Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

COM Surrogate keeps popping up and closing


  • This topic is locked This topic is locked
6 replies to this topic

#1 dragonster82

dragonster82

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:36 PM

Posted 04 July 2015 - 12:24 AM

Hello there,

I have an issue with COM surrogate ( rundll ) popping up every few seconds and then closing. I'm getting really paranoid because this has never happened before and I'm almost certain that it's a malware, but my antivirus (Anti malware bytes ) did not detect any viruses or malwares, and I've been scouting for answers for days on this forums and the web.

Here is the FRST scan, I hope someone can help me, thanks!

 

Attached Files



BC AdBot (Login to Remove)

 


#2 dragonster82

dragonster82
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:36 PM

Posted 05 July 2015 - 09:46 AM

Sorry for bumping it up again, but I've reformatted my computer and STILL have this issue after reinstalling all my programs,I have rerun FRST and here are the results.

 

 

Attached Files

  • Attached File  FRST.txt   89.49KB   4 downloads


#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,762 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:36 AM

Posted 09 July 2015 - 12:25 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/581769 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#4 dragonster82

dragonster82
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:36 PM

Posted 09 July 2015 - 02:16 AM

Alright, although nobody responded I'll give it another shot.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015
Ran by Darren (administrator) on GUNTHER-PC on 09-07-2015 15:15:28
Running from K:\Downloads
Loaded Profiles: Darren (Available Profiles: Darren)
Platform: Windows 8.1 (X64) OS Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Malwarebytes Corporation) K:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) K:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) K:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Valve Corporation) K:\Program Files (x86)\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPictureViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMovieViewer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDYT.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDWebCam.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Flux Software LLC) C:\Users\Darren\AppData\Local\FluxSoftware\Flux\flux.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) K:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) K:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) K:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) K:\Program Files (x86)\Steam\steamapps\common\Age2HD\AoK HD.exe
(Valve Corporation) K:\Program Files (x86)\Steam\GameOverlayUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-13] (Logitech Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-3673265639-2394144318-338424315-1001\...\Run: [Steam] => K:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-05] (Valve Corporation)
HKU\S-1-5-21-3673265639-2394144318-338424315-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53282944 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-3673265639-2394144318-338424315-1001\...\Run: [f.lux] => C:\Users\Darren\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3673265639-2394144318-338424315-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/en-sg/?ocid=iehp
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> K:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-07-07] (Oracle Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> K:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-07] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{B2E92701-1331-44F7-9A63-1CAAEF69DC2D}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{BE1FF3BC-1DA4-4D75-93DE-38562903C306}: [DhcpNameServer] 209.222.18.222 209.222.18.218

FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.1 -> K:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> K:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> K:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-07] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> K:\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-07-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-07-05] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Search) - C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-05]
CHR Extension: (AdBlock) - C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-05]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-05]
CHR Extension: (Google Maps) - C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-07-05]
CHR Extension: (Google Wallet) - C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-05]
CHR Extension: (Outlook.com) - C:\Users\Darren\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2015-07-05]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-22] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
R2 MBAMScheduler; k:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; k:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-22] (Microsoft Corporation)
R3 LGPBTDD; C:\Windows\System32\Drivers\LGPBTDD.sys [30728 2009-07-02] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-09] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39240 2015-06-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 ysusb64; C:\Windows\system32\drivers\ysusb64.sys [132672 2014-12-16] (Yamaha Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-08 20:02 - 2015-07-08 20:02 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2015-07-08 20:02 - 2015-07-08 20:02 - 00000000 ____D C:\Users\Darren\AppData\Local\FluxSoftware
2015-07-07 12:08 - 2015-07-07 12:08 - 00000760 _____ C:\Users\Darren\Desktop\Minecraft.lnk
2015-07-07 10:23 - 2015-07-07 10:23 - 00000000 ____D C:\Users\Darren\AppData\Roaming\NVIDIA
2015-07-07 10:22 - 2015-07-07 19:55 - 00000000 ____D C:\Users\Darren\AppData\Roaming\.minecraft
2015-07-07 10:22 - 2015-07-07 10:22 - 00000000 ____D C:\Users\Darren\AppData\Roaming\java
2015-07-07 10:21 - 2015-07-07 10:21 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-07-07 10:21 - 2015-07-07 10:21 - 00000000 ____D C:\ProgramData\Sun
2015-07-07 10:21 - 2015-07-07 10:21 - 00000000 ____D C:\ProgramData\Oracle
2015-07-07 10:21 - 2015-07-07 10:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-06 20:10 - 2015-07-06 20:10 - 00000000 ____D C:\Users\Darren\AppData\Roaming\LolClient
2015-07-06 19:32 - 2015-07-06 19:32 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Garena
2015-07-06 19:32 - 2015-07-06 19:32 - 00000000 ____D C:\Users\Darren\AppData\Local\Garena
2015-07-06 19:32 - 2015-07-06 19:32 - 00000000 ____D C:\ProgramData\Garena
2015-07-06 19:32 - 2015-07-06 19:32 - 00000000 ____D C:\GarenaDownload
2015-07-06 19:02 - 2015-07-06 19:02 - 00000222 _____ C:\Users\Darren\Desktop\Age of Empires II HD Edition.url
2015-07-05 22:44 - 2015-07-09 15:15 - 00000000 ____D C:\FRST
2015-07-05 14:49 - 2015-07-05 14:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2015-07-05 14:41 - 2015-07-05 14:54 - 00000000 ____D C:\ProgramData\PMS
2015-07-05 14:41 - 2015-07-05 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS3 Media Server
2015-07-05 11:33 - 2015-07-08 21:51 - 00000000 ____D C:\Users\Darren\AppData\Roaming\vlc
2015-07-05 10:18 - 2015-07-05 10:18 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-07-05 10:17 - 2015-05-12 02:17 - 01201664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-07-05 10:17 - 2015-05-12 00:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-07-05 10:17 - 2015-05-08 01:50 - 22292672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-07-05 10:17 - 2015-05-08 01:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-07-05 10:17 - 2015-05-08 00:53 - 19734960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-07-05 10:17 - 2015-05-08 00:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-07-05 10:17 - 2015-05-07 23:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-07-05 10:17 - 2015-05-07 23:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-07-05 10:17 - 2015-05-03 23:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-05 10:17 - 2015-05-03 22:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-05 10:17 - 2015-05-03 22:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-07-05 10:17 - 2015-05-03 22:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-07-05 10:17 - 2015-05-03 08:39 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-07-05 10:17 - 2015-04-30 07:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-07-05 10:17 - 2015-04-25 10:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-07-05 10:17 - 2015-01-30 11:01 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-07-05 10:17 - 2015-01-30 11:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-07-05 10:17 - 2015-01-06 11:01 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-07-05 10:17 - 2015-01-06 10:59 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-07-05 10:17 - 2015-01-06 09:12 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2015-07-05 10:17 - 2015-01-06 09:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-07-05 10:17 - 2014-11-18 04:17 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-07-05 10:17 - 2014-11-18 04:17 - 00273240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-07-05 10:17 - 2014-11-14 14:54 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2015-07-05 10:17 - 2014-11-14 14:46 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-07-05 10:16 - 2015-05-12 21:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-05 10:16 - 2015-05-12 08:24 - 00536920 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-05 10:16 - 2015-05-08 00:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-07-05 10:16 - 2015-05-03 23:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-05 10:16 - 2015-05-03 22:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-07-05 10:16 - 2015-05-02 07:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-05 10:16 - 2015-05-01 09:13 - 06521800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-07-05 10:16 - 2015-05-01 09:13 - 01488000 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-07-05 10:16 - 2015-05-01 09:13 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-07-05 10:16 - 2015-04-28 21:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-07-05 10:16 - 2015-04-28 21:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-07-05 10:16 - 2015-04-23 23:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-07-05 10:16 - 2015-04-23 23:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-07-05 10:16 - 2014-11-16 03:05 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-07-05 10:16 - 2014-11-15 14:29 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-07-05 10:16 - 2014-11-14 14:57 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-07-05 10:16 - 2014-11-14 13:03 - 00885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-07-05 10:16 - 2014-11-11 02:06 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-07-05 10:16 - 2014-11-11 02:06 - 00473408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-07-05 10:16 - 2014-11-11 02:06 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-07-05 10:16 - 2014-11-11 02:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-07-05 10:16 - 2014-11-10 10:57 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-07-05 10:16 - 2014-11-10 09:37 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-07-05 10:16 - 2014-11-10 09:34 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-07-05 10:16 - 2014-11-10 09:26 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-07-05 10:16 - 2014-11-10 09:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-07-05 10:16 - 2014-11-10 09:09 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-07-05 10:16 - 2014-11-10 09:08 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-07-05 10:16 - 2014-11-10 09:06 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-07-05 10:16 - 2014-11-10 08:57 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-07-05 10:16 - 2014-11-10 08:57 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-07-05 10:16 - 2014-11-08 12:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-07-05 10:16 - 2014-11-08 11:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys
2015-07-05 10:16 - 2014-11-08 11:56 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2015-07-05 10:16 - 2014-11-08 11:56 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2015-07-05 10:16 - 2014-11-08 11:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2015-07-05 10:16 - 2014-11-08 11:24 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2015-07-05 10:16 - 2014-11-08 11:13 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2015-07-05 10:16 - 2014-11-08 11:13 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2015-07-05 10:16 - 2014-11-08 11:13 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2015-07-05 10:16 - 2014-11-08 10:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2015-07-05 10:16 - 2014-11-08 10:38 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-07-05 10:16 - 2014-11-08 10:17 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-07-05 10:16 - 2014-11-08 10:03 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-07-05 10:16 - 2014-11-08 09:58 - 04837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-07-05 10:16 - 2014-11-08 09:49 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-07-05 10:16 - 2014-11-07 11:58 - 00952896 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-07-05 10:16 - 2014-11-07 11:20 - 00786120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-07-05 10:16 - 2014-11-05 10:12 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-07-05 10:16 - 2014-11-05 10:12 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-07-05 10:16 - 2014-11-05 10:06 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-07-05 10:16 - 2014-11-05 09:44 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-07-05 10:16 - 2014-11-05 09:43 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-07-05 10:16 - 2014-11-05 09:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-07-05 10:16 - 2014-11-05 09:39 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2015-07-05 10:16 - 2014-11-05 09:39 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2015-07-05 10:16 - 2014-11-05 09:33 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-07-05 10:16 - 2014-11-05 09:21 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-07-05 10:16 - 2014-11-05 09:20 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-07-05 10:16 - 2014-11-05 09:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-07-05 10:16 - 2014-11-05 09:14 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-07-05 10:16 - 2014-11-05 09:06 - 00555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-07-05 10:16 - 2014-11-05 03:33 - 00058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2015-07-05 10:16 - 2014-11-05 03:25 - 00059712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-07-05 10:16 - 2014-11-05 03:25 - 00051008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-07-05 10:16 - 2014-11-04 14:55 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-07-05 10:16 - 2014-11-04 14:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-07-05 10:16 - 2014-11-04 14:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-07-05 10:16 - 2014-11-04 14:54 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-07-05 10:16 - 2014-11-04 14:27 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-07-05 10:16 - 2014-11-04 13:01 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-07-05 10:16 - 2014-10-31 08:51 - 18823168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-07-05 10:16 - 2014-10-31 08:10 - 15158784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-07-05 10:16 - 2014-10-29 11:05 - 00551232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-07-05 10:16 - 2014-10-29 09:55 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-07-05 10:16 - 2014-10-29 09:13 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-07-05 10:16 - 2014-10-21 09:59 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2015-07-05 10:16 - 2014-10-21 09:19 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2015-07-05 10:16 - 2014-10-21 08:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-07-05 10:16 - 2014-10-21 08:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-07-05 10:16 - 2014-10-21 08:31 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-07-05 10:16 - 2014-10-21 08:30 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-07-05 10:16 - 2014-10-21 08:20 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-07-05 10:16 - 2014-10-17 12:56 - 00039744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-07-05 10:16 - 2014-10-17 11:35 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-07-05 09:57 - 2015-07-05 09:57 - 00001241 _____ C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Private Internet Access.lnk
2015-07-05 09:57 - 2015-07-05 09:57 - 00001013 _____ C:\Users\Darren\Desktop\Private Internet Access.lnk
2015-07-05 09:52 - 2015-07-05 09:52 - 00000000 ____D C:\Users\Darren\AppData\Local\SCE
2015-07-05 09:52 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-07-05 09:52 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-07-05 09:52 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-07-05 09:52 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-07-05 09:52 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-07-05 09:52 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-07-05 09:52 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-07-05 09:52 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-07-05 09:52 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-07-05 09:52 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-07-05 09:52 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-07-05 09:52 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-07-05 09:52 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-07-05 09:52 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-07-05 09:52 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-07-05 09:52 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-07-05 09:52 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-07-05 09:52 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-07-05 09:52 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-07-05 09:52 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-07-05 09:52 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-07-05 09:52 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-07-05 09:52 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-07-05 09:52 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-07-05 09:52 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-07-05 09:52 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-07-05 09:52 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-07-05 09:52 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-07-05 09:52 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-07-05 09:52 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-07-05 09:52 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-07-05 09:52 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-07-05 09:52 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-07-05 09:52 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-07-05 09:52 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-07-05 09:52 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-07-05 09:52 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-07-05 09:52 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-07-05 09:52 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-07-05 09:52 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-07-05 09:52 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-07-05 09:52 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-07-05 09:52 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-07-05 09:52 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-07-05 09:52 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-07-05 09:52 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-07-05 09:52 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-07-05 09:52 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-07-05 09:52 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-07-05 09:52 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-07-05 09:52 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-07-05 09:52 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-07-05 09:52 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-07-05 09:52 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-07-05 09:52 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-07-05 09:52 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-07-05 09:52 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-07-05 09:52 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-07-05 09:52 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-07-05 09:52 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-07-05 09:52 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-07-05 09:52 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-07-05 09:52 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-07-05 09:52 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-07-05 09:52 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-07-05 09:52 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-07-05 09:52 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-07-05 09:52 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-07-05 09:52 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-07-05 09:52 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-07-05 09:52 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-07-05 09:52 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-07-05 09:52 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-07-05 09:52 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-07-05 09:52 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-07-05 09:52 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-07-05 09:52 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-07-05 09:52 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-07-05 09:52 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-07-05 09:52 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-07-05 09:52 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-07-05 09:52 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-07-05 09:52 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-07-05 09:52 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-07-05 09:52 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-07-05 09:52 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-07-05 09:52 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-07-05 09:52 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-07-05 09:52 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-07-05 09:52 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-07-05 09:52 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-07-05 09:52 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-07-05 09:52 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-07-05 09:52 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-07-05 09:52 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-07-05 09:52 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-07-05 09:52 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-07-05 09:52 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-07-05 09:52 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-07-05 09:52 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-07-05 09:52 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-07-05 09:52 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-07-05 09:52 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-07-05 09:52 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-07-05 09:52 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-07-05 09:52 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-07-05 09:52 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-07-05 09:52 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-07-05 09:52 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-07-05 09:52 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-07-05 09:52 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-07-05 09:52 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-07-05 09:52 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-07-05 09:52 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-07-05 09:52 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-07-05 09:52 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-07-05 09:52 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-07-05 09:52 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-07-05 09:52 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-07-05 09:52 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-07-05 09:52 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-07-05 09:52 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-07-05 09:52 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-07-05 09:52 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-07-05 09:52 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-07-05 09:52 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-07-05 09:52 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-07-05 09:52 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-07-05 09:52 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-07-05 09:52 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-07-05 09:52 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-07-05 09:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-07-05 09:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-07-05 09:52 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-07-05 09:52 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-07-05 09:52 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-07-05 09:52 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-07-05 09:52 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-07-05 09:52 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-07-05 09:52 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-07-05 09:52 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-07-05 09:52 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-07-05 09:52 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-07-05 09:52 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-07-05 09:52 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-07-05 09:52 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-07-05 09:52 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-07-05 09:52 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-07-05 09:52 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-07-05 09:52 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-07-05 09:52 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-07-05 09:52 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-07-05 09:52 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-07-05 09:51 - 2015-05-25 21:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-07-05 09:51 - 2015-05-25 21:07 - 01430528 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-07-05 09:46 - 2015-07-05 09:46 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-05 09:35 - 2015-07-05 09:37 - 00000000 ____D C:\Windows\system32\MRT
2015-07-05 09:35 - 2015-05-27 00:04 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-07-05 09:28 - 2014-04-16 07:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-07-05 09:28 - 2014-04-16 07:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-07-05 09:22 - 2015-07-05 09:22 - 00000000 ____D C:\Users\Darren\Tracing
2015-07-05 09:21 - 2015-07-09 14:54 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Skype
2015-07-05 09:21 - 2015-07-05 09:21 - 00002713 _____ C:\Users\Public\Desktop\Skype.lnk
2015-07-05 09:21 - 2015-07-05 09:21 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-05 09:21 - 2015-07-05 09:21 - 00000000 ____D C:\Users\Darren\AppData\Local\Skype
2015-07-05 09:21 - 2015-07-05 09:21 - 00000000 ____D C:\ProgramData\Skype
2015-07-05 09:21 - 2015-07-05 09:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-05 09:18 - 2015-07-08 14:35 - 00000000 ____D C:\Users\Darren\AppData\Roaming\uTorrent
2015-07-05 09:14 - 2015-07-05 09:14 - 00000222 _____ C:\Users\Darren\Desktop\H1Z1.url
2015-07-05 09:11 - 2015-07-05 09:11 - 00000000 ____D C:\Users\Darren\AppData\Local\Steam
2015-07-05 09:10 - 2015-07-05 09:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-07-05 09:09 - 2015-02-04 07:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-07-05 09:09 - 2015-02-04 07:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-07-05 09:09 - 2015-02-04 07:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-07-05 09:09 - 2015-02-03 07:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-07-05 09:09 - 2015-02-03 07:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-07-05 09:09 - 2015-01-27 11:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-07-05 09:09 - 2015-01-24 09:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2015-07-05 09:09 - 2014-11-10 10:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-07-05 09:09 - 2014-11-10 09:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-07-05 09:09 - 2014-10-31 07:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-05 09:09 - 2014-10-31 07:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-07-05 09:08 - 2015-03-18 01:26 - 00467776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-07-05 09:08 - 2015-01-23 15:17 - 00723072 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-07-05 09:08 - 2015-01-23 13:02 - 00560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-07-05 09:07 - 2015-07-05 09:07 - 00002796 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-07-05 09:07 - 2015-07-05 09:07 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-07-05 09:07 - 2015-07-05 09:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-05 09:07 - 2015-07-05 09:07 - 00000000 ____D C:\Program Files\CCleaner
2015-07-05 09:07 - 2015-05-22 21:08 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-05 09:07 - 2015-05-21 21:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-05 09:07 - 2015-05-21 21:08 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-05 09:07 - 2015-05-21 21:08 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-05 09:07 - 2015-05-21 21:08 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-05 09:07 - 2015-05-21 21:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-07-05 09:07 - 2015-05-21 21:08 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-05 09:07 - 2015-04-17 06:07 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-05 09:07 - 2015-04-10 08:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-07-05 09:07 - 2015-04-10 08:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-07-05 09:07 - 2015-03-14 16:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-07-05 09:07 - 2015-03-14 16:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-07-05 09:07 - 2015-03-09 10:02 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-07-05 09:07 - 2015-01-29 09:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-07-05 09:07 - 2015-01-29 09:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll
2015-07-05 09:07 - 2014-12-19 16:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-07-05 09:07 - 2014-12-19 16:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-07-05 09:07 - 2014-10-31 06:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-07-05 09:07 - 2014-10-31 06:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-07-05 09:06 - 2015-07-05 18:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-05 09:06 - 2015-05-01 07:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-07-05 09:06 - 2015-05-01 06:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-07-05 09:06 - 2015-04-02 06:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-07-05 09:06 - 2015-04-02 06:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-07-05 09:06 - 2015-04-01 11:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-07-05 09:06 - 2015-04-01 10:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-07-05 09:06 - 2015-03-20 11:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-07-05 09:06 - 2015-03-20 11:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-07-05 09:06 - 2015-03-20 10:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-07-05 09:06 - 2015-03-20 10:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-07-05 09:06 - 2015-03-20 09:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-07-05 09:06 - 2015-03-13 09:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-07-05 09:06 - 2015-03-13 08:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-07-05 09:06 - 2015-03-04 09:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-07-05 09:06 - 2015-03-04 09:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-07-05 09:06 - 2015-03-02 09:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-07-05 09:06 - 2015-03-02 09:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-07-05 09:06 - 2015-02-20 11:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-05 09:06 - 2015-02-20 10:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-05 09:06 - 2015-02-20 10:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-05 09:06 - 2015-02-20 10:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-05 09:06 - 2015-02-06 04:24 - 01113920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-07-05 09:06 - 2015-01-30 08:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-07-05 09:06 - 2015-01-29 09:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-07-05 09:06 - 2014-12-09 11:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-07-05 09:06 - 2014-12-09 09:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-07-05 09:06 - 2014-11-14 14:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-07-05 09:05 - 2015-07-05 09:05 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Titanium
2015-07-05 09:05 - 2015-07-05 09:05 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Apple Computer
2015-07-05 09:05 - 2015-07-05 09:05 - 00000000 ____D C:\Users\Darren\AppData\Local\Apple Computer
2015-07-05 09:05 - 2015-05-22 00:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-05 09:05 - 2015-03-30 13:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-07-05 09:05 - 2015-03-27 11:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-07-05 09:05 - 2015-03-27 10:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-07-05 09:05 - 2015-03-27 10:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-05 09:05 - 2015-03-24 05:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-07-05 09:05 - 2015-03-24 05:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-07-05 09:05 - 2015-03-24 05:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-07-05 09:05 - 2015-03-24 05:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-07-05 09:05 - 2015-03-24 05:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-07-05 09:05 - 2015-03-20 12:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-07-05 09:05 - 2015-03-20 12:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-07-05 09:05 - 2015-03-20 12:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-07-05 09:05 - 2015-03-20 11:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-07-05 09:05 - 2015-03-20 10:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-07-05 09:05 - 2015-03-20 10:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-07-05 09:05 - 2015-03-20 10:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-07-05 09:05 - 2015-03-11 09:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-07-05 09:05 - 2015-03-11 09:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-07-05 09:05 - 2015-02-24 16:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-07-05 09:05 - 2015-01-16 06:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-05 09:05 - 2014-11-10 07:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-05 09:05 - 2014-11-10 07:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-05 09:05 - 2014-10-29 09:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-07-05 09:05 - 2014-10-29 09:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-07-05 09:05 - 2014-10-29 09:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-07-05 09:05 - 2014-10-29 09:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-07-05 09:05 - 2014-10-29 09:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-07-05 09:05 - 2014-10-29 09:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-07-05 09:05 - 2014-07-24 11:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-07-05 09:05 - 2014-07-24 11:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-07-05 09:04 - 2015-07-05 09:54 - 00000000 ____D C:\Program Files\pia_manager
2015-07-05 09:04 - 2015-07-05 09:04 - 00031232 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
2015-07-05 09:04 - 2015-07-05 09:04 - 00003164 _____ C:\Windows\System32\Tasks\Private Internet Access Startup
2015-07-05 09:04 - 2015-05-27 22:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-05 09:04 - 2015-05-27 22:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-05 09:04 - 2015-05-23 11:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-05 09:04 - 2015-05-23 11:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-07-05 09:04 - 2015-05-23 11:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-05 09:04 - 2015-05-23 11:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-05 09:04 - 2015-05-23 11:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-07-05 09:04 - 2015-05-23 10:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-05 09:04 - 2015-05-23 10:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-05 09:04 - 2015-05-23 10:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-05 09:04 - 2015-05-23 10:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-07-05 09:04 - 2015-05-23 10:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-07-05 09:04 - 2015-05-23 10:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-05 09:04 - 2015-05-23 10:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-05 09:04 - 2015-05-23 10:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-05 09:04 - 2015-05-23 10:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-05 09:04 - 2015-05-23 10:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-07-05 09:04 - 2015-05-23 10:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-05 09:04 - 2015-05-23 10:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-05 09:04 - 2015-05-23 10:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-05 09:04 - 2015-05-23 03:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-05 09:04 - 2015-05-23 03:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-05 09:04 - 2015-05-23 03:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-05 09:04 - 2015-05-23 02:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-05 09:04 - 2015-05-23 02:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-05 09:04 - 2015-05-23 02:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-05 09:04 - 2015-05-23 02:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-07-05 09:04 - 2015-05-23 02:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-05 09:04 - 2015-05-23 02:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-07-05 09:04 - 2015-05-23 02:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-05 09:04 - 2015-05-23 02:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-07-05 09:04 - 2015-05-23 02:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-07-05 09:04 - 2015-05-23 02:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-07-05 09:04 - 2015-05-23 02:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-05 09:04 - 2015-05-23 02:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-05 09:04 - 2015-05-23 01:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-05 09:04 - 2015-05-23 01:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-05 09:04 - 2015-05-23 01:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-07-05 09:04 - 2015-05-23 01:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-05 09:04 - 2015-05-23 01:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-05 09:04 - 2015-04-25 10:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-07-05 09:04 - 2015-04-25 10:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-07-05 09:04 - 2015-04-22 00:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-07-05 09:04 - 2015-04-21 23:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-07-05 09:04 - 2015-04-21 23:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-07-05 09:04 - 2015-04-16 14:17 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-07-05 09:04 - 2015-04-14 06:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-07-05 09:04 - 2015-04-14 06:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-07-05 09:04 - 2015-04-10 09:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-07-05 09:04 - 2015-04-10 08:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-07-05 09:04 - 2015-04-10 08:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-07-05 09:04 - 2015-04-10 08:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-07-05 09:04 - 2015-04-10 08:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-07-05 09:04 - 2015-04-09 06:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-07-05 09:04 - 2015-04-09 06:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-07-05 09:04 - 2015-04-03 08:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-07-05 09:04 - 2015-04-03 08:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-07-05 09:04 - 2015-04-01 12:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-07-05 09:04 - 2015-04-01 12:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-07-05 09:04 - 2015-04-01 12:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-07-05 09:04 - 2015-04-01 12:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-07-05 09:04 - 2015-04-01 11:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-07-05 09:04 - 2015-04-01 11:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-07-05 09:04 - 2015-04-01 11:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-07-05 09:04 - 2015-04-01 10:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-07-05 09:04 - 2015-04-01 10:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-07-05 09:04 - 2015-04-01 10:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-07-05 09:04 - 2015-04-01 10:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-07-05 09:04 - 2015-04-01 10:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-07-05 09:04 - 2015-04-01 10:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-07-05 09:04 - 2015-03-13 12:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-07-05 09:04 - 2015-03-13 12:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-07-05 09:04 - 2015-03-13 10:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-07-05 09:04 - 2015-03-13 10:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-07-05 09:04 - 2015-03-13 10:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-07-05 09:04 - 2015-03-06 11:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-07-05 09:04 - 2015-03-06 10:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-07-05 09:04 - 2015-03-06 10:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-07-05 09:04 - 2015-03-04 18:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-07-05 09:04 - 2015-03-04 11:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-07-05 09:04 - 2015-03-04 10:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-07-05 09:04 - 2015-02-21 07:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-07-05 09:04 - 2015-02-20 10:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-05 09:04 - 2015-02-20 10:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-05 09:04 - 2015-02-18 07:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-07-05 09:04 - 2015-02-08 07:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-07-05 09:04 - 2015-02-08 07:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-07-05 09:04 - 2015-02-03 08:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2015-07-05 09:04 - 2015-02-03 08:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2015-07-05 09:04 - 2015-01-31 07:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-07-05 09:04 - 2015-01-30 10:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-07-05 09:04 - 2015-01-30 10:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-07-05 09:04 - 2015-01-30 10:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-07-05 09:04 - 2015-01-30 09:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-07-05 09:04 - 2015-01-30 09:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-07-05 09:04 - 2015-01-30 09:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2015-07-05 09:04 - 2015-01-30 09:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-07-05 09:04 - 2015-01-30 09:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2015-07-05 09:04 - 2015-01-30 09:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-07-05 09:04 - 2015-01-30 09:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2015-07-05 09:04 - 2015-01-30 09:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2015-07-05 09:04 - 2015-01-30 09:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2015-07-05 09:04 - 2015-01-30 09:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2015-07-05 09:04 - 2015-01-30 02:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-07-05 09:04 - 2015-01-30 02:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-07-05 09:04 - 2015-01-29 08:59 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-05 09:04 - 2015-01-29 08:49 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-05 09:04 - 2015-01-28 10:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2015-07-05 09:04 - 2015-01-28 09:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2015-07-05 09:04 - 2015-01-28 09:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-07-05 09:04 - 2015-01-28 09:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-07-05 09:04 - 2015-01-27 12:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-07-05 09:04 - 2015-01-27 10:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-05 09:04 - 2015-01-12 10:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-05 09:04 - 2015-01-12 09:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-07-05 09:04 - 2014-12-19 14:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-07-05 09:04 - 2014-12-12 10:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-07-05 09:04 - 2014-12-11 13:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2015-07-05 09:04 - 2014-12-09 03:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-07-05 09:04 - 2014-12-09 03:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-07-05 09:04 - 2014-12-09 03:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-07-05 09:04 - 2014-12-09 03:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-07-05 09:04 - 2014-12-09 03:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-07-05 09:04 - 2014-12-09 03:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-07-05 09:04 - 2014-12-09 03:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-07-05 09:04 - 2014-12-09 03:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-07-05 09:04 - 2014-12-06 11:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-07-05 09:04 - 2014-12-06 09:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-07-05 09:04 - 2014-12-06 09:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-05 09:02 - 2015-07-09 14:54 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-05 09:02 - 2015-07-05 09:02 - 00000826 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-05 09:02 - 2015-07-05 09:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-05 09:02 - 2015-07-05 09:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-05 09:02 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-05 09:02 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-05 09:02 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-05 08:52 - 2015-07-07 10:15 - 00093696 ___SH C:\Users\Darren\Desktop\Thumbs.db
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\Users\Darren\AppData\Local\Logitech
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\ProgramData\LogiShrd
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\ProgramData\Apple
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\Program Files\Bonjour
2015-07-05 08:52 - 2015-07-05 08:52 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-07-05 08:51 - 2015-07-07 10:02 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-05 08:49 - 2015-07-05 08:49 - 00000669 _____ C:\Users\Darren\Desktop\Downloads.lnk
2015-07-05 08:48 - 2015-07-05 08:48 - 00000701 _____ C:\Users\Darren\Desktop\Lovely Movies.lnk
2015-07-05 08:48 - 2015-07-05 08:48 - 00000000 ____D C:\Program Files\Common Files\Steinberg
2015-07-05 08:48 - 2015-07-05 08:48 - 00000000 ____D C:\Program Files (x86)\Yamaha
2015-07-05 08:48 - 2015-07-05 08:48 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2015-07-05 08:47 - 2015-06-17 14:03 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-07-05 08:46 - 2015-07-05 09:49 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-05 08:46 - 2015-06-17 17:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-07-05 08:46 - 2015-06-17 17:10 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00879000 _____ C:\Windows\system32\nvmcumd.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-07-05 08:46 - 2015-06-17 17:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00117392 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-07-05 08:46 - 2015-06-17 17:10 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-07-05 08:45 - 2015-07-05 08:45 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Logitech
2015-07-05 08:45 - 2015-07-05 08:45 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Logishrd
2015-07-05 08:45 - 2015-07-05 08:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-07-05 08:44 - 2015-07-05 08:44 - 00000000 ____D C:\Users\Darren\AppData\Local\Downloaded Installations
2015-07-05 08:44 - 2015-07-05 08:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-07-05 08:43 - 2015-07-05 09:49 - 00000000 ____D C:\Users\Darren\AppData\Local\NVIDIA Corporation
2015-07-05 08:43 - 2015-07-05 08:43 - 00000733 _____ C:\Users\Public\Desktop\UltraDefrag.lnk
2015-07-05 08:43 - 2015-07-05 08:43 - 00000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraDefrag.lnk
2015-07-05 08:40 - 2015-07-05 08:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-07-05 08:40 - 2015-06-24 19:36 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-07-05 08:40 - 2015-06-24 19:36 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-07-05 08:40 - 2015-06-24 19:36 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-07-05 08:40 - 2015-06-24 19:36 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-07-05 08:40 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-07-05 08:40 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-07-05 08:40 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-07-05 08:40 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-07-05 08:40 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-07-05 08:40 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-07-05 08:39 - 2015-05-19 11:29 - 00046768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-07-05 08:39 - 2015-05-19 11:14 - 00061616 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-07-05 08:39 - 2015-05-19 11:14 - 00057520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-07-05 08:30 - 2015-07-05 08:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-05 08:29 - 2015-07-09 14:53 - 00000916 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-05 08:29 - 2015-07-08 21:34 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-05 08:29 - 2015-07-05 08:30 - 00000000 ____D C:\Users\Darren\AppData\Local\Google
2015-07-05 08:29 - 2015-07-05 08:29 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-05 08:29 - 2015-07-05 08:29 - 00003656 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-05 08:29 - 2015-07-05 08:29 - 00000000 ____D C:\Program Files (x86)\Google
2015-07-05 08:28 - 2015-07-05 08:43 - 00000000 ____D C:\Users\Darren\AppData\Local\NVIDIA
2015-07-05 08:26 - 2015-07-08 20:11 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3673265639-2394144318-338424315-1001
2015-07-05 08:25 - 2015-07-05 14:24 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-05 08:25 - 2015-06-17 17:10 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-07-05 08:25 - 2015-06-17 17:10 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-07-05 08:25 - 2015-06-17 14:48 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-07-05 08:25 - 2015-06-17 14:48 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-07-05 08:25 - 2015-06-17 14:48 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-07-05 08:25 - 2015-06-17 14:48 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-07-05 08:25 - 2015-06-17 14:48 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-07-05 08:25 - 2015-06-17 14:48 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-07-05 08:25 - 2015-06-02 22:11 - 04421614 _____ C:\Windows\system32\nvcoproc.bin
2015-07-05 08:24 - 2015-07-05 09:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-05 08:24 - 2015-07-05 08:48 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-07-05 08:24 - 2015-07-05 08:47 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-05 08:23 - 2015-07-05 08:23 - 00000000 __SHD C:\Users\Darren\AppData\Local\EmieUserList
2015-07-05 08:23 - 2015-07-05 08:23 - 00000000 __SHD C:\Users\Darren\AppData\Local\EmieSiteList
2015-07-05 08:23 - 2015-07-05 08:23 - 00000000 __SHD C:\Users\Darren\AppData\Local\EmieBrowserModeList
2015-07-05 08:23 - 2015-07-05 08:23 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Macromedia
2015-07-05 08:22 - 2015-07-05 08:22 - 00000000 ____D C:\Users\Darren\OneDrive
2015-07-05 08:22 - 2015-07-05 08:22 - 00000000 ____D C:\Users\Darren\AppData\Local\GWX
2015-07-05 08:18 - 2015-07-05 08:18 - 00001442 _____ C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-05 08:18 - 2015-07-05 08:18 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Adobe
2015-07-05 08:16 - 2015-07-05 08:25 - 00000000 ____D C:\Users\Darren\AppData\Local\Packages
2015-07-05 08:16 - 2015-07-05 08:16 - 00000000 ____D C:\Users\Darren\AppData\Local\VirtualStore
2015-07-05 08:15 - 2015-07-05 09:22 - 00000000 ____D C:\Users\Darren
2015-07-05 08:15 - 2015-07-05 08:15 - 00000020 ___SH C:\Users\Darren\ntuser.ini
2015-07-05 08:15 - 2014-11-22 13:25 - 00000000 ___RD C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-05 08:15 - 2014-11-22 13:25 - 00000000 ___RD C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-05 08:15 - 2014-11-22 13:25 - 00000000 ___RD C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-05 08:15 - 2014-11-22 09:02 - 00000369 _____ C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-07-05 08:15 - 2014-11-22 09:02 - 00000369 _____ C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-07-05 08:15 - 2013-08-22 23:36 - 00000000 ____D C:\Users\Darren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-05 08:13 - 2015-07-06 15:50 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-05 08:13 - 2015-07-05 08:13 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-05 08:12 - 2015-07-09 15:13 - 01247002 _____ C:\Windows\WindowsUpdate.log
2015-07-05 08:12 - 2015-06-03 01:47 - 02502928 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-07-05 08:12 - 2015-06-03 01:47 - 02209080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-07-05 08:12 - 2015-06-03 01:47 - 00129120 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2015-07-05 08:12 - 2015-06-03 01:47 - 00110576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2015-07-05 08:12 - 2015-05-16 06:01 - 00133288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-05 08:12 - 2015-05-16 05:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-05 08:12 - 2015-05-16 04:47 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-05 08:12 - 2015-05-16 04:23 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-05 08:12 - 2015-05-16 03:42 - 03682304 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-05 08:12 - 2015-05-16 03:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-05 08:12 - 2015-05-16 03:31 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-05 08:12 - 2015-05-16 03:28 - 02223104 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-05 08:12 - 2015-05-16 03:28 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-07-05 08:12 - 2015-05-16 03:28 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-05 08:12 - 2015-05-16 03:27 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-05 08:12 - 2015-05-16 03:21 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-05 08:12 - 2015-05-16 03:21 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-05 08:12 - 2015-05-16 03:19 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-05 08:12 - 2015-05-16 03:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-05 08:12 - 2015-03-14 09:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-05 08:12 - 2015-03-14 09:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-05 08:12 - 2015-03-14 08:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-07-05 08:12 - 2014-10-18 14:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-07-05 07:58 - 2015-07-07 10:09 - 00000000 ____D C:\Windows\Panther
2015-07-05 07:00 - 2015-07-05 07:00 - 00000000 __SHD C:\Recovery

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-09 15:00 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-09 14:51 - 2013-08-22 23:20 - 00000000 ____D C:\Windows\CbsTemp
2015-07-08 16:11 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\rescache
2015-07-07 10:02 - 2014-11-22 09:01 - 00818732 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-06 15:50 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\AppCompat
2015-07-05 14:24 - 2013-08-22 22:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-05 13:37 - 2013-08-22 23:36 - 00000000 ___RD C:\Windows\ToastData
2015-07-05 13:37 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\WinStore
2015-07-05 13:37 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-07-05 13:37 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\system32\setup
2015-07-05 13:37 - 2013-08-22 21:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-07-05 13:32 - 2014-09-24 16:22 - 00002294 _____ C:\Windows\system32\ud-boot-time.cmd
2015-07-05 10:17 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\system32\en-GB
2015-07-05 09:52 - 2013-08-22 23:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-05 09:48 - 2013-08-22 22:44 - 00337808 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-05 09:46 - 2014-11-22 13:25 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-05 09:46 - 2014-11-22 08:45 - 00000000 ____D C:\Program Files\Windows Journal
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\system32\sr-Latn-RS
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-07-05 09:46 - 2013-08-22 23:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-07-05 09:08 - 2013-08-22 21:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-07-05 08:25 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\Help
2015-07-05 08:25 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-05 08:13 - 2013-08-22 21:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-07-05 07:58 - 2013-08-22 23:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2015-07-05 07:00 - 2013-08-22 23:36 - 00000000 ____D C:\Windows\system32\Recovery
2015-07-05 06:58 - 2013-08-22 21:36 - 00000000 __RHD C:\Users\Default
2015-06-20 11:02 - 2014-11-22 13:29 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-20 11:02 - 2014-11-22 13:29 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-17 17:10 - 2015-02-20 08:18 - 00030966 _____ C:\Windows\system32\nvinfo.pb

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-07-05 06:58

==================== End of log ============================

Attached Files

  • Attached File  FRST.txt   92.59KB   4 downloads

Edited by Oh My!, 10 July 2015 - 02:37 PM.


#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,978 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:36 PM

Posted 10 July 2015 - 02:35 PM

Greetings dragonster82 and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. I would like you to run FRST one more time making sure Addition.txt is checked. I am not sure this is malware related but we will take a quick peek.

Here is what I would like us to do.

Boot into Safe Mode and tell me if you have the same issue.

===================================================

Farbar Recovery Scan Tool (FRST)

--------------------
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop <<< Important
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply
===================================================

System Summary Information

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msinfo32 and press Enter
  • Left click on System Summary
  • Click File, Save, and name the file Summary
  • Zip and attach the file to your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Safe Mode results
  • FRST results
  • Addition log
  • System Summary Information

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,978 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:36 PM

Posted 13 July 2015 - 08:24 AM

Greetings,

===================================================

3 Day Bump

It has been more than 3 days since my last post.
  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,978 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:36 PM

Posted 15 July 2015 - 09:05 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users