Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:10-01-2015 01
- Ran by amin (2016-01-15 05:09:29)
- Running from C:\Users\amin\Downloads
- Windows 10 Pro (X64) (2015-12-26 00:53:19)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-2034507604-4048405394-113968359-500 - Administrator - Disabled)
- amin (S-1-5-21-2034507604-4048405394-113968359-1001 - Administrator - Enabled) => C:\Users\amin
- DefaultAccount (S-1-5-21-2034507604-4048405394-113968359-503 - Limited - Disabled)
- Guest (S-1-5-21-2034507604-4048405394-113968359-501 - Limited - Disabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- Abyss Odyssey (HKLM-x32\...\Steam App 255070) (Version: - ACE Team)
- AutoHotkey 1.1.22.09 (HKLM\...\AutoHotkey) (Version: 1.1.22.09 - Lexikos)
- Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
- CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
- CEVO CS:GO Client Beta version 1.0 (HKLM-x32\...\CEVO CS:GO Client Beta_is1) (Version: 1.0 - )
- Chromium (HKU\S-1-5-21-2034507604-4048405394-113968359-1001\...\Chromium) (Version: 46.0.2480.0 - Chromium)
- Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
- Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
- Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
- Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
- Dropbox Update Helper (x32 Version: 1.3.27.37 - Dropbox, Inc.) Hidden
- EaseUS Partition Master 10.8 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
- erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
- ESEA Client (HKU\S-1-5-21-2034507604-4048405394-113968359-1001\...\ESEA) (Version: 5.0.0.0 - E-Sports Entertainment LLC)
- Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - )
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
- Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
- Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
- Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
- Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
- Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
- Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version: - DONTNOD Entertainment)
- Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
- Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
- MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
- Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig)
- NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
- NVIDIA 3D Vision Driver 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.50 - NVIDIA Corporation)
- NVIDIA Graphics Driver 358.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.50 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
- Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
- PC Mechanic (HKLM-x32\...\{1F88FC5D-4D46-448A-AF59-7061FFC6ABBF}_is1) (Version: 1.0.15.0 - Uniblue Systems Limited)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
- WinRAR 5.30 beta 5 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.5 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-2034507604-4048405394-113968359-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\amin\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {074FEDAE-658D-49C3-891D-6BFBD3308A9C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-15] (Google Inc.)
- Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
- Task: {1B240059-D98E-4DCA-A94A-CDDEFA505B3D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-12-10] (Microsoft Corporation)
- Task: {1BDFDF2B-E698-4C1E-9070-DF4DF65831B8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-10-23] (Dropbox, Inc.)
- Task: {1DBD87D6-2538-4B66-8183-60236CE231C8} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
- Task: {560AAC20-5398-45DF-8F6B-7C0325721B22} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-15] (Google Inc.)
- Task: {A4AFA4FE-1D05-48D9-B4E0-46D672B16557} - System32\Tasks\PC-Mechanic Maintenance => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe [2015-11-30] (Uniblue Systems Limited)
- Task: {A533E250-FF9F-47E6-9762-28B9A6C7B8E7} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {C1FC89D8-20F1-44C8-8432-4F2138BDDD5D} - System32\Tasks\PC-Mechanic Startup => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe [2015-11-30] (Uniblue Systems Limited)
- Task: {C34DD084-7732-43D6-9241-50691D0B06C3} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-10-23] (Dropbox, Inc.)
- Task: {C7EF487D-CDE2-4BDE-8FF0-A193EA6FF590} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {DEADDA15-34D7-4E56-8C87-25EE2D45A18D} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\PC-Mechanic Maintenance.job => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe
- Task: C:\WINDOWS\Tasks\PC-Mechanic Startup.job => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- Shortcut: C:\Users\amin\Desktop\VAC Repair Program.lnk -> C:\Program Files (x86)\Steam\bin\vac solution\Vac Repair Program.bat ()
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-10-30 01:18 - 2015-10-30 01:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
- 2015-12-25 18:48 - 2015-10-02 20:38 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2015-12-25 20:43 - 2015-12-25 20:43 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
- 2015-12-25 20:43 - 2015-12-25 20:43 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
- 2015-12-26 03:38 - 2015-12-06 22:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
- 2015-12-26 03:38 - 2015-12-06 22:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
- 2016-01-15 04:43 - 2014-11-18 14:44 - 00255072 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe
- 2015-12-10 07:33 - 2015-12-10 07:33 - 00012800 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
- 2015-12-10 07:33 - 2015-12-10 07:33 - 11542016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
- 2015-11-19 22:27 - 2015-11-19 22:27 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
- 2016-01-12 13:03 - 2016-01-04 19:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
- 2016-01-12 13:03 - 2016-01-04 19:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2016-01-12 13:03 - 2016-01-04 19:24 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
- 2016-01-12 13:03 - 2016-01-04 19:26 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
- 2015-12-25 19:27 - 2015-12-25 19:28 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
- 2015-10-15 10:43 - 2015-11-10 13:55 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2015-10-15 10:43 - 2015-07-03 10:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2015-10-15 10:43 - 2015-12-14 14:01 - 02547280 _____ () C:\Program Files (x86)\Steam\video.dll
- 2015-10-15 10:43 - 2015-09-23 18:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2015-10-15 10:43 - 2015-09-23 18:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2015-10-15 10:43 - 2015-09-23 18:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2015-10-15 10:43 - 2015-09-23 18:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2015-10-15 10:43 - 2015-09-23 18:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2015-10-15 10:43 - 2015-07-03 10:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2015-10-15 10:43 - 2015-07-03 10:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2015-10-15 10:43 - 2015-12-14 14:01 - 00804432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2015-11-04 05:40 - 2015-11-04 05:40 - 00052224 _____ () C:\Users\amin\AppData\Local\MEGAsync\cares.dll
- 2015-12-11 21:12 - 2015-10-30 18:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
- 2015-12-11 21:11 - 2015-10-30 19:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
- 2015-12-11 21:11 - 2015-10-30 18:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
- 2015-12-11 21:12 - 2015-10-30 18:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
- 2015-12-11 21:12 - 2015-10-30 18:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
- 2015-12-11 21:11 - 2015-10-30 18:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
- 2015-12-11 21:12 - 2015-10-30 18:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
- 2015-12-11 21:11 - 2015-10-30 19:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
- 2015-12-11 21:11 - 2015-10-30 19:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00031568 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
- 2015-10-23 23:06 - 2015-11-04 18:04 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
- 2015-12-11 21:12 - 2015-10-30 18:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
- 2015-12-11 21:11 - 2015-10-30 18:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
- 2015-12-11 21:11 - 2015-10-30 19:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
- 2015-12-11 21:11 - 2015-12-08 15:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
- 2015-12-11 21:12 - 2015-10-30 19:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
- 2015-12-11 21:12 - 2015-12-08 15:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
- 2015-12-11 21:11 - 2015-12-08 15:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
- 2015-10-23 23:06 - 2015-10-30 19:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll
- 2015-10-23 23:06 - 2015-10-30 19:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
- 2015-10-23 23:06 - 2015-10-30 19:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll
- 2015-10-23 23:06 - 2015-10-30 19:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll
- 2016-01-15 04:43 - 2014-02-13 15:27 - 00222792 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\traynet.dll
- 2016-01-15 04:43 - 2014-02-13 15:27 - 00275528 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\libcurl.dll
- 2016-01-15 04:43 - 2014-02-13 15:27 - 00113166 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\zlib1.dll
- 2016-01-15 04:43 - 2014-02-13 15:27 - 00249928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\uexper.dll
- 2015-10-15 10:43 - 2015-11-16 18:31 - 47846176 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
- 2016-01-14 19:51 - 2016-01-12 10:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll
- 2016-01-14 19:51 - 2016-01-12 10:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll
- 2015-12-25 19:27 - 2015-12-25 19:28 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
- 2015-12-25 19:27 - 2015-12-25 19:28 - 21845504 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2015-07-10 05:04 - 2015-07-10 05:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-2034507604-4048405394-113968359-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\amin\Desktop\amin\IMAGES\8DoaMtV.jpg
- DNS Servers: Media is not connected to internet.
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is disabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- MSCONFIG\Services: celavimushost => 3
- MSCONFIG\Services: dbupdate => 2
- MSCONFIG\Services: dbupdatem => 3
- MSCONFIG\Services: GfExperienceService => 2
- MSCONFIG\Services: gupdate => 2
- MSCONFIG\Services: gupdatem => 3
- MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
- MSCONFIG\Services: Intel(R) Security Assist => 3
- MSCONFIG\Services: isaHelperSvc => 2
- MSCONFIG\Services: jhi_service => 2
- MSCONFIG\Services: LMS => 2
- MSCONFIG\Services: NvNetworkService => 2
- MSCONFIG\Services: NvStreamSvc => 2
- MSCONFIG\Services: nvsvc => 2
- MSCONFIG\Services: Steam Client Service => 3
- MSCONFIG\Services: Stereo Service => 2
- HKLM\...\StartupApproved\Run32: => "LWS"
- HKU\S-1-5-21-2034507604-4048405394-113968359-1001\...\StartupApproved\StartupFolder: => "Logitech . Product Registration.lnk"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [{B8237FB7-790C-455B-ADFF-ABEDD08EEF53}] => (Allow) LPort=1900
- FirewallRules: [{30147FF8-B4C0-4E22-88F2-53683FDADD87}] => (Allow) LPort=2869
- FirewallRules: [{F8B4A150-A2DC-4223-AE2A-16D498BD694D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
- FirewallRules: [{5D308202-1B54-4E27-ACE6-4698D800567C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
- FirewallRules: [{418B18D6-BD48-46F0-9257-D1C5D5606D89}] => (Block) D:\Games\Fallout 4\Fallout4Launcher.exe
- FirewallRules: [{F1F2D09C-7DAA-4494-B7AF-0CE8F1766C2B}] => (Allow) C:\Users\amin\AppData\Local\Chromium\Application\chrome.exe
- FirewallRules: [{13F673F1-8003-4C70-B709-F98AD7173FFC}] => (Allow) C:\Users\amin\AppData\Local\Maelstrom\Application\chrome.native.torrent.exe
- FirewallRules: [{AD11589F-27F5-4F9E-A870-B2CEF18F42D5}] => (Allow) C:\Users\amin\AppData\Local\Maelstrom\Application\chrome.native.torrent.exe
- FirewallRules: [{4720BE3B-5EFA-49E9-AA01-22229D173394}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
- FirewallRules: [{1E313414-0505-47F2-A3DA-B6582B514650}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
- FirewallRules: [{2910894A-5BA4-4CDF-8D8B-5AA05D9C4505}] => (Allow) E:\Windows 10 Activators\KMSpico.10.0.102040 Beta\KMSELDI.exe
- FirewallRules: [{47FF5CCF-6C60-45B4-B307-62FB7F5F585E}] => (Allow) E:\Windows 10 Activators\KMSpico.10.0.102040 Beta\KMSELDI.exe
- FirewallRules: [{4C4C3A81-0E99-4899-BA5B-348426177B16}] => (Allow) LPort=1688
- FirewallRules: [{D480A771-83C1-4EA0-B31C-23680BB6C2A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\abyss_odyssey\Binaries\Win32\AO.exe
- FirewallRules: [{F8658444-B8BB-431C-A546-25E5B50AE81C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\abyss_odyssey\Binaries\Win32\AO.exe
- FirewallRules: [UDP Query User{EFA28652-9BCC-49D9-A89D-5F416775FA77}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
- FirewallRules: [TCP Query User{AC710FFF-95B2-4425-9A90-CD90BCF15C59}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
- FirewallRules: [{C0CA5FC8-63C8-45F3-A1FB-9ED8CBF5021D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{709AA475-B9DF-4B40-860C-B186A11FE66D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{F4E8351C-72C7-4D35-BFFB-7AB587CAD184}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
- FirewallRules: [{D91A2EF6-E634-496D-AF05-DC4C4D27CCE4}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
- FirewallRules: [{896B46BB-213A-484A-96E9-3C760D9546B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{FFE3D4AA-64F0-4CEA-B4C6-BFA23EF2C18F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{89B15355-ABB4-4E68-BE65-BA7A93E3BB40}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
- FirewallRules: [{D98A32AF-889C-406A-8160-4F797CCD15DA}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
- FirewallRules: [{7442616C-44A3-4369-B817-0DA873CA523D}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
- FirewallRules: [{50C99285-FE35-4751-A6B2-112E2FEF8310}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
- FirewallRules: [{F98A7DC2-9552-41C2-BC9C-2D9A2CEC71C4}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
- FirewallRules: [{B7D66918-13A7-434C-B893-E09125A5A696}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
- FirewallRules: [{9B7DD668-23BE-4652-9B84-152EB679361E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{7B363660-68BC-4E15-9F09-277581F32989}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{4C53356B-72A7-4983-85F6-61C64F77ADAB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
- FirewallRules: [{DCC4FDA1-81E6-4067-9F66-CF883291F234}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
- FirewallRules: [{C8F2D591-F4D6-4167-AD72-7D109940D57B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
- FirewallRules: [{77F70192-DBE2-4AB2-9064-5200C5A50F1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
- FirewallRules: [{9F47A26A-42FE-457D-B6C2-3DDAC50B30C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
- FirewallRules: [{60A5DCA6-4088-43BC-8539-D5C92F35B6DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
- FirewallRules: [{47AD7BEC-984C-4909-97CE-5D45A63B8CA5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- ==================== Restore Points =========================
- ATTENTION: System Restore is disabled
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (01/15/2016 04:49:33 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (01/15/2016 04:49:30 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
- Error: (01/14/2016 11:58:23 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (01/14/2016 11:58:23 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
- Error: (01/14/2016 07:24:58 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable
- Error: (01/14/2016 07:24:57 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
- Error: (01/14/2016 02:42:15 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: utorrentie.exe, version: 1.0.0.41372, time stamp: 0x564b8ce9
- Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
- Exception code: 0xc0000005
- Fault offset: 0x5d6cc6d1
- Faulting process id: 0x1450
- Faulting application start time: 0xutorrentie.exe0
- Faulting application path: utorrentie.exe1
- Faulting module path: utorrentie.exe2
- Report Id: utorrentie.exe3
- Faulting package full name: utorrentie.exe4
- Faulting package-relative application ID: utorrentie.exe5
- Error: (01/14/2016 02:41:03 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: Explorer.EXE, version: 10.0.10586.0, time stamp: 0x5632d4c0
- Faulting module name: PrecisionXServerHooks_x64.dll_unloaded, version: 5.3.8.0, time stamp: 0x55fa593c
- Exception code: 0xc0000005
- Fault offset: 0x0000000000003bb1
- Faulting process id: 0xd64
- Faulting application start time: 0xExplorer.EXE0
- Faulting application path: Explorer.EXE1
- Faulting module path: Explorer.EXE2
- Report Id: Explorer.EXE3
- Faulting package full name: Explorer.EXE4
- Faulting package-relative application ID: Explorer.EXE5
- Error: (01/14/2016 02:38:58 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: utorrentie.exe, version: 1.0.0.41372, time stamp: 0x564b8ce9
- Faulting module name: Flash.ocx, version: 20.0.0.272, time stamp: 0x56870c97
- Exception code: 0xc0000005
- Fault offset: 0x00356e71
- Faulting process id: 0x1480
- Faulting application start time: 0xutorrentie.exe0
- Faulting application path: utorrentie.exe1
- Faulting module path: utorrentie.exe2
- Report Id: utorrentie.exe3
- Faulting package full name: utorrentie.exe4
- Faulting package-relative application ID: utorrentie.exe5
- Error: (01/14/2016 02:37:20 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
- Description: License Activation (slui.exe) failed with the following error code:
- hr=0x803F7001
- Command-line arguments:
- RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable
- System errors:
- =============
- Error: (01/15/2016 05:09:40 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x3000000000003. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:40 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x1000000000000. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:40 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x3000000000003. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:40 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x1000000000000. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:38 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x3000000000003. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:38 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x1000000000000. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:38 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x3000000000003. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:38 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x1000000000000. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:36 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x3000000000003. The name of the file is "<unable to determine file name>".
- Error: (01/15/2016 05:09:36 AM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume F:.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x1000000000000. The name of the file is "<unable to determine file name>".
- CodeIntegrity:
- ===================================
- Date: 2016-01-12 15:13:34.064
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-01-06 04:52:16.287
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-01-02 17:51:25.155
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-01-01 19:51:44.103
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2016-01-01 17:51:51.444
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2015-12-31 06:25:41.694
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2015-12-29 03:30:53.259
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2015-12-29 01:31:07.426
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2015-12-25 18:51:28.404
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- Date: 2015-12-25 18:47:40.666
- Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
- Percentage of memory in use: 26%
- Total physical RAM: 8139.06 MB
- Available physical RAM: 6014.38 MB
- Total Virtual: 9419.06 MB
- Available Virtual: 7185.3 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:118.8 GB) (Free:5.53 GB) NTFS ==>[drive with boot components (obtained from BCD)]
- Drive d: (data) (Fixed) (Total:465.76 GB) (Free:398.35 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 17B1CD44)
- Partition 1: (Active) - (Size=118.8 GB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
- Partition 3: (Not Active) - (Size=1360 KB) - (Type=07 NTFS)
- ========================================================
- Disk: 1 (Size: 465.8 GB) (Disk ID: 00000001)
- Partition 1: (Active) - (Size=465.8 GB) - (Type=04)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement