Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Strange Computer Activity, Login Attempts


  • This topic is locked This topic is locked
2 replies to this topic

#1 Farside_77

Farside_77

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:16 AM

Posted 14 August 2015 - 11:19 PM

So i formatted not to long ago, then upgraded to windows ten, however something seems amis. Random things are happening when im not on my computer, such as netflix just popped up and started playing, also random search query i don't remember typeing. My email has login attempts from quite far away,(thank go for double verification) I'm afraid i may have been hacked. Im usually fairly security conscious so i want to be sure. here is my FRST log as requested by the forums. Thanks in advance!

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:14-08-2015 01
Ran by Cameron (administrator) on CAMERON-PC (14-08-2015 21:12:24)
Running from C:\Users\Cameron\Downloads
Loaded Profiles: Cameron (Available Profiles: Cameron & DefaultAppPool)
Platform: Microsoft Windows 10 Home (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Creative Technology Ltd) C:\Windows\System32\CtHdaSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Joyent, Inc) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcods.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
(Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Users\Cameron\Desktop\05gcgizk.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
() C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
() C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
(Ruiware) C:\Program Files\Ruiware\WinPatrol\WinPatrol.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16384_none_b5413773a99a53d2\TiWorker.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM\...\Run: [Fences] => C:\Program Files\Stardock\Fences\Fences.exe [3992208 2014-10-03] (Stardock Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Razer Synapse] => C:\Program Files\Razer\Synapse\RzSynapse.exe [590144 2015-06-18] (Razer Inc.)
HKLM\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd)
HKLM\...\Run: [Creative SB Monitoring Utility Launcher] => RunDll32 SBAVMonL.dll,SBAVMonitorLauncher
HKLM\...\Run: [Sound Blaster EVO Control Panel] => C:\Program Files\Creative\Sound Blaster EVO\Sound Blaster EVO Control Panel\SBEVO.exe [910848 2013-08-29] (Creative Technology Ltd)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-23] (Adobe Systems Incorporated)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2015-06-18] (Malwarebytes Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2899136 2015-08-12] (Valve Corporation)
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\...\Run: [OneDrive] => C:\Users\Cameron\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-06] (Microsoft Corporation)
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\...\Run: [GoogleChromeAutoLaunch_C320EF13B57B9241063ABCD142A88542] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-08-07] (Google Inc.)
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\...\Run: [WinPatrol] => C:\Program Files\Ruiware\WinPatrol\winpatrol.exe [1216648 2015-08-05] (Ruiware)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2015-07-14]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2015-07-14]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files\Common Files\lpuninstall.exe (LastPass)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2015-07-22] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1470097770-607335503-3098973220-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-ca/?ocid=iehp
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-14] (Oracle Corporation)
BHO: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2015-07-01] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files\LastPass\LPToolbar.dll [2015-07-14] (LastPass)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-14] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files\LastPass\LPToolbar.dll [2015-07-14] (LastPass)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2015-08-04] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2015-08-04] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll [2015-05-13] (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b754b246-d521-4876-9b36-a55402f01107}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Cameron\AppData\Roaming\Mozilla\Firefox\Profiles\nzt2vk6z.default
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.1: Secure Search
FF SelectedSearchEngine: Secure Search
FF Keyword.URL: https://search.yahoo.com/search?fr=mcafee&type=C111US876D20150714&p=
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function FindProxyForURL(url, host) {if ((shExpMatch(url, \"https://www.netflix.com*\"))

 (shExpMatch(url, \"http://www.netflix.com*\"))

 (host == \"netflix.com\")

 (host == \"www.netflix.com\")

 (host == \"cbp-us.nccp.netflix.com\")

 (host == \"secure.netflix.com\")

 (host == \"api-global.netflix.com\")) { return 'PROXY us01.sq.proxmate.me:8000; PROXY us14.sq.proxmate.me:8000; PROXY us12.sq.proxmate.me:8000; PROXY us09.sq.proxmate.me:8000; PROXY us11.sq.proxmate.me:8000; PROXY us06.sq.proxmate.me:8000; PROXY us03.sq.proxmate.me:8000; PROXY us13.sq.proxmate.me:8000; PROXY us10.sq.proxmate.me:8000; PROXY us05.sq.proxmate.me:8000; PROXY us07.sq.proxmate.me:8000; PROXY us02.sq.proxmate.me:8000; PROXY us08.sq.proxmate.me:8000' } else { return 'DIRECT'; }}"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1219159.dll [2015-06-25] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-14] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-14] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files\LastPass\nplastpass.dll [2015-07-14] (LastPass)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-05-13] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-16] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-16] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-22] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-22] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2015-07-19]
FF Extension: LastPass - C:\Users\Cameron\AppData\Roaming\Mozilla\Firefox\Profiles\nzt2vk6z.default\Extensions\support@lastpass.com [2015-07-22]
FF Extension: ProxMate - C:\Users\Cameron\AppData\Roaming\Mozilla\Firefox\Profiles\nzt2vk6z.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi [2015-07-20]
FF Extension: McAfee WebAdvisor - C:\Users\Cameron\AppData\Roaming\Mozilla\Firefox\Profiles\nzt2vk6z.default\Extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}.xpi [2015-08-06]
FF Extension: Adblock Plus - C:\Users\Cameron\AppData\Roaming\Mozilla\Firefox\Profiles\nzt2vk6z.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-19]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2015-07-14]

Chrome:
=======
CHR Profile: C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Translate) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-08-09]
CHR Extension: (Google Slides) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-22]
CHR Extension: (Google Docs) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-22]
CHR Extension: (Google Drive) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-22]
CHR Extension: (Spotify VK Downloader) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\baggnalhgbpeanbhedjlbndhjgmimmhl [2015-08-09]
CHR Extension: (YouTube) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-22]
CHR Extension: (Google Search) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-22]
CHR Extension: (Tampermonkey) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-08-09]
CHR Extension: (Google Sheets) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-22]
CHR Extension: (SiteAdvisor) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-07-22]
CHR Extension: (AdBlock) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-08-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-06]
CHR Extension: (Gmail) - C:\Users\Cameron\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-22]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2015-08-06]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 0228671439606625mcinstcleanup; C:\WINDOWS\TEMP\022867~1.EXE [883024 2015-05-04] (McAfee, Inc.)
R2 CoreMessagingRegistrar; C:\WINDOWS\system32\coremessaging.dll [588800 2015-08-06] (Microsoft Corporation)
R2 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\WINDOWS\system32\CtHdaSvc.exe [114176 2014-11-17] (Creative Technology Ltd)
S3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [23040 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [919184 2015-06-24] (NVIDIA Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-05-06] (McAfee, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [132160 2015-08-04] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [691968 2015-05-13] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe [180064 2015-06-04] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-05-06] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [291816 2015-05-06] (McAfee, Inc.)
R3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [478752 2015-05-05] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [291816 2015-05-06] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [291816 2015-05-06] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [196600 2015-06-29] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [335600 2015-07-06] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [242408 2015-06-29] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-05-06] (McAfee, Inc.)
R2 MSMQ; C:\WINDOWS\system32\mqsvc.exe [24576 2015-08-06] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20694160 2015-06-24] (NVIDIA Corporation)
R2 OneSyncSvc_Session2; C:\WINDOWS\system32\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session2; C:\WINDOWS\system32\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Razer Game Scanner Service; C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-04] ()
S3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [669696 2015-08-06] (Microsoft Corporation)
R3 UnistoreSvc_Session2; C:\WINDOWS\System32\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R3 UserDataSvc_Session2; C:\WINDOWS\system32\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 w3logsvc; C:\WINDOWS\system32\inetsrv\w3logsvc.dll [72192 2015-08-06] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [30720 2015-07-10] (Microsoft Corporation)
S3 buttonconverter; C:\WINDOWS\System32\drivers\buttonconverter.sys [23552 2015-07-10] (Microsoft Corporation)
S3 CapImg; C:\WINDOWS\System32\drivers\capimg.sys [96768 2015-07-10] (Microsoft Corporation)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [70672 2015-07-02] (McAfee, Inc.)
R3 CompositeBus; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_x86_a4832450a7024d49\CompositeBus.sys [31232 2015-07-10] (Microsoft Corporation)
R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1028864 2014-11-17] (Creative Technology Ltd)
R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [35112 2015-06-19] (Creative Technology Ltd)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [137632 2015-08-11] (Windows ® Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [22432 2015-08-11] (Windows ® Win 7 DDK provider)
R3 eapihdrv; C:\Users\Cameron\AppData\Local\Temp\ehdrv.sys [135760 2015-08-14] (ESET)
S3 fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [24064 2015-07-10] (Microsoft Corporation)
R1 FileCrypt; C:\WINDOWS\System32\drivers\filecrypt.sys [74240 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\WINDOWS\System32\drivers\genericusbfn.sys [17408 2015-07-10] (Microsoft Corporation)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2015-07-10] (Intel Corporation)
R1 GpuEnergyDrv; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [7680 2015-07-10] (Microsoft Corporation)
S3 hidinterrupt; C:\WINDOWS\System32\drivers\hidinterrupt.sys [37728 2015-07-10] (Microsoft Corporation)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [148528 2015-04-27] (McAfee, Inc.)
S3 IoQos; C:\WINDOWS\System32\drivers\ioqos.sys [23040 2015-07-10] (Microsoft Corporation)
S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1580032 2013-09-04] (Creative Technology Ltd.)
S0 LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [88928 2015-07-10] (LSI Corporation)
S0 LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [83296 2015-07-10] (Avago Technologies)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
S0 megasas; C:\WINDOWS\System32\drivers\megasas.sys [52064 2015-07-10] (Avago Technologies)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [41088 2010-10-19] (Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [315576 2015-07-02] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [269872 2015-07-02] (McAfee, Inc.)
R0 mfedisk; C:\WINDOWS\System32\DRIVERS\mfedisk.sys [82800 2015-02-17] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [69656 2015-07-02] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [380504 2015-07-02] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [658528 2015-07-02] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [380848 2015-03-26] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [80760 2015-03-26] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [32816 2015-08-04] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [223520 2015-07-02] (McAfee, Inc.)
R2 MMCSS; C:\WINDOWS\system32\drivers\mmcss.sys [37376 2015-07-10] (Microsoft Corporation)
R3 MQAC; C:\WINDOWS\System32\drivers\mqac.sys [130048 2015-08-06] (Microsoft Corporation)
S3 netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [80384 2015-07-10] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-06-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [41648 2015-06-17] (NVIDIA Corporation)
S0 percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [51040 2015-07-10] (LSI Corporation)
S0 percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [51552 2015-07-10] (Avago Technologies)
U0 pkkycy; C:\WINDOWS\System32\drivers\mwntpmtn.sys [52440 2015-08-14] (Malwarebytes Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [492032 2015-07-10] (Realtek                                            )
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [35624 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [20416 2015-02-04] (Razer, Inc.)
R3 rzudd; C:\WINDOWS\System32\drivers\rzudd.sys [151336 2014-12-30] (Razer Inc)
R2 storqosflt; C:\WINDOWS\System32\drivers\storqosflt.sys [52736 2015-07-10] (Microsoft Corporation)
S0 storufs; C:\WINDOWS\System32\drivers\storufs.sys [33632 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_x86_b6707c73599dd1b6\swenum.sys [16224 2015-07-10] (Microsoft Corporation)
S3 UcmCx0101; C:\WINDOWS\System32\Drivers\UcmCx.sys [45056 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\WINDOWS\System32\drivers\UcmUcsi.sys [32768 2015-08-06] (Microsoft Corporation)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
S3 Ufx01000; C:\WINDOWS\System32\drivers\ufx01000.sys [190816 2015-07-10] (Microsoft Corporation)
S3 UfxChipidea; C:\WINDOWS\System32\drivers\UfxChipidea.sys [73568 2015-07-10] (Microsoft Corporation)
S3 ufxsynopsys; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [100704 2015-07-10] (Microsoft Corporation)
S3 UrsChipidea; C:\WINDOWS\System32\drivers\urschipidea.sys [21856 2015-07-10] (Microsoft Corporation)
S3 UrsCx01000; C:\WINDOWS\System32\drivers\urscx01000.sys [42848 2015-07-10] (Microsoft Corporation)
S3 UrsSynopsys; C:\WINDOWS\System32\drivers\urssynopsys.sys [21856 2015-07-10] (Microsoft Corporation)
S3 vhf; C:\WINDOWS\System32\drivers\vhf.sys [24064 2015-07-10] (Microsoft Corporation)
S3 wdiwifi; C:\WINDOWS\System32\DRIVERS\wdiwifi.sys [488448 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRT; C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [86552 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [15384 2015-07-10] (Microsoft Corporation)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [173408 2015-07-10] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161792 2015-07-10] (Microsoft Corporation)
S3 xboxgip; C:\WINDOWS\System32\drivers\xboxgip.sys [186368 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\WINDOWS\System32\drivers\xinputhid.sys [18432 2015-07-10] (Microsoft Corporation)
R3 xusb22; C:\WINDOWS\System32\drivers\xusb22.sys [72704 2015-07-10] (Microsoft Corporation)
U3 aswMBR; C:\Users\Cameron\AppData\Local\Temp\aswMBR.sys [56704 2015-08-14] () [File not signed]
U3 aswVmm; C:\Users\Cameron\AppData\Local\Temp\aswVmm.sys [192224 2015-08-14] ()
U3 kxddafog; C:\Users\Cameron\AppData\Local\Temp\kxddafog.sys [104960 2015-08-14] (GMER) [File not signed]
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-14 21:12 - 2015-08-14 21:12 - 00029958 _____ C:\Users\Cameron\Downloads\FRST.txt
2015-08-14 21:12 - 2015-08-14 21:12 - 00000000 ____D C:\FRST
2015-08-14 21:11 - 2015-08-14 21:12 - 01678336 _____ (Farbar) C:\Users\Cameron\Downloads\FRST.exe
2015-08-14 21:10 - 2015-08-14 21:10 - 00016148 _____ C:\WINDOWS\system32\CAMERON-PC_Cameron_HistoryPrediction.bin
2015-08-14 21:02 - 2015-08-14 21:02 - 01292424 _____ (Ruiware) C:\Users\Cameron\Downloads\wpsetup.exe
2015-08-14 21:02 - 2015-08-14 21:02 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\WinPatrol
2015-08-14 21:02 - 2015-08-14 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2015-08-14 21:02 - 2015-08-14 21:02 - 00000000 ____D C:\ProgramData\InstallMate
2015-08-14 21:02 - 2015-08-14 21:02 - 00000000 ____D C:\Program Files\Ruiware
2015-08-14 20:58 - 2015-08-14 20:58 - 00000000 ____D C:\Program Files\ESET
2015-08-14 20:51 - 2015-08-14 20:51 - 05634818 _____ (Swearware) C:\Users\Cameron\Downloads\ComboFix.exe
2015-08-14 20:49 - 2015-08-14 20:52 - 00251392 _____ C:\Users\Cameron\Downloads\hijackthis_sfx.exe
2015-08-14 20:34 - 2015-08-14 20:35 - 00380416 _____ C:\Users\Cameron\Desktop\05gcgizk.exe
2015-08-14 20:34 - 2015-08-14 20:34 - 00007601 _____ C:\Users\Cameron\AppData\Local\Resmon.ResmonCfg
2015-08-14 20:04 - 2015-08-14 20:04 - 00052440 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwntpmtn.sys
2015-08-14 20:04 - 2015-08-14 20:04 - 00000138 _____ C:\WINDOWS\system32\pntmt
2015-08-14 19:59 - 2015-08-14 20:00 - 00098520 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-14 19:59 - 2015-08-14 19:59 - 00001129 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-14 19:59 - 2015-08-14 19:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-14 19:59 - 2015-08-14 19:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-14 19:59 - 2015-08-14 19:59 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-08-14 19:59 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-14 19:59 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-14 19:59 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-14 19:58 - 2015-08-14 19:58 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Cameron\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-14 19:58 - 2015-08-14 19:58 - 00000000 ____D C:\Users\Cameron\Doctor Web
2015-08-14 19:51 - 2015-08-14 19:58 - 169587168 _____ C:\Users\Cameron\Downloads\w5d83tpc.exe
2015-08-14 19:49 - 2015-08-14 19:49 - 05200384 _____ (AVAST Software) C:\Users\Cameron\Downloads\aswmbr.exe
2015-08-14 19:45 - 2015-08-14 19:45 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Cameron\Downloads\tdsskiller.exe
2015-08-14 17:26 - 2015-08-14 17:27 - 00000000 ____D C:\Users\Cameron\AppData\Local\PokerStars
2015-08-14 17:26 - 2015-08-14 17:27 - 00000000 ____D C:\Program Files\PokerStars
2015-08-14 17:26 - 2015-08-14 17:26 - 00001968 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.lnk
2015-08-14 17:26 - 2015-08-14 17:26 - 00001962 _____ C:\Users\Public\Desktop\PokerStars.lnk
2015-08-14 17:26 - 2015-08-14 17:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
2015-08-14 17:15 - 2015-08-14 17:26 - 85770976 _____ (PokerStars) C:\Users\Cameron\Downloads\PokerStarsInstall.exe
2015-08-13 21:31 - 2015-08-13 21:31 - 00000000 ____D C:\Users\Cameron\AppData\Local\speech
2015-08-13 14:11 - 2015-08-13 14:11 - 00000000 ____D C:\Users\Cameron\Tracing
2015-08-13 11:38 - 2015-08-13 11:40 - 00000000 ____D C:\Users\Cameron\Downloads\Suits.S05E08.HDTV.x264-KILLERS[ettv]
2015-08-13 11:38 - 2015-08-13 11:39 - 00000000 ____D C:\Users\Cameron\Downloads\Mr.Robot.S01E08.HDTV.x264-KILLERS[ettv]
2015-08-11 23:32 - 2015-08-11 23:32 - 00000000 ____D C:\Program Files\Microsoft ASP.NET
2015-08-11 14:31 - 2015-08-11 14:31 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\LolClient
2015-08-11 14:15 - 2015-08-11 14:15 - 00001784 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015 (32 Bit).lnk
2015-08-11 14:15 - 2015-08-11 14:15 - 00000000 ____D C:\ProgramData\ALM
2015-08-11 13:51 - 2015-08-11 13:51 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\NVIDIA
2015-08-11 13:46 - 2015-08-11 13:51 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-08-11 13:45 - 2015-08-11 13:45 - 00001329 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015 (32 Bit).lnk
2015-08-11 13:45 - 2015-08-11 13:45 - 00000000 ____D C:\Users\Cameron\Documents\Adobe
2015-08-11 13:35 - 2015-08-14 19:41 - 00000000 ___RD C:\Users\Cameron\Creative Cloud Files
2015-08-11 13:12 - 2015-08-11 13:45 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-11 13:11 - 2015-08-11 13:11 - 00000000 ____D C:\ProgramData\Riot Games
2015-08-11 13:10 - 2015-08-11 14:18 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-08-11 13:10 - 2015-08-11 13:10 - 00001585 _____ C:\Users\Public\Desktop\League of Legends.lnk
2015-08-11 13:10 - 2015-08-11 13:10 - 00001268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-08-11 13:10 - 2015-08-11 13:10 - 00001256 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-08-11 13:10 - 2015-08-11 13:10 - 00000000 ____D C:\Riot Games
2015-08-11 13:10 - 2015-08-11 13:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-08-11 13:10 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-08-11 13:10 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-08-11 13:10 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-08-11 13:09 - 2015-08-11 13:10 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Riot Games
2015-08-11 13:08 - 2015-08-11 13:09 - 27864920 _____ (Riot Games) C:\Users\Cameron\Downloads\LeagueofLegends_NA_Installer_9_15_2014.exe
2015-08-11 13:07 - 2015-08-11 13:07 - 00675504 _____ (Adobe Systems Incorporated) C:\Users\Cameron\Downloads\CreativeCloudSet-Up.exe
2015-08-11 12:41 - 2015-08-11 12:41 - 00037376 _____ (Hewlett-Packard Corporation) C:\WINDOWS\system32\hpz3lw71.dll
2015-08-11 12:41 - 2015-08-11 12:41 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-08-11 12:40 - 2015-08-11 12:40 - 02907040 _____ C:\WINDOWS\system32\PortChanger.exe
2015-08-11 12:40 - 2015-08-11 12:40 - 01777056 _____ (Hewlett Packard) C:\WINDOWS\system32\hppldcoi.dll
2015-08-11 12:40 - 2015-08-11 12:40 - 01332736 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpotiop1.dll
2015-08-11 12:40 - 2015-08-11 12:40 - 01058816 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpowiav1.dll
2015-08-11 12:40 - 2015-08-11 12:40 - 00137632 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4.sys
2015-08-11 12:40 - 2015-08-11 12:40 - 00042912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dot4usb.sys
2015-08-11 12:40 - 2015-08-11 12:40 - 00022432 _____ (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Dot4Prt.sys
2015-08-11 12:40 - 2015-08-11 12:40 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-11 11:13 - 2015-08-11 11:13 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-08-11 11:13 - 2015-08-11 11:13 - 00000000 ____D C:\Users\DefaultAppPool
2015-08-11 11:13 - 2015-08-06 20:49 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-11 11:13 - 2015-08-06 20:49 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2015-08-11 11:13 - 2015-07-10 01:28 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-11 11:13 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-11 11:13 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-11 11:13 - 2015-07-10 01:28 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-09 16:22 - 2015-08-09 16:22 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\WinRAR
2015-08-08 02:37 - 2015-08-08 02:40 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E24.HDTV.x264-LOL[ettv]
2015-08-08 02:35 - 2015-08-08 02:36 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E23.HDTV.x264-LOL[ettv]
2015-08-08 02:34 - 2015-08-08 02:38 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E22.HDTV.x264-LOL[ettv]
2015-08-08 02:34 - 2015-08-08 02:37 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E21.HDTV.x264-LOL[ettv]
2015-08-08 02:31 - 2015-08-08 02:37 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E20.HDTV.x264-LOL[ettv]
2015-08-08 02:31 - 2015-08-08 02:32 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E18.HDTV.x264-LOL[ettv]
2015-08-08 02:31 - 2015-08-08 02:32 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E17.HDTV.x264-LOL[ettv]
2015-08-08 02:31 - 2015-08-08 02:32 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E16.HDTV.x264-LOL[ettv]
2015-08-08 02:30 - 2015-08-08 02:31 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E19.HDTV.x264-LOL[ettv]
2015-08-08 02:27 - 2015-08-08 02:31 - 119185207 ____R C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E12.HDTV.x264-LOL.mp4
2015-08-08 02:27 - 2015-08-08 02:30 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E15.HDTV.x264-LOL[ettv]
2015-08-08 02:27 - 2015-08-08 02:30 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E13.HDTV.x264-LOL[ettv]
2015-08-08 02:27 - 2015-08-08 02:30 - 00000000 ____D C:\Users\Cameron\Downloads\The.Big.Bang.Theory.S08E11.HDTV.x264-LOL[ettv]
2015-08-08 02:26 - 2015-08-08 02:48 - 00000000 ____D C:\Users\Cameron\Downloads\Pitch Perfect 2 (2015) [1080p]
2015-08-08 02:05 - 2015-08-08 02:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-08-07 00:49 - 2015-08-07 00:49 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-06 23:06 - 2015-08-06 23:11 - 00000000 ____D C:\Users\Cameron\Downloads\Mr.Robot.S01E07.720p.HDTV.x264-KILLERS[rarbg]
2015-08-06 23:06 - 2015-08-06 23:06 - 00000000 ____D C:\Users\Cameron\Downloads\Suits.S05E07.HDTV.x264-ASAP[rarbg]
2015-08-06 23:05 - 2015-08-13 11:53 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\uTorrent
2015-08-06 23:05 - 2015-08-06 23:05 - 01996896 _____ (BitTorrent Inc.) C:\Users\Cameron\Downloads\uTorrent(1).exe
2015-08-06 23:05 - 2015-08-06 23:05 - 00000898 _____ C:\Users\Cameron\Desktop\µTorrent.lnk
2015-08-06 23:05 - 2015-08-06 23:05 - 00000878 _____ C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-08-06 21:46 - 2015-08-06 20:52 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-06 21:44 - 2015-08-06 21:44 - 00000000 ____D C:\Windows.old
2015-08-06 21:43 - 2015-08-06 21:43 - 20854776 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 19333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 13024256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 11260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 06264160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 03025408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 02150696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01914880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01829376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01823232 _____ C:\WINDOWS\system32\InputService.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01808224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 01769056 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01709920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01535032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01395568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01341920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01153536 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 01134080 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 01125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-06 21:43 - 2015-08-06 21:43 - 00995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00990720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00923648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00918880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00902320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00868752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-06 21:43 - 2015-08-06 21:43 - 00850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-06 21:43 - 2015-08-06 21:43 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00751520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00729088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00643616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00548616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00539216 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00469856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00442720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00436064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00415072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-06 21:43 - 2015-08-06 21:43 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00369504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00351072 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00351072 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00301056 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00284672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00257888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00193888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00191144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00054112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-06 21:43 - 2015-08-06 21:43 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00025088 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-06 21:43 - 2015-08-06 21:43 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-06 21:43 - 2015-08-06 21:43 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-06 21:42 - 2015-08-06 21:42 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-06 21:42 - 2015-08-06 21:42 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-06 21:42 - 2015-08-06 21:42 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-06 21:42 - 2015-08-06 21:42 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-06 21:42 - 2015-08-06 21:42 - 00000000 ____D C:\Program Files\MSBuild
2015-08-06 21:42 - 2015-08-06 21:42 - 00000000 ____D C:\inetpub
2015-08-06 21:41 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-06 21:41 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-06 21:41 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-06 21:01 - 2015-08-06 21:01 - 00000000 ____D C:\Users\Cameron\AppData\Local\MicrosoftEdge
2015-08-06 20:56 - 2015-08-06 22:20 - 00000000 ____D C:\Users\Cameron\AppData\Local\Comms
2015-08-06 20:54 - 2015-08-14 20:26 - 00000000 ___RD C:\Users\Cameron\OneDrive
2015-08-06 20:54 - 2015-08-06 20:55 - 00002340 _____ C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-06 20:54 - 2015-08-06 20:54 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-06 20:52 - 2015-08-06 20:52 - 00000020 ___SH C:\Users\Cameron\ntuser.ini
2015-08-06 20:52 - 2015-08-06 20:52 - 00000000 __SHD C:\Recovery
2015-08-06 20:52 - 2015-08-06 20:52 - 00000000 ____D C:\Users\Cameron\AppData\Local\TileDataLayer
2015-08-06 20:52 - 2015-08-06 20:52 - 00000000 ____D C:\Users\Cameron\AppData\Local\Publishers
2015-08-06 20:51 - 2015-08-06 20:51 - 00021316 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-06 20:49 - 2015-08-06 20:49 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-06 20:49 - 2015-08-06 20:49 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-06 20:49 - 2015-08-06 20:49 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-06 20:48 - 2015-08-14 19:58 - 00000000 ____D C:\Users\Cameron
2015-08-06 20:48 - 2015-08-06 20:52 - 00000000 ___RD C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-06 20:48 - 2015-08-06 20:48 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 __RSD C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-06 20:47 - 2015-08-11 12:43 - 00984150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-06 20:47 - 2015-08-06 20:59 - 00003242 _____ C:\WINDOWS\system32\lvcoinst.log
2015-08-06 20:47 - 2015-08-06 20:50 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-06 20:47 - 2015-08-06 20:47 - 00020921 _____ C:\WINDOWS\iis.log
2015-08-06 20:47 - 2015-08-06 20:47 - 00000000 ____D C:\Program Files\Common Files\logishrd
2015-08-06 20:47 - 2015-07-22 17:30 - 04385936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-06 20:47 - 2015-07-22 17:30 - 03021128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2015-08-06 20:47 - 2015-07-22 17:30 - 02554512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-06 20:47 - 2015-07-22 17:30 - 00670864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-06 20:47 - 2015-07-22 17:30 - 00375112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-06 20:47 - 2015-07-22 17:30 - 00061584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-06 20:47 - 2015-07-20 06:49 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-06 20:46 - 2015-08-06 20:48 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-06 20:46 - 2015-08-06 20:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-06 20:46 - 2015-08-06 20:46 - 00020447 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-06 20:46 - 2015-08-06 20:46 - 00000398 _____ C:\WINDOWS\PFRO.log
2015-08-06 20:19 - 2015-08-06 20:51 - 00006611 _____ C:\WINDOWS\comsetup.log
2015-08-06 19:48 - 2015-08-06 19:48 - 00000000 ___HD C:\$Windows.~WS
2015-08-06 19:47 - 2015-08-06 19:47 - 00000000 ____D C:\Users\Cameron\AppData\Local\GWX
2015-08-06 19:30 - 2015-08-06 19:48 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-06 19:23 - 2015-08-06 20:51 - 00012354 _____ C:\WINDOWS\diagerr.xml
2015-08-06 19:23 - 2015-08-06 20:51 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2015-08-06 19:10 - 2015-04-27 08:02 - 00148528 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
2015-08-06 19:04 - 2015-08-06 19:04 - 19648448 _____ (Microsoft Corporation) C:\Users\Cameron\Downloads\MediaCreationToolx64(1).exe
2015-08-06 19:04 - 2015-08-06 19:04 - 18196016 _____ (Microsoft Corporation) C:\Users\Cameron\Downloads\MediaCreationTool(1).exe
2015-08-06 19:04 - 2015-08-06 19:04 - 08669472 _____ (Microsoft Corporation) C:\Users\Cameron\Downloads\Windows7UpgradeAdvisorSetup.exe
2015-08-06 19:02 - 2015-08-06 19:03 - 18196016 _____ (Microsoft Corporation) C:\Users\Cameron\Downloads\MediaCreationTool.exe
2015-08-06 19:02 - 2015-08-06 19:02 - 19648448 _____ (Microsoft Corporation) C:\Users\Cameron\Downloads\MediaCreationToolx64.exe
2015-07-23 06:46 - 2015-07-23 06:46 - 37748880 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 22973584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 15754192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2um.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 13274904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 12973680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 11843192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 09237136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-07-23 06:46 - 2015-07-23 06:46 - 02963024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 02164040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 01049416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3235362.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00991152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshim.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00983184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00976528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00912528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3235362.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00364176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00340624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00314936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00155280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinit.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim32.dll
2015-07-23 06:46 - 2015-07-23 06:46 - 00026462 _____ C:\WINDOWS\system32\nvinfo.pb
2015-07-22 13:17 - 2015-08-12 04:22 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-22 13:17 - 2015-08-06 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-22 13:16 - 2015-08-14 20:21 - 00000888 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-22 13:16 - 2015-08-14 19:41 - 00000884 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-22 13:16 - 2015-07-22 13:17 - 00000000 ____D C:\Users\Cameron\AppData\Local\Google
2015-07-22 13:16 - 2015-07-22 13:17 - 00000000 ____D C:\Program Files\Google
2015-07-22 13:16 - 2015-07-22 13:16 - 00931408 _____ (Google Inc.) C:\Users\Cameron\Downloads\ChromeSetup.exe
2015-07-21 17:42 - 2015-07-21 17:42 - 00000000 ____D C:\Users\Cameron\AppData\Local\CEF
2015-07-21 13:22 - 2015-07-21 13:22 - 00000000 ____D C:\Program Files\Common Files\AV
2015-07-21 13:20 - 2015-08-06 20:49 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\baretorrent
2015-07-21 13:20 - 2015-07-21 13:20 - 16411755 _____ (baretorrent) C:\Users\Cameron\Downloads\baretorrent-0-4-4-windows-x64.exe
2015-07-21 13:20 - 2015-07-21 13:20 - 00000000 ____D C:\Program Files\baretorrent
2015-07-20 02:00 - 2013-07-23 16:55 - 00074240 _____ C:\WINDOWS\system32\CmdRtr.DLL
2015-07-20 02:00 - 2013-07-23 16:52 - 00263168 _____ C:\WINDOWS\system32\APOMngr.DLL
2015-07-20 01:59 - 2013-09-11 11:42 - 00049372 _____ C:\WINDOWS\system32\kschimp.ini
2015-07-20 01:59 - 2013-09-04 14:03 - 01580032 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ksaud.sys
2015-07-20 01:59 - 2013-08-30 14:44 - 02127872 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KsMalc32.dll
2015-07-20 01:59 - 2013-08-29 15:38 - 00034709 _____ C:\WINDOWS\system32\ksaud.ini
2015-07-20 01:59 - 2013-08-29 11:13 - 00104448 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\SBAVMon.dll
2015-07-20 01:59 - 2013-08-21 17:57 - 00030978 _____ C:\WINDOWS\system32\MixerDefault.reg
2015-07-20 01:59 - 2013-08-15 17:55 - 00944640 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KSAPO32.dll
2015-07-20 01:59 - 2013-08-15 17:55 - 00047104 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KSPPLD32.dll
2015-07-20 01:59 - 2013-07-29 18:57 - 00305729 _____ C:\WINDOWS\system32\DeviceDefaultVista.reg
2015-07-20 01:59 - 2013-07-24 16:12 - 00051150 _____ C:\WINDOWS\ksaudENG.reg
2015-07-20 01:59 - 2013-07-23 16:59 - 00720328 _____ (Creative Technology Ltd) C:\WINDOWS\KSAIM32.exe
2015-07-20 01:59 - 2013-07-10 12:11 - 00305664 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KSVSPI32.dll
2015-07-20 01:59 - 2013-07-01 09:55 - 00056320 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\SBAVMonL.dll
2015-07-20 01:59 - 2013-07-01 09:35 - 00001772 _____ C:\ProgramData\cfSB1095A.ini
2015-07-20 01:59 - 2013-07-01 09:35 - 00000806 _____ C:\ProgramData\cfSB1300A.ini
2015-07-20 01:59 - 2013-06-11 17:37 - 00001980 _____ C:\ProgramData\cfSB1560.ini
2015-07-20 01:59 - 2013-05-23 16:27 - 00001697 _____ C:\ProgramData\CfGH0250.ini
2015-07-20 01:59 - 2013-05-23 16:27 - 00001696 _____ C:\ProgramData\CfGH0280.ini
2015-07-20 01:59 - 2013-03-08 16:15 - 00003077 _____ C:\ProgramData\cfSB1290A.ini
2015-07-20 01:59 - 2013-03-08 16:15 - 00002844 _____ C:\ProgramData\cfSB1240A.ini
2015-07-20 01:59 - 2012-12-07 18:01 - 00000715 _____ C:\ProgramData\CfSB1532.ini
2015-07-20 01:59 - 2012-12-07 18:01 - 00000715 _____ C:\ProgramData\CfSB1530.ini
2015-07-20 01:59 - 2012-03-12 17:53 - 00003416 _____ C:\WINDOWS\system32\SBX.bmp
2015-07-20 01:59 - 2012-02-09 15:11 - 00000715 _____ C:\ProgramData\CfSB1390.ini
2015-07-20 01:59 - 2012-02-09 15:11 - 00000715 _____ C:\ProgramData\CfSB1380.ini
2015-07-20 01:59 - 2011-09-26 16:33 - 00000715 _____ C:\ProgramData\CfSB1360.ini
2015-07-20 01:59 - 2011-06-29 18:35 - 00197120 _____ (Creative Technology Limited) C:\WINDOWS\system32\KsDvInst.dll
2015-07-20 01:59 - 2011-06-03 10:28 - 00339968 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\JDetect.exe
2015-07-20 01:59 - 2010-11-26 11:07 - 00000806 _____ C:\ProgramData\cfSB1300.ini
2015-07-20 01:59 - 2010-06-29 15:04 - 00001772 _____ C:\ProgramData\cfSB1095.ini
2015-07-20 01:59 - 2010-06-23 14:54 - 00003077 _____ C:\ProgramData\cfSB1290.ini
2015-07-20 01:59 - 2009-11-17 15:54 - 00002844 _____ C:\ProgramData\cfSB1240.ini
2015-07-20 01:59 - 2009-03-20 18:07 - 00000939 _____ C:\ProgramData\CfSB1170.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001352 _____ C:\ProgramData\cfSB1090.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001352 _____ C:\ProgramData\cfSB0910.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001346 _____ C:\ProgramData\cfSB1100.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001302 _____ C:\ProgramData\cfSB0300.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001282 _____ C:\ProgramData\cfSB0471.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001208 _____ C:\ProgramData\cfSB0490.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001027 _____ C:\ProgramData\cfSB0560.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001026 _____ C:\ProgramData\cfSB0271.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00001026 _____ C:\ProgramData\cfSB0270.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 00000590 _____ C:\ProgramData\cfSB0950.ini
2015-07-20 01:57 - 2015-07-20 01:58 - 63070824 _____ (Creative Technology Ltd) C:\Users\Cameron\Downloads\SBEVO_ZX_ZXR_PCDRV_L13_1_01_02.exe
2015-07-19 21:55 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-07-19 21:55 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-07-19 21:55 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-07-19 21:55 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-07-19 21:55 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-07-19 21:55 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-07-19 21:55 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-07-19 21:55 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-07-19 21:55 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-07-19 21:55 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-07-19 21:55 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-07-19 21:55 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-07-19 21:55 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-07-19 21:55 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-07-19 21:55 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-07-19 21:55 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-07-19 21:55 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-07-19 21:55 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-07-19 21:55 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-07-19 21:55 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-07-19 21:55 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-07-19 21:55 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-07-19 21:55 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-07-19 21:55 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-07-19 21:55 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-07-19 21:55 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-07-19 21:55 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-07-19 21:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-07-19 21:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-07-19 21:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-07-19 21:55 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-07-19 21:55 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-07-19 21:55 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-07-19 21:55 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-07-19 21:55 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-07-19 21:55 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-07-19 21:55 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-07-19 21:55 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-07-19 21:55 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-07-19 21:55 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-07-19 21:55 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-07-19 21:55 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-07-19 21:55 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-07-19 21:55 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-07-19 21:55 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-07-19 21:55 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-07-19 21:55 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-07-19 21:55 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-07-19 21:55 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-07-19 21:55 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-07-19 21:55 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-07-19 21:55 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-07-19 21:55 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-07-19 21:55 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-07-19 21:55 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-07-19 21:55 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-07-19 21:55 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-07-19 21:55 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-07-19 21:55 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-07-19 21:55 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-07-19 21:55 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-07-19 21:55 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-07-19 21:55 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-07-19 21:55 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-07-19 21:55 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-07-19 21:55 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-07-19 21:55 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-07-19 21:55 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-07-19 21:55 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-07-19 21:55 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-07-19 21:55 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-07-19 21:55 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-07-19 21:55 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-07-19 21:55 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-07-19 21:55 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-07-19 21:55 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-07-19 21:55 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-07-19 21:55 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-07-19 21:55 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-07-19 21:55 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-07-19 21:55 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-07-19 21:55 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-07-19 21:55 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-07-19 21:55 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-07-19 21:55 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-07-19 21:44 - 2015-07-19 22:41 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\BitTorrent Maelstrom
2015-07-19 21:42 - 2015-07-19 21:58 - 00000000 ____D C:\Users\Cameron\Downloads\Humans.S01E06.720p.HDTV.x264-TLA[rarbg]
2015-07-19 21:41 - 2015-07-19 21:42 - 40559976 _____ (The Chromium Authors) C:\Users\Cameron\Downloads\Maelstrom.exe
2015-07-19 21:40 - 2015-07-19 21:40 - 01996896 _____ (BitTorrent Inc.) C:\Users\Cameron\Downloads\uTorrent.exe
2015-07-19 21:10 - 2015-06-19 11:06 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-07-19 21:10 - 2015-06-19 10:39 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-14 21:12 - 2015-07-10 01:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-14 21:10 - 2015-07-14 15:39 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-14 20:53 - 2015-07-14 15:39 - 00000000 ____D C:\Users\Cameron\AppData\Local\VirtualStore
2015-08-14 20:41 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-14 20:26 - 2015-07-14 15:45 - 00000000 ____D C:\Program Files\Steam
2015-08-14 20:17 - 2015-07-14 17:28 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-14 19:42 - 2015-07-09 23:59 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-14 19:41 - 2015-07-14 16:14 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Skype
2015-08-14 19:41 - 2015-07-14 15:45 - 00000000 ____D C:\Users\Cameron\AppData\Local\Adobe
2015-08-14 13:43 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-08-13 13:30 - 2015-07-14 17:21 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\vlc
2015-08-13 11:20 - 2015-07-14 15:45 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-08-11 23:35 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-11 23:34 - 2015-07-14 17:48 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-11 23:34 - 2015-07-14 15:44 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-11 23:32 - 2015-07-14 17:48 - 129304528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-11 14:15 - 2015-07-14 15:45 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Adobe
2015-08-11 14:15 - 2015-07-14 15:45 - 00000000 ____D C:\Program Files\Adobe
2015-08-11 13:45 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Adobe
2015-08-11 13:12 - 2015-07-14 15:52 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-08-11 13:10 - 2015-07-10 01:28 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-11 12:40 - 2015-07-10 02:53 - 00025117 _____ C:\WINDOWS\setupact.log
2015-08-10 09:47 - 2015-07-14 15:45 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\AIMP3
2015-08-08 08:38 - 2015-07-10 01:29 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-08-08 08:38 - 2015-07-10 01:29 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-08-07 20:45 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-07 19:25 - 2015-07-14 16:10 - 00000000 ____D C:\Program Files\McAfee
2015-08-07 17:04 - 2015-07-14 15:46 - 00000000 ____D C:\ProgramData\Skype
2015-08-07 17:03 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2015-08-07 09:53 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\AppCompat
2015-08-06 21:45 - 2015-07-10 01:28 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-06 21:44 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-06 21:44 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-06 21:44 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-06 21:42 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-06 21:41 - 2015-07-10 01:25 - 01014272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-06 21:41 - 2015-07-10 01:25 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-06 21:41 - 2015-07-10 01:25 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-06 21:41 - 2015-07-10 01:25 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-06 21:41 - 2015-07-10 01:25 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-06 21:41 - 2015-07-10 01:25 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-06 21:41 - 2015-07-10 01:25 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-06 21:41 - 2015-07-10 01:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-06 21:41 - 2015-07-10 01:25 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-06 21:41 - 2015-07-10 01:25 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-06 20:55 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-06 20:53 - 2015-07-10 01:28 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-08-06 20:52 - 2015-07-10 01:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-06 20:52 - 2015-07-10 01:28 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-06 20:52 - 2015-07-10 01:28 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-06 20:52 - 2015-07-10 01:28 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-06 20:52 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\Public
2015-08-06 20:52 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\rescache
2015-08-06 20:51 - 2015-07-10 02:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-06 20:51 - 2015-07-10 01:28 - 00000000 __RSD C:\WINDOWS\Media
2015-08-06 20:51 - 2015-07-10 01:28 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-06 20:51 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\Registration
2015-08-06 20:50 - 2015-07-14 16:32 - 00000000 ____D C:\Users\Public\Creative
2015-08-06 20:50 - 2015-07-10 02:53 - 00191552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-06 20:49 - 2015-07-14 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2015-08-06 20:49 - 2015-07-14 16:23 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2015-08-06 20:49 - 2015-07-14 15:57 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2015-08-06 20:49 - 2015-07-14 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2015-08-06 20:49 - 2015-07-14 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-06 20:49 - 2015-07-14 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-06 20:49 - 2015-07-14 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2015-08-06 20:49 - 2015-07-14 15:45 - 00000000 ____D C:\Users\Cameron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-06 20:49 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-06 20:49 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
2015-08-06 20:49 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-06 20:49 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-06 20:49 - 2015-07-14 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfraRecorder
2015-08-06 20:49 - 2015-07-10 01:29 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-06 20:49 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-06 20:49 - 2015-07-10 01:28 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-06 20:49 - 2015-07-10 01:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-06 20:49 - 2015-07-09 23:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-06 20:49 - 2009-07-13 19:37 - 00000000 ____D C:\Users\Default.migrated
2015-08-06 20:48 - 2015-07-14 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-08-06 20:48 - 2015-07-14 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-08-06 20:48 - 2015-07-14 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2015-08-06 20:48 - 2015-07-14 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
2015-08-06 20:48 - 2015-07-14 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-06 20:48 - 2015-07-14 15:45 - 00000000 ____D C:\WINDOWS\system32\Adobe
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\zh-TW
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\zh-CN
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\sv-SE
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\ru-RU
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\pt-PT
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\pt-BR
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\pl-PL
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\nl-NL
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\nb-NO
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\ko-KR
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\ja-JP
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\it-IT
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\hu-HU
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\fi-FI
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\el-GR
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\system32\de-DE
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\schemas
2015-08-06 20:48 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-06 20:48 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-06 20:48 - 2009-07-13 21:52 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-06 20:47 - 2015-07-10 01:28 - 00000000 ____D C:\WINDOWS\Help
2015-08-06 20:46 - 2015-07-09 23:59 - 00000000 __RHD C:\Users\Default
2015-08-06 20:23 - 2009-07-13 21:34 - 00022512 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-06 20:23 - 2009-07-13 21:34 - 00022512 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-06 20:18 - 2015-07-10 04:17 - 00000000 ___HD C:\$Windows.~BT
2015-08-06 19:48 - 2015-07-14 15:44 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-06 19:10 - 2015-07-14 16:07 - 00000000 ____D C:\Program Files\Common Files\McAfee
2015-07-21 17:30 - 2015-07-14 16:07 - 00000000 ____D C:\ProgramData\McAfee
2015-07-20 02:02 - 2015-07-14 16:46 - 00000000 ____D C:\ProgramData\Creative
2015-07-20 02:00 - 2015-07-14 16:32 - 00000246 ___RH C:\WINDOWS\ctfile.rfc
2015-07-20 02:00 - 2015-07-14 16:31 - 00000000 ____D C:\Program Files\Creative
2015-07-20 02:00 - 2015-07-14 15:41 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-07-19 20:52 - 2015-07-14 16:18 - 00000000 ____D C:\Users\Cameron\AppData\Local\Razer
2015-07-19 20:52 - 2015-07-14 15:50 - 00058456 _____ C:\Users\Cameron\AppData\Local\GDIPFONTCACHEV1.DAT

==================== Files in the root of some directories =======

2015-07-14 15:57 - 2015-07-14 15:57 - 12190232 _____ (LastPass) C:\Program Files\Common Files\lpuninstall.exe
2015-08-14 20:34 - 2015-08-14 20:34 - 0007601 _____ () C:\Users\Cameron\AppData\Local\Resmon.ResmonCfg
2015-07-20 01:59 - 2013-05-23 16:27 - 0001697 _____ () C:\ProgramData\CfGH0250.ini
2015-07-20 01:59 - 2013-05-23 16:27 - 0001696 _____ () C:\ProgramData\CfGH0280.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001026 _____ () C:\ProgramData\cfSB0270.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001026 _____ () C:\ProgramData\cfSB0271.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001302 _____ () C:\ProgramData\cfSB0300.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001282 _____ () C:\ProgramData\cfSB0471.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001208 _____ () C:\ProgramData\cfSB0490.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001027 _____ () C:\ProgramData\cfSB0560.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001352 _____ () C:\ProgramData\cfSB0910.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0000590 _____ () C:\ProgramData\cfSB0950.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001352 _____ () C:\ProgramData\cfSB1090.ini
2015-07-20 01:59 - 2010-06-29 15:04 - 0001772 _____ () C:\ProgramData\cfSB1095.ini
2015-07-20 01:59 - 2013-07-01 09:35 - 0001772 _____ () C:\ProgramData\cfSB1095A.ini
2015-07-20 01:59 - 2009-02-24 14:27 - 0001346 _____ () C:\ProgramData\cfSB1100.ini
2015-07-20 01:59 - 2009-03-20 18:07 - 0000939 _____ () C:\ProgramData\CfSB1170.ini
2015-07-20 01:59 - 2009-11-17 15:54 - 0002844 _____ () C:\ProgramData\cfSB1240.ini
2015-07-20 01:59 - 2013-03-08 16:15 - 0002844 _____ () C:\ProgramData\cfSB1240A.ini
2015-07-20 01:59 - 2010-06-23 14:54 - 0003077 _____ () C:\ProgramData\cfSB1290.ini
2015-07-20 01:59 - 2013-03-08 16:15 - 0003077 _____ () C:\ProgramData\cfSB1290A.ini
2015-07-20 01:59 - 2010-11-26 11:07 - 0000806 _____ () C:\ProgramData\cfSB1300.ini
2015-07-20 01:59 - 2013-07-01 09:35 - 0000806 _____ () C:\ProgramData\cfSB1300A.ini
2015-07-20 01:59 - 2011-09-26 16:33 - 0000715 _____ () C:\ProgramData\CfSB1360.ini
2015-07-20 01:59 - 2012-02-09 15:11 - 0000715 _____ () C:\ProgramData\CfSB1380.ini
2015-07-20 01:59 - 2012-02-09 15:11 - 0000715 _____ () C:\ProgramData\CfSB1390.ini
2015-07-20 01:59 - 2012-12-07 18:01 - 0000715 _____ () C:\ProgramData\CfSB1530.ini
2015-07-20 01:59 - 2012-12-07 18:01 - 0000715 _____ () C:\ProgramData\CfSB1532.ini
2015-07-20 01:59 - 2013-06-11 17:37 - 0001980 _____ () C:\ProgramData\cfSB1560.ini

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-11 23:32

==================== End of log ============================


Edited by Farside_77, 14 August 2015 - 11:22 PM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 38,964 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:11:16 AM

Posted 15 August 2015 - 09:51 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.


start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

() C:\Users\Cameron\Desktop\05gcgizk.exe
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
U0 pkkycy; C:\WINDOWS\System32\drivers\mwntpmtn.sys [52440 2015-08-14] (Malwarebytes Corporation)
U3 kxddafog; C:\Users\Cameron\AppData\Local\Temp\kxddafog.sys [104960 2015-08-14] (GMER) [File not signed]
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath[/B]
C:\Users\Cameron\Desktop\05gcgizk.exe
C:\WINDOWS\System32\drivers\mwntpmtn.sys

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Also post the Addition.txt file that was created when your have run the Farbar tool.

How is the computer running now?

#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,964 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:11:16 AM

Posted 20 August 2015 - 08:06 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users