Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

One System Care [Closed]

Started by IAH , Oct 05 2015 08:48 AM

  • This topic is locked This topic is locked

#1
IAH
Posted 05 October 2015 - 08:48 AM

IAH

    New Member

  • Member
  • Pip
  • 1 posts

Hello!

 

I am having a problem with this 'One System Care' screen keeps popping up and will not go away. I am not even sure how it get on to my computer.

I would appreciate any help.

 

Thanks x 

 

Edit

 

I followed the instructions and here is the information that appeared on the FRST notepad

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:04-10-2015
Ran by imanh (administrator) on IMANH-VAIO (05-10-2015 15:34:08)
Running from C:\Users\imanh\Downloads
Loaded Profiles: imanh (Available Profiles: imanh)
Platform: Microsoft Windows 10 Home (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\22.5.4.24\n360.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft, Inc.) C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\22.5.4.24\n360.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Sony Corporation) C:\Program Files\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Spotify Ltd) C:\Users\imanh\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Dropbox, Inc.) C:\Users\imanh\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\Admload.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lavasoft Limited) C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
() C:\Program Files\OneSystemCare\OneSystemCare.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9398888 2010-11-01] (Realtek Semiconductor)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-08-03] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [ISBMgr.exe] => C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421736 2011-10-09] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3531952 2015-08-21] (Synaptics Incorporated)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Spotify] => C:\Users\imanh\AppData\Roaming\Spotify\Spotify.exe [6621752 2014-09-15] (Spotify Ltd)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Spotify Web Helper] => C:\Users\imanh\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1245752 2014-09-15] (Spotify Ltd)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Dropbox Update] => C:\Users\imanh\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-21] (Dropbox, Inc.)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Web Companion] => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [1438480 2015-10-04] (Lavasoft)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4048808 2015-09-10] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton 360\Engine\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton 360\Engine\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton 360\Engine\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\imanh\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll [2015-09-28] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\imanh\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll [2015-09-28] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\imanh\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll [2015-09-28] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\imanh\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\imanh\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\imanh\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
Startup: C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-09-05]
ShortcutTarget: Dropbox.lnk -> C:\Users\imanh\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Winsock: Catalog9 01 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 02 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 03 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 04 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 17 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{252bc859-3e62-46d0-aa15-e6dbc9fdb6da}: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{b12d8692-7269-4f6f-ac6e-471c5f5265e5}: [DhcpNameServer] 144.82.100.41 144.82.100.1
 
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sony.eu/vaioportal
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {06D1F3BD-3B39-4AA1-AC5B-1FDC07E00B7D} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {10D7C962-C298-4D70-85A0-01F8FBAA6E87} URL = hxxp://rover.ebay.com/rover/1/710-42480-16445-25/4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://uk.ask.com/web?q={SEARCHTERMS}&o=15527&l=dis&prt=360&chn=retail&geo=GB&ver=5
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {F426731A-972B-4B7B-B216-6B0D9650D89D} URL = hxxp://uk.shopping.com/?linkin_id=8056359
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04] (Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton 360\Engine\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation)
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-05] (Sun Microsystems, Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-08-16] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default
FF SearchEngineOrder.1: Web Search
FF SearchEngineOrder.2: Google
FF Homepage: www.google.com
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*'))%20%7B%20return%20'PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2011-06-10] ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-08-05] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-08-16] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-08-16] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-04-04] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\searchplugins\safesearch.xml [2011-10-04]
FF Extension: SafePCRepair - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\[email protected] [2015-09-01]
FF Extension: British English Dictionary - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\[email protected] [2012-10-05]
FF Extension: Update Service - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\[email protected] [2012-02-01]
FF Extension: ProxMate - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\[email protected] [2014-09-17]
FF Extension: Personas Plus - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\[email protected] [2014-06-21]
FF Extension: Simple White - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\[email protected] [2014-06-21]
FF Extension: Adblock Plus - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-09-30]
FF Extension: BetterPrivacy - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2011-09-30]
FF Extension: Tab Mix Plus - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2011-09-30]
FF HKLM\...\Firefox\Extensions: [{EBA722F5-038F-4CAF-9EE2-545A221628BC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn [2015-10-03]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-08-28]
 
Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxp://nortonsafe.search.ask.com/web?q={searchTerms}&o=apn10506&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxp://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
CHR Profile: C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-04]
CHR Extension: (Google Docs) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-04]
CHR Extension: (Google Drive) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-04]
CHR Extension: (YouTube) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Norton Security Toolbar) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2015-10-04]
CHR Extension: (Google Search) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-04]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2015-10-04]
CHR Extension: (Google Sheets) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-04]
CHR Extension: (Google Docs Offline) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-04]
CHR Extension: (AdBlock) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-04]
CHR Extension: (Norton Identity Safe) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-10-04]
CHR Extension: (Northern Lights) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnkklencjcmkepldaineciclcheaoef [2015-10-04]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-10-04]
CHR Extension: (Norton Safe) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2015-10-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-04]
CHR Extension: (Gmail) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-04]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton 360\Engine\22.5.4.24\Exts\Chrome.crx [2015-10-02]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [140224 2010-06-17] (Advanced Micro Devices)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1680088 2013-10-28] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1879640 2015-09-11] (Microsoft Corporation)
S3 ioloService; C:\Program Files\SafePCRepair\ioloToolService.exe [2624352 2015-03-09] (iolo technologies, LLC)
R2 LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2015-10-04] (Lavasoft Limited)
R2 N360; C:\Program Files\Norton 360\Engine\22.5.4.24\N360.exe [282016 2015-09-24] (Symantec Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [189048 2011-01-29] (Sony Corporation)
S2 SearchProtectionService; C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [16656 2015-10-04] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [218784 2015-08-21] (Synaptics Incorporated)
R2 uCamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [64704 2011-03-05] (Sony Corporation)
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [546608 2011-02-18] (Sony Corporation)
S3 VcmINSMgr; C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [385336 2011-02-18] (Sony Corporation)
R3 VCService; C:\Program Files\Sony\VAIO Care\VCService.exe [44736 2011-02-14] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [772800 2011-02-28] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [957056 2012-10-26] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [64128 2011-02-17] (Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [32384 2011-02-17] (Advanced Micro Devices)
R3 ArcSoftKsUFilter; C:\WINDOWS\System32\DRIVERS\ArcSoftKsUFilter.sys [17408 2009-05-26] (ArcSoft, Inc.)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [175320 2013-10-28] (Broadcom Corporation.)
R1 BHDrvx86; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\BASHDefs\20150928.001\BHDrvx86.sys [1181936 2015-07-23] (Symantec Corporation)
S3 btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [144600 2013-10-28] (Broadcom Corporation.)
R1 ccSet_N360; C:\WINDOWS\system32\drivers\N360\1605040.018\ccSetx86.sys [137456 2015-07-11] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [389456 2015-07-28] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [122192 2015-07-28] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\IPSDefs\20151002.004\IDSvix86.sys [582376 2015-09-23] (Symantec Corporation)
R3 NAVENG; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\VirusDefs\20151004.025\NAVENG.SYS [104440 2015-05-20] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\VirusDefs\20151004.025\NAVEX15.SYS [1645432 2015-05-20] (Symantec Corporation)
R1 SRTSP; C:\WINDOWS\System32\Drivers\N360\1605040.018\SRTSP.SYS [713960 2015-09-23] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\N360\1605040.018\SRTSPX.SYS [44792 2015-07-11] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\N360\1605040.018\SYMEFASI.SYS [1286896 2015-07-11] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\N360\1605040.018\SYMELAM.SYS [22144 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [103152 2015-07-27] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\N360\1605040.018\Ironx86.SYS [234744 2015-07-11] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\N360\1605040.018\SYMNETS.SYS [431328 2015-09-23] (Symantec Corporation)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-05 15:34 - 2015-10-05 15:35 - 00029406 _____ C:\Users\imanh\Downloads\FRST.txt
2015-10-05 15:31 - 2015-10-05 15:34 - 00000000 ____D C:\FRST
2015-10-05 15:31 - 2015-10-05 15:31 - 01697792 _____ (Farbar) C:\Users\imanh\Downloads\FRST.exe
2015-10-05 14:26 - 2015-10-05 14:26 - 00016148 _____ C:\WINDOWS\system32\IMANH-VAIO_imanh_HistoryPrediction.bin
2015-10-04 19:18 - 2015-10-04 19:18 - 00001098 _____ C:\Users\Public\Desktop\Launch One System Care.lnk
2015-10-04 19:18 - 2015-10-04 19:18 - 00000286 _____ C:\WINDOWS\Tasks\One System CarePeriod.job
2015-10-04 19:18 - 2015-10-04 19:18 - 00000000 ____D C:\Users\imanh\AppData\Roaming\One System Care
2015-10-04 19:18 - 2015-10-04 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care
2015-10-04 19:18 - 2015-10-04 19:18 - 00000000 ____D C:\Program Files\OneSystemCare
2015-10-04 19:16 - 2015-10-04 19:16 - 00000000 ____D C:\Users\imanh\AppData\Local\Lavasoft
2015-10-04 19:16 - 2015-10-04 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-10-04 19:15 - 2015-10-04 19:15 - 00002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-04 19:15 - 2015-10-04 19:15 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Lavasoft
2015-10-04 19:15 - 2015-10-04 19:15 - 00000000 ____D C:\Users\imanh\AppData\Local\Google
2015-10-04 19:15 - 2015-10-04 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-04 19:14 - 2015-10-05 15:19 - 00000906 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-04 19:14 - 2015-10-04 19:19 - 00000902 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-04 19:14 - 2015-10-04 19:14 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService.dll
2015-10-04 19:14 - 2015-10-04 19:14 - 00002936 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-10-04 19:14 - 2015-10-04 19:14 - 00000000 ____D C:\ProgramData\Lavasoft
2015-10-04 19:14 - 2015-10-04 19:14 - 00000000 ____D C:\Program Files\Lavasoft
2015-10-04 19:13 - 2015-10-04 19:14 - 00000000 ____D C:\Program Files\Google
2015-10-04 19:11 - 2015-10-04 19:13 - 01132752 _____ (Download Assistant) C:\Users\imanh\Downloads\chrome_setup.exe
2015-10-03 19:47 - 2015-10-03 19:47 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-03 03:35 - 2015-09-15 17:12 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-03 03:35 - 2015-09-15 17:12 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-01 13:45 - 2015-09-25 00:18 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 13:45 - 2015-09-24 23:42 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-01 13:45 - 2015-09-24 23:37 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 13:45 - 2015-09-24 23:28 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-01 13:45 - 2015-09-24 23:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-01 13:45 - 2015-09-24 23:11 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 06265168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 13:45 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 01343952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 00680144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-01 13:45 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 13:45 - 2015-09-17 07:27 - 01766952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 13:45 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 01856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-01 13:45 - 2015-09-17 07:26 - 01708376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-01 13:45 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 13:45 - 2015-09-17 07:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 13:45 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-01 13:45 - 2015-09-17 07:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 13:45 - 2015-09-17 07:13 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-01 13:45 - 2015-09-17 06:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 13:45 - 2015-09-17 06:48 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 13:45 - 2015-09-17 06:47 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 13:45 - 2015-09-17 06:46 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 13:45 - 2015-09-17 06:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-01 13:45 - 2015-09-17 06:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 13:45 - 2015-09-17 06:42 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 13:45 - 2015-09-17 06:41 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 13:45 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 13:45 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-01 13:45 - 2015-09-17 06:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 13:45 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 13:45 - 2015-09-17 06:39 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-01 13:45 - 2015-09-17 06:39 - 01829376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-01 13:45 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 13:45 - 2015-09-17 06:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-01 13:45 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 13:45 - 2015-09-17 06:36 - 00926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-01 13:45 - 2015-09-17 06:36 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 03026432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00989696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 13:45 - 2015-09-17 06:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-01 13:45 - 2015-09-17 06:31 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 13:45 - 2015-09-17 06:28 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-01 13:45 - 2015-09-17 06:27 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 13:45 - 2015-09-17 06:27 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 13:45 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 13:44 - 2015-09-25 00:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 13:44 - 2015-09-25 00:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 13:44 - 2015-09-24 23:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 13:44 - 2015-09-24 23:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 13:44 - 2015-09-24 23:30 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-01 13:44 - 2015-09-24 23:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-01 13:44 - 2015-09-24 23:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-01 13:44 - 2015-09-24 23:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 13:44 - 2015-09-24 23:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 13:44 - 2015-09-19 04:50 - 00083160 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-01 13:44 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-10-01 13:44 - 2015-09-17 07:28 - 00083792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-01 13:44 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 00436064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-01 13:44 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 00414560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-01 13:44 - 2015-09-17 07:26 - 00335696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-01 13:44 - 2015-09-17 07:26 - 00274272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-01 13:44 - 2015-09-17 07:26 - 00228192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-01 13:44 - 2015-09-17 07:15 - 00070744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-01 13:44 - 2015-09-17 07:13 - 00918880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-01 13:44 - 2015-09-17 06:51 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-01 13:44 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 13:44 - 2015-09-17 06:51 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 13:44 - 2015-09-17 06:51 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-01 13:44 - 2015-09-17 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 13:44 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 13:44 - 2015-09-17 06:49 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 13:44 - 2015-09-17 06:48 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 13:44 - 2015-09-17 06:48 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 13:44 - 2015-09-17 06:47 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 13:44 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 13:44 - 2015-09-17 06:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 13:44 - 2015-09-17 06:45 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 13:44 - 2015-09-17 06:45 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 13:44 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 13:44 - 2015-09-17 06:43 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 13:44 - 2015-09-17 06:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-01 13:44 - 2015-09-17 06:39 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 13:44 - 2015-09-17 06:35 - 01762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-01 13:44 - 2015-09-17 06:35 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-10-01 13:44 - 2015-09-17 06:34 - 00350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-01 13:44 - 2015-09-17 06:34 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-01 13:44 - 2015-09-17 06:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 13:44 - 2015-09-17 06:33 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 13:44 - 2015-09-17 06:33 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 13:44 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 13:44 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 13:44 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 13:44 - 2015-09-17 06:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 13:44 - 2015-09-17 06:29 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-01 13:44 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-01 13:44 - 2015-09-17 06:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-01 13:44 - 2015-09-17 06:27 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-09-30 15:20 - 2015-09-30 15:20 - 00147400 _____ C:\WINDOWS\Minidump\093015-73593-01.dmp
2015-09-29 23:23 - 2015-09-29 23:23 - 00001212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2015-09-29 18:36 - 2015-09-30 15:20 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-29 18:36 - 2015-09-29 18:36 - 00147400 _____ C:\WINDOWS\Minidump\092915-102875-01.dmp
2015-09-28 21:25 - 2015-09-28 21:25 - 00000000 ____D C:\Users\imanh\AppData\Local\NetworkTiles
2015-09-28 21:20 - 2015-09-28 21:20 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-09-28 01:40 - 2015-09-27 17:34 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-28 01:30 - 2015-09-28 01:31 - 00000000 ____D C:\Windows.old
2015-09-28 01:30 - 2015-09-28 01:30 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-09-28 01:24 - 2015-09-28 01:24 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\Program Files\MSBuild
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\inetpub
2015-09-28 01:18 - 2015-05-30 06:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-09-28 01:18 - 2015-05-30 06:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-28 01:18 - 2015-05-30 06:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-27 18:04 - 2015-09-27 18:04 - 00000000 ____D C:\Users\imanh\AppData\Local\MicrosoftEdge
2015-09-27 17:45 - 2015-09-28 20:18 - 00002378 _____ C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-27 17:45 - 2015-09-27 17:45 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-09-27 17:43 - 2015-09-27 17:43 - 00000000 ____D C:\ProgramData\ATI
2015-09-27 17:40 - 2015-09-27 17:40 - 00001051 _____ C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-09-27 17:40 - 2015-09-27 17:40 - 00000000 ____D C:\Users\imanh\AppData\Local\Publishers
2015-09-27 17:36 - 2015-09-27 17:36 - 00000020 ___SH C:\Users\imanh\ntuser.ini
2015-09-27 17:36 - 2015-09-27 17:36 - 00000000 ____D C:\Users\imanh\AppData\Local\TileDataLayer
2015-09-27 17:32 - 2015-09-27 17:32 - 00000000 __SHD C:\Recovery
2015-09-27 17:29 - 2015-09-27 17:29 - 00021316 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-09-27 17:14 - 2015-09-27 17:14 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-09-27 16:58 - 2015-09-27 16:58 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-09-27 16:53 - 2015-10-03 03:30 - 00000000 ____D C:\Users\imanh
2015-09-27 16:53 - 2015-09-27 17:36 - 00000000 ___RD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 __RSD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-27 16:50 - 2015-10-03 19:44 - 00984150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-27 16:49 - 2015-09-27 16:50 - 00020921 _____ C:\WINDOWS\iis.log
2015-09-27 16:47 - 2015-09-27 16:47 - 00060113 _____ C:\WINDOWS\system32\CCCInstall_201509271647229734.log
2015-09-27 16:47 - 2015-09-27 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-09-27 16:46 - 2015-09-27 16:46 - 00000000 ____D C:\WINDOWS\system32\sda
2015-09-27 16:46 - 2015-09-27 16:46 - 00000000 ____D C:\ProgramData\AMD
2015-09-27 16:45 - 2015-09-27 16:59 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-27 16:45 - 2015-09-27 16:46 - 00000000 ____D C:\Program Files\ATI Technologies
2015-09-27 16:45 - 2015-09-27 16:45 - 00000524 _____ C:\WINDOWS\Synaptics.PD.log
2015-09-27 16:45 - 2015-09-27 16:45 - 00000524 _____ C:\WINDOWS\Synaptics.log
2015-09-27 16:45 - 2015-09-27 16:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-09-27 16:45 - 2015-09-27 16:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-09-27 16:45 - 2015-09-27 16:45 - 00000000 ____D C:\Program Files\Synaptics
2015-09-27 16:44 - 2015-09-27 16:44 - 00000000 ____D C:\Program Files\AMD
2015-09-27 16:44 - 2015-09-27 16:44 - 00000000 ____D C:\AMD
2015-09-27 16:44 - 2015-09-27 16:44 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-09-27 16:43 - 2015-09-27 16:58 - 00000000 ____D C:\Program Files\Realtek
2015-09-27 16:43 - 2015-09-27 16:43 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2015-09-27 16:41 - 2015-09-27 16:42 - 00025464 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-09-27 15:54 - 2015-09-27 17:30 - 00006611 _____ C:\WINDOWS\comsetup.log
2015-09-27 15:50 - 2015-09-27 17:31 - 00010449 _____ C:\WINDOWS\diagerr.xml
2015-09-27 15:50 - 2015-09-27 17:31 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-09-10 05:57 - 2015-09-27 15:51 - 00000000 ___HD C:\$Windows.~BT
2015-09-10 05:18 - 2015-09-10 05:18 - 00016148 _____ C:\WINDOWS\system32\WIN-AL1VCD67DH7_Administrator_HistoryPrediction.bin
2015-09-10 05:16 - 2015-09-10 05:16 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-09-10 05:13 - 2015-10-03 19:42 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-10 05:11 - 2015-10-03 03:33 - 00005068 _____ C:\WINDOWS\PFRO.log
2015-09-10 05:04 - 2015-09-27 17:17 - 00000000 ____D C:\WINDOWS\ShellNew
2015-09-10 05:04 - 2015-09-10 05:04 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
2015-09-10 05:04 - 2015-09-10 05:04 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 05:04 - 2015-07-10 09:25 - 00015869 _____ C:\WINDOWS\Core.xml
2015-09-10 04:58 - 2015-09-27 17:41 - 00000000 ____D C:\WINDOWS\OCR
2015-09-10 04:58 - 2015-09-10 04:58 - 00000000 ____D C:\WINDOWS\SKB
2015-09-10 04:57 - 2015-09-10 04:57 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01823232 _____ C:\WINDOWS\system32\InputService.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01808224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01535032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01395568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01183056 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01161216 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 01153536 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-09-10 04:57 - 2015-09-10 04:57 - 00987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00902320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00868752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-09-10 04:57 - 2015-09-10 04:57 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-09-10 04:57 - 2015-09-10 04:57 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00751520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00729088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00549160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00469856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00442720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00392032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00369504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00351072 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00351072 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00301056 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00284672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00284000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-09-10 04:57 - 2015-09-10 04:57 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00257888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00200704 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00197472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00193888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00191144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00085344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00066896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00054112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00042904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00036704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00025088 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00006631 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-09-10 04:57 - 2015-09-10 04:57 - 00006313 _____ C:\WINDOWS\system32\ResPriImageList
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\0409
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-09-09 18:11 - 2015-08-15 06:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-09-09 18:11 - 2015-07-22 17:38 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-09-09 18:10 - 2015-08-15 06:01 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-09-09 18:08 - 2015-08-26 18:55 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-09-08 11:52 - 2015-09-08 11:52 - 00012782 _____ C:\Users\imanh\AppData\Local\recently-used.xbel
2015-09-06 16:50 - 2015-09-07 01:23 - 02393459 _____ C:\Users\imanh\Desktop\PROTEIN EXPERESSION.odp
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-05 15:27 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-05 14:52 - 2012-08-15 02:09 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-05 14:45 - 2015-06-21 14:06 - 00000918 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3550338614-2054197336-1754739873-1001UA.job
2015-10-05 14:45 - 2015-06-21 14:06 - 00000866 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3550338614-2054197336-1754739873-1001Core.job
2015-10-04 20:17 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-04 18:08 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-04 13:24 - 2012-05-21 14:52 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-04 13:23 - 2015-08-28 03:20 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-04 01:11 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-03 19:49 - 2011-10-04 13:07 - 00000000 ___RD C:\Users\imanh\Dropbox
2015-10-03 19:49 - 2011-10-04 13:03 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Dropbox
2015-10-03 19:44 - 2011-11-16 13:28 - 00000000 ____D C:\Users\imanh\AppData\Local\CrashDumps
2015-10-03 19:42 - 2011-12-07 13:35 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Spotify
2015-10-03 03:34 - 2015-07-21 00:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-03 03:32 - 2015-07-10 07:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-02 21:13 - 2015-07-10 07:59 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-02 21:13 - 2011-09-28 13:51 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360
2015-10-02 21:12 - 2015-07-14 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2015-10-02 21:12 - 2011-09-28 13:52 - 00002248 _____ C:\Users\Public\Desktop\Norton 360.LNK
2015-09-30 15:19 - 2012-05-09 15:39 - 474170375 _____ C:\WINDOWS\MEMORY.DMP
2015-09-29 18:35 - 2015-07-21 00:17 - 00352776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-28 20:21 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppCompat
2015-09-28 20:18 - 2013-04-19 17:06 - 00000000 ___RD C:\Users\imanh\SkyDrive
2015-09-28 01:40 - 2015-07-10 09:28 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-09-28 01:19 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-09-28 01:19 - 2015-07-10 09:25 - 01014272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-09-28 01:19 - 2015-07-10 09:25 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-09-28 01:19 - 2015-07-10 09:25 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-09-28 01:19 - 2015-07-10 09:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-09-28 01:19 - 2015-07-10 09:25 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-09-27 18:47 - 2013-02-05 18:37 - 00000023 _____ C:\test.xml
2015-09-27 17:35 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-09-27 17:31 - 2015-07-21 00:17 - 00017923 _____ C:\WINDOWS\setupact.log
2015-09-27 17:30 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2015-09-27 17:30 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Registration
2015-09-27 17:28 - 2015-07-10 09:28 - 00000000 __RSD C:\WINDOWS\Media
2015-09-27 17:28 - 2015-07-10 09:28 - 00000000 __RHD C:\Users\Public\Libraries
2015-09-27 17:28 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Public
2015-09-27 17:22 - 2015-07-10 09:28 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-27 17:17 - 2015-08-16 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-09-27 17:17 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 17:17 - 2015-04-16 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageJ
2015-09-27 17:17 - 2014-09-29 21:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9
2015-09-27 17:17 - 2014-09-28 22:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXstudio
2015-09-27 17:17 - 2014-09-28 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXnicCenter
2015-09-27 17:17 - 2011-10-28 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-09-27 17:17 - 2011-10-20 15:54 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2015-09-27 17:17 - 2011-10-18 16:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xerox Office Printing
2015-09-27 17:17 - 2011-09-28 13:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-09-27 17:17 - 2011-09-28 13:04 - 00000000 ____D C:\WINDOWS\system32\VAIO Startup Setting Tool
2015-09-27 17:17 - 2011-08-05 10:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-09-27 17:17 - 2011-08-05 10:34 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Tools
2015-09-27 17:17 - 2011-08-05 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2015-09-27 17:17 - 2011-08-05 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Webcam Suite
2015-09-27 17:17 - 2011-08-05 10:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-09-27 17:17 - 2011-08-05 10:06 - 00000000 ____D C:\WINDOWS\uk
2015-09-27 17:17 - 2011-08-05 10:06 - 00000000 ____D C:\WINDOWS\tr
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\sv
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\sk
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\ru
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\ro
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\pt-pt
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\pl
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\no
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\it
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\hu
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\fr
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\el
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\de
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\nl
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\fi
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\da
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\cs
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\bg
2015-09-27 17:17 - 2011-08-05 09:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-09-27 17:14 - 2015-07-10 09:29 - 00005306 _____ C:\WINDOWS\DtcInstall.log
2015-09-27 17:14 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 17:14 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 17:14 - 2009-07-14 03:37 - 00000000 ____D C:\Users\Default.migrated
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\zh-TW
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\zh-CN
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sv-SE
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\ru-RU
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\pt-PT
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\pt-BR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\pl-PL
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\nl-NL
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\nb-NO
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\ko-KR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\ja-JP
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\it-IT
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\IME
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\hu-HU
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\fi-FI
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\el-GR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\de-DE
2015-09-27 16:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\schemas
2015-09-27 16:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Resources
2015-09-27 16:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-27 16:59 - 2015-04-18 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-27 16:59 - 2014-10-04 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Texmaker
2015-09-27 16:59 - 2014-06-20 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OriginLab
2015-09-27 16:58 - 2015-07-10 09:28 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-09-27 16:58 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Microsoft.NET
2015-09-27 16:58 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-27 16:58 - 2011-08-05 09:36 - 00000000 ____D C:\Program Files\WIDCOMM
2015-09-27 16:58 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Microsoft Games
2015-09-27 16:58 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\DVD Maker
2015-09-27 16:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-09-27 16:55 - 2014-06-20 13:39 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OriginLab
2015-09-27 16:55 - 2011-09-28 13:06 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2015-09-27 16:41 - 2015-07-10 07:59 - 00000000 __RHD C:\Users\Default
2015-09-27 16:07 - 2011-08-05 09:21 - 01883537 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-09-27 16:07 - 2009-07-14 05:34 - 00028256 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-27 16:07 - 2009-07-14 05:34 - 00028256 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-25 20:49 - 2011-09-28 13:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-25 20:30 - 2013-10-13 00:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-21 19:34 - 2015-08-16 16:54 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-09-20 18:41 - 2015-07-13 13:43 - 00000000 ____D C:\Users\imanh\Desktop\Burgoynes
2015-09-17 16:50 - 2013-10-15 00:39 - 00840704 ___SH C:\Users\imanh\Desktop\Thumbs.db
2015-09-10 05:14 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-09-10 05:14 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-09-10 05:14 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-09-10 05:13 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\spool
2015-09-10 05:13 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-09-10 05:04 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Web
2015-09-10 05:04 - 2015-07-10 09:25 - 03154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2015-09-10 05:04 - 2015-07-10 09:25 - 00274224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2015-09-10 05:04 - 2015-07-10 09:25 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2015-09-10 05:04 - 2015-07-10 09:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-09-10 05:03 - 2015-07-10 09:25 - 02533888 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysis.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 01949696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00786944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-09-10 05:03 - 2015-07-10 09:24 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2015-09-10 05:03 - 2015-07-10 09:24 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2015-09-10 04:58 - 2015-07-10 09:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-09-10 04:58 - 2015-07-10 09:25 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-09-10 04:58 - 2015-07-10 09:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-09-10 04:57 - 2015-07-10 09:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Com
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\IME
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Help
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Windows Defender
2015-09-08 21:54 - 2015-04-05 22:42 - 00000000 ____D C:\Users\imanh\Desktop\Thesis
 
==================== Files in the root of some directories =======
 
2015-09-08 11:52 - 2015-09-08 11:52 - 0012782 _____ () C:\Users\imanh\AppData\Local\recently-used.xbel
 
Some files in TEMP:
====================
C:\Users\imanh\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp3qliae.dll
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-09-27 16:41
 
==================== End of FRST.txt ============================

Edited by IAH, 05 October 2015 - 08:56 AM.

  • 0

Advertisements

#2
pystryker
Posted 07 October 2015 - 05:42 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Hello and welcome to Geeks To Go! My nickname is Pystryker :) , and I will be helping you with your issue today.


Before we get started, I have a few things I need to go over with you
  • If you are receiving help for this issue at another forum, please let me know so I can close this thread.
  • Please download to and run all requested tools from your Desktop.
  • Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process.
  • At the top of your post, please click on the "Follow this topic" button and make sure that the "Received notification" box is checked and set to "Instantly" This will send an email to you as soon as I reply to your topic, allowing us to solve your problem faster.
  • If any of your security programs give you a warning about any tool I ask you to use, please do not worry. All the links and tools I provide to you will be safe.
  • Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
  • This is a complicated process. It requires several steps, patience, and careful following of my instructions in the order they are given to diagnose your problems to get your machine back in working order.
  • Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. I promise to do the same for you.
  • It is impossible for me to know what interactions may happen between your computer's software and the tools we will use to clean your machine. Therefore, I highly recommend you backup any critical personal files on your machine before we start.
  • If you have any questions at all, please don't hesitate to ask. There's no such thing as a stupid question when dealing with malware.
  • If you are unsure of an instruction I give you, or if something unexpected occurs, Do NOT proceed! Stop and ask for clarification of the instruction or tell me what occurred.
  • Please remember, the fixes are for your machine and your machine ONLY! Do not use these fixes on any other machine, each fix is tailor made for your system only. Using a fix on another machine can and will cause serious damage.
  • Once we have cleaned your machine, we'll have some cleanup and prevention steps to go through. We will also provide you with some information about how to reduce your chances of infection and get some protections in place to help defend you against this in the future
  • Please be patient while I am analyzing your logs. I know you are probably scared and very frustrated with this problem, but I am a volunteer and sometimes life does get in the way. :)
Now, let's get started, shall we? :thumbsup:

Hello, I'm currently analyzing your log and preparing a fix. However, there should be a second log called Addition.txt that was produced when you ran FRST. It will be located in the same directory you ran FRST from, in this case here: C:\Users\imanh\Downloads

Also, you'll need to move FRST.exe from the C:\Users\imanh\Downloads directory to your Desktop. It will work better from there. :thumbsup:

Things I need to see in your next post:

Addition.txt Log
  • 0

#3
pystryker
Posted 09 October 2015 - 04:35 AM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP