Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Had computer hijacked, did I remove the malware?


  • This topic is locked This topic is locked
10 replies to this topic

#1 Wunobi

Wunobi

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 05 July 2015 - 06:13 PM

Was hijacked recently, reinstalled windows however was not able to format my C:\ drive because I could not boot from disk during start up (pretty sure it was an issue with uefi). However I did manage to format the hard drive where the virus was installed but am still worried something may be hiding from Bitdefender. Here is my log.

 

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 6:07:15 PM, on 7/5/2015
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
 
 
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Brains\AppData\Roaming\Curse Client\Bin\Curse.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
D:\Games\Steam\Steam.exe
D:\Games\Steam\bin\steamwebhelper.exe
D:\Games\Steam\bin\steamwebhelper.exe
D:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
E:\Downloads\HijackThis.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll
O3 - Toolbar: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_30AB1BB3F58677CBC09EDFC05C3E0854] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"
O4 - HKCU\..\Run: [Actual Multiple Monitors] "C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe"
O4 - HKCU\..\Run: [Steam] "D:\Games\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Curse.lnk = C:\Users\Brains\AppData\Roaming\Curse Client\Bin\Curse.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
 
--
End of file - 9284 bytes
 
Thank you!


BC AdBot (Login to Remove)

 


#2 Wunobi

Wunobi
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 05 July 2015 - 10:27 PM

Managed to boot Windows 8.1 through a USB and have formatted my C:\ drive, will this remove the malware if it was on my computer?


Edited by Wunobi, 05 July 2015 - 10:27 PM.


#3 Wunobi

Wunobi
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 06 July 2015 - 09:11 PM

Windows 8.1 Pro Hijack this:
 

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 9:10:18 PM, on 7/6/2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
 
 
Boot mode: Normal
 
Running processes:
C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Games\League\RADS\system\rads_user_kernel.exe
D:\Games\League\RADS\projects\lol_launcher\releases\0.0.0.247\deploy\LoLLauncher.exe
D:\Games\League\RADS\projects\lol_patcher\releases\0.0.0.31\deploy\LoLPatcher.exe
D:\Games\League\RADS\projects\lol_patcher\releases\0.0.0.31\deploy\LoLPatcherUx.exe
D:\Games\League\RADS\projects\lol_patcher\releases\0.0.0.31\deploy\LoLPatcherUx.exe
D:\Games\League\RADS\projects\lol_patcher\releases\0.0.0.31\deploy\LoLPatcherUx.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\Games\Steam\Steam.exe
D:\Games\Steam\bin\steamwebhelper.exe
D:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
E:\Downloads\HijackThis.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_6D4AC8D8459DF8F5902E1B8517BEF447] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Steam] "D:\Games\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Actual Multiple Monitors] "C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

Edited by Wunobi, 06 July 2015 - 09:12 PM.


#4 Wunobi

Wunobi
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 07 July 2015 - 06:28 PM

Apologies, I am posting the FRST log now.
 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015
Ran by Wunobi (administrator) on BRAINS on 07-07-2015 18:25:53
Running from E:\Downloads
Loaded Profiles: Wunobi (Available Profiles: Wunobi)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Actual Tools) C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe
(Actual Tools) C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter64.exe
(Actual Tools) C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsShellCenter64.exe
() C:\Program Files\NVIDIA Corporation\Display\nvsmartmaxapp64.exe
() C:\Program Files\NVIDIA Corporation\Display\nvsmartmaxapp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxcr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1695744 2015-06-12] (Bitdefender)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2015-07-06] (Google Inc.)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [GoogleChromeAutoLaunch_6D4AC8D8459DF8F5902E1B8517BEF447] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-06-20] (Google Inc.)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [Steam] => D:\Games\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [Actual Multiple Monitors] => C:\Program Files (x86)\Actual Multiple Monitors\ActualMultipleMonitorsCenter.exe [1843504 2015-05-27] (Actual Tools)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53288576 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-06-12] (Bitdefender)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-782308829-1240888166-2340872592-1001\...\MountPoints2: {a1e8c152-23a0-11e5-824f-806e6f6e6963} - "E:\.\Bin\ASSETUP.exe" 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-06] (Google Inc.)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-06] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-06] (Google Inc.)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-04-03] (Bitdefender)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-06] (Google Inc.)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-04-03] (Bitdefender)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{5503BBAA-CECD-4A4C-B817-8516C659B135}: [DhcpNameServer] 75.75.75.75 75.75.76.76
 
FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-07-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-07-06] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\bdwteff [2015-07-07]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-07-07]
 
Chrome: 
=======
CHR Profile: C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (BetterTTV) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-07-06]
CHR Extension: (Google Drive) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-06]
CHR Extension: (Please enter your password) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-07-06]
CHR Extension: (YouTube) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-06]
CHR Extension: (Google Search) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-06]
CHR Extension: (Flip this) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\donljlliiecjcagcenoeohjmabfegkph [2015-07-06]
CHR Extension: (Bitdefender Wallet) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2015-07-07]
CHR Extension: (Google Play Music) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2015-07-06]
CHR Extension: (Play Random Episode) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggclanokennhoaeldbffpmnfakhdbmmg [2015-07-06]
CHR Extension: (AdBlock) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-06]
CHR Extension: (agar.io server browser) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-07-06]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-07-06]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-06]
CHR Extension: (Google Wallet) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-06]
CHR Extension: (Grateful Grabber) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaodbbeaklbdmjcghbkcfgmioafnjbfe [2015-07-07]
CHR Extension: (Gmail) - C:\Users\Wunobi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-06]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-27] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1545376 2015-06-18] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-11-21] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-11-21] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-27] ()
R0 asstor64; C:\Windows\System32\drivers\asstor64.sys [84816 2014-03-14] (Asmedia Technology)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1369288 2015-05-28] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [271272 2015-05-29] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [747120 2015-05-28] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2015-01-09] (BitDefender SRL)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [394520 2014-09-29] (Intel Corporation)
R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160032 2015-04-29] (BitDefender LLC)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39240 2015-06-17] (NVIDIA Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [477272 2015-06-02] (BitDefender S.R.L.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-11-21] (Microsoft Corporation)
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-07-07 18:25 - 2015-07-07 18:25 - 00000000 ____D C:\FRST
2015-07-07 02:50 - 2015-07-07 02:50 - 00003698 _____ C:\Windows\System32\Tasks\AutoPico Daily Restart
2015-07-07 02:50 - 2015-07-07 02:50 - 00000218 _____ C:\Users\Wunobi\AppData\Local\recently-used.xbel
2015-07-07 02:50 - 2015-07-07 02:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2015-07-07 02:50 - 2015-07-07 02:50 - 00000000 ____D C:\Program Files\TAP-Windows
2015-07-07 02:48 - 2015-07-07 02:50 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\deluge
2015-07-07 02:48 - 2015-07-07 02:48 - 00000000 ____D C:\Users\Wunobi\Activator for Windows and Office KMS Pico v9.1
2015-07-07 02:45 - 2015-07-07 02:45 - 00002788 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-07-07 02:45 - 2015-07-07 02:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-07-07 02:45 - 2015-07-07 02:45 - 00000000 ____D C:\Program Files\CCleaner
2015-07-07 02:42 - 2015-07-07 02:42 - 00079192 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2015-07-07 02:42 - 2015-07-07 02:42 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll.upd
2015-07-07 02:42 - 2015-07-07 02:42 - 00003518 _____ C:\Windows\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8
2015-07-07 02:42 - 2015-07-07 02:42 - 00000000 ____D C:\Program Files\Common Files\AV
2015-07-07 02:23 - 2015-07-07 02:23 - 00492877 _____ C:\ProgramData\1436253024.bdinstall.bin
2015-07-07 02:12 - 2015-07-07 02:23 - 00000000 ____D C:\ProgramData\BDLogging
2015-07-07 02:12 - 2015-07-07 02:12 - 00002213 _____ C:\Users\Public\Desktop\Bitdefender Antivirus Plus 2015.lnk
2015-07-07 02:12 - 2015-07-07 02:12 - 00000684 ____H C:\bdr-cf01
2015-07-07 02:12 - 2015-07-07 02:12 - 00000385 _____ C:\Windows\system32\user_gensett.xml
2015-07-07 02:12 - 2015-07-07 02:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-07-07 02:12 - 2015-07-07 02:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2015-07-07 02:12 - 2015-05-29 11:50 - 01730304 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-07-07 02:12 - 2015-05-29 11:50 - 00271272 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2015-07-07 02:12 - 2015-05-28 16:21 - 00747120 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2015-07-07 02:12 - 2015-05-28 15:37 - 01369288 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2015-07-07 02:12 - 2015-01-09 13:59 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2015-07-07 02:12 - 2015-01-09 13:44 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2015-07-07 02:12 - 2013-09-08 22:04 - 00023568 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2015-07-07 02:12 - 2007-04-11 13:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2015-07-07 02:11 - 2015-07-07 02:17 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Bitdefender
2015-07-07 02:11 - 2015-07-07 02:12 - 00253404 ____H C:\bdr-ld01
2015-07-07 02:11 - 2015-07-07 02:12 - 00009216 ____H C:\bdr-ld01.mbr
2015-07-07 02:11 - 2015-05-27 19:02 - 49626058 ____H C:\bdr-im01.gz
2015-07-07 02:11 - 2013-08-13 15:38 - 03271472 ____H C:\bdr-bz01
2015-07-07 02:10 - 2015-07-07 02:12 - 00000000 ____D C:\ProgramData\Bitdefender
2015-07-07 02:10 - 2015-07-07 02:10 - 00000000 ____N C:\Windows\system32\bdsandboxuiskin32.dll
2015-07-07 02:10 - 2015-07-07 02:10 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\QuickScan
2015-07-07 02:10 - 2015-07-07 02:10 - 00000000 ____D C:\Program Files\Common Files\Bitdefender
2015-07-07 02:10 - 2015-07-07 02:10 - 00000000 ____D C:\Program Files\Bitdefender
2015-07-07 02:10 - 2015-06-02 17:21 - 00477272 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2015-07-07 02:10 - 2015-04-29 16:32 - 00160032 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2015-07-07 02:10 - 2015-01-09 13:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll
2015-07-07 02:10 - 2015-01-09 13:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll
2015-07-06 23:01 - 2015-07-06 23:01 - 00000000 ____D C:\ProgramData\Riot Games
2015-07-06 22:59 - 2015-07-06 22:59 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-07-06 22:59 - 2015-07-06 22:59 - 00000000 ____D C:\Program Files\MSBuild
2015-07-06 22:59 - 2015-07-06 22:59 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-07-06 22:59 - 2015-07-06 22:59 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-07-06 22:58 - 2013-08-02 23:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2015-07-06 22:58 - 2013-08-02 23:48 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-07-06 22:58 - 2013-08-02 23:48 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-07-06 22:58 - 2013-08-02 23:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2015-07-06 22:58 - 2013-08-02 23:41 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-07-06 22:58 - 2013-08-02 23:41 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-07-06 22:57 - 2015-07-06 22:57 - 00001435 _____ C:\Users\Public\Desktop\League.lnk
2015-07-06 22:57 - 2008-07-12 10:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-07-06 22:57 - 2008-07-12 10:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-07-06 22:57 - 2008-07-12 10:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-07-06 22:56 - 2015-07-06 23:00 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Riot Games
2015-07-06 21:04 - 2015-07-06 21:04 - 00000000 ____D C:\ProgramData\LogiShrd
2015-07-06 21:03 - 2015-07-06 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-07-06 21:03 - 2015-07-06 21:15 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2015-07-06 21:03 - 2015-07-06 21:03 - 00000000 ____D C:\Users\Wunobi\AppData\Local\Logitech
2015-07-06 21:01 - 2015-07-06 21:01 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Logitech
2015-07-06 21:01 - 2015-07-06 21:01 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Logishrd
2015-07-06 20:04 - 2015-07-06 20:04 - 00010047 _____ C:\Windows\DirectX.log
2015-07-06 20:04 - 2010-06-02 06:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-07-06 20:04 - 2010-06-02 06:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-07-06 20:04 - 2010-06-02 06:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-07-06 20:04 - 2010-06-02 06:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-07-06 20:04 - 2010-06-02 06:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-07-06 20:04 - 2010-06-02 06:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-07-06 20:04 - 2010-05-26 13:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-07-06 20:04 - 2010-05-26 13:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-07-06 20:04 - 2010-05-26 13:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-07-06 20:04 - 2010-05-26 13:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-07-06 20:04 - 2010-02-04 12:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-07-06 20:04 - 2009-09-04 19:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-07-06 20:04 - 2009-09-04 19:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-07-06 20:04 - 2009-09-04 19:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-07-06 20:04 - 2009-09-04 19:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-07-06 20:04 - 2009-09-04 19:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-07-06 20:04 - 2009-09-04 19:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-07-06 20:04 - 2009-09-04 19:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-07-06 20:04 - 2009-03-16 16:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-07-06 20:04 - 2009-03-16 16:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-07-06 20:04 - 2009-03-16 16:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-07-06 20:04 - 2009-03-16 16:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-07-06 20:04 - 2009-03-16 16:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-07-06 20:04 - 2009-03-16 16:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-07-06 20:04 - 2009-03-09 17:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-07-06 20:04 - 2009-03-09 17:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-07-06 20:04 - 2009-03-09 17:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-07-06 20:04 - 2009-03-09 17:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-07-06 20:04 - 2009-03-09 17:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-07-06 20:04 - 2009-03-09 17:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-07-06 20:04 - 2008-10-27 12:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-07-06 20:04 - 2008-10-15 08:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-07-06 20:04 - 2008-10-15 08:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-07-06 20:04 - 2008-10-15 08:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-07-06 20:04 - 2008-10-15 08:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-07-06 20:04 - 2008-10-15 08:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-07-06 20:04 - 2008-10-15 08:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-07-06 20:04 - 2008-07-31 12:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-07-06 20:04 - 2008-07-31 12:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-07-06 20:04 - 2008-07-31 12:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-07-06 20:04 - 2008-07-31 12:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-07-06 20:04 - 2008-07-31 12:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-07-06 20:04 - 2008-07-31 12:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-07-06 20:04 - 2008-07-10 13:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-07-06 20:04 - 2008-07-10 13:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-07-06 20:04 - 2008-07-10 13:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-07-06 20:04 - 2008-05-30 16:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-07-06 20:04 - 2008-05-30 16:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-07-06 20:04 - 2008-05-30 16:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-07-06 20:04 - 2008-05-30 16:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-07-06 20:04 - 2008-05-30 16:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-07-06 20:04 - 2008-05-30 16:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-07-06 20:04 - 2008-05-30 16:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-07-06 20:04 - 2008-05-30 16:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-07-06 20:04 - 2008-05-30 16:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-07-06 20:04 - 2008-05-30 16:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-07-06 20:04 - 2008-05-30 16:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-07-06 20:04 - 2008-05-30 16:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-07-06 20:04 - 2008-05-30 16:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-07-06 20:04 - 2008-05-30 16:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-07-06 20:04 - 2008-03-05 18:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-07-06 20:04 - 2008-03-05 18:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-07-06 20:04 - 2008-03-05 18:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-07-06 20:04 - 2008-03-05 18:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-07-06 20:04 - 2008-03-05 18:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-07-06 20:04 - 2008-03-05 18:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-07-06 20:04 - 2008-03-05 17:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-07-06 20:04 - 2008-03-05 17:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-07-06 20:04 - 2008-03-05 17:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-07-06 20:04 - 2008-03-05 17:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-07-06 20:04 - 2008-02-06 01:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-07-06 20:04 - 2008-02-06 01:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-07-06 20:04 - 2007-10-22 05:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-07-06 20:04 - 2007-10-22 05:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-07-06 20:04 - 2007-10-22 05:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-07-06 20:04 - 2007-10-22 05:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-07-06 20:04 - 2007-10-12 17:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-07-06 20:04 - 2007-10-12 17:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-07-06 20:04 - 2007-10-12 17:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-07-06 20:04 - 2007-10-12 17:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-07-06 20:04 - 2007-10-02 11:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-07-06 20:04 - 2007-10-02 11:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-07-06 20:04 - 2007-07-20 02:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-07-06 20:04 - 2007-07-20 02:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-07-06 20:04 - 2007-07-19 20:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-07-06 20:04 - 2007-07-19 20:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-07-06 20:04 - 2007-07-19 20:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-07-06 20:04 - 2007-07-19 20:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-07-06 20:04 - 2007-07-19 20:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-07-06 20:04 - 2007-07-19 20:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-07-06 20:04 - 2007-06-20 22:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-07-06 20:04 - 2007-06-20 22:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-07-06 20:04 - 2007-05-16 18:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-07-06 20:04 - 2007-05-16 18:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-07-06 20:04 - 2007-05-16 18:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-07-06 20:04 - 2007-05-16 18:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-07-06 20:04 - 2007-05-16 18:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-07-06 20:04 - 2007-05-16 18:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-07-06 20:04 - 2007-04-04 20:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-07-06 20:04 - 2007-04-04 20:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-07-06 20:04 - 2007-04-04 20:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-07-06 20:04 - 2007-04-04 20:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-07-06 20:04 - 2007-03-15 18:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-07-06 20:04 - 2007-03-15 18:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-07-06 20:04 - 2007-03-12 18:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-07-06 20:04 - 2007-03-12 18:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-07-06 20:04 - 2007-03-12 18:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-07-06 20:04 - 2007-03-12 18:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-07-06 20:04 - 2007-03-05 14:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-07-06 20:04 - 2007-03-05 14:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-07-06 20:04 - 2007-01-24 17:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-07-06 20:04 - 2007-01-24 17:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-07-06 20:04 - 2006-12-08 14:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-07-06 20:04 - 2006-12-08 14:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-07-06 20:04 - 2006-11-29 15:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-07-06 20:04 - 2006-11-29 15:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-07-06 20:04 - 2006-11-29 15:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-07-06 20:04 - 2006-11-29 15:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-07-06 20:04 - 2006-09-28 18:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-07-06 20:04 - 2006-09-28 18:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-07-06 20:04 - 2006-09-28 18:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-07-06 20:04 - 2006-09-28 18:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-07-06 20:04 - 2006-07-28 11:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-07-06 20:04 - 2006-07-28 11:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-07-06 20:04 - 2006-07-28 11:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-07-06 20:04 - 2006-07-28 11:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-07-06 20:04 - 2006-05-31 09:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-07-06 20:04 - 2006-05-31 09:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-07-06 20:04 - 2006-03-31 14:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-07-06 20:04 - 2006-03-31 14:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-07-06 20:04 - 2006-03-31 14:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-07-06 20:04 - 2006-03-31 14:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-07-06 20:04 - 2006-03-31 14:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-07-06 20:04 - 2006-03-31 14:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-07-06 20:04 - 2006-02-03 10:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-07-06 20:04 - 2006-02-03 10:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-07-06 20:04 - 2006-02-03 10:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-07-06 20:04 - 2006-02-03 10:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-07-06 20:04 - 2006-02-03 10:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-07-06 20:04 - 2006-02-03 10:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-07-06 20:04 - 2005-12-05 20:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-07-06 20:04 - 2005-12-05 20:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-07-06 20:04 - 2005-07-22 21:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-07-06 20:04 - 2005-07-22 21:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-07-06 20:04 - 2005-05-26 17:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-07-06 20:04 - 2005-05-26 17:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-07-06 20:04 - 2005-03-18 19:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-07-06 20:04 - 2005-03-18 19:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-07-06 20:04 - 2005-02-05 21:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-07-06 20:04 - 2005-02-05 21:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-07-06 19:46 - 2015-07-06 23:34 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Skype
2015-07-06 19:46 - 2015-07-06 19:46 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-06 19:46 - 2015-07-06 19:46 - 00000000 ____D C:\Users\Wunobi\Tracing
2015-07-06 19:46 - 2015-07-06 19:46 - 00000000 ____D C:\Users\Wunobi\AppData\Local\Skype
2015-07-06 19:46 - 2015-07-06 19:46 - 00000000 ____D C:\ProgramData\Skype
2015-07-06 19:46 - 2015-07-06 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-06 03:45 - 2015-07-06 03:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2015-07-06 03:45 - 2015-07-06 03:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-07-06 03:45 - 2015-07-06 03:45 - 00000000 ____D C:\Program Files\7-Zip
2015-07-06 03:40 - 2015-07-06 03:40 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Actual Multiple Monitors
2015-07-06 03:40 - 2015-07-06 03:40 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Actual Tools
2015-07-06 03:40 - 2015-07-06 03:40 - 00000000 ____D C:\ProgramData\Actual Tools
2015-07-06 03:40 - 2015-07-06 03:40 - 00000000 ____D C:\Program Files (x86)\Actual Multiple Monitors
2015-07-06 03:26 - 2015-07-06 03:26 - 00000205 _____ C:\Users\Wunobi\Desktop\CSGO.url
2015-07-06 03:26 - 2015-07-06 03:26 - 00000000 ____D C:\Games
2015-07-06 03:25 - 2015-07-06 03:25 - 00000000 ____D C:\Users\Wunobi\AppData\Local\Steam
2015-07-06 03:24 - 2015-07-06 03:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-07-06 02:57 - 2015-07-06 02:57 - 00000000 ____D C:\Users\Wunobi\AppData\Local\Razer_Inc
2015-07-06 02:56 - 2015-07-06 20:08 - 00000000 ____D C:\Users\Wunobi\AppData\Local\NVIDIA Corporation
2015-07-06 02:56 - 2015-07-06 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-07-06 02:56 - 2015-07-06 03:12 - 00000000 ____D C:\Program Files (x86)\Razer
2015-07-06 02:56 - 2015-07-06 02:56 - 00006944 _____ C:\Windows\system32\lvcoinst.log
2015-07-06 02:56 - 2015-07-06 02:56 - 00000000 ____D C:\ProgramData\Razer
2015-07-06 02:56 - 2015-07-06 02:56 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-07-06 02:56 - 2010-05-26 13:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-07-06 02:56 - 2010-05-26 13:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-07-06 02:56 - 2010-05-26 13:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-07-06 02:56 - 2010-05-26 13:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-07-06 02:56 - 2010-05-26 13:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-07-06 02:56 - 2010-05-26 13:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-07-06 02:55 - 2015-07-06 23:32 - 00000000 ____D C:\ProgramData\NVIDIA
2015-07-06 02:55 - 2015-07-06 20:09 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-06 02:55 - 2015-07-06 20:08 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-07-06 02:55 - 2015-07-06 02:55 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-07-06 02:55 - 2015-06-17 04:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-07-06 02:55 - 2015-06-17 04:10 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01567576 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00879000 _____ C:\Windows\system32\nvmcumd.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-07-06 02:55 - 2015-06-17 04:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00117392 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-07-06 02:55 - 2015-06-17 04:10 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-07-06 02:55 - 2015-06-17 04:10 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-07-06 02:55 - 2015-06-17 01:48 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-07-06 02:55 - 2015-06-17 01:48 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-07-06 02:55 - 2015-06-17 01:48 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-07-06 02:55 - 2015-06-17 01:48 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-07-06 02:55 - 2015-06-17 01:48 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-07-06 02:55 - 2015-06-17 01:48 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-07-06 02:55 - 2015-06-17 01:03 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-07-06 02:55 - 2015-06-02 09:11 - 04421614 _____ C:\Windows\system32\nvcoproc.bin
2015-07-06 02:54 - 2015-07-06 20:08 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-07-06 02:54 - 2015-07-06 02:54 - 00000000 ____D C:\NVIDIA
2015-07-06 02:52 - 2015-05-07 13:49 - 00001904 ____N C:\Windows\system32\SetupBD.din
2015-07-06 02:51 - 2015-05-07 13:49 - 00404752 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe
2015-07-06 02:51 - 2014-09-29 12:07 - 00003130 _____ C:\Windows\system32\e1d64x64.din
2015-07-06 02:51 - 2014-09-29 12:03 - 00394520 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1d64x64.sys
2015-07-06 02:51 - 2014-04-19 05:18 - 00073512 _____ (Intel Corporation) C:\Windows\system32\e1dmsg.dll
2015-07-06 02:51 - 2014-04-18 15:17 - 00125728 _____ (Intel Corporation) C:\Windows\system32\NicCo4.dll
2015-07-06 02:51 - 2014-03-18 04:33 - 00085808 _____ (Intel Corporation) C:\Windows\system32\NicInstD.dll
2015-07-06 02:50 - 2015-07-06 02:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-07-06 01:33 - 2015-07-06 00:37 - 00000000 ____D C:\Windows\Panther
2015-07-06 01:27 - 2015-07-06 01:27 - 00005098 _____ C:\Windows\DPINST.LOG
2015-07-06 01:27 - 2015-07-06 01:27 - 00000000 ____D C:\Program Files (x86)\ASM106xSATA
2015-07-06 01:20 - 2015-07-06 23:34 - 00006464 _____ C:\Windows\SysWOW64\Gms.log
2015-07-06 01:13 - 2015-07-06 01:29 - 00000000 ____D C:\Windows\System32\Tasks\ASUS
2015-07-06 01:04 - 2015-07-06 01:13 - 00000000 ____D C:\Windows\AsusInstAll
2015-07-06 00:54 - 2015-07-06 00:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-07-06 00:54 - 2015-07-06 00:54 - 00000000 ____D C:\ProgramData\Intel
2015-07-06 00:54 - 2015-07-06 00:54 - 00000000 ____D C:\Program Files (x86)\Intel
2015-07-06 00:53 - 2015-07-07 16:42 - 00646746 _____ C:\Windows\WindowsUpdate.log
2015-07-06 00:53 - 2015-07-06 21:03 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-06 00:53 - 2015-07-06 02:52 - 00000000 ____D C:\Program Files\Intel
2015-07-06 00:53 - 2015-07-06 01:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-07-06 00:53 - 2015-07-06 00:53 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2015-07-06 00:53 - 2015-07-06 00:53 - 00000000 ____D C:\Users\Wunobi\Intel
2015-07-06 00:53 - 2015-07-06 00:53 - 00000000 ____D C:\Program Files\ASUS
2015-07-06 00:53 - 2014-01-27 22:16 - 00028672 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll
2015-07-06 00:53 - 2014-01-27 22:16 - 00015232 _____ C:\Windows\SysWOW64\Drivers\AsIO.sys
2015-07-06 00:53 - 2012-08-16 21:57 - 02356592 _____ (Microsoft Corporation) C:\Windows\system32\WudfUpdate_01011.dll
2015-07-06 00:51 - 2015-07-06 00:51 - 00000000 ____D C:\ProgramData\Google
2015-07-06 00:51 - 2015-07-06 00:51 - 00000000 ____D C:\Program Files\Google
2015-07-06 00:50 - 2015-07-07 18:00 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-06 00:50 - 2015-07-06 23:32 - 00000916 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-06 00:50 - 2015-07-06 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-06 00:50 - 2015-07-06 02:55 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-06 00:50 - 2015-07-06 02:55 - 00003656 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-06 00:50 - 2015-07-06 01:36 - 00000000 ____D C:\Users\Wunobi\AppData\Local\Google
2015-07-06 00:50 - 2015-07-06 00:51 - 00000000 ____D C:\Program Files (x86)\Google
2015-07-06 00:48 - 2015-07-06 01:29 - 00068289 _____ C:\Windows\Ascd_log.ini
2015-07-06 00:48 - 2015-07-06 00:54 - 00000072 _____ C:\Windows\Ascd_err.ini
2015-07-06 00:48 - 2015-07-06 00:48 - 00000348 _____ C:\Windows\scd.ini
2015-07-06 00:42 - 2015-07-07 15:07 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-782308829-1240888166-2340872592-1001
2015-07-06 00:38 - 2015-07-06 00:47 - 00054578 _____ C:\Windows\Ascd_tmp.ini
2015-07-06 00:38 - 2015-07-06 00:47 - 00000384 _____ C:\Windows\As_Utilities.log
2015-07-06 00:38 - 2015-07-06 00:38 - 00001769 _____ C:\Windows\Language_trs.ini
2015-07-06 00:38 - 2015-07-06 00:38 - 00000000 __SHD C:\Users\Wunobi\AppData\Local\EmieUserList
2015-07-06 00:38 - 2015-07-06 00:38 - 00000000 __SHD C:\Users\Wunobi\AppData\Local\EmieSiteList
2015-07-06 00:38 - 2015-07-06 00:38 - 00000000 __SHD C:\Users\Wunobi\AppData\Local\EmieBrowserModeList
2015-07-06 00:38 - 2009-04-02 07:30 - 00010296 _____ C:\Windows\SysWOW64\Drivers\ASUSHWIO.SYS
2015-07-06 00:37 - 2015-07-07 02:48 - 00000000 ____D C:\Users\Wunobi
2015-07-06 00:37 - 2015-07-06 23:10 - 00000000 ____D C:\Users\Wunobi\AppData\Local\VirtualStore
2015-07-06 00:37 - 2015-07-06 00:37 - 00001442 _____ C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-06 00:37 - 2015-07-06 00:37 - 00000020 ___SH C:\Users\Wunobi\ntuser.ini
2015-07-06 00:37 - 2015-07-06 00:37 - 00000000 ____D C:\Windows\CSC
2015-07-06 00:37 - 2015-07-06 00:37 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Adobe
2015-07-06 00:37 - 2015-07-06 00:37 - 00000000 ____D C:\Users\Wunobi\AppData\Local\Packages
2015-07-06 00:37 - 2014-11-21 11:17 - 00000000 ___RD C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-06 00:37 - 2014-11-21 11:17 - 00000000 ___RD C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-06 00:37 - 2014-11-21 11:17 - 00000000 ___RD C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-06 00:37 - 2014-11-21 03:53 - 00000369 _____ C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-07-06 00:37 - 2014-11-21 03:53 - 00000369 _____ C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-07-06 00:37 - 2013-08-22 10:36 - 00000000 ____D C:\Users\Wunobi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-06 00:34 - 2015-07-06 00:34 - 00000000 __SHD C:\Recovery
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-07-07 18:00 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-07 02:12 - 2013-08-22 09:46 - 00015825 _____ C:\Windows\setupact.log
2015-07-07 02:12 - 2013-08-22 08:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-07-07 02:11 - 2013-08-22 10:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-06 23:38 - 2014-11-21 03:43 - 00863592 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-06 23:32 - 2013-08-22 09:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-06 23:00 - 2013-08-22 10:20 - 00000000 ____D C:\Windows\CbsTemp
2015-07-06 21:07 - 2013-08-22 09:44 - 00337808 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-06 21:06 - 2013-08-22 08:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-07-06 03:12 - 2014-11-21 03:34 - 00005934 _____ C:\Windows\PFRO.log
2015-07-06 02:55 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Help
2015-07-06 02:03 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\system32\restore
2015-07-06 01:31 - 2013-08-22 10:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2015-07-06 00:42 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-06 00:34 - 2013-08-22 10:37 - 00002988 _____ C:\Windows\DtcInstall.log
2015-07-06 00:34 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\system32\Recovery
2015-07-06 00:34 - 2013-08-22 08:36 - 00000000 __RHD C:\Users\Default
2015-06-22 18:34 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\ELAMBKUP
 
==================== Files in the root of some directories =======
 
2015-07-07 02:50 - 2015-07-07 02:50 - 0000218 _____ () C:\Users\Wunobi\AppData\Local\recently-used.xbel
2015-07-07 02:23 - 2015-07-07 02:23 - 0492877 _____ () C:\ProgramData\1436253024.bdinstall.bin
 
Some files in TEMP:
====================
C:\Users\Wunobi\AppData\Local\Temp\ammemb.dll
C:\Users\Wunobi\AppData\Local\Temp\ammemb64.dll
 
 
Some zero byte size files/folders:
==========================
C:\Windows\System32\bdsandboxuiskin32.dll
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-07-06 00:34
 
==================== End of log ============================

Attached Files



#5 nasdaq

nasdaq

  • Malware Response Team
  • 38,753 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:47 AM

Posted 10 July 2015 - 10:08 AM


If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Looking good. This is just a cleanup.
===

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.


start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crx
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]

End
Save the files as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

#6 Wunobi

Wunobi
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 10 July 2015 - 10:16 AM

Glad to hear it! Thank you so much, will run this when I get home. 



#7 nasdaq

nasdaq

  • Malware Response Team
  • 38,753 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:47 AM

Posted 16 July 2015 - 07:51 AM

Are you still with me?

#8 Wunobi

Wunobi
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 16 July 2015 - 06:07 PM

Yes I ran the fixlist.txt as you suggested, is there anything else I should do?



#9 nasdaq

nasdaq

  • Malware Response Team
  • 38,753 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:47 AM

Posted 17 July 2015 - 06:59 AM

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#10 Wunobi

Wunobi
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:11:47 PM

Posted 17 July 2015 - 10:17 AM

Thank you for your assistance! It is very appreciated



#11 nasdaq

nasdaq

  • Malware Response Team
  • 38,753 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:12:47 AM

Posted 17 July 2015 - 10:35 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users