Here is an FRST log from just now
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018
Ran by Danny (administrator) on DANNY-PC (07-02-2018 02:36:22)
Running from C:\Users\Danny\Desktop
Loaded Profiles: Danny (Available Profiles: Danny)
Platform: Windows 10 Pro Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
() C:\Program Files (x86)\NordVPN\nordvpn-service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Zemana Ltd.) C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.10.0.85\ns.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.10.0.85\ns.exe
(NordVPN) C:\Program Files (x86)\NordVPN\NordVPN.exe
(Microsoft® Windows® Operating System) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows10Upgrade\Windows10UpgraderApp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(The OpenVPN Project) C:\Program Files (x86)\NordVPN\Resources\Binaries\64bit\openvpn-nordvpn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Adlice Software) C:\Program Files\UCheck\UCheck64.exe
(Gemalto) C:\Program Files\SafeNet\Authentication\SAC\x64\SACSRV.exe
(COMODO Security Solutions) C:\Program Files (x86)\COMODO\Shield Agent\cShield.exe
(COMODO Security Solutions) C:\Program Files (x86)\COMODO\Shield Agent\cshield_tray_helper.exe
() C:\Program Files (x86)\COMODO\Shield Agent\dnscrypt-proxy.exe
(Gemalto) C:\Program Files\SafeNet\Authentication\SAC\x64\SACTools.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Reason Software Company Inc.) C:\Program Files\Reason\Security\rsUI.exe
(Reason Software Company Inc.) C:\Program Files\Reason\Security\rsEngineSvc.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\397cffd104f9525702c352b7f8a90682\WindowsUpdateBox.exe
(Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.10.0.85\conathst.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.10.0.85\conathst.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2start.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Reason Software Company Inc.) C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_svc.exe
(Reason Software Company Inc.) C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_bg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SACMonitor] => C:\Program Files\SafeNet\Authentication\SAC\x64\SACMonitor.exe [636984 2017-03-29] (Gemalto)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM-x32\...\Run: [ZALFree] => C:\Program Files (x86)\Zemana AntiLogger Free\AntiLogger Free.exe [8980016 2015-11-05] (Zemana Ltd.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26119352 2018-01-30] (Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1262544 2017-07-11] (Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Malwarebytes Anti-Exploit] => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2479392 2017-12-18] (Malwarebytes Corporation)
HKLM-x32\...\Run: [Comodo Dome Shield Tray Helper] => C:\Program Files (x86)\COMODO\Shield Agent\cshield_tray_helper.exe [1765176 2018-01-05] (COMODO Security Solutions)
HKLM-x32\...\Run: [Comodo Dome Shield IP Updater] => C:\Program Files (x86)\COMODO\Shield IP Updater\cShieldIpUpdater.exe [2117432 2017-12-15] (COMODO Security Solutions)
Winlogon\Notify\ScCertProp:
Winlogon\Notify\ScCertProp:
HKU\S-1-5-21-282559497-451337721-2173362044-1001\...\Run: [NordVPN] => C:\Program Files (x86)\NordVPN\NordVPN.exe [5851936 2018-02-05] (NordVPN)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [S-1-5-21-282559497-451337721-2173362044-1001] => Proxy is enabled.
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{47fc06bb-498b-40fa-aae7-c55c5a19934f}: [NameServer] 8.26.56.10,8.20.247.10
Tcpip\..\Interfaces\{47fc06bb-498b-40fa-aae7-c55c5a19934f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9b024e62-78d7-459f-bd93-21f3c937c18a}: [DhcpNameServer] 103.86.99.99 103.86.96.96 78.46.223.24 162.242.211.137
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-282559497-451337721-2173362044-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-282559497-451337721-2173362044-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-282559497-451337721-2173362044-1001 -> DefaultScope {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=oem&geo=US&ver=22.10.0.85&locale=en_US&guid=CD2A8243-B5BE-4488-8524-EA0BB83A9DE0&doi=2018-02-06&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-282559497-451337721-2173362044-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=oem&geo=US&ver=22.10.0.85&locale=en_US&guid=CD2A8243-B5BE-4488-8524-EA0BB83A9DE0&doi=2018-02-06&gct=kwd&qsrc=2869
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-02-07] (Google Inc.)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-02-07] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-02-07] (Google Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-02-07] (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-282559497-451337721-2173362044-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.10.0.85\coIEPlg.dll [2017-07-14] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-282559497-451337721-2173362044-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-02-07] (Google Inc.)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.9.0.71\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.9.0.71\coFFAddon [2018-02-06] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.9.0.71\coFFAddon
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-02-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-02-06] (Google Inc.)
Chrome:
=======
CHR NewTab: Default -> Active:"chrome-extension://gfoabcdjalmeenbjjngidappmppchblc/homePageRedirect.html"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default [2018-02-07]
CHR Extension: (Slides) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-06]
CHR Extension: (Docs) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-06]
CHR Extension: (Google Drive) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-02-06]
CHR Extension: (TunnelBear Blocker) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bebdhgdigjiiamnkcenegafmfjoghafk [2018-02-07]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2018-02-06]
CHR Extension: (YouTube) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-06]
CHR Extension: (Norton Security Toolbar) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2018-02-07]
CHR Extension: (uBlock Origin) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-02-06]
CHR Extension: (Sheets) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-06]
CHR Extension: (HTTPS Everywhere) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2018-02-06]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2018-02-06]
CHR Extension: (Norton Safe) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2018-02-06]
CHR Extension: (Norton Identity Safe) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2018-02-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-02-06]
CHR Extension: (TunnelBear Inc.) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdakjcmkglenbhjadbccaookpfjihpa [2018-02-07]
CHR Extension: (Gmail) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-06]
CHR Extension: (Chrome Media Router) - C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.10.0.85\Exts\Chrome.crx [2018-02-06]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.10.0.85\Exts\Chrome.crx [2018-02-06]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [9303352 2018-01-31] (Emsisoft Ltd)
R2 cShield; C:\Program Files (x86)\COMODO\Shield Agent\cShield.exe [2019648 2018-01-05] (COMODO Security Solutions)
R2 dnscrypt-proxy; C:\Program Files (x86)\COMODO\Shield Agent\dnscrypt-proxy.exe [235520 2017-12-26] () [File not signed]
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [365040 2017-10-20] (Intel Corporation)
S2 MbaeSvc; C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [153888 2017-12-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [128976 2017-07-11] (Micro-Star INT'L CO., LTD.)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2306232 2018-01-25] (Micro-Star INT'L CO., LTD.)
R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [420640 2018-02-05] ()
R2 NS; C:\Program Files\Norton Security\Engine\22.10.0.85\NS.exe [326144 2017-07-14] (Symantec Corporation)
R2 osrss; C:\Windows\system32\osrss.dll [108584 2018-01-09] (Microsoft Corporation)
R2 rscp; C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_svc.exe [293656 2018-02-07] (Reason Software Company Inc.)
R2 rsEngineSvc; C:\Program Files\Reason\Security\rsEngineSvc.exe [80144 2015-08-12] (Reason Software Company Inc.)
R2 SACSrv; C:\Program Files\SafeNet\Authentication\SAC\x64\SACSRV.exe [48696 2017-03-29] (Gemalto)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-07-16] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
S3 disconnect-openvpn; C:\Users\Danny\AppData\Roaming\Disconnect\Disconnect Desktop\nssm.exe [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AKSIFDH; C:\Windows\system32\DRIVERS\aksifdh.sys [62632 2017-03-29] (Aladdin Knowledge Systems, Ltd.)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [144456 2016-01-22] (Rivet Networks, LLC.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\BASHDefs\20180201.001\BHDrvx64.sys [1872024 2018-02-01] (Symantec Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\160A000.055\ccSetx64.sys [187520 2017-07-14] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-02-06] (Symantec Corporation)
R1 epp; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [152656 2018-02-06] (Symantec Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2018-02-07] ()
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\IPSDefs\20180206.001\IDSvia64.sys [1056920 2018-02-06] (Symantec Corporation)
R3 iKeyEnum; C:\Windows\system32\DRIVERS\ikeyenum.sys [16160 2017-03-29] (SafeNet, Inc.)
R3 iKeyIFD; C:\Windows\system32\DRIVERS\ikeyifd.sys [22304 2017-03-29] (SafeNet, Inc.)
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [143904 2015-11-05] (Zemana Ltd.)
R3 KillerEth; C:\Windows\System32\drivers\e2xw10x64.sys [162120 2016-09-28] (Qualcomm Atheros, Inc.)
R0 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193464 2018-02-07] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2018-02-06] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [46008 2018-02-06] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2018-02-06] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2018-02-07] (Malwarebytes)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a39871618b19f06\nvlddmkm.sys [17493824 2018-01-24] (NVIDIA Corporation)
U5 RnbToken; C:\Windows\System32\Drivers\RnbToken.sys [24352 2017-03-29] (SafeNet, Inc.)
R1 SRTSP; C:\Windows\System32\Drivers\NSx64\160A000.055\SRTSP64.SYS [810136 2017-07-14] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\160A000.055\SRTSPX64.SYS [49304 2017-07-14] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NSx64\160A000.055\SYMEFASI64.SYS [1868416 2017-07-14] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NSx64\160A000.055\SymELAM.sys [24608 2017-07-14] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102568 2018-02-06] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\160A000.055\Ironx64.SYS [301288 2017-07-14] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSx64\160A000.055\SYMNETS.SYS [566912 2017-07-14] (Symantec Corporation)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [84432 2017-03-27] (The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-02-07] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-02-07] (Zemana Ltd.)
S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\SDSDefs\20180206.006\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\SDSDefs\20180206.006\NAVEX15.SYS [X]
========================== Drivers MD5 =======================
C:\Windows\System32\drivers\1394ohci.sys A7901875F89D011C38CF52C98ACF5B29
C:\Windows\System32\drivers\3ware.sys EE1CCC54F75C24727A218F98FC5349DA
C:\Windows\System32\drivers\ACPI.sys 73C73E1AA0D4D727A04AAAB120B7F56A
C:\Windows\System32\drivers\AcpiDev.sys 0935496EF9624B46B935CB35ECE1F205
C:\Windows\System32\Drivers\acpiex.sys D6794C31F4077B71433988787BAA926E
C:\Windows\System32\drivers\acpipagr.sys FE5F656D6B35089DA39112E74EC6A85A
C:\Windows\System32\drivers\acpipmi.sys 2F242941E4DFF69B883D77A16F039557
C:\Windows\System32\drivers\acpitime.sys C247E35A21682DA8D0DC3AF9F025FCC5
C:\Windows\System32\drivers\ADP80XX.SYS 49B9DB97AFC85DCCBDACDAB2E90085B7
C:\Windows\system32\drivers\afd.sys 983266DA83FFF73DBDDD3730A4712228
C:\Windows\System32\DRIVERS\ahcache.sys E44DB3F7225EC3E119560738B3619972
C:\Windows\system32\DRIVERS\aksifdh.sys 3392A62BD8C2232C87B94C330AFA91B1
C:\Windows\System32\drivers\amdk8.sys DF21E05E41E5AC3F13F304D91457649A
C:\Windows\System32\drivers\amdppm.sys 45D0AA4BB90B821DF92E8F19ABED0C5E
C:\Windows\System32\drivers\amdsata.sys 74FFBC43B4B899C9A8CA06A892F2CE73
C:\Windows\System32\drivers\amdsbs.sys AAB0F1D8D7E54761ABAB13AF161F1680
C:\Windows\System32\drivers\amdxata.sys F91BAAC4237C40352A807000F3B716F9
C:\Windows\System32\drivers\appid.sys BC121C099C6C659126AD2102AFDFF8CF
C:\Windows\System32\drivers\applockerfltr.sys 68190E2BADF23BD782344970E5B5DE9E
C:\Windows\system32\drivers\AppvStrm.sys FC51FBAF73621601693DA24262353DE3
C:\Windows\system32\drivers\AppvVemgr.sys 8DC924848E20F890BEFC6B31136D46BE
C:\Windows\system32\drivers\AppvVfs.sys 9ADC5A8BEE10E174F95349E9232D8E76
C:\Windows\System32\drivers\arcsas.sys E6AB1F0B4C3D4E0D2A88332D76FECD03
C:\Windows\System32\drivers\asyncmac.sys 61C5A480C43E7E8E49C42869F49D0D3E
C:\Windows\System32\drivers\atapi.sys A10F989A812B57B9695F6C305907C9C6
C:\Windows\System32\drivers\bxvbda.sys 61BAC67048CA5C1D08C48FCC8012B613
C:\Windows\System32\drivers\BasicDisplay.sys 68F72B05EBC6D1779C0D60A147C7CA0B
C:\Windows\System32\drivers\BasicRender.sys 23156E7EDAF613D839E2839746B168D3
C:\Windows\System32\drivers\bcmfn.sys 3F5523DCEFE42B385659C5CB46A6B810
C:\Windows\System32\drivers\bcmfn2.sys 0B750A6A6D847E73CA48ADD7A0F5A393
C:\Windows\System32\Drivers\Beep.sys 0A508274355745EEF01C6BE3198D02C4
C:\Windows\system32\DRIVERS\bwcW10x64.sys A9C299A036F7BAB662868D7250BAC799
C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\BASHDefs\20180201.001\BHDrvx64.sys 97CC114712E5CCFA89082392EB89D21E
C:\Windows\System32\DRIVERS\bowser.sys EEBFAEB4702E1049ECD44B10485E6C0C
C:\Windows\System32\drivers\BthAvrcpTg.sys 722036C26D2C4E50EC2A2EC5FD678846
C:\Windows\System32\drivers\bthhfenum.sys C2E31BE025D46D189E38DD1EDF07837A
C:\Windows\System32\drivers\BthHFHid.sys F7CD605FC0B0B22F3F6F247595E3A655
C:\Windows\System32\drivers\bthmodem.sys 535DC41A33630AE4C262406F9E981C03
C:\Windows\System32\drivers\buttonconverter.sys 23F9EF739F685E07482116425E7879AA
C:\Windows\System32\drivers\capimg.sys 4C61113687EB66035A70A55EE9B7DB4A
C:\Windows\system32\drivers\NSx64\160A000.055\ccSetx64.sys C407C0279B86DA6C36741B4AF80BF630
C:\Windows\System32\DRIVERS\cdfs.sys F8FB51B9EF6372610E9B31A1D86B62FC
C:\Windows\System32\drivers\cdrom.sys 613D0137C269187FA298A157E3D14A18
C:\Windows\System32\drivers\cht4sx64.sys 0AED948DA8D5F08B3D6F12E4E2089736
C:\Windows\System32\drivers\cht4vx64.sys 0002A0FDE087C1657AB31CE73077539C
C:\Windows\System32\drivers\circlass.sys 6B4F90A287D75CCD78694F6790C911B2
C:\Windows\System32\drivers\CLFS.sys 09D0B94D3A06EFD1EB70189EC4B26DF7
C:\Windows\System32\drivers\registry.sys EEC3A4A98AE1A337E3CD1483AD6F2E15
C:\Windows\System32\drivers\CmBatt.sys 429623E266EF067A44E8CF148E9DFB9B
C:\Windows\System32\Drivers\cng.sys D0438FBD80ECEF7591575AA9E7186E93
C:\Windows\System32\DRIVERS\cnghwassist.sys 3DB10C59405931E2C72EFB82C1AF97D1
C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 34C935AF2A414572B412B3556586D783
C:\Windows\System32\drivers\condrv.sys 44EEEB2382F566999287E13F2067693C
C:\Windows\System32\drivers\csc.sys 03214883D52FAD46573233852344C72C
C:\Windows\System32\drivers\dam.sys 42F254BA851371E2F5351E59E391751B
C:\Windows\System32\Drivers\dfsc.sys 7EAFDEF51136E8F2452CEBD8D084F108
C:\Windows\System32\drivers\disk.sys 35B9D46560339A5A7F0CAC6ED702C817
C:\Windows\System32\drivers\dmvsc.sys 815F45161A4571C2C44491564F3D5968
C:\Windows\system32\DRIVERS\drmkaud.sys AE6BD4C879A8C849E53947C92DF3B3A0
C:\Windows\System32\drivers\dxgkrnl.sys E28103485F82F30AFC5DE1CEDF4AF295
C:\Windows\System32\drivers\evbda.sys 7EC6FC0266D74BD47ABB130A328B70EC
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 572D6654361A653042693C488197D014
C:\Windows\System32\drivers\EhStorClass.sys 8D74B8B5D6F7C5BC4C525BAF2B083FF1
C:\Windows\System32\drivers\EhStorTcgDrv.sys 4D49B99DCACA1FC782A94DB596246504
C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys 0E840AA66CAB02CBA9730C772BBE305B
C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 6E7F4FD29451F0D4D965D0996856F525
C:\Windows\System32\drivers\errdev.sys 77B60DEC7DCB4233E4A69D3F52E5DB24
C:\Windows\system32\drivers\mbae64.sys 7D0520A12B31E6858B3BB7E675AFA34E
C:\Windows\System32\Drivers\exfat.sys FCD2C63754C2E739A8EEAD9BC63F9DDC
C:\Windows\System32\Drivers\fastfat.sys C077AA74EDDAF69985EB27597BCB342A
C:\Windows\System32\drivers\fdc.sys 99598ECA5E41996E005D5B9D9FF1EFA2
C:\Windows\System32\drivers\filecrypt.sys F44F666B0EACC3181544FFCF8CA0FFC7
C:\Windows\System32\drivers\fileinfo.sys 78A210DDFDF2C9EC884631D2DAA573F0
C:\Windows\System32\drivers\filetrace.sys 1A97DB5E701A186989F3795223C3BE39
C:\Windows\System32\drivers\flpydisk.sys 46626665F0E5906E45619B4EFD6186B8
C:\Windows\System32\drivers\fltmgr.sys FDA72ACA14D516D18C33AFCD0FD9260F
C:\Windows\System32\drivers\FsDepends.sys D152CCBFC8251670BF0AAFE00D6BC782
C:\Windows\System32\Drivers\Fs_Rec.sys 6D6BB5C7363CD35FA715E826F3D029EE
C:\Windows\System32\DRIVERS\fvevol.sys B719EAA1EC93586955B013BD7DD61356
C:\Windows\System32\drivers\vmgencounter.sys EF78034773CE506323655A868C949144
C:\Windows\System32\drivers\genericusbfn.sys B55FEBC6A00DAA1FE074F020B6907516
C:\Windows\System32\Drivers\msgpioclx.sys DDD8A8CDDC7F13EF57D1DAAE71865936
C:\Windows\System32\drivers\gpuenergydrv.sys 7ACD8F69B5D6EC97E6D2C006E19BED88
C:\Windows\system32\DRIVERS\HdAudio.sys 217230B984AB2954E2FA5E36578D7B08
C:\Windows\System32\drivers\HDAudBus.sys 10E3515FE5DBA6656FA62C29342EC4A1
C:\Windows\System32\drivers\HidBatt.sys B90D284B97CD4CA9DE7430AAAD887A56
C:\Windows\System32\drivers\hidbth.sys B2FE11643CC6ACDEE6C247DD36018FDB
C:\Windows\System32\drivers\hidi2c.sys D24355488A2D4D2323518EC1AC7A6D9E
C:\Windows\System32\drivers\hidinterrupt.sys 0AF9ABBA4F3F55C6C803890D64BC3C29
C:\Windows\System32\drivers\hidir.sys CDBCF8E9AB06D88A1E1191D32F320C5D
C:\Windows\System32\drivers\hidusb.sys 2B7002EEACFC2687788A34ADB204293D
C:\Windows\System32\drivers\HpSAMD.sys F5CA18197B4646E04DB9EB2D6642CC4D
C:\Windows\System32\drivers\HTTP.sys 65E358D604267CBAACB74A2598BBE22B
C:\Windows\System32\drivers\hvservice.sys 3756E15BB86689412775DF22A442FC46
C:\Windows\System32\drivers\hwpolicy.sys 771EDDA9830A3079F996F34D681FB6E5
C:\Windows\System32\drivers\hyperkbd.sys 3B9F315E7FA72CC25228EB097DD9C694
C:\Windows\System32\drivers\i8042prt.sys B54B30992620C97230013A74461C8517
C:\Windows\System32\drivers\iagpio.sys C6B8743B213F06AA60943D8366FE968F
C:\Windows\System32\drivers\iai2c.sys 9A2A2F3C69B9A30B6E78536F6D258BAD
C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys 5A0E850F8CD17791A3E6A3CF81D0CA28
C:\Windows\System32\drivers\iaLPSS2i_I2C.sys 7508F1096803385D6376BFD0BD473AC4
C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 16A10CCEDCF5AC4CAAE43DC9FC40392F
C:\Windows\System32\drivers\iaLPSSi_I2C.sys EB82A11613326691508D9ED9A4FE29E7
C:\Windows\System32\drivers\iaStorAV.sys 97E553D03219D3D51705C7235D9EAEBD
C:\Windows\System32\drivers\iaStorV.sys 8350FE3BCDE3428BC040877BB7E9EAEB
C:\Windows\System32\drivers\ibbus.sys 3BA03F7C7700DDF4C383DDE9252F5817
C:\Program Files\Norton Security\NortonData\22.9.0.71\Definitions\IPSDefs\20180206.001\IDSvia64.sys 53C62B1F7DC9134130C688A2FCDEDADE
C:\Windows\system32\DRIVERS\igdkmd64.sys 32F5DCDDC3D4DF6DDA96CD29C8FC51A4
C:\Windows\system32\DRIVERS\ikeyenum.sys 73BA74701D8E14D1B431BAB1C75641AD
C:\Windows\system32\DRIVERS\ikeyifd.sys 4E7681D5A354396F95DF46C942733E4A
C:\Windows\System32\drivers\IndirectKmd.sys 2A01C96DF5802D3434634E55C91232D8
C:\Windows\system32\DRIVERS\IntcDAud.sys E300D1E37B737ED14F7A08CD5604E5D9
C:\Windows\System32\drivers\intelide.sys 9F7E87F6595D065A8A200A291043045E
C:\Windows\System32\drivers\intelpep.sys A6BD2E20AE1BC5CB2776C87C28E4F4CA
C:\Windows\System32\drivers\intelppm.sys 2A48DA39542636DB0FA3BA915385D1B3
C:\Windows\System32\drivers\iorate.sys 4A922CAB4AB5F29F1BECC9D95B4B7F05
C:\Windows\System32\DRIVERS\ipfltdrv.sys FE85D0A86CA7A5A99CF8CD04DE7F80AE
C:\Windows\System32\drivers\IPMIDrv.sys 450DBDD716C7911F83E05F78EE18BFA2
C:\Windows\System32\drivers\ipnat.sys F1DAECC3B3D6399875D4F10529D6A77C
C:\Windows\system32\drivers\irda.sys 7475A2903BB704B446AA6309E34D3362
C:\Windows\System32\drivers\irenum.sys 9725E7F0C64CE9916A5CDABE8D6E13C3
C:\Windows\System32\drivers\isapnp.sys 58040898883A96160D41739C80328BBF
C:\Windows\System32\drivers\msiscsi.sys C9FD02D62E09337B67B0C61EC8CA38CC
C:\Windows\System32\drivers\kbdclass.sys 210808437570BDDEE71A43535E3A2D30
C:\Windows\System32\drivers\kbdhid.sys 2D05785B0C58D90A34EA15032EADBBA9
C:\Windows\System32\drivers\kdnic.sys 813BA3EB2CE038F2A5382DDD75CAD60B
C:\Windows\System32\DRIVERS\KeyCrypt64.sys 547E9B25B4407A125D5F187E918BC217
C:\Windows\System32\drivers\e2xw10x64.sys 79FB15772614197065C6F8DF085125CA
C:\Windows\System32\Drivers\ksecdd.sys 9FA1B5D84F596F0664F0465F302044DC
C:\Windows\System32\Drivers\ksecpkg.sys ECC7F3CDF34AAA49C00504466FC2B698
C:\Windows\system32\drivers\ksthunk.sys 4ED115CD1A1099705F56B5E0FFF97CC6
C:\Windows\System32\drivers\lltdio.sys 5933A6673F00D8255C52957E40C2D601
C:\Windows\System32\drivers\lsi_sas.sys 8E1B0946948CCC0BC1FA3CB70374A795
C:\Windows\System32\drivers\lsi_sas2i.sys 4F68163FC04C973500DC4DA0946917B0
C:\Windows\System32\drivers\lsi_sas3i.sys E5AC5F2815938651CDCC27F425474673
C:\Windows\System32\drivers\lsi_sss.sys CCF6EC9FB9B8F18E05B4253E81013E48
C:\Windows\system32\drivers\luafv.sys C9579D32219E5B936AC3A48D470117EC
C:\Windows\System32\Drivers\MbamChameleon.sys C3C2C7E2EEFECD88A76FF626E72BF123
C:\Windows\system32\DRIVERS\farflt.sys 20046A5DB1466EBD0DCAEB84D00C5432
C:\Windows\system32\DRIVERS\mbam.sys 29BD0BB2CD7E37B8C248CFA933FBD1F4
C:\Windows\System32\Drivers\mbamswissarmy.sys B047B9CE5A0D800E6D713B43D0405221
C:\Windows\system32\DRIVERS\mwac.sys 482F6D603BDCC825768D86D8228BD65F
C:\Windows\System32\drivers\megasas.sys C3CDCCF07486BD2616A7B82946E07AC0
C:\Windows\System32\drivers\megasr.sys FADB2FE017E69EECE0E1BA78661C2E8C
C:\Windows\System32\drivers\TeeDriverW8x64.sys F1E754DEEB3369BCCE2228D5C10DE101
C:\Windows\System32\drivers\mlx4_bus.sys FD60818B66B2E8A5415EA840E99A9D8F
C:\Windows\system32\drivers\mmcss.sys 68F6977F1CFBAAC770D940A8C0326FA1
C:\Windows\System32\drivers\modem.sys D842ADDB5911945D51F61A0B1C8F36E3
C:\Windows\System32\drivers\monitor.sys 9CCCB7FC3EDADEBA461D78615A6011A6
C:\Windows\System32\drivers\mouclass.sys 27A07B2FB2E3057DA8DAEA4F25D843C7
C:\Windows\System32\drivers\mouhid.sys 7BD6E7F7C9001AB21B8362CFFEE80B25
C:\Windows\System32\drivers\mountmgr.sys F5BDAEE4B7D369D4C74668DCFBA3FF10
C:\Windows\System32\drivers\mpsdrv.sys 30844BD376F9D01E62C820BEF446F1F8
C:\Windows\system32\drivers\mrxdav.sys 50C2389CD04C5B8632E3DC2D733EF15D
C:\Windows\System32\DRIVERS\mrxsmb.sys C9BB4E2FCAB693FEB00CF940060D94F4
C:\Windows\System32\DRIVERS\mrxsmb10.sys 8F58AEAE00B39AC9AD93755E777B19D8
C:\Windows\System32\DRIVERS\mrxsmb20.sys 6C83C4A8278E48455DA13E554CEB45F1
C:\Windows\System32\drivers\bridge.sys 74C9D21523DAE0C18F413C196DF0058A
C:\Windows\System32\Drivers\Msfs.sys F01B849D9D4A8CEAF32D4FDBD0B83C92
C:\Windows\System32\drivers\msgpiowin32.sys 22ECD8F5D1DFADF2011BBB1700CB871D
C:\Windows\System32\drivers\mshidkmdf.sys FD870F6968A145E4D2BA8A8842686B03
C:\Windows\System32\drivers\mshidumdf.sys 30364757963A028CE5DF0FBAAC270173
C:\Windows\System32\drivers\msisadrv.sys 6BB0FEDDAE7135FA37FFAFF4D9E0E876
C:\Windows\system32\DRIVERS\MSKSSRV.sys 13D614E6B51ECF36746C48CE829FA7F6
C:\Windows\System32\drivers\mslldp.sys 642CDE46351D5D2D90311E77072AB46D
C:\Windows\system32\DRIVERS\MSPCLOCK.sys F2302A5CE63CA7673200FAFCEEEDB6AF
C:\Windows\system32\DRIVERS\MSPQM.sys 6114512EA26E835BA522C63635429DB5
C:\Windows\System32\Drivers\MsRPC.sys AA538E16E644D00E3BA5349BBA9598EC
C:\Windows\System32\drivers\mssecflt.sys 7ACFE7435317E791FF9EED2F49B402F2
C:\Windows\System32\drivers\mssmbios.sys 0543BEFD41EC4D25C7F7CF36409CEC7D
C:\Windows\system32\DRIVERS\MSTEE.sys C1569E4DB8EFE3617847BF041A3C842F
C:\Windows\System32\drivers\MTConfig.sys 130B16970154BA9876B09E5C4BAC63BE
C:\Windows\System32\Drivers\mup.sys 15D987C8F6CCD4AC94E070C5986762CB
C:\Windows\System32\drivers\mvumis.sys 3D2C5B4995CA0751D32DEA0DE9FDFE44
C:\Windows\System32\DRIVERS\nwifi.sys DB31EBB04C871F422C36A0962DA7D38B
C:\Windows\System32\drivers\ndfltr.sys 629CB21AC49C8867E0F29DF1C16DB7B4
C:\Windows\System32\drivers\ndis.sys 36DD2C614720EC2970CB5E870BA69D8D
C:\Windows\System32\drivers\ndiscap.sys 6DD605338FAAF6BA17662AA874E0D162
C:\Windows\System32\drivers\NdisImPlatform.sys E34196F285F8B8879E1FF36C31F7179E
C:\Windows\System32\DRIVERS\ndistapi.sys 1FAD2398673F30CEC616B89C46B7DCBA
C:\Windows\System32\drivers\ndisuio.sys AEB8ECBE66CC46854066CB1F5623E179
C:\Windows\System32\drivers\NdisVirtualBus.sys 7340104C2BF2F126714F7CDE85E63610
C:\Windows\System32\drivers\ndiswan.sys 07ADC1F8DCBEB8104D75129B11584B8C
C:\Windows\System32\DRIVERS\ndiswan.sys 07ADC1F8DCBEB8104D75129B11584B8C
C:\Windows\System32\DRIVERS\NDProxy.sys 78A12E3DF035B5D054986949B19BE43C
C:\Windows\System32\drivers\Ndu.sys 04C8859355C1DC9C0FA198D1894D71C2
C:\Windows\System32\drivers\NetAdapterCx.sys 6C76780A01FC2B885BD6E957B5C36B02
C:\Windows\System32\drivers\netbios.sys 5D1513BD6430307C9DB86C6E351372ED
C:\Windows\System32\DRIVERS\netbt.sys 6FEBB0A847FFD5F057B9AC8889F1B9A7
C:\Windows\System32\Drivers\Npfs.sys 001CBD7A2CD45C4EB39C01C3C677EF73
C:\Windows\System32\drivers\npsvctrig.sys 90F5DC9802AAA00CD0B6E2AD9E7FFADC
C:\Windows\System32\drivers\nsiproxy.sys 0C6218321A09A7B51BA7FFAFBA4CCB21
C:\Windows\System32\Drivers\NTFS.sys D1AF837A1555990602A51A3ED238EC80
C:\Windows\System32\Drivers\Null.sys 6E6DD6F9DD2A034CF85E94047DBDB992
C:\Windows\system32\drivers\nvhda64v.sys BF58D8D2DA50AF7A8E55567B7C73661A
C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a39871618b19f06\nvlddmkm.sys C18DE336EFB00CC23FE87ADED9A9AA92
C:\Windows\System32\drivers\nvraid.sys D261DF41F0840F734856A2B4F5E072C7
C:\Windows\System32\drivers\nvstor.sys 23B702B555EB0436B9DAA0BC63DA65CE
C:\Windows\System32\drivers\nvstusb.sys 28ED9DA419D92A2C3C805DC3C0E2718F
C:\Windows\System32\drivers\parport.sys 6B81BF7853D161DB8AC62CD8B9C2DE6B
C:\Windows\System32\drivers\partmgr.sys F9C32E5ECA5D29852A93C3888A4CC4B2
C:\Windows\System32\drivers\pci.sys 55E45E0A89429AE9C62D728B9C4891C0
C:\Windows\System32\drivers\pciide.sys 214DCC87E3898F738075D1341252A552
C:\Windows\System32\drivers\pcmcia.sys AED76A3333B3A31536E430020E0226FC
C:\Windows\System32\drivers\pcw.sys E63FB38B6E75B39467492FBAD2CD512A
C:\Windows\System32\drivers\pdc.sys 2CCD68D8A6BBFF2DE0EC54F086C5F3BC
C:\Windows\System32\drivers\peauth.sys 1509A77F840AA9E72CF8247D0CF2FBDE
C:\Windows\System32\drivers\percsas2i.sys 540116170E2135FCD5DDE77702166B67
C:\Windows\System32\drivers\percsas3i.sys 8356F87553BF49C703CF382033815898
C:\Windows\System32\drivers\raspptp.sys 5645B9D9788CCA2C88B9534996ED2D6D
C:\Windows\System32\drivers\processr.sys 372913E12677A8CBBBABDD8311894F9D
C:\Windows\System32\drivers\pacer.sys FC98407B85A31161851FDE245517574F
C:\Windows\system32\drivers\qwavedrv.sys 819602BBBFDB0BD46DEA3715BF0DD452
C:\Windows\System32\DRIVERS\rasacd.sys CDF47037A0939F56D11F699629C276AD
C:\Windows\System32\drivers\AgileVpn.sys 28C2EA278070EE12701D0EDF8CB0EC36
C:\Windows\System32\drivers\rasl2tp.sys 17E565710172ED71B8531D8822E1C5D1
C:\Windows\System32\DRIVERS\raspppoe.sys 9387DF155233D45D4E010F4F2FB52A57
C:\Windows\System32\drivers\rassstp.sys F0F4EEDEEBEE7A4244FAFB96A16B5712
C:\Windows\System32\DRIVERS\rdbss.sys BBE0FC9C9E7C556DA6E6E6904739DF7E
C:\Windows\System32\drivers\rdpbus.sys 79A415E6FA915EFC00297DAB16EC2635
C:\Windows\System32\drivers\rdpdr.sys 7135785C21CA79D270D11037C43D3F19
C:\Windows\System32\drivers\rdpvideominiport.sys 97A61A3CB2B5CB4FC32B3224EF333448
C:\Windows\System32\drivers\rdyboost.sys 69BB204AE07EE84ECFAB1BF13C4BD04B
C:\Windows\System32\Drivers\ReFSv1.sys 940D6F5A2B0A61EE4170DF84F6C95C20
C:\Windows\System32\drivers\rspndr.sys 5FF28F097C9699097B473F8FC7C1AA7D
C:\Windows\System32\drivers\vms3cap.sys B5DAEE69BACA64D2BB004568E22D8756
C:\Windows\System32\drivers\sbp2port.sys 5E73FB63E2DBC75FE0C17DEB0010CE0E
C:\Windows\System32\DRIVERS\scfilter.sys 3D9A82B03C92D1FEC42CB171D6F57778
C:\Windows\System32\drivers\scmbus.sys 9055ADDFBA4C8B914C914CE693B55C0A
C:\Windows\System32\drivers\scmdisk0101.sys B6F2363584E62960846F7C3F00124A4F
C:\Windows\System32\drivers\sdbus.sys FCBB8A17B4437B2CA8CC8DA8CB1D306E
C:\Windows\System32\drivers\sdstor.sys 120DFCB71D6C502613A9E2D50E16850C
C:\Windows\System32\drivers\SerCx.sys 401D706DDC0A7AF18C3DD228ADF74551
C:\Windows\System32\drivers\SerCx2.sys 7084D11083F0CDCA8B5C76F9846ABF5D
C:\Windows\System32\drivers\serenum.sys 3FF478A8ED32A83C36581425F6282B6C
C:\Windows\System32\drivers\serial.sys 92509187AA171A80521528B36F753E1D
C:\Windows\System32\drivers\sermouse.sys 433D38FF6D08B993847EA2A10EB8CB52
C:\Windows\System32\drivers\sfloppy.sys 697D3EE0740AEAB62B66ABCA1C83D13B
C:\Windows\System32\drivers\SiSRaid2.sys A34CE1830E45DA98932295FDE4B7908A
C:\Windows\System32\drivers\sisraid4.sys A7B5C670770E908DA5FEF5BF1136E933
C:\Windows\System32\drivers\spaceport.sys 3DB9C2950439B61A038BF83E697C7A14
C:\Windows\System32\drivers\SpbCx.sys E03264C4C25B568F92ED1656AD541E64
C:\Windows\System32\Drivers\NSx64\160A000.055\SRTSP64.SYS 9225E5323704993E6C557F8ABCEF2A66
C:\Windows\system32\drivers\NSx64\160A000.055\SRTSPX64.SYS 96E5695385228F99509DD505EA4F1F37
C:\Windows\System32\DRIVERS\srv.sys EDCDCD95B916DB156A903AC6256F0CCF
C:\Windows\System32\DRIVERS\srv2.sys DF7147DE10921DBAAE9F9EEF94590E10
C:\Windows\System32\DRIVERS\srvnet.sys 416D224AF7481A4179F018FB1F9A5B6B
C:\Windows\System32\drivers\stexstor.sys 29D26E1347AE1BBD4201014E19880B2C
C:\Windows\System32\drivers\storahci.sys 0FE3B9A9E40DE1029B0AC2368A3F765D
C:\Windows\System32\drivers\vmstorfl.sys C5E0ACE4771F5575D9D5B457ABF3AD03
C:\Windows\System32\drivers\stornvme.sys C1CFB9C19BF1134D8B9A7CF89BEC0AD1
C:\Windows\System32\drivers\storqosflt.sys BEBF85EB4D90E6996047DA027D0ED26E
C:\Windows\System32\drivers\storufs.sys 8E73037A6F8938475692FFCC26EBF385
C:\Windows\System32\drivers\storvsc.sys 9D9DED47DA10E845EFF2DD57C94C809B
C:\Windows\System32\drivers\swenum.sys 505E0C40B5D0ADDCBB414640F59BD2E0
C:\Windows\System32\drivers\NSx64\160A000.055\SYMEFASI64.SYS 204B80C2C5B2E87E9558CC2D1C2D8BB5
C:\Windows\System32\drivers\NSx64\160A000.055\SymELAM.sys 3123BDBFE5CF061035D79CB3F3075F82
C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 674908D3CE54EE5336DC545CB2A39702
C:\Windows\system32\drivers\NSx64\160A000.055\Ironx64.SYS EF84A42B86BCBDCB88F3C8849170492D
C:\Windows\System32\Drivers\NSx64\160A000.055\SYMNETS.SYS 8CF934DF2A8C1BDFA766D3E137A11986
C:\Windows\System32\drivers\Synth3dVsc.sys 32F46FB0F290D16DAA452B289C985795
C:\Windows\System32\drivers\tapnordvpn.sys 33956C0B1B809C416619E0526EA219F3
C:\Windows\System32\drivers\tcpip.sys 172B5A199F917B4BACB38F13BCAA11CB
C:\Windows\System32\drivers\tcpip.sys 172B5A199F917B4BACB38F13BCAA11CB
C:\Windows\System32\drivers\tcpipreg.sys 8DBB1BE20C36E6D19BCC89EEA00B953C
C:\Windows\system32\DRIVERS\tdx.sys 9D2DD64A0B51C56285512DC9454340F6
C:\Windows\System32\drivers\terminpt.sys 06130AFFECEB94525FC2352936576B70
C:\Windows\System32\drivers\tpm.sys 798C8CB861EB09C5AFB77468E5449BBB
C:\Windows\System32\drivers\TsUsbFlt.sys A6F4025664C9D4BC2A9EDAB4092706D7
C:\Windows\System32\drivers\TsUsbGD.sys 37A96AD493E110C0BF1EE0AC0F9E7DBD
C:\Windows\System32\drivers\tsusbhub.sys 5A91FDBA4D3FCB56DAEB8C091B3EB8E1
C:\Windows\System32\drivers\tunnel.sys 79E264287F17D56D768440B0270466DE
C:\Windows\System32\drivers\uaspstor.sys AA65954F512BA097DD190790876DD991
C:\Windows\System32\Drivers\UcmCx.sys AB6268022C3A5B529075A39C33904DA6
C:\Windows\System32\Drivers\UcmTcpciCx.sys 7ED2EDA43D21C7A5F589A7960E265C52
C:\Windows\System32\drivers\UcmUcsi.sys 169351463039B45F5CDED9768879F712
C:\Windows\System32\drivers\ucx01000.sys 08A9E3AD29B215484FBB68CDC175DF3A
C:\Windows\System32\drivers\udecx.sys DA70AEE267491AA56BC63AA0C0C96CA2
C:\Windows\System32\DRIVERS\udfs.sys FBC5ECF6D5A868D0B116C2DBB02B8168
C:\Windows\System32\drivers\UEFI.sys B918E40FAA9CD118CCA4AD388B748C98
C:\Windows\system32\drivers\UevAgentDriver.sys 166B17AE1DD24D8BA8CA474C7C31148F
C:\Windows\System32\drivers\ufx01000.sys 0FD75222C1AD2687AB365BEBEA400DD4
C:\Windows\System32\drivers\UfxChipidea.sys C1A78C53E01C641AE41BFA65797819F5
C:\Windows\System32\drivers\ufxsynopsys.sys 767307212110EBEFB93EC9A5BE9E85B9
C:\Windows\System32\drivers\umbus.sys DC460AAA18CA2342FBBFB2DF9B044472
C:\Windows\System32\drivers\umpass.sys C3CF0377917ECE6D65D7623E1E61568F
C:\Windows\System32\drivers\urschipidea.sys 6B46FC140C9AF68E6E7697D66D59CB4D
C:\Windows\System32\drivers\urscx01000.sys B4402E7F0923F660270442CE76877ABE
C:\Windows\System32\drivers\urssynopsys.sys 9DD431F1B94789CFB527E5D19261F124
C:\Windows\System32\drivers\usbccgp.sys C87E32B90F085970D9637FBAD45EF6FE
C:\Windows\System32\drivers\usbcir.sys 0B663856474AC41924D9E9112203858F
C:\Windows\System32\drivers\usbehci.sys F83D2250256203AC5DA5E8601C1AFDD7
C:\Windows\System32\drivers\usbhub.sys 7FFD26742321919590ED77FCA556D65F
C:\Windows\System32\drivers\UsbHub3.sys 7A749B2863B5561BE34B39E8E249AD8F
C:\Windows\System32\drivers\usbohci.sys D2109F1F4FEBF1DAC415CDC5DE876479
C:\Windows\System32\drivers\usbprint.sys 29C9572F2D061CFC3C0BD48A3163E343
C:\Windows\System32\drivers\usbser.sys 429477D6DEF3321FF7D3EF23CAAADA00
C:\Windows\System32\drivers\USBSTOR.SYS 0CC16F7B91C57AE9A4E44425A295FDAA
C:\Windows\System32\drivers\usbuhci.sys C917D09064CDBD18F75ADC9B2C48F847
C:\Windows\System32\drivers\USBXHCI.SYS 95BCCEFBC40D06484CF16144FE79B8A5
C:\Windows\System32\drivers\vdrvroot.sys 0CBDE344FB48E42D78E29469F202ADBC
C:\Windows\System32\drivers\VerifierExt.sys 723195568C8755CAD57F7933C5F2C5C2
C:\Windows\System32\drivers\vhdmp.sys C12B4859FC255AA6B3021CF8BB14A11F
C:\Windows\System32\drivers\vhf.sys 7929228F0E8B0C2FA0495A17A4FC27F6
C:\Windows\System32\drivers\vmbus.sys AEE432ED868831B1F068E373598F6D93
C:\Windows\System32\drivers\VMBusHID.sys 9444B23FC694B5F90F21B0FC7F10D8DD
C:\Windows\System32\drivers\vmgid.sys 4D0287F566B36536DD812A54C015FC4A
C:\Windows\System32\drivers\volmgr.sys 29075915F9BDC3437F8BED71C067D399
C:\Windows\System32\drivers\volmgrx.sys 6BDB6CE6D2D9E3D3F28F1C97E12B62E2
C:\Windows\System32\drivers\volsnap.sys BF2546583BB75F01DDA60A7921DFB230
C:\Windows\System32\drivers\volume.sys AC2E20A74D09D24485BE8396CE04F07B
C:\Windows\System32\drivers\vpci.sys 04BEC879AD7B3FDDD0339B19FECB0160
C:\Windows\System32\drivers\vsmraid.sys FD9BCB8920973CEAD4D49DC7A6D8A618
C:\Windows\System32\drivers\vstxraid.sys 0C111F220798CCE80484026E06822379
C:\Windows\System32\drivers\vwifibus.sys 607639716E9DB1CEF4E18B5B229293B4
C:\Windows\System32\drivers\vwififlt.sys B1ED64E628763148BF84FBE23F2AD711
C:\Windows\System32\drivers\wacompen.sys 55D00B785A7587F4263D125817871283
C:\Windows\System32\DRIVERS\wanarp.sys CEF3D306C09BEC1A800E9B4A06F859F6
C:\Windows\System32\DRIVERS\wanarp.sys CEF3D306C09BEC1A800E9B4A06F859F6
C:\Windows\system32\drivers\wcifs.sys CD24DEEA22152524CCFE859591D12A57
C:\Windows\system32\drivers\wcnfs.sys AEA1093B751339267D8C8C1EF3D669CF
C:\Windows\system32\drivers\WdBoot.sys D520B1B849B6D4D707AB31722B952C2D
C:\Windows\System32\drivers\Wdf01000.sys 5030C76047D756263093A47B82970868
C:\Windows\system32\drivers\WdFilter.sys 29FF9199EDEB4F5470BB134D1A2563D2
C:\Windows\System32\DRIVERS\wdiwifi.sys 373DF27CD5D5E50FFA2A90FEE0C0D994
C:\Windows\System32\Drivers\WdNisDrv.sys 17CF416CFF408190F5A4CBD79AB12E55
C:\Windows\System32\drivers\wfplwfs.sys E1785942AC51FEE6826CDF02075C5AA9
C:\Windows\System32\drivers\wimmount.sys 0CF79A0EACFFBB75A50A469A27696D02
C:\Windows\System32\drivers\WindowsTrustedRT.sys 0DE131733317EB4BE67028366B0CAAC6
C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys 92EB5D38BDF10C790450F3E46BF93A0E
C:\Windows\System32\drivers\winmad.sys F95DE20312ACCA7761446DE152BD1F7C
C:\Windows\System32\drivers\WinUSB.SYS 4EFB346BFDAEEB29316AA52BBB9852B1
C:\Windows\System32\drivers\winverbs.sys 8B9AFF5F08E66A6F1F1063DEC9457FB6
C:\Windows\System32\drivers\wmiacpi.sys 6F4F4F5A007D1710BD76FB311DA97C07
C:\Windows\System32\Drivers\Wof.sys EDADABA8665AB5C51BF59C4E2566BA7E
C:\Windows\System32\drivers\WpdUpFltr.sys 75A9284F01FE7CB1A7D5EAE5C1EB4F33
C:\Windows\system32\drivers\ws2ifsl.sys 36D7B73ADC3E10607ED6EC874AFB5D1E
C:\Windows\System32\drivers\WudfPf.sys AED7FE551E8672B824A56324076183EB
C:\Windows\System32\drivers\WudfRd.sys CEFAB17FD7DFCFA515626C306262E89D
C:\Windows\system32\DRIVERS\WUDFRd.sys CEFAB17FD7DFCFA515626C306262E89D
C:\Windows\System32\drivers\xboxgip.sys 59335CEA021FB89E07AD5DB5D17F09D0
C:\Windows\System32\drivers\xinputhid.sys 864F4209B03BE4267DDE09B067A165CA
C:\Windows\System32\drivers\zam64.sys 21E13F2CB269DEFEAE5E1D09887D47BB
C:\Windows\System32\drivers\zamguard64.sys 21E13F2CB269DEFEAE5E1D09887D47BB
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three Months Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-02-07 02:36 - 2018-02-07 02:36 - 000049497 _____ C:\Users\Danny\Desktop\FRST.txt
2018-02-07 02:35 - 2018-02-07 02:35 - 000145581 _____ C:\Users\Danny\Desktop\first frst.txt
2018-02-07 02:26 - 2018-02-07 02:26 - 000025667 _____ C:\Users\Danny\Desktop\core diagnostic 2.txt
2018-02-07 02:20 - 2018-02-07 02:36 - 000126148 _____ C:\Windows\ZAM.krnl.trace
2018-02-07 02:20 - 2018-02-07 02:36 - 000018472 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-02-07 02:20 - 2018-02-07 02:20 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2018-02-07 02:20 - 2018-02-07 02:20 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2018-02-07 02:20 - 2018-02-07 02:20 - 000001217 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2018-02-07 02:20 - 2018-02-07 02:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2018-02-07 02:20 - 2018-02-07 02:20 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-02-07 02:16 - 2018-02-07 02:16 - 000025159 _____ C:\Users\Danny\Desktop\core log.txt
2018-02-07 02:15 - 2018-02-07 02:15 - 000025635 _____ C:\Users\Danny\Desktop\wdwd.txt
2018-02-07 02:14 - 2018-02-07 02:14 - 000025637 _____ C:\Users\Danny\Desktop\RCSSD.txt
2018-02-07 02:13 - 2018-02-07 02:13 - 000000000 ____D C:\ProgramData\Reason
2018-02-07 02:12 - 2018-02-07 02:12 - 000291606 _____ C:\Users\Danny\Desktop\TCPView.zip
2018-02-07 02:12 - 2018-02-07 02:12 - 000003624 _____ C:\Windows\System32\Tasks\ReasonSecurityScheduledScan
2018-02-07 02:12 - 2018-02-07 02:12 - 000003474 _____ C:\Windows\System32\Tasks\ReasonSecurityStart
2018-02-07 02:12 - 2018-02-07 02:12 - 000000956 _____ C:\Users\Public\Desktop\Reason Core Security.lnk
2018-02-07 02:12 - 2018-02-07 02:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reason Core Security
2018-02-07 02:12 - 2018-02-07 02:12 - 000000000 ____D C:\Program Files\Reason
2018-02-07 02:11 - 2018-02-07 02:11 - 004257344 _____ (Reason Software Company Inc.) C:\Users\Danny\Desktop\reason-core-security-setup.exe
2018-02-07 02:10 - 2018-02-07 02:11 - 006625600 _____ (Zemana Ltd. ) C:\Users\Danny\Desktop\Zemana.AntiMalware.Setup.exe
2018-02-07 02:06 - 2018-02-07 02:27 - 000000000 ____D C:\Program Files\Emsisoft Anti-Malware
2018-02-07 02:06 - 2018-02-07 02:06 - 000000937 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2018-02-07 02:06 - 2018-02-07 02:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2018-02-07 02:01 - 2018-02-07 02:01 - 000000036 _____ C:\Users\Danny\Desktop\e.txt
2018-02-07 01:59 - 2018-02-07 01:59 - 000001982 _____ C:\Users\Public\Desktop\NordVPN.lnk
2018-02-07 01:59 - 2018-02-07 01:59 - 000000000 ____D C:\ProgramData\NordVpn
2018-02-07 01:59 - 2018-02-07 01:59 - 000000000 ____D C:\ProgramData\Caphyon
2018-02-07 01:58 - 2018-02-07 01:59 - 000000000 ____D C:\Users\Danny\AppData\Local\NordVPN
2018-02-07 01:58 - 2018-02-07 01:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordVPN
2018-02-07 01:58 - 2018-02-07 01:58 - 000000000 ____D C:\Program Files\TAP-NordVPN
2018-02-07 01:58 - 2018-02-07 01:58 - 000000000 ____D C:\Program Files (x86)\NordVPN
2018-02-07 01:57 - 2018-02-07 01:59 - 000000000 ____D C:\Users\Danny\AppData\Roaming\NordVPN
2018-02-07 01:54 - 2018-02-07 02:04 - 000000036 _____ C:\Users\Danny\Desktop\weweew.txt
2018-02-07 01:54 - 2018-02-07 01:54 - 012822632 _____ (NordVPN) C:\Users\Danny\Desktop\NordVPNSetup.exe
2018-02-07 01:46 - 2018-02-07 02:01 - 000000036 _____ C:\Users\Danny\Desktop\mbytesscan2-7.txt
2018-02-07 01:40 - 2017-12-31 23:51 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2018-02-07 01:40 - 2017-12-31 23:49 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2018-02-07 01:40 - 2017-12-31 23:49 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2018-02-07 01:40 - 2017-12-31 23:48 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2018-02-07 01:40 - 2017-12-31 23:48 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2018-02-07 01:40 - 2017-12-31 23:41 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2018-02-07 01:40 - 2017-12-31 23:39 - 000557568 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2018-02-07 01:40 - 2017-11-17 22:29 - 002321408 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-02-07 01:40 - 2017-11-01 17:12 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2018-02-07 01:40 - 2017-11-01 17:05 - 000297984 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2018-02-07 01:40 - 2017-10-08 20:44 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2018-02-07 01:40 - 2017-10-08 20:43 - 001231360 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2018-02-07 01:40 - 2017-09-17 21:27 - 000326656 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2018-02-07 01:40 - 2017-09-07 00:53 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2018-02-07 01:40 - 2017-09-07 00:52 - 000557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2018-02-07 01:40 - 2017-09-07 00:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2018-02-07 01:40 - 2017-09-07 00:18 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2018-02-07 01:40 - 2017-09-07 00:16 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2018-02-07 01:40 - 2017-09-07 00:15 - 000260608 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2018-02-07 01:40 - 2017-08-22 00:09 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-02-07 01:40 - 2017-08-22 00:08 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-02-07 01:40 - 2017-08-22 00:06 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-02-07 01:40 - 2017-08-22 00:05 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2018-02-07 01:40 - 2017-08-22 00:04 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2018-02-07 01:40 - 2017-08-21 23:57 - 000711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-02-07 01:40 - 2017-08-21 23:47 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-02-07 01:40 - 2017-07-12 00:23 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2018-02-07 01:40 - 2017-07-12 00:12 - 000091648 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2018-02-07 01:40 - 2017-06-21 01:50 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2018-02-07 01:40 - 2017-03-04 01:36 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\DuCsps.dll
2018-02-07 01:40 - 2016-11-11 04:23 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\EAMProgressHandler.dll
2018-02-07 01:40 - 2016-08-05 23:16 - 000026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-02-07 01:40 - 2016-08-05 22:48 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-02-07 01:39 - 2016-12-21 02:08 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2018-02-07 01:39 - 2016-12-20 23:44 - 000120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2018-02-07 01:37 - 2018-02-07 01:38 - 002793472 _____ C:\Users\Danny\Desktop\cShieldAgent (2).msi
2018-02-07 01:34 - 2018-02-07 01:35 - 002793472 _____ C:\Users\Danny\Desktop\cShieldAgent (1).msi
2018-02-07 01:33 - 2018-02-07 02:36 - 000000000 ____D C:\FRST
2018-02-07 01:32 - 2018-02-07 01:32 - 001159168 _____ C:\Users\Danny\Desktop\cShieldIpUpdaterAgent.msi
2018-02-07 01:32 - 2018-02-07 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2018-02-07 01:31 - 2018-02-07 01:33 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Exploit
2018-02-07 01:31 - 2018-02-06 23:29 - 000000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2018-02-07 01:30 - 2018-02-07 01:30 - 001875480 _____ (Malwarebytes ) C:\Users\Danny\Desktop\mbae-setup-1.10.1.41.exe
2018-02-07 01:27 - 2018-02-07 01:32 - 000000000 ____D C:\AdwCleaner
2018-02-07 01:26 - 2018-02-07 01:26 - 000000000 ____D C:\Windows\system32\appmgmt
2018-02-07 01:25 - 2018-02-07 01:50 - 000000027 _____ C:\Windows\system32\Drivers\etc\hosts.bak
2018-02-07 01:25 - 2018-02-07 01:32 - 000000000 ____D C:\Program Files (x86)\COMODO
2018-02-07 01:24 - 2018-02-07 01:24 - 002793472 _____ C:\Users\Danny\Desktop\cShieldAgent.msi
2018-02-07 01:10 - 2018-02-07 02:27 - 000000000 ____D C:\ProgramData\Emsisoft
2018-02-07 01:07 - 2018-02-07 01:23 - 000000000 ____D C:\EEK
2018-02-07 01:06 - 2018-01-09 16:44 - 000108584 _____ (Microsoft Corporation) C:\Windows\system32\osrss.dll
2018-02-07 01:05 - 2018-02-07 01:53 - 1574456320 _____ C:\Users\Danny\Desktop\domefirewall.ova
2018-02-07 01:04 - 2018-02-07 01:51 - 1149382656 _____ C:\Users\Danny\Desktop\domefirewall.iso
2018-02-07 01:03 - 2018-02-07 02:07 - 000000000 ____D C:\Users\Danny\AppData\Local\NPE
2018-02-07 01:02 - 2018-02-07 01:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SafeNet
2018-02-07 01:02 - 2018-02-07 01:02 - 000000000 ____D C:\Program Files\SafeNet
2018-02-07 01:02 - 2017-03-29 12:52 - 000062632 _____ (Aladdin Knowledge Systems, Ltd.) C:\Windows\system32\Drivers\aksifdh.sys
2018-02-07 01:02 - 2017-03-29 12:52 - 000044712 _____ (Aladdin Knowledge Systems, Ltd.) C:\Windows\system32\Drivers\aksup.sys
2018-02-07 00:59 - 2018-02-07 01:00 - 014661632 _____ C:\Users\Danny\Desktop\SafeNetAuthenticationClient-x64-10.3.msi
2018-02-07 00:59 - 2018-02-07 00:59 - 011384320 _____ C:\Users\Danny\Desktop\SafeNetAuthenticationClient-x32-10.3.msi
2018-02-07 00:59 - 2018-02-07 00:59 - 000717017 _____ C:\Users\Danny\Desktop\comodocertificateautoinstaller (1).pdf
2018-02-07 00:58 - 2018-02-07 00:58 - 000001911 _____ C:\Users\Danny\Desktop\comodosha256extendedvalidationsecureserverca (1).crt
2018-02-07 00:58 - 2018-02-07 00:58 - 000001684 _____ C:\Users\Danny\Desktop\comodosha256clientauthenticationandsecureemailca (1).crt
2018-02-07 00:57 - 2018-02-07 00:57 - 000001911 _____ C:\Users\Danny\Desktop\comodosha256extendedvalidationsecureserverca.crt
2018-02-07 00:56 - 2018-02-07 00:56 - 000001858 _____ C:\Users\Danny\Desktop\comodosha256domainvalidationsecureserverca.crt
2018-02-07 00:56 - 2018-02-07 00:56 - 000001858 _____ C:\Users\Danny\Desktop\comodosha256domainvalidationsecureserverca (2).crt
2018-02-07 00:55 - 2018-02-07 00:55 - 000001684 _____ C:\Users\Danny\Desktop\comodosha256clientauthenticationandsecureemailca.crt
2018-02-07 00:55 - 2018-02-07 00:55 - 000001635 _____ C:\Users\Danny\Desktop\comodosha256codesigningca.crt
2018-02-07 00:55 - 2018-02-07 00:55 - 000001521 _____ C:\Users\Danny\Desktop\addtrustexternalcaroot (4).crt
2018-02-07 00:55 - 2018-02-07 00:55 - 000001521 _____ C:\Users\Danny\Desktop\addtrustexternalcaroot (3).crt
2018-02-07 00:54 - 2018-02-07 00:54 - 000002114 _____ C:\Users\Danny\Desktop\incommonrsacodesigningca.crt
2018-02-07 00:54 - 2018-02-07 00:54 - 000001956 _____ C:\Users\Danny\Desktop\usertrustrsaaddtrustca (1).crt
2018-02-07 00:54 - 2018-02-07 00:54 - 000001521 _____ C:\Users\Danny\Desktop\addtrustexternalcaroot (2).crt
2018-02-07 00:53 - 2018-02-07 00:53 - 000005608 _____ C:\Users\Danny\Desktop\incommonrsaserverca-bundle.crt
2018-02-07 00:53 - 2018-02-07 00:53 - 000005593 _____ C:\Users\Danny\Desktop\incommonrsacodesigning-bundle.crt
2018-02-07 00:53 - 2018-02-07 00:53 - 000001956 _____ C:\Users\Danny\Desktop\usertrustrsaaddtrustca.crt
2018-02-07 00:52 - 2018-02-07 00:52 - 000002130 _____ C:\Users\Danny\Desktop\incommonrsaserverca_2.crt
2018-02-07 00:52 - 2018-02-07 00:52 - 000002098 _____ C:\Users\Danny\Desktop\comodorsacodesigningca (1).crt
2018-02-07 00:52 - 2018-02-07 00:52 - 000001952 _____ C:\Users\Danny\Desktop\comodorsaaddtrustca.crt
2018-02-07 00:52 - 2018-02-07 00:52 - 000001521 _____ C:\Users\Danny\Desktop\addtrustexternalcaroot.crt
2018-02-07 00:52 - 2018-02-07 00:52 - 000001521 _____ C:\Users\Danny\Desktop\addtrustexternalcaroot (1).crt
2018-02-07 00:51 - 2018-02-07 00:51 - 000002098 _____ C:\Users\Danny\Desktop\comodorsacodesigningca.crt
2018-02-07 00:49 - 2018-02-0