Hello!
I am having a problem with this 'One System Care' screen keeps popping up and will not go away. I am not even sure how it get on to my computer.
I would appreciate any help.
Thanks x
Edit
I followed the instructions and here is the information that appeared on the FRST notepad
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:04-10-2015
Ran by imanh (administrator) on IMANH-VAIO (05-10-2015 15:34:08)
Running from C:\Users\imanh\Downloads
Loaded Profiles: imanh (Available Profiles: imanh)
Platform: Microsoft Windows 10 Home (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\22.5.4.24\n360.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft, Inc.) C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\22.5.4.24\n360.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Sony Corporation) C:\Program Files\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Spotify Ltd) C:\Users\imanh\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe
(Dropbox, Inc.) C:\Users\imanh\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\Admload.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lavasoft Limited) C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
() C:\Program Files\OneSystemCare\OneSystemCare.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9398888 2010-11-01] (Realtek Semiconductor)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-08-03] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [ISBMgr.exe] => C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [421736 2011-10-09] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3531952 2015-08-21] (Synaptics Incorporated)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Spotify] => C:\Users\imanh\AppData\Roaming\Spotify\Spotify.exe [6621752 2014-09-15] (Spotify Ltd)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Spotify Web Helper] => C:\Users\imanh\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1245752 2014-09-15] (Spotify Ltd)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Dropbox Update] => C:\Users\imanh\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-21] (Dropbox, Inc.)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Run: [Web Companion] => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe [1438480 2015-10-04] (Lavasoft)
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4048808 2015-09-10] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton 360\Engine\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton 360\Engine\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton 360\Engine\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\imanh\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll [2015-09-28] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\imanh\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll [2015-09-28] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\imanh\AppData\Local\Microsoft\OneDrive\17.3.5951.0827_1\FileSyncShell.dll [2015-09-28] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\imanh\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\imanh\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\imanh\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)
Startup: C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-09-05]
ShortcutTarget: Dropbox.lnk -> C:\Users\imanh\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Winsock: Catalog9 01 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 02 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 03 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 04 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Winsock: Catalog9 17 C:\WINDOWS\system32\LavasoftTcpService.dll [345360 2015-10-04] (Lavasoft Limited)
Tcpip\Parameters: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{252bc859-3e62-46d0-aa15-e6dbc9fdb6da}: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{b12d8692-7269-4f6f-ac6e-471c5f5265e5}: [DhcpNameServer] 144.82.100.41 144.82.100.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage
HKU\S-1-5-21-3550338614-2054197336-1754739873-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sony.eu/vaioportal
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {06D1F3BD-3B39-4AA1-AC5B-1FDC07E00B7D} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {10D7C962-C298-4D70-85A0-01F8FBAA6E87} URL = hxxp://rover.ebay.com/rover/1/710-42480-16445-25/4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://uk.ask.com/web?q={SEARCHTERMS}&o=15527&l=dis&prt=360&chn=retail&geo=GB&ver=5
SearchScopes: HKU\S-1-5-21-3550338614-2054197336-1754739873-1001 -> {F426731A-972B-4B7B-B216-6B0D9650D89D} URL = hxxp://uk.shopping.com/?linkin_id=8056359
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04] (Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton 360\Engine\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation)
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-12] (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-05] (Sun Microsystems, Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-08-16] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default
FF SearchEngineOrder.1: Web Search
FF SearchEngineOrder.2: Google
FF Homepage: www.google.com
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20host%20%3D%3D%20's.hulu.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*'))%20%7B%20return%20'PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-21] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2011-06-10] ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-08-05] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-08-16] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-08-16] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-04-04] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\searchplugins\safesearch.xml [2011-10-04]
FF Extension: SafePCRepair - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\
[email protected] [2015-09-01]
FF Extension: British English Dictionary - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\
[email protected] [2012-10-05]
FF Extension: Update Service - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\
[email protected] [2012-02-01]
FF Extension: ProxMate - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\
[email protected] [2014-09-17]
FF Extension: Personas Plus - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\
[email protected] [2014-06-21]
FF Extension: Simple White - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\
[email protected] [2014-06-21]
FF Extension: Adblock Plus - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-09-30]
FF Extension: BetterPrivacy - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2011-09-30]
FF Extension: Tab Mix Plus - C:\Users\imanh\AppData\Roaming\Mozilla\Firefox\Profiles\yu4qwwl1.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2011-09-30]
FF HKLM\...\Firefox\Extensions: [{EBA722F5-038F-4CAF-9EE2-545A221628BC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.0.124\coFFPlgn [2015-10-03]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-08-28]
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://nortonsafe.search.ask.com/web?q={searchTerms}&o=apn10506&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxp://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
CHR Profile: C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-04]
CHR Extension: (Google Docs) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-04]
CHR Extension: (Google Drive) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-04]
CHR Extension: (YouTube) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Norton Security Toolbar) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2015-10-04]
CHR Extension: (Google Search) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-04]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2015-10-04]
CHR Extension: (Google Sheets) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-04]
CHR Extension: (Google Docs Offline) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-04]
CHR Extension: (AdBlock) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-04]
CHR Extension: (Norton Identity Safe) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-10-04]
CHR Extension: (Northern Lights) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnkklencjcmkepldaineciclcheaoef [2015-10-04]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-10-04]
CHR Extension: (Norton Safe) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2015-10-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-04]
CHR Extension: (Gmail) - C:\Users\imanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-04]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton 360\Engine\22.5.4.24\Exts\Chrome.crx [2015-10-02]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2015-08-03] (Advanced Micro Devices, Inc.) [File not signed]
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [140224 2010-06-17] (Advanced Micro Devices)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1680088 2013-10-28] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1879640 2015-09-11] (Microsoft Corporation)
S3 ioloService; C:\Program Files\SafePCRepair\ioloToolService.exe [2624352 2015-03-09] (iolo technologies, LLC)
R2 LavasoftTcpService; C:\Program Files\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe [2751760 2015-10-04] (Lavasoft Limited)
R2 N360; C:\Program Files\Norton 360\Engine\22.5.4.24\N360.exe [282016 2015-09-24] (Symantec Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [189048 2011-01-29] (Sony Corporation)
S2 SearchProtectionService; C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [16656 2015-10-04] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [218784 2015-08-21] (Synaptics Incorporated)
R2 uCamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [64704 2011-03-05] (Sony Corporation)
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [546608 2011-02-18] (Sony Corporation)
S3 VcmINSMgr; C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [385336 2011-02-18] (Sony Corporation)
R3 VCService; C:\Program Files\Sony\VAIO Care\VCService.exe [44736 2011-02-14] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [772800 2011-02-28] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [957056 2012-10-26] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [64128 2011-02-17] (Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [32384 2011-02-17] (Advanced Micro Devices)
R3 ArcSoftKsUFilter; C:\WINDOWS\System32\DRIVERS\ArcSoftKsUFilter.sys [17408 2009-05-26] (ArcSoft, Inc.)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [175320 2013-10-28] (Broadcom Corporation.)
R1 BHDrvx86; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\BASHDefs\20150928.001\BHDrvx86.sys [1181936 2015-07-23] (Symantec Corporation)
S3 btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [144600 2013-10-28] (Broadcom Corporation.)
R1 ccSet_N360; C:\WINDOWS\system32\drivers\N360\1605040.018\ccSetx86.sys [137456 2015-07-11] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [389456 2015-07-28] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [122192 2015-07-28] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\IPSDefs\20151002.004\IDSvix86.sys [582376 2015-09-23] (Symantec Corporation)
R3 NAVENG; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\VirusDefs\20151004.025\NAVENG.SYS [104440 2015-05-20] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton 360\NortonData\22.5.0.124\Definitions\VirusDefs\20151004.025\NAVEX15.SYS [1645432 2015-05-20] (Symantec Corporation)
R1 SRTSP; C:\WINDOWS\System32\Drivers\N360\1605040.018\SRTSP.SYS [713960 2015-09-23] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\N360\1605040.018\SRTSPX.SYS [44792 2015-07-11] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\N360\1605040.018\SYMEFASI.SYS [1286896 2015-07-11] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\N360\1605040.018\SYMELAM.SYS [22144 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [103152 2015-07-27] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\N360\1605040.018\Ironx86.SYS [234744 2015-07-11] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\N360\1605040.018\SYMNETS.SYS [431328 2015-09-23] (Symantec Corporation)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-05 15:34 - 2015-10-05 15:35 - 00029406 _____ C:\Users\imanh\Downloads\FRST.txt
2015-10-05 15:31 - 2015-10-05 15:34 - 00000000 ____D C:\FRST
2015-10-05 15:31 - 2015-10-05 15:31 - 01697792 _____ (Farbar) C:\Users\imanh\Downloads\FRST.exe
2015-10-05 14:26 - 2015-10-05 14:26 - 00016148 _____ C:\WINDOWS\system32\IMANH-VAIO_imanh_HistoryPrediction.bin
2015-10-04 19:18 - 2015-10-04 19:18 - 00001098 _____ C:\Users\Public\Desktop\Launch One System Care.lnk
2015-10-04 19:18 - 2015-10-04 19:18 - 00000286 _____ C:\WINDOWS\Tasks\One System CarePeriod.job
2015-10-04 19:18 - 2015-10-04 19:18 - 00000000 ____D C:\Users\imanh\AppData\Roaming\One System Care
2015-10-04 19:18 - 2015-10-04 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care
2015-10-04 19:18 - 2015-10-04 19:18 - 00000000 ____D C:\Program Files\OneSystemCare
2015-10-04 19:16 - 2015-10-04 19:16 - 00000000 ____D C:\Users\imanh\AppData\Local\Lavasoft
2015-10-04 19:16 - 2015-10-04 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-10-04 19:15 - 2015-10-04 19:15 - 00002282 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-04 19:15 - 2015-10-04 19:15 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Lavasoft
2015-10-04 19:15 - 2015-10-04 19:15 - 00000000 ____D C:\Users\imanh\AppData\Local\Google
2015-10-04 19:15 - 2015-10-04 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-04 19:14 - 2015-10-05 15:19 - 00000906 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-04 19:14 - 2015-10-04 19:19 - 00000902 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-04 19:14 - 2015-10-04 19:14 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService.dll
2015-10-04 19:14 - 2015-10-04 19:14 - 00002936 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-10-04 19:14 - 2015-10-04 19:14 - 00000000 ____D C:\ProgramData\Lavasoft
2015-10-04 19:14 - 2015-10-04 19:14 - 00000000 ____D C:\Program Files\Lavasoft
2015-10-04 19:13 - 2015-10-04 19:14 - 00000000 ____D C:\Program Files\Google
2015-10-04 19:11 - 2015-10-04 19:13 - 01132752 _____ (Download Assistant) C:\Users\imanh\Downloads\chrome_setup.exe
2015-10-03 19:47 - 2015-10-03 19:47 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-03 03:35 - 2015-09-15 17:12 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-03 03:35 - 2015-09-15 17:12 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-01 13:45 - 2015-09-25 00:18 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 13:45 - 2015-09-24 23:42 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-01 13:45 - 2015-09-24 23:37 - 01917440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 13:45 - 2015-09-24 23:28 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-01 13:45 - 2015-09-24 23:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-01 13:45 - 2015-09-24 23:11 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 06265168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 13:45 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 01343952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-01 13:45 - 2015-09-17 07:28 - 00680144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-01 13:45 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 13:45 - 2015-09-17 07:27 - 01766952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 13:45 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 01856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-01 13:45 - 2015-09-17 07:26 - 01708376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-01 13:45 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 13:45 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 13:45 - 2015-09-17 07:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 13:45 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-01 13:45 - 2015-09-17 07:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 13:45 - 2015-09-17 07:13 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-01 13:45 - 2015-09-17 06:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 13:45 - 2015-09-17 06:48 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 13:45 - 2015-09-17 06:47 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 13:45 - 2015-09-17 06:46 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 13:45 - 2015-09-17 06:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-01 13:45 - 2015-09-17 06:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 13:45 - 2015-09-17 06:42 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 13:45 - 2015-09-17 06:41 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 13:45 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 13:45 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-01 13:45 - 2015-09-17 06:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 13:45 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 13:45 - 2015-09-17 06:39 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-01 13:45 - 2015-09-17 06:39 - 01829376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-01 13:45 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 13:45 - 2015-09-17 06:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-01 13:45 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 13:45 - 2015-09-17 06:36 - 00926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-01 13:45 - 2015-09-17 06:36 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 03026432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 13:45 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00989696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-01 13:45 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 13:45 - 2015-09-17 06:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-01 13:45 - 2015-09-17 06:31 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 13:45 - 2015-09-17 06:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 13:45 - 2015-09-17 06:28 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-01 13:45 - 2015-09-17 06:27 - 01380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 13:45 - 2015-09-17 06:27 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 13:45 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 13:44 - 2015-09-25 00:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 13:44 - 2015-09-25 00:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 13:44 - 2015-09-24 23:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 13:44 - 2015-09-24 23:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 13:44 - 2015-09-24 23:30 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-01 13:44 - 2015-09-24 23:29 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-01 13:44 - 2015-09-24 23:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-01 13:44 - 2015-09-24 23:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-01 13:44 - 2015-09-24 23:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 13:44 - 2015-09-24 23:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 13:44 - 2015-09-19 04:50 - 00083160 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-01 13:44 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-10-01 13:44 - 2015-09-17 07:28 - 00083792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-01 13:44 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 00436064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-01 13:44 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 13:44 - 2015-09-17 07:26 - 00414560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-01 13:44 - 2015-09-17 07:26 - 00335696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-01 13:44 - 2015-09-17 07:26 - 00274272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-01 13:44 - 2015-09-17 07:26 - 00228192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-01 13:44 - 2015-09-17 07:15 - 00070744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-01 13:44 - 2015-09-17 07:13 - 00918880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-01 13:44 - 2015-09-17 06:51 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-01 13:44 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 13:44 - 2015-09-17 06:51 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 13:44 - 2015-09-17 06:51 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-01 13:44 - 2015-09-17 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 13:44 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 13:44 - 2015-09-17 06:49 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 13:44 - 2015-09-17 06:48 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 13:44 - 2015-09-17 06:48 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 13:44 - 2015-09-17 06:47 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 13:44 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 13:44 - 2015-09-17 06:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 13:44 - 2015-09-17 06:45 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 13:44 - 2015-09-17 06:45 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 13:44 - 2015-09-17 06:45 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 13:44 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 13:44 - 2015-09-17 06:43 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 13:44 - 2015-09-17 06:41 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 13:44 - 2015-09-17 06:40 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-01 13:44 - 2015-09-17 06:39 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-01 13:44 - 2015-09-17 06:39 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 13:44 - 2015-09-17 06:36 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 13:44 - 2015-09-17 06:35 - 01762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-01 13:44 - 2015-09-17 06:35 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-10-01 13:44 - 2015-09-17 06:34 - 00350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 13:44 - 2015-09-17 06:34 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-01 13:44 - 2015-09-17 06:34 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-01 13:44 - 2015-09-17 06:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 13:44 - 2015-09-17 06:33 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 13:44 - 2015-09-17 06:33 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 13:44 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 13:44 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 13:44 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 13:44 - 2015-09-17 06:30 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 13:44 - 2015-09-17 06:30 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 13:44 - 2015-09-17 06:29 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-01 13:44 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-01 13:44 - 2015-09-17 06:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-01 13:44 - 2015-09-17 06:27 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-09-30 15:20 - 2015-09-30 15:20 - 00147400 _____ C:\WINDOWS\Minidump\093015-73593-01.dmp
2015-09-29 23:23 - 2015-09-29 23:23 - 00001212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2015-09-29 18:36 - 2015-09-30 15:20 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-29 18:36 - 2015-09-29 18:36 - 00147400 _____ C:\WINDOWS\Minidump\092915-102875-01.dmp
2015-09-28 21:25 - 2015-09-28 21:25 - 00000000 ____D C:\Users\imanh\AppData\Local\NetworkTiles
2015-09-28 21:20 - 2015-09-28 21:20 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-09-28 01:40 - 2015-09-27 17:34 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-28 01:30 - 2015-09-28 01:31 - 00000000 ____D C:\Windows.old
2015-09-28 01:30 - 2015-09-28 01:30 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-09-28 01:24 - 2015-09-28 01:24 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\Program Files\MSBuild
2015-09-28 01:19 - 2015-09-28 01:19 - 00000000 ____D C:\inetpub
2015-09-28 01:18 - 2015-05-30 06:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-09-28 01:18 - 2015-05-30 06:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-28 01:18 - 2015-05-30 06:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-27 18:04 - 2015-09-27 18:04 - 00000000 ____D C:\Users\imanh\AppData\Local\MicrosoftEdge
2015-09-27 17:45 - 2015-09-28 20:18 - 00002378 _____ C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-27 17:45 - 2015-09-27 17:45 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-09-27 17:43 - 2015-09-27 17:43 - 00000000 ____D C:\ProgramData\ATI
2015-09-27 17:40 - 2015-09-27 17:40 - 00001051 _____ C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-09-27 17:40 - 2015-09-27 17:40 - 00000000 ____D C:\Users\imanh\AppData\Local\Publishers
2015-09-27 17:36 - 2015-09-27 17:36 - 00000020 ___SH C:\Users\imanh\ntuser.ini
2015-09-27 17:36 - 2015-09-27 17:36 - 00000000 ____D C:\Users\imanh\AppData\Local\TileDataLayer
2015-09-27 17:32 - 2015-09-27 17:32 - 00000000 __SHD C:\Recovery
2015-09-27 17:29 - 2015-09-27 17:29 - 00021316 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-09-27 17:14 - 2015-09-27 17:14 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-09-27 17:14 - 2015-09-27 17:14 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-09-27 16:58 - 2015-09-27 16:58 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-09-27 16:53 - 2015-10-03 03:30 - 00000000 ____D C:\Users\imanh
2015-09-27 16:53 - 2015-09-27 17:36 - 00000000 ___RD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 __RSD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-27 16:53 - 2015-07-10 09:28 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-27 16:50 - 2015-10-03 19:44 - 00984150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-27 16:49 - 2015-09-27 16:50 - 00020921 _____ C:\WINDOWS\iis.log
2015-09-27 16:47 - 2015-09-27 16:47 - 00060113 _____ C:\WINDOWS\system32\CCCInstall_201509271647229734.log
2015-09-27 16:47 - 2015-09-27 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-09-27 16:46 - 2015-09-27 16:46 - 00000000 ____D C:\WINDOWS\system32\sda
2015-09-27 16:46 - 2015-09-27 16:46 - 00000000 ____D C:\ProgramData\AMD
2015-09-27 16:45 - 2015-09-27 16:59 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-27 16:45 - 2015-09-27 16:46 - 00000000 ____D C:\Program Files\ATI Technologies
2015-09-27 16:45 - 2015-09-27 16:45 - 00000524 _____ C:\WINDOWS\Synaptics.PD.log
2015-09-27 16:45 - 2015-09-27 16:45 - 00000524 _____ C:\WINDOWS\Synaptics.log
2015-09-27 16:45 - 2015-09-27 16:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-09-27 16:45 - 2015-09-27 16:45 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-09-27 16:45 - 2015-09-27 16:45 - 00000000 ____D C:\Program Files\Synaptics
2015-09-27 16:44 - 2015-09-27 16:44 - 00000000 ____D C:\Program Files\AMD
2015-09-27 16:44 - 2015-09-27 16:44 - 00000000 ____D C:\AMD
2015-09-27 16:44 - 2015-09-27 16:44 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-09-27 16:43 - 2015-09-27 16:58 - 00000000 ____D C:\Program Files\Realtek
2015-09-27 16:43 - 2015-09-27 16:43 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2015-09-27 16:41 - 2015-09-27 16:42 - 00025464 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-09-27 15:54 - 2015-09-27 17:30 - 00006611 _____ C:\WINDOWS\comsetup.log
2015-09-27 15:50 - 2015-09-27 17:31 - 00010449 _____ C:\WINDOWS\diagerr.xml
2015-09-27 15:50 - 2015-09-27 17:31 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-09-10 05:57 - 2015-09-27 15:51 - 00000000 ___HD C:\$Windows.~BT
2015-09-10 05:18 - 2015-09-10 05:18 - 00016148 _____ C:\WINDOWS\system32\WIN-AL1VCD67DH7_Administrator_HistoryPrediction.bin
2015-09-10 05:16 - 2015-09-10 05:16 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-09-10 05:13 - 2015-10-03 19:42 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-10 05:11 - 2015-10-03 03:33 - 00005068 _____ C:\WINDOWS\PFRO.log
2015-09-10 05:04 - 2015-09-27 17:17 - 00000000 ____D C:\WINDOWS\ShellNew
2015-09-10 05:04 - 2015-09-10 05:04 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
2015-09-10 05:04 - 2015-09-10 05:04 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 05:04 - 2015-07-10 09:25 - 00015869 _____ C:\WINDOWS\Core.xml
2015-09-10 04:58 - 2015-09-27 17:41 - 00000000 ____D C:\WINDOWS\OCR
2015-09-10 04:58 - 2015-09-10 04:58 - 00000000 ____D C:\WINDOWS\SKB
2015-09-10 04:57 - 2015-09-10 04:57 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01823232 _____ C:\WINDOWS\system32\InputService.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01808224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01535032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01395568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01275392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01183056 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01161216 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 01153536 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-09-10 04:57 - 2015-09-10 04:57 - 00987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00902320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00868752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-09-10 04:57 - 2015-09-10 04:57 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-09-10 04:57 - 2015-09-10 04:57 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00751520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00729088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00549160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00469856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00442720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00392032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00369504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00351072 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00351072 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00301056 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00284672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00284000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-09-10 04:57 - 2015-09-10 04:57 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00257888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00200704 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00197472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00193888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00191144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00085344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00066896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00054112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00042904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00036704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-09-10 04:57 - 2015-09-10 04:57 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-09-10 04:57 - 2015-09-10 04:57 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00025088 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-09-10 04:57 - 2015-09-10 04:57 - 00006631 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-09-10 04:57 - 2015-09-10 04:57 - 00006313 _____ C:\WINDOWS\system32\ResPriImageList
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\system32\0409
2015-09-10 04:56 - 2015-09-10 04:56 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-09-09 18:11 - 2015-08-15 06:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.exe
2015-09-09 18:11 - 2015-07-22 17:38 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-09-09 18:10 - 2015-08-15 06:01 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-09-09 18:08 - 2015-08-26 18:55 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-09-08 11:52 - 2015-09-08 11:52 - 00012782 _____ C:\Users\imanh\AppData\Local\recently-used.xbel
2015-09-06 16:50 - 2015-09-07 01:23 - 02393459 _____ C:\Users\imanh\Desktop\PROTEIN EXPERESSION.odp
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-10-05 15:27 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-05 14:52 - 2012-08-15 02:09 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-05 14:45 - 2015-06-21 14:06 - 00000918 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3550338614-2054197336-1754739873-1001UA.job
2015-10-05 14:45 - 2015-06-21 14:06 - 00000866 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3550338614-2054197336-1754739873-1001Core.job
2015-10-04 20:17 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-04 18:08 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-04 13:24 - 2012-05-21 14:52 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-04 13:23 - 2015-08-28 03:20 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-04 01:11 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-10-03 19:49 - 2011-10-04 13:07 - 00000000 ___RD C:\Users\imanh\Dropbox
2015-10-03 19:49 - 2011-10-04 13:03 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Dropbox
2015-10-03 19:44 - 2011-11-16 13:28 - 00000000 ____D C:\Users\imanh\AppData\Local\CrashDumps
2015-10-03 19:42 - 2011-12-07 13:35 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Spotify
2015-10-03 03:34 - 2015-07-21 00:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-03 03:32 - 2015-07-10 07:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-03 03:31 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-02 21:13 - 2015-07-10 07:59 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-02 21:13 - 2011-09-28 13:51 - 00000000 ____D C:\WINDOWS\system32\Drivers\N360
2015-10-02 21:12 - 2015-07-14 19:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2015-10-02 21:12 - 2011-09-28 13:52 - 00002248 _____ C:\Users\Public\Desktop\Norton 360.LNK
2015-09-30 15:19 - 2012-05-09 15:39 - 474170375 _____ C:\WINDOWS\MEMORY.DMP
2015-09-29 18:35 - 2015-07-21 00:17 - 00352776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-28 20:21 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppCompat
2015-09-28 20:18 - 2013-04-19 17:06 - 00000000 ___RD C:\Users\imanh\SkyDrive
2015-09-28 01:40 - 2015-07-10 09:28 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-09-28 01:19 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-09-28 01:19 - 2015-07-10 09:25 - 01014272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-09-28 01:19 - 2015-07-10 09:25 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-09-28 01:19 - 2015-07-10 09:25 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-09-28 01:19 - 2015-07-10 09:25 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-09-28 01:19 - 2015-07-10 09:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-09-28 01:19 - 2015-07-10 09:25 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-09-28 01:19 - 2015-07-10 09:25 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-09-27 18:47 - 2013-02-05 18:37 - 00000023 _____ C:\test.xml
2015-09-27 17:35 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-09-27 17:31 - 2015-07-21 00:17 - 00017923 _____ C:\WINDOWS\setupact.log
2015-09-27 17:30 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2015-09-27 17:30 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Registration
2015-09-27 17:28 - 2015-07-10 09:28 - 00000000 __RSD C:\WINDOWS\Media
2015-09-27 17:28 - 2015-07-10 09:28 - 00000000 __RHD C:\Users\Public\Libraries
2015-09-27 17:28 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Public
2015-09-27 17:22 - 2015-07-10 09:28 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-27 17:17 - 2015-08-16 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-09-27 17:17 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 17:17 - 2015-04-16 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageJ
2015-09-27 17:17 - 2014-09-29 21:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9
2015-09-27 17:17 - 2014-09-28 22:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXstudio
2015-09-27 17:17 - 2014-09-28 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXnicCenter
2015-09-27 17:17 - 2011-10-28 17:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-09-27 17:17 - 2011-10-20 15:54 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2015-09-27 17:17 - 2011-10-18 16:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xerox Office Printing
2015-09-27 17:17 - 2011-09-28 13:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-09-27 17:17 - 2011-09-28 13:04 - 00000000 ____D C:\WINDOWS\system32\VAIO Startup Setting Tool
2015-09-27 17:17 - 2011-08-05 10:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-09-27 17:17 - 2011-08-05 10:34 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Tools
2015-09-27 17:17 - 2011-08-05 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2015-09-27 17:17 - 2011-08-05 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Webcam Suite
2015-09-27 17:17 - 2011-08-05 10:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-09-27 17:17 - 2011-08-05 10:06 - 00000000 ____D C:\WINDOWS\uk
2015-09-27 17:17 - 2011-08-05 10:06 - 00000000 ____D C:\WINDOWS\tr
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\sv
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\sk
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\ru
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\ro
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\pt-pt
2015-09-27 17:17 - 2011-08-05 10:05 - 00000000 ____D C:\WINDOWS\pl
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\no
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\it
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\hu
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\fr
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\el
2015-09-27 17:17 - 2011-08-05 10:04 - 00000000 ____D C:\WINDOWS\de
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\nl
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\fi
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\da
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\cs
2015-09-27 17:17 - 2011-08-05 10:03 - 00000000 ____D C:\WINDOWS\bg
2015-09-27 17:17 - 2011-08-05 09:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-09-27 17:14 - 2015-07-10 09:29 - 00005306 _____ C:\WINDOWS\DtcInstall.log
2015-09-27 17:14 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 17:14 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-27 17:14 - 2009-07-14 03:37 - 00000000 ____D C:\Users\Default.migrated
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\zh-TW
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\zh-CN
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sv-SE
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\ru-RU
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\pt-PT
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\pt-BR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\pl-PL
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\nl-NL
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\nb-NO
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\ko-KR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\ja-JP
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\it-IT
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\IME
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\hu-HU
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\fi-FI
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\el-GR
2015-09-27 17:01 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\de-DE
2015-09-27 16:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\schemas
2015-09-27 16:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Resources
2015-09-27 16:59 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-27 16:59 - 2015-04-18 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-27 16:59 - 2014-10-04 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Texmaker
2015-09-27 16:59 - 2014-06-20 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OriginLab
2015-09-27 16:58 - 2015-07-10 09:28 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-09-27 16:58 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Microsoft.NET
2015-09-27 16:58 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-27 16:58 - 2011-08-05 09:36 - 00000000 ____D C:\Program Files\WIDCOMM
2015-09-27 16:58 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Microsoft Games
2015-09-27 16:58 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\DVD Maker
2015-09-27 16:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-09-27 16:55 - 2014-06-20 13:39 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OriginLab
2015-09-27 16:55 - 2011-09-28 13:06 - 00000000 ____D C:\Users\imanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2015-09-27 16:41 - 2015-07-10 07:59 - 00000000 __RHD C:\Users\Default
2015-09-27 16:07 - 2011-08-05 09:21 - 01883537 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-09-27 16:07 - 2009-07-14 05:34 - 00028256 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-27 16:07 - 2009-07-14 05:34 - 00028256 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-25 20:49 - 2011-09-28 13:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-25 20:30 - 2013-10-13 00:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-21 19:34 - 2015-08-16 16:54 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-09-20 18:41 - 2015-07-13 13:43 - 00000000 ____D C:\Users\imanh\Desktop\Burgoynes
2015-09-17 16:50 - 2013-10-15 00:39 - 00840704 ___SH C:\Users\imanh\Desktop\Thumbs.db
2015-09-10 05:14 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-09-10 05:14 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-09-10 05:14 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-09-10 05:13 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\spool
2015-09-10 05:13 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-09-10 05:04 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Web
2015-09-10 05:04 - 2015-07-10 09:25 - 03154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2015-09-10 05:04 - 2015-07-10 09:25 - 00274224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2015-09-10 05:04 - 2015-07-10 09:25 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2015-09-10 05:04 - 2015-07-10 09:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-09-10 05:04 - 2015-07-10 09:25 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-09-10 05:03 - 2015-07-10 09:25 - 02533888 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysis.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 01949696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00786944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2015-09-10 05:03 - 2015-07-10 09:25 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2015-09-10 05:03 - 2015-07-10 09:25 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-09-10 05:03 - 2015-07-10 09:24 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2015-09-10 05:03 - 2015-07-10 09:24 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2015-09-10 04:58 - 2015-07-10 09:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-09-10 04:58 - 2015-07-10 09:25 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-09-10 04:58 - 2015-07-10 09:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-09-10 04:57 - 2015-07-10 09:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Com
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\IME
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Help
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-09-10 04:56 - 2015-07-10 09:28 - 00000000 ____D C:\Program Files\Windows Defender
2015-09-08 21:54 - 2015-04-05 22:42 - 00000000 ____D C:\Users\imanh\Desktop\Thesis
==================== Files in the root of some directories =======
2015-09-08 11:52 - 2015-09-08 11:52 - 0012782 _____ () C:\Users\imanh\AppData\Local\recently-used.xbel
Some files in TEMP:
====================
C:\Users\imanh\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp3qliae.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-09-27 16:41
==================== End of FRST.txt ============================
Edited by IAH, 05 October 2015 - 08:56 AM.