2014-07-29 07:06 - 2009-09-04 07:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2014-07-29 07:06 - 2009-09-04 07:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2014-07-29 07:06 - 2009-09-04 07:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2014-07-29 07:06 - 2009-03-16 04:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2014-07-29 07:06 - 2009-03-16 04:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2014-07-29 07:06 - 2009-03-16 04:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2014-07-29 07:06 - 2009-03-09 05:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2014-07-29 07:06 - 2009-03-09 05:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2014-07-29 07:06 - 2009-03-09 05:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2014-07-29 07:06 - 2008-10-27 00:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2014-07-29 07:06 - 2008-10-27 00:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2014-07-29 07:06 - 2008-10-14 20:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-07-29 07:06 - 2008-10-14 20:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-07-29 07:06 - 2008-10-14 20:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-07-29 07:05 - 2014-07-29 07:05 - 00009857 _____ () C:\Windows\DirectX.log 2014-07-29 07:05 - 2008-10-27 00:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2014-07-29 07:05 - 2008-10-27 00:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2014-07-29 07:05 - 2008-07-31 00:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2014-07-29 07:05 - 2008-07-31 00:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2014-07-29 07:05 - 2008-07-31 00:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2014-07-29 07:05 - 2008-07-10 01:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2014-07-29 07:05 - 2008-07-10 01:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2014-07-29 07:05 - 2008-07-10 01:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2014-07-29 07:05 - 2008-05-30 04:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2014-07-29 07:05 - 2008-05-30 04:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2014-07-29 07:05 - 2008-05-30 04:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2014-07-29 07:05 - 2008-05-30 04:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2014-07-29 07:05 - 2008-05-30 04:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2014-07-29 07:05 - 2008-05-30 04:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2014-07-29 07:05 - 2008-05-30 04:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2014-07-29 07:05 - 2008-03-05 06:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2014-07-29 07:05 - 2008-03-05 06:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2014-07-29 07:05 - 2008-03-05 06:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2014-07-29 07:05 - 2008-03-05 05:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2014-07-29 07:05 - 2008-03-05 05:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2014-07-29 07:05 - 2008-02-05 13:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2014-07-29 07:05 - 2007-10-21 17:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2014-07-29 07:05 - 2007-10-21 17:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2014-07-29 07:05 - 2007-10-12 05:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2014-07-29 07:05 - 2007-10-12 05:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2014-07-29 07:05 - 2007-10-01 23:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2014-07-29 07:05 - 2007-07-19 14:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2014-07-29 07:05 - 2007-07-19 08:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2014-07-29 07:05 - 2007-07-19 08:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2014-07-29 07:05 - 2007-07-19 08:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2014-07-29 07:05 - 2007-06-20 10:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2014-07-29 07:05 - 2007-05-16 06:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2014-07-29 07:05 - 2007-05-16 06:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2014-07-29 07:05 - 2007-05-16 06:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2014-07-29 07:05 - 2007-04-04 08:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2014-07-29 07:05 - 2007-04-04 08:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2014-07-29 07:05 - 2007-03-15 06:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2014-07-29 07:05 - 2007-03-12 06:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2014-07-29 07:05 - 2007-03-12 06:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2014-07-29 07:05 - 2007-03-05 02:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2014-07-29 07:05 - 2007-01-24 05:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2014-07-29 07:05 - 2006-12-08 02:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2014-07-29 07:05 - 2006-11-29 03:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2014-07-29 07:05 - 2006-11-29 03:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2014-07-29 07:05 - 2006-09-28 06:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2014-07-29 07:05 - 2006-09-28 06:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2014-07-29 07:05 - 2006-07-27 23:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2014-07-29 07:05 - 2006-07-27 23:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2014-07-29 07:05 - 2006-05-30 21:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2014-07-29 07:05 - 2006-03-31 02:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2014-07-29 07:05 - 2006-03-31 02:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2014-07-29 07:05 - 2006-03-31 02:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2014-07-29 07:05 - 2006-02-02 22:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2014-07-29 07:05 - 2006-02-02 22:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2014-07-29 07:05 - 2006-02-02 22:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2014-07-29 07:05 - 2005-12-05 08:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2014-07-29 07:05 - 2005-07-22 09:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2014-07-29 07:05 - 2005-05-26 05:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2014-07-29 07:05 - 2005-03-18 07:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2014-07-29 07:05 - 2005-02-05 09:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2014-07-29 06:54 - 2014-08-03 13:43 - 00000000 ____D () C:\Users\-\AppData\Roaming\DAEMON Tools Lite 2014-07-29 06:53 - 2014-08-03 15:23 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-07-29 06:48 - 2014-07-29 06:48 - 00000000 ____D () C:\users\New Folder 2014-07-29 05:14 - 2014-08-03 13:43 - 00000000 ____D () C:\Program Files (x86)\7-Zip 2014-07-29 05:04 - 2014-07-29 05:04 - 00058016 _____ () C:\Users\-\AppData\Local\GDIPFONTCACHEV1.DAT 2014-07-29 05:03 - 2014-08-03 17:44 - 00000000 ____D () C:\Users\-\AppData\Roaming\uTorrent 2014-07-29 05:03 - 2014-07-29 05:03 - 00000809 _____ () C:\Users\-\Desktop\µTorrent.lnk 2014-07-29 03:18 - 2014-08-03 13:43 - 00000000 ____D () C:\Program Files\CCleaner 2014-07-29 03:18 - 2014-07-29 03:18 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-09 02:02 - 2014-06-17 18:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\System32\osk.exe 2014-07-09 02:02 - 2014-06-17 17:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe 2014-07-09 02:02 - 2014-06-17 17:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys 2014-07-09 02:01 - 2014-06-20 12:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2014-07-09 02:01 - 2014-06-20 11:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-07-09 02:01 - 2014-06-18 17:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2014-07-09 02:01 - 2014-06-18 17:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2014-07-09 02:01 - 2014-06-18 17:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollectorres.dll 2014-07-09 02:01 - 2014-06-18 16:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2014-07-09 02:01 - 2014-06-18 16:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2014-07-09 02:01 - 2014-06-18 16:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll 2014-07-09 02:01 - 2014-06-18 16:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll 2014-07-09 02:01 - 2014-06-18 16:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\ieetwproxystub.dll 2014-07-09 02:01 - 2014-06-18 16:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2014-07-09 02:01 - 2014-06-18 16:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll 2014-07-09 02:01 - 2014-06-18 16:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll 2014-07-09 02:01 - 2014-06-18 16:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2014-07-09 02:01 - 2014-06-18 16:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\System32\ieetwcollector.exe 2014-07-09 02:01 - 2014-06-18 16:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\System32\jscript9diag.dll 2014-07-09 02:01 - 2014-06-18 16:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-07-09 02:01 - 2014-06-18 16:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe 2014-07-09 02:01 - 2014-06-18 16:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll 2014-07-09 02:01 - 2014-06-18 15:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\System32\JavaScriptCollectionAgent.dll 2014-07-09 02:01 - 2014-06-18 15:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-07-09 02:01 - 2014-06-18 15:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll 2014-07-09 02:01 - 2014-06-18 15:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2014-07-09 02:01 - 2014-06-18 15:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2014-07-09 02:01 - 2014-06-18 15:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll 2014-07-09 02:01 - 2014-06-18 15:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2014-07-09 02:01 - 2014-06-18 15:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-07-09 02:01 - 2014-06-18 15:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-07-09 02:01 - 2014-06-18 15:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-07-09 02:01 - 2014-06-18 15:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-07-09 02:01 - 2014-06-18 15:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2014-07-09 02:01 - 2014-06-18 15:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-07-09 02:01 - 2014-06-18 15:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-07-09 02:01 - 2014-06-18 15:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-07-09 02:01 - 2014-06-18 15:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2014-07-09 02:01 - 2014-06-18 15:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll 2014-07-09 02:01 - 2014-06-18 15:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-07-09 02:01 - 2014-06-18 15:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-07-09 02:01 - 2014-06-18 15:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-07-09 02:01 - 2014-06-18 15:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-07-09 02:01 - 2014-06-18 15:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-07-09 02:01 - 2014-06-18 15:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-07-09 02:01 - 2014-06-18 14:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-07-09 02:01 - 2014-06-18 14:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll 2014-07-09 02:01 - 2014-06-18 14:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-07-09 02:01 - 2014-06-18 14:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-07-09 02:01 - 2014-06-18 14:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2014-07-09 02:01 - 2014-06-18 14:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-07-09 02:01 - 2014-06-18 14:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-07-09 02:01 - 2014-06-18 14:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-07-09 02:01 - 2014-06-18 14:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-07-09 02:01 - 2014-06-18 14:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2014-07-09 02:01 - 2014-06-18 14:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll 2014-07-09 02:01 - 2014-06-18 14:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-07-09 02:01 - 2014-06-18 14:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-07-09 02:01 - 2014-06-18 14:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-07-09 02:01 - 2014-06-06 02:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll 2014-07-09 02:01 - 2014-06-06 01:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2014-07-09 02:01 - 2014-05-29 22:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys 2014-07-09 02:00 - 2014-06-05 06:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll 2014-07-09 02:00 - 2014-06-05 06:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-07-09 02:00 - 2014-06-05 06:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-03 19:22 - 2014-08-03 19:17 - 00000000 ____D () C:\FRST 2014-08-03 17:44 - 2014-08-03 02:13 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2014-08-03 17:44 - 2014-08-03 01:51 - 00000000 ____D () C:\Users\-\Documents\Command And Conquer Generals Zero Hour Data 2014-08-03 17:44 - 2014-08-02 08:45 - 00000000 ____D () C:\Users\-\Downloads\Die.Trying.S01E03.Yosemite.Death.Climb.PROPER.480p.HDTV.x264-mSD 2014-08-03 17:44 - 2014-08-02 06:05 - 00000000 ____D () C:\Users\-\Downloads\Subtitles-ChinaJam 2014-08-03 17:44 - 2014-07-30 01:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-08-03 17:44 - 2014-07-29 23:50 - 00000000 ____D () C:\Users\-\AppData\Local\GARMIN_Corp 2014-08-03 17:44 - 2014-07-29 09:31 - 00000000 ____D () C:\Freizeitkarte 2014-08-03 17:44 - 2014-07-29 09:30 - 00000000 ____D () C:\Program Files\DIFX 2014-08-03 17:44 - 2014-07-29 05:03 - 00000000 ____D () C:\Users\-\AppData\Roaming\uTorrent 2014-08-03 17:44 - 2014-05-26 23:35 - 00000000 ____D () C:\Users\-\AppData\Roaming\vlc 2014-08-03 17:44 - 2014-05-26 23:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-08-03 17:44 - 2014-05-26 13:39 - 00000000 ____D () C:\users\- 2014-08-03 17:44 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\AppCompat 2014-08-03 15:23 - 2014-07-29 06:53 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-08-03 13:43 - 2014-07-29 06:54 - 00000000 ____D () C:\Users\-\AppData\Roaming\DAEMON Tools Lite 2014-08-03 13:43 - 2014-07-29 05:14 - 00000000 ____D () C:\Program Files (x86)\7-Zip 2014-08-03 13:43 - 2014-07-29 03:18 - 00000000 ____D () C:\Program Files\CCleaner 2014-08-03 02:36 - 2014-08-03 02:36 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\ofch.sys 2014-08-03 02:36 - 2014-08-03 02:11 - 2552701033 _____ () C:\Users\-\Downloads\Blitzkrieg.rar 2014-08-03 02:36 - 2014-08-02 10:06 - 1713151515 _____ () C:\Users\-\Downloads\The_Island.mov 2014-08-03 02:36 - 2014-05-26 13:23 - 01433559 _____ () C:\Windows\WindowsUpdate.log 2014-08-03 02:24 - 2014-05-26 23:42 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-08-03 02:14 - 2014-08-03 02:14 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\MBAMSwissArmy.sys 2014-08-03 02:13 - 2014-08-03 02:13 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\-\Downloads\mbam-setup-2.0.2.1012.exe 2014-08-03 02:13 - 2014-08-03 02:13 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2014-08-03 02:13 - 2014-08-03 02:13 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-08-03 01:51 - 2014-08-03 01:51 - 00000000 ____D () C:\Users\-\Documents\Command and Conquer Generals Data 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\winevt 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\sysprep 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\spool 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\SMI 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\Setup 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\oobe 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\MUI 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\Msdtc 2014-08-03 01:50 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\System32\com 2014-08-02 18:24 - 2014-08-02 10:23 - 00000000 ____D () C:\Users\-\Downloads\Western Gold 2014-08-02 10:19 - 2014-08-02 08:24 - 1832471202 _____ () C:\Users\-\Downloads\Smitten.2011.720p.mov 2014-08-02 10:11 - 2014-08-02 08:27 - 3932717648 _____ () C:\Users\-\Downloads\BBC.The.Great.Climb.2010.Sron.Uladail.1080p.HDTV.x264.AC3.MVGroup.org.mkv 2014-08-02 09:14 - 2014-08-02 08:21 - 2127868769 _____ () C:\Users\-\Downloads\The Network 2013 (climbing movie).mp4 2014-08-02 08:53 - 2014-08-02 08:20 - 00000000 ____D () C:\Users\-\Downloads\The Long Hope 720p 2014-08-02 08:33 - 2014-08-01 01:20 - 00000112 _____ () C:\Windows\setupact.log 2014-08-02 08:33 - 2014-08-01 01:19 - 00001884 _____ () C:\Windows\PFRO.log 2014-08-02 08:33 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-02 08:18 - 2014-08-02 08:18 - 00000000 ____D () C:\Users\-\Downloads\Mountaineering Freedom 2014-08-02 05:33 - 2014-08-02 04:54 - 1904167415 _____ () C:\Users\-\Downloads\China%20Jam-HD.mp4 2014-08-02 04:54 - 2014-08-02 04:38 - 1845970051 _____ () C:\Users\-\Downloads\Venezuela_Jungle_Jam.HD.mp4 2014-08-02 04:50 - 2014-08-02 04:50 - 00000000 ____D () C:\ProgramData\Sun 2014-08-02 04:50 - 2014-08-02 04:50 - 00000000 ____D () C:\ProgramData\Oracle 2014-08-02 04:49 - 2014-08-02 04:50 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-08-02 04:49 - 2014-08-02 04:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-08-02 04:49 - 2014-08-02 04:49 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-08-02 04:49 - 2014-08-02 04:49 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-08-02 04:49 - 2014-08-02 04:49 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-01 02:58 - 2014-08-01 02:04 - 00000000 ____D () C:\Users\-\Downloads\Gomorra stagione 1 - ITA 2014-08-01 01:20 - 2014-08-01 01:20 - 00000000 _____ () C:\Windows\setuperr.log 2014-07-31 07:37 - 2014-07-31 06:11 - 00281768 _____ () C:\Users\-\Documents\BaseCamp 2014-07-31.Backup 2014-07-31 07:06 - 2014-07-31 07:06 - 00000000 ____D () C:\Users\-\Downloads\Basecamp Freizeitkarte 2014-07-30 06:16 - 2014-07-30 06:15 - 10569893 _____ () C:\Users\-\Downloads\presentatie Italie.pptx 2014-07-30 04:45 - 2014-07-29 08:03 - 00000000 ____D () C:\ProgramData\Adobe 2014-07-30 04:08 - 2014-07-30 04:08 - 00220047 _____ () C:\Users\-\Documents\Kroatie 2007.gpx 2014-07-30 02:45 - 2014-07-29 23:56 - 00000000 ____D () C:\Users\-\Documents\Topo 2014-07-30 02:34 - 2014-07-29 09:30 - 00000000 ____D () C:\Users\-\AppData\Roaming\Garmin 2014-07-30 02:33 - 2014-07-29 23:50 - 00000000 ____D () C:\Users\-\AppData\Local\Garmin 2014-07-30 01:42 - 2014-07-30 01:42 - 00052667 _____ () C:\Users\-\Documents\4DAAGSE.gpx 2014-07-30 01:42 - 2014-07-30 01:42 - 00017190 _____ () C:\Users\-\Documents\4DAAGSE.txt 2014-07-30 01:42 - 2014-07-29 23:50 - 00000000 ____D () C:\ProgramData\Garmin 2014-07-30 01:38 - 2014-05-26 13:40 - 00000000 ____D () C:\Users\-\AppData\Local\VirtualStore 2014-07-30 00:29 - 2014-07-30 00:29 - 00000000 ____D () C:\Users\-\Documents\My Garmin 2014-07-29 23:56 - 2014-07-29 23:56 - 00000000 ____D () C:\Garmin 2014-07-29 09:30 - 2014-07-29 09:30 - 00000000 ____D () C:\Program Files (x86)\Garmin 2014-07-29 09:23 - 2014-07-29 09:22 - 53913608 _____ () C:\Users\-\Downloads\BaseCamp_434.exe 2014-07-29 08:04 - 2014-07-29 08:04 - 00000000 ____D () C:\Users\-\AppData\Local\Adobe 2014-07-29 08:04 - 2014-05-26 23:27 - 00000000 ____D () C:\Users\-\AppData\Roaming\Adobe 2014-07-29 08:03 - 2014-07-29 08:03 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-07-29 07:05 - 2014-07-29 07:05 - 00009857 _____ () C:\Windows\DirectX.log 2014-07-29 06:48 - 2014-07-29 06:48 - 00000000 ____D () C:\users\New Folder 2014-07-29 05:04 - 2014-07-29 05:04 - 00058016 _____ () C:\Users\-\AppData\Local\GDIPFONTCACHEV1.DAT 2014-07-29 05:03 - 2014-07-29 05:03 - 00000809 _____ () C:\Users\-\Desktop\µTorrent.lnk 2014-07-29 03:24 - 2014-05-26 23:20 - 00000000 ____D () C:\Windows\Panther 2014-07-29 03:18 - 2014-07-29 03:18 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-07-16 07:12 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache 2014-07-09 02:24 - 2014-05-26 23:42 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-07-09 02:24 - 2014-05-26 23:42 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Known DLLs (Whitelisted) ================ ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit C:\Windows\system32\codeintegrity\Bootcat.cache IS MISSING <==== ATTENTION!. ==================== Restore Points ========================= Restore point made on: 2014-07-29 03:05:12 Restore point made on: 2014-07-29 06:54:52 Restore point made on: 2014-07-29 07:00:48 Restore point made on: 2014-07-29 07:03:34 Restore point made on: 2014-07-29 07:04:55 Restore point made on: 2014-08-02 04:48:57 Restore point made on: 2014-08-03 01:49:08 ==================== Memory info =========================== Percentage of memory in use: 19% Total physical RAM: 2996.52 MB Available physical RAM: 2406.75 MB Total Pagefile: 2994.72 MB Available Pagefile: 2395.38 MB Total Virtual: 8192 MB Available Virtual: 8191.9 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:297.99 GB) (Free:173.96 GB) NTFS Drive f: () (Removable) (Total:3.73 GB) (Free:3.72 GB) FAT32 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS Drive y: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: E9BF6079) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 4 GB) (Disk ID: 69686373) No partition Table on disk 1. LastRegBack: 2014-07-29 04:09 ==================== End Of Log ============================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.