Hello
Is it possible to help me if i provide you with the frst.txt that i scanned after i cant boot to windows?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-02-2016
Ran by SYSTEM on MININT-ML55IBN (29-02-2016 14:18:11)
Running from C:
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Αγγλικά (Ηνωμένων Πολιτειών)
Internet Explorer Version 9
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM.…\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [296824 2010-09-25] (TOSHIBA Corporation)
HKLM.…\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [973176 2010-12-15] (TOSHIBA Corporation)
HKLM.…\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant systems, Inc.)
HKLM.…\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2679592 2011-02-03] (Synaptics Incorporated)
HKLM.…\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1520552 2011-03-02] (TOSHIBA Corporation)
HKLM.…\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM-x32.…\Run: [ITSecMng] => %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
HKLM-x32.…\Run: [TSleepSrv] => %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
HKU\Default.…\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [845176 2011-02-18] (TOSHIBA)
HKU\Default User.…\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [845176 2011-02-18] (TOSHIBA)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2011-05-04]
ShortcutTarget: TRDCReminder.lnk → C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2011-05-04]
ShortcutTarget: TRDCReminder.lnk → C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-04] (Malwarebytes)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-09] (Toshiba Europe GmbH)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 secdrv; no ImagePath
S3 Tosrfcom; no ImagePath
S3 1394ohci; \SystemRoot\system32\drivers\1394ohci.sys
S0 ACPI; system32\drivers\ACPI.sys
S3 AcpiPmi; \SystemRoot\system32\drivers\acpipmi.sys
S3 adp94xx; \SystemRoot\system32\drivers\adp94xx.sys
S3 adpahci; \SystemRoot\system32\drivers\adpahci.sys
S3 adpu320; \SystemRoot\system32\drivers\adpu320.sys
S3 AF15BDA; system32\DRIVERS\AF15BDA.sys
S3 agp440; \SystemRoot\system32\drivers\agp440.sys
S3 aliide; \SystemRoot\system32\drivers\aliide.sys
S3 amdide; \SystemRoot\system32\drivers\amdide.sys
S3 AmdK8; \SystemRoot\system32\drivers\amdk8.sys
S3 AmdPPM; \SystemRoot\system32\drivers\amdppm.sys
S3 amdsata; \SystemRoot\system32\drivers\amdsata.sys
S3 amdsbs; \SystemRoot\system32\drivers\amdsbs.sys
S0 amdxata; system32\drivers\amdxata.sys
S3 arc; \SystemRoot\system32\drivers\arc.sys
S3 arcsas; \SystemRoot\system32\drivers\arcsas.sys
S0 atapi; system32\drivers\atapi.sys
S3 athr; system32\DRIVERS\athrx.sys
S3 b06bdrv; \SystemRoot\system32\drivers\bxvbda.sys
S3 b57nd60a; system32\DRIVERS\b57nd60a.sys
S1 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys
S3 BrFiltLo; \SystemRoot\system32\drivers\BrFiltLo.sys
S3 BrFiltUp; \SystemRoot\system32\drivers\BrFiltUp.sys
S3 Brserid; \SystemRoot\System32\Drivers\Brserid.sys
S3 BrSerWdm; \SystemRoot\System32\Drivers\BrSerWdm.sys
S3 BrUsbMdm; \SystemRoot\System32\Drivers\BrUsbMdm.sys
S3 BrUsbSer; \SystemRoot\System32\Drivers\BrUsbSer.sys
S3 BtFilter; system32\DRIVERS\btfilter.sys
S3 BthEnum; system32\DRIVERS\BthEnum.sys
S3 BTHMODEM; \SystemRoot\system32\drivers\bthmodem.sys
S3 BthPan; system32\DRIVERS\bthpan.sys
S3 BTHPORT; System32\Drivers\BTHport.sys
S3 BTHUSB; System32\Drivers\BTHUSB.sys
S1 cdrom; system32\DRIVERS\cdrom.sys
S3 circlass; \SystemRoot\system32\drivers\circlass.sys
S3 CmBatt; \SystemRoot\system32\drivers\CmBatt.sys
S3 cmdide; \SystemRoot\system32\drivers\cmdide.sys
S3 CnxtHdAudService; system32\drivers\CHDRT64.sys
S0 Compbatt; system32\drivers\compbatt.sys
S3 CompositeBus; \SystemRoot\system32\drivers\CompositeBus.sys
S4 crcdisk; \SystemRoot\system32\drivers\crcdisk.sys
S0 Disk; system32\drivers\disk.sys
S3 drmkaud; system32\drivers\drmkaud.sys
S3 ebdrv; \SystemRoot\system32\drivers\evbda.sys
S3 elxstor; \SystemRoot\system32\drivers\elxstor.sys
S3 ErrDev; \SystemRoot\system32\drivers\errdev.sys
S3 fdc; \SystemRoot\system32\drivers\fdc.sys
S3 flpydisk; \SystemRoot\system32\drivers\flpydisk.sys
S3 gagp30kx; \SystemRoot\system32\drivers\gagp30kx.sys
S3 hcw85cir; \SystemRoot\system32\drivers\hcw85cir.sys
S3 HdAudAddService; system32\drivers\HdAudio.sys
S3 HDAudBus; system32\DRIVERS\HDAudBus.sys
S3 HidBatt; \SystemRoot\system32\drivers\HidBatt.sys
S3 HidBth; \SystemRoot\system32\drivers\hidbth.sys
S3 HidIr; \SystemRoot\system32\drivers\hidir.sys
S3 HidUsb; system32\DRIVERS\hidusb.sys
S3 HpSAMD; \SystemRoot\system32\drivers\HpSAMD.sys
S3 i8042prt; system32\DRIVERS\i8042prt.sys
S0 iaStor; system32\DRIVERS\iaStor.sys
S3 iaStorV; \SystemRoot\system32\drivers\iaStorV.sys
S3 iirsp; \SystemRoot\system32\drivers\iirsp.sys
S3 intelide; \SystemRoot\system32\drivers\intelide.sys
S3 intelppm; system32\DRIVERS\intelppm.sys
S3 IPMIDRV; \SystemRoot\system32\drivers\IPMIDrv.sys
S3 isapnp; \SystemRoot\system32\drivers\isapnp.sys
S3 iScsiPrt; \SystemRoot\system32\drivers\msiscsi.sys
S3 kbdclass; system32\DRIVERS\kbdclass.sys
S3 kbdhid; system32\DRIVERS\kbdhid.sys
S3 L1C; system32\DRIVERS\L1C62x64.sys
S3 LSI_FC; \SystemRoot\system32\drivers\lsi_fc.sys
S3 LSI_SAS; \SystemRoot\system32\drivers\lsi_sas.sys
S3 LSI_SAS2; \SystemRoot\system32\drivers\lsi_sas2.sys
S3 LSI_SCSI; \SystemRoot\system32\drivers\lsi_scsi.sys
S3 MBAMProtector; ??\C:\Windows\system32\drivers\mbam.sys
S3 MBAMWebAccessControl; ??\C:\Windows\system32\drivers\mwac.sys
S3 megasas; \SystemRoot\system32\drivers\megasas.sys
S3 MegaSR; \SystemRoot\system32\drivers\MegaSR.sys
S3 MEIx64; system32\DRIVERS\HECIx64.sys
S3 monitor; system32\DRIVERS\monitor.sys
S3 mouclass; system32\DRIVERS\mouclass.sys
S3 mouhid; system32\DRIVERS\mouhid.sys
S3 mpio; \SystemRoot\system32\drivers\mpio.sys
S0 msahci; system32\DRIVERS\msahci.sys
S3 msdsm; \SystemRoot\system32\drivers\msdsm.sys
S0 msisadrv; system32\drivers\msisadrv.sys
S1 mssmbios; \SystemRoot\system32\drivers\mssmbios.sys
S3 MTConfig; \SystemRoot\system32\drivers\MTConfig.sys
S3 nfrd960; \SystemRoot\system32\drivers\nfrd960.sys
S3 NVHDA; system32\drivers\nvhda64v.sys
S3 nvlddmkm; system32\DRIVERS\nvlddmkm.sys
S3 nvraid; \SystemRoot\system32\drivers\nvraid.sys
S3 nvstor; \SystemRoot\system32\drivers\nvstor.sys
S3 nv_agp; \SystemRoot\system32\drivers\nv_agp.sys
S3 ohci1394; \SystemRoot\system32\drivers\ohci1394.sys
S3 Parport; \SystemRoot\system32\drivers\parport.sys
S0 pci; system32\drivers\pci.sys
S0 pciide; system32\DRIVERS\pciide.sys
S3 pcmcia; \SystemRoot\system32\drivers\pcmcia.sys
S3 PGEffect; system32\DRIVERS\pgeffect.sys
S3 Processor; \SystemRoot\system32\drivers\processr.sys
S3 QIOMem; \SystemRoot\system32\drivers\QIOMem.sys
S3 ql2300; \SystemRoot\system32\drivers\ql2300.sys
S3 ql40xx; \SystemRoot\system32\drivers\ql40xx.sys
S3 rdpbus; \SystemRoot\system32\drivers\rdpbus.sys
S3 RFCOMM; system32\DRIVERS\rfcomm.sys
S3 RSUSBSTOR; System32\Drivers\RtsUStor.sys
S3 RSUSBVSTOR; System32\Drivers\RTSUVSTOR.sys
S3 sbp2port; \SystemRoot\system32\drivers\sbp2port.sys
S3 Serenum; \SystemRoot\system32\drivers\serenum.sys
S3 Serial; \SystemRoot\system32\drivers\serial.sys
S3 sermouse; \SystemRoot\system32\drivers\sermouse.sys
S3 sffdisk; \SystemRoot\system32\drivers\sffdisk.sys
S3 sffp_mmc; \SystemRoot\system32\drivers\sffp_mmc.sys
S3 sffp_sd; \SystemRoot\system32\drivers\sffp_sd.sys
S3 sfloppy; \SystemRoot\system32\drivers\sfloppy.sys
S3 SiSRaid2; \SystemRoot\system32\drivers\SiSRaid2.sys
S3 SiSRaid4; \SystemRoot\system32\drivers\sisraid4.sys
S3 stexstor; \SystemRoot\system32\drivers\stexstor.sys
S3 swenum; \SystemRoot\system32\drivers\swenum.sys
S3 SynTP; system32\DRIVERS\SynTP.sys
S3 tdcmdpst; system32\DRIVERS\tdcmdpst.sys
S1 TermDD; \SystemRoot\system32\drivers\termdd.sys
S3 tosrfec; system32\DRIVERS\tosrfec.sys
S3 Tosrfusb; system32\DRIVERS\tosrfusb.sys
S3 TsUsbGD; \SystemRoot\system32\drivers\TsUsbGD.sys
S0 TVALZ; system32\DRIVERS\TVALZ_O.SYS
S2 TVALZFL; system32\DRIVERS\TVALZFL.sys
S3 uagp35; \SystemRoot\system32\drivers\uagp35.sys
S3 uliagpkx; \SystemRoot\system32\drivers\uliagpkx.sys
S3 umbus; system32\DRIVERS\umbus.sys
S3 UmPass; \SystemRoot\system32\drivers\umpass.sys
S3 usbccgp; system32\DRIVERS\usbccgp.sys
S3 usbcir; \SystemRoot\system32\drivers\usbcir.sys
S3 usbehci; system32\DRIVERS\usbehci.sys
S3 usbhub; system32\DRIVERS\usbhub.sys
S3 usbohci; \SystemRoot\system32\drivers\usbohci.sys
S3 usbprint; \SystemRoot\system32\drivers\usbprint.sys
S3 USBSTOR; system32\DRIVERS\USBSTOR.SYS
S3 usbuhci; \SystemRoot\system32\drivers\usbuhci.sys
S3 usbvideo; System32\Drivers\usbvideo.sys
S0 vdrvroot; system32\drivers\vdrvroot.sys
S3 vga; system32\DRIVERS\vgapnp.sys
S3 vhdmp; \SystemRoot\system32\drivers\vhdmp.sys
S3 viaide; \SystemRoot\system32\drivers\viaide.sys
S0 volmgr; system32\drivers\volmgr.sys
S0 volsnap; system32\drivers\volsnap.sys
S3 vsmraid; \SystemRoot\system32\drivers\vsmraid.sys
S3 WacomPen; \SystemRoot\system32\drivers\wacompen.sys
S0 Wd; system32\drivers\wd.sys
S3 WinUsb; system32\DRIVERS\WinUsb.sys
S3 WmiAcpi; \SystemRoot\system32\drivers\wmiacpi.sys
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-29 14:18 - 2016-02-29 14:18 - 00000000 _____ C:\FRST.txt
2016-02-29 14:17 - 2016-02-29 13:46 - 02371072 _____ (Farbar) C:\frst64.exe
2016-02-29 14:13 - 2016-02-29 14:18 - 00000000 ____D C:\FRST
2016-02-28 23:02 - 2016-02-28 23:02 - 00000000 ____D C:\Windows\System32\NgBase
2016-02-28 22:59 - 2016-02-28 23:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-28 11:43 - 2016-02-28 11:43 - 00000000 ____H C:\Users\ΡΑΝΙΑ\Documents\Default.rdp
2016-02-28 11:14 - 2016-02-28 11:14 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-02-28 10:41 - 2016-02-28 10:41 - 00001109 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-28 10:41 - 2016-02-28 10:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-02-28 10:41 - 2016-02-28 10:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-28 10:39 - 2016-02-28 10:40 - 22908888 _____ (Malwarebytes ) C:\Users\ΡΑΝΙΑ\Downloads\mbam-setup-2.2.0.1024.exe
2016-02-28 10:26 - 2014-05-14 08:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2016-02-28 10:26 - 2014-05-14 08:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2016-02-28 10:26 - 2014-05-14 08:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-28 10:26 - 2014-05-14 08:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2016-02-28 10:26 - 2014-05-14 08:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\System32\wups2.dll
2016-02-28 10:26 - 2014-05-14 08:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\System32\wups.dll
2016-02-28 10:26 - 2014-05-14 08:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-02-28 10:26 - 2014-05-14 08:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2016-02-28 10:26 - 2014-05-14 08:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2016-02-28 10:26 - 2014-05-14 08:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-02-28 10:26 - 2014-05-13 23:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2016-02-28 10:26 - 2014-05-13 23:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-02-28 10:26 - 2014-05-13 23:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2016-02-28 10:26 - 2014-05-13 23:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-02-26 06:22 - 2016-02-26 06:22 - 00000000 ____D C:\Program Files\VideoLAN
2016-02-26 04:01 - 2016-02-26 05:05 - 00000000 ____D C:\Users\ΡΑΝΙΑ\Desktop\Aggela΄s Movies
2016-02-26 04:00 - 2016-02-26 04:01 - 00000000 ____D C:\Users\ΡΑΝΙΑ\Desktop\ΤΑΙΝΙΕΣ
2016-02-01 08:19 - 2016-02-01 08:19 - 00000000 ____D C:\Program Files\Common Files\AV
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-29 03:34 - 2011-12-17 03:08 - 00000649 _____ C:\Users\ΡΑΝΙΑ\Desktop\rania - Συντόμευση.lnk
2016-02-29 03:33 - 2014-09-23 10:32 - 00202752 ___SH C:\Users\ΡΑΝΙΑ\Downloads\Thumbs.db
2016-02-29 01:43 - 2012-11-15 10:47 - 00000000 ____D C:\Users\ΡΑΝΙΑ\Downloads\O Asterix Kai Oi Vikings 2006 Greek audio
2016-02-28 23:05 - 2011-11-22 14:16 - 00001142 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3097867916-4245143162-628695532-1000Core.job
2016-02-28 23:04 - 2011-11-22 14:16 - 00001194 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3097867916-4245143162-628695532-1000UA.job
2016-02-28 23:02 - 2013-12-18 11:05 - 00000000 ____D C:\ProgramData\AVAST Software2
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\winevt
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\sysprep
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\spool
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\SMI
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\Setup
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\oobe
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\MUI
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\Msdtc
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\System32\com
2016-02-28 23:02 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\inf
2016-02-28 23:00 - 2013-12-18 11:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-28 12:03 - 2015-10-12 01:44 - 00000000 ____D C:\Windows\SysWOW64\vbox
2016-02-28 11:34 - 2011-06-30 11:50 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-28 11:34 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-28 11:33 - 2009-07-13 21:32 - 00000000 ____D C:\Windows\Performance
2016-02-28 11:30 - 2012-11-16 10:26 - 00000000 ____D C:\Program Files (x86)\GameYard
2016-02-28 11:13 - 2013-12-18 11:06 - 00000000 ____D C:\Program Files\AVAST Software22
2016-02-28 10:30 - 2012-11-22 10:26 - 00000000 ____D C:\Program Files (x86)\Alawar
2016-02-28 10:23 - 2012-11-15 10:06 - 00000000 ____D C:\Users\ΡΑΝΙΑ\AppData\Roaming\uTorrent
2016-02-26 10:05 - 2011-11-08 10:40 - 00000000 ____D C:\Users\ΡΑΝΙΑ\AppData\Roaming\Adobe
2016-02-26 10:04 - 2011-11-12 05:01 - 00000000 ____D C:\Users\ΡΑΝΙΑ\AppData\Local\Adobe
2016-02-26 09:58 - 2012-11-16 10:26 - 00000000 ____D C:\Users\ΡΑΝΙΑ\AppData\LocalLow\Temp
2016-02-26 06:18 - 2011-11-22 14:17 - 00002374 _____ C:\Users\ΡΑΝΙΑ\Desktop\Google Chrome.lnk
2016-02-26 05:33 - 2012-11-16 10:13 - 00000000 ____D C:\Users\ΡΑΝΙΑ\AppData\Roaming\dvdcss
2016-02-01 08:45 - 2012-11-16 10:26 - 00000000 ____D C:\Users\ΡΑΝΙΑ\AppData\Local\Conduit
2016-02-01 08:45 - 2012-11-16 10:26 - 00000000 ____D C:\Program Files (x86)\Conduit
Some files in TEMP:
C:\Users\ΡΑΝΙΑ\AppData\Local\Temp\guninst.exe
==================== Known DLLs (Whitelisted) =========================
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys IS MISSING <==== ATTENTION
C:\Windows\System32\codeintegrity\Bootcat.cache IS MISSING <==== ATTENTION