Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-02-2022
Ran by pc (administrator) on DESKTOP-IUI5T6N (PIPO W2pro) (25-02-2022 18:57:10)
Running from C:\Users\pc\Downloads
Loaded Profiles: pc
Platform: Microsoft Windows 10 Home Version 1803 17134.1304 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Nicolas Coolman -> Nicolas Coolman) [File not signed] C:\Users\pc\Downloads\ZHPSuite.exe
(C:\Program Files\Adaware VPN\AdawareVPNService.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> The OpenVPN Project) C:\Program Files\Adaware VPN\openvpn.exe
(C:\Program Files\iTop Screen Recorder\iScrRec.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrEditer.exe
(C:\Program Files\iTop Screen Recorder\iScrRec.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrPaint.exe
(C:\Program Files\RogueKiller\RogueKillerSvc.exe ->) (ADLICE -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(explorer.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware Software) C:\Program Files (x86)\Adaware Driver Manager\AdawareDriverManager.exe
(explorer.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware) C:\Program Files\Adaware VPN\AdawareVPN.exe
(explorer.exe ->) (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <23>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe
(services.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware) C:\Program Files\Adaware VPN\AdawareVPNService.exe
(services.exe ->) (ADLICE -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(services.exe ->) (Sourcefire, Inc. -> Sourcefire, Inc.) C:\Program Files\Immunet\3.1.13\sfc.exe
(services.exe ->) (VoodooSoft, LLC -> VoodooSoft, LLC) C:\Program Files\VoodooShield\VoodooShieldService.exe
(Sourcefire, Inc. -> Immunet) C:\Program Files\Immunet\3.1.13\iptray.exe
(svchost.exe ->) () [File not signed] C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe
(svchost.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware Software) C:\Program Files (x86)\Adaware Driver Manager\ADMTray.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrRec.exe
(voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe <2>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [rfagent] => D:\Program Files\RFA 11\rfagent64.exe [3848208 2019-04-04] (Rose City Software -> RoseCitySoftware)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1775264 2021-12-16] (voidtools -> voidtools)
HKLM-x32\...\Run: [Immunet Protect] => C:\Program Files\Immunet\3.1.13\iptray.exe [3232464 2022-02-08] (Sourcefire, Inc. -> Immunet)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe (No File)
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [] => [X]
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [MicrosoftEdgeAutoLaunch_72FC07CE8FBC282A90F28F3BD5668C8E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1361016 2022-02-11] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [Adaware VPN] => C:\Program Files\Adaware VPN\AdawareVPN.exe [8239656 2021-12-24] (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware)
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\EPSON XP-710 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLPE.DLL [179712 2015-01-16] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\IppMon: C:\WINDOWS\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {12FEF0C2-EF58-4EF6-9738-6632748CB080} - System32\Tasks\iTop Screen Recorder SkipUAC (pc) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14643200 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {17D452ED-42A6-46FC-8E78-CF7FCF4D9112} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1235968 2021-10-06] () [File not signed]
Task: {35775D25-4E0A-4D0D-A8C4-8677DB8EE4A2} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [1549824 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {3D35BD68-1721-49C5-9C82-ABA399817DB2} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
Task: {46DDFBEA-7B80-499F-8D16-8FB7836BEBDC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan
Task: {4BC82F9A-BA78-4123-8409-968573B9B6B1} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14643200 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {4EDB364F-4E65-4E0A-B752-0427B990965D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {57B9EC36-C782-432C-B896-AD40FFA670B3} - System32\Tasks\Adaware Driver Manager automatic scan and new device notifications => C:\Program Files (x86)\Adaware Driver Manager\ADMTray.exe [3485736 2022-01-18] (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware Software)
Task: {918F5E1F-39A7-4963-B74A-D71C1DF9B536} - System32\Tasks\PC Cleaner automatic scan and notifications => D:\PC Cleaner\PCCNotifications.exe (No File) <==== ATTENTION
Task: {93C44E3B-3F3E-455F-AFE2-B403B8C89E73} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [2831872 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {A06E8DD2-9657-4EAA-9613-3A02B4795AAC} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\Program Files\CUAssistant\culauncher.exe (No File)
Task: {B3908C18-F1F3-4069-A94C-91936BDEE3BC} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {CCC82A9F-FDBB-4280-9584-69A071AE0471} - System32\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488 2015-01-16] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {E525F942-F094-470E-BB41-4A35286DAF0D} - System32\Tasks\WinThruster automatic scan and notifications
Task: {EAE1BEE0-5293-4633-86B4-37B950594F9A} - System32\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488 2015-01-16] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {F097D6BD-143C-400B-9B98-E6211856F22D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE:/EXE:{9D10E9E5-7FD9-4BFF-83FA-951772CB2824} /F:UpdateWORKGROUP\DESKTOP-IUI5T6N$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{35540548-1d9f-4fc6-8f04-a5bef75240c4}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Notifications: HKU\S-1-5-21-120822950-1225855894-879144086-1001 -> hxxps://www.adaware.com; hxxps://mradio.fr; hxxps://uploadrar.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-25]
Edge Notifications: Default -> hxxps://mail.google.com
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdawareVPNService; C:\Program Files\Adaware VPN\AdawareVPNService.exe [5542440 2021-12-24] (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U2 agp440; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three months (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-25 19:12 - 2022-02-25 19:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-25 19:01 - 2022-02-25 19:11 - 002412728 _____ (Malwarebytes) C:\Users\pc\Desktop\MBSetup-10789.10789-consumer.exe
2022-02-25 18:57 - 2022-02-25 19:01 - 000011959 _____ C:\Users\pc\Downloads\FRST.txt
2022-02-25 18:56 - 2022-02-25 18:58 - 000000000 ____D C:\FRST
2022-02-25 18:52 - 2022-02-25 18:55 - 002312192 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2022-02-25 18:45 - 2022-02-25 18:45 - 000319522 ____C C:\Users\pc\Desktop\ZHPDiag.html
2022-02-25 18:45 - 2022-02-25 18:45 - 000253399 ____C C:\Users\pc\Desktop\ZHPDiag.txt
2022-02-25 18:32 - 2022-02-25 18:45 - 000000000 ___DC C:\Users\pc\AppData\Roaming\ZHP
2022-02-25 18:32 - 2022-02-25 18:32 - 003479704 _____ (Nicolas Coolman) C:\Users\pc\Downloads\ZHPSuite.exe
2022-02-25 18:32 - 2022-02-25 18:32 - 000000869 ____C C:\Users\pc\Desktop\ZHPSuite.lnk
2022-02-25 18:32 - 2022-02-25 18:32 - 000000000 ___DC C:\Users\pc\AppData\Local\ZHP
2022-02-25 18:31 - 2022-02-25 18:31 - 000000421 ____C C:\Users\pc\Documents\jambes, fanny nabad, ingrid santana.txt
2022-02-25 18:18 - 2022-02-25 18:18 - 000087504 _____ (Everest Semiconducor Co., Ltd) C:\WINDOWS\system32\Drivers\ESAuDriver.sys
2022-02-25 18:01 - 2022-02-25 18:01 - 000042056 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2022-02-25 18:01 - 2022-02-25 18:01 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2022-02-25 18:00 - 2022-02-25 18:00 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-02-25 17:35 - 2022-02-25 17:35 - 000001934 _____ C:\Users\Public\Desktop\Adaware VPN.lnk
2022-02-25 17:35 - 2022-02-25 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adaware VPN
2022-02-25 17:35 - 2022-02-25 17:35 - 000000000 ____D C:\Program Files\Adaware VPN
2022-02-25 15:54 - 2022-02-25 15:54 - 000000000 ____D C:\Program Files (x86)\EaseUS
2022-02-25 15:48 - 2022-02-25 15:49 - 064686928 _____ (EaseUS ) C:\Users\pc\Downloads\ekf_free_easeus.exe
2022-02-25 15:46 - 2022-02-25 15:46 - 001423856 _____ C:\Users\pc\Downloads\keyfinder_install_20220225.457828.exe
2022-02-25 13:35 - 2022-02-25 13:35 - 000000000 ___HD C:\$WINDOWS.~BT
2022-02-25 13:31 - 2022-02-25 13:31 - 000000000 ___HD C:\$WinREAgent
2022-02-25 13:08 - 2022-02-25 13:22 - 000003254 _____ C:\WINDOWS\system32\Tasks\Adaware Driver Manager automatic scan and new device notifications
2022-02-25 13:07 - 2022-02-25 18:19 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:14 - 000000000 ____D C:\ProgramData\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:08 - 000000000 ____D C:\Program Files (x86)\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:07 - 000001267 _____ C:\Users\Public\Desktop\Adaware Driver Manager.lnk
2022-02-25 13:06 - 2022-02-25 13:07 - 014658464 _____ (adaware) C:\Users\pc\Downloads\Adaware_Driver_Manager_Installer.exe
2022-02-25 12:30 - 2022-02-25 12:34 - 000000000 ____D C:\Program Files\RAVAntivirus
2022-02-25 12:30 - 2022-02-25 12:30 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Opera Software
2022-02-25 12:26 - 2022-02-25 12:26 - 002653880 _____ ( ) C:\Users\pc\Downloads\BitlordSetup.exe
2022-02-25 07:16 - 2022-02-25 07:16 - 000007384 ____C C:\Users\pc\Documents\UsbFix-Report-01.txt micro sd music tag edtor.txt
2022-02-25 07:13 - 2022-02-25 07:13 - 000007384 ____C C:\Users\pc\Desktop\UsbFix_Report.txt
2022-02-25 07:07 - 2022-02-25 07:07 - 000001963 _____ C:\Users\Public\Desktop\UsbFix Anti-Malware.lnk
2022-02-25 07:04 - 2022-02-25 07:04 - 000000000 ____D C:\Users\pc\Downloads\com.tpc.ringpaper_104_aab_apkplz.net
2022-02-25 06:56 - 2022-02-25 06:56 - 000000000 ___DC C:\Users\pc\AppData\Local\Microvirt
2022-02-25 06:54 - 2022-02-25 06:56 - 014060640 _____ (Microvirt Software Technology Co. Ltd.) C:\Users\pc\Downloads\MEmu-setup-abroad-sdk.exe
2022-02-25 06:53 - 2022-02-25 06:53 - 012828884 _____ C:\Users\pc\Downloads\com.tpc.ringpaper_104_aab_apkplz.net.zip
2022-02-25 06:09 - 2022-02-25 06:09 - 000003322 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder Startup
2022-02-25 06:09 - 2022-02-25 06:09 - 000003320 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder Update
2022-02-25 06:09 - 2022-02-25 06:09 - 000003076 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder SkipUAC (pc)
2022-02-25 06:09 - 2022-02-25 06:09 - 000003052 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder UAC
2022-02-25 06:09 - 2022-02-25 06:09 - 000001033 _____ C:\Users\Public\Desktop\iTop Screen Recorder.lnk
2022-02-25 06:09 - 2022-02-25 06:09 - 000000000 ___DC C:\Users\pc\AppData\LocalLow\iTop Screen Recorder
2022-02-25 06:09 - 2022-02-25 06:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop Screen Recorder
2022-02-25 06:08 - 2022-02-25 06:15 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2022-02-25 06:08 - 2022-02-25 06:10 - 000000000 ___DC C:\Users\pc\AppData\Roaming\iTop Screen Recorder
2022-02-25 06:02 - 2022-02-25 06:02 - 000001427 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2022-02-25 06:02 - 2022-02-25 06:02 - 000000892 _____ C:\Users\Public\Desktop\Free YouTube To MP3 Converter.lnk
2022-02-25 06:02 - 2022-02-25 06:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2022-02-25 06:00 - 2022-02-25 06:07 - 063207736 _____ (iTop Inc. ) C:\Users\pc\Downloads\isr-setup-seo.exe
2022-02-25 05:57 - 2022-02-25 05:57 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2022-02-25 05:56 - 2022-02-25 06:05 - 000000000 ___DC C:\Users\pc\AppData\Roaming\DVDVideoSoft
2022-02-25 05:48 - 2022-02-25 05:50 - 078382464 _____ (Digital Wave Ltd ) C:\Users\pc\Desktop\FreeYouTubeToMP3Converter_4.3.67.211_o_d65b4d18-cf65-401e-aaaf-a3ffadc63b76.exe
2022-02-25 05:43 - 2022-02-25 05:44 - 000000000 ____D C:\ProgramData\Aimersoft
2022-02-25 05:43 - 2022-02-25 05:43 - 000001443 _____ C:\Users\Public\Desktop\KeepVid Music Tag Editor.lnk
2022-02-25 05:43 - 2022-02-25 05:43 - 000000000 ___DC C:\Users\pc\AppData\Local\Aimersoft
2022-02-25 05:43 - 2022-02-25 05:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeepVid
2022-02-25 05:43 - 2022-02-25 05:43 - 000000000 ____D C:\Program Files\Common Files\Aimersoft
2022-02-25 05:42 - 2022-02-25 05:42 - 000000000 ____D C:\ProgramData\KeepVid
2022-02-25 05:42 - 2022-02-25 05:42 - 000000000 ____D C:\Program Files (x86)\KeepVid
2022-02-25 05:35 - 2022-02-25 09:05 - 000000000 ____D C:\ProgramData\WinThruster
2022-02-25 05:35 - 2022-02-25 08:56 - 000000000 _____ C:\WINDOWS\system32\Tasks\WinThruster automatic scan and notifications
2022-02-25 05:34 - 2022-02-25 05:35 - 000000000 ___DC C:\Users\pc\AppData\Roaming\WinThruster
2022-02-25 05:34 - 2022-02-25 05:34 - 000000623 ____C C:\Users\pc\Desktop\WinThruster.lnk
2022-02-25 05:34 - 2022-02-25 05:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
2022-02-25 05:33 - 2022-02-25 05:33 - 006420400 _____ (Solvusoft ) C:\Users\pc\Downloads\Setup_WinThruster_2021.exe
2022-02-25 05:15 - 2022-02-25 05:41 - 019067976 _____ (KeepVid Software Co., Ltd. ) C:\Users\pc\Downloads\keepvid-music-tag-editor_full4171.exe
2022-02-25 05:11 - 2022-02-25 05:11 - 000000000 ___DC C:\Users\pc\AppData\Roaming\QtProject
2022-02-25 05:11 - 2021-03-09 18:41 - 000037336 _____ C:\WINDOWS\system32\pwdrvio.sys
2022-02-25 05:11 - 2019-11-08 10:15 - 003600896 _____ C:\WINDOWS\system32\pwNative.exe
2022-02-25 05:11 - 2019-11-08 10:15 - 000012504 _____ C:\WINDOWS\system32\pwdspio.sys
2022-02-25 05:10 - 2022-02-25 05:11 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12
2022-02-25 05:10 - 2022-02-25 05:10 - 000003270 _____ C:\WINDOWS\system32\Tasks\MiniToolPartitionWizard
2022-02-25 05:10 - 2022-02-25 05:10 - 000001061 _____ C:\Users\Public\Desktop\MiniTool Partition Wizard.lnk
2022-02-25 05:10 - 2022-02-25 05:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12
2022-02-25 05:08 - 2022-02-25 05:09 - 002117872 _____ (MiniTool Software Limited ) C:\Users\pc\Downloads\pw1206-free-online.exe
2022-02-25 05:07 - 2022-02-25 17:44 - 000000000 ___DC C:\Users\pc\AppData\Local\CrashDumps
2022-02-25 05:01 - 2022-02-25 05:01 - 000009883 ____C C:\Users\pc\Desktop\UsbFix_Report micro sd 400go pipo w2pro.txt
2022-02-24 22:33 - 2022-02-24 22:33 - 000534081 __RST C:\QuickDiag_24_02_2022_22_33_47.txt
2022-02-24 22:09 - 2022-02-24 22:33 - 000534081 _RSOT C:\Users\pc\Desktop\QuickDiag_24_02_2022_22_33_47.txt
2022-02-24 22:08 - 2022-02-24 22:33 - 000000000 ____D C:\QuickDiag
2022-02-24 22:08 - 2022-02-24 22:08 - 005321112 _____ (SosVirus) C:\Users\pc\Downloads\quickdiag_V5_29.10.19.1.exe
2022-02-24 22:07 - 2022-02-24 22:10 - 000000000 ____D C:\ProgramData\PC Cleaner
2022-02-24 22:07 - 2022-02-24 22:07 - 000003152 _____ C:\WINDOWS\system32\Tasks\PC Cleaner automatic scan and notifications
2022-02-24 22:07 - 2022-02-24 22:07 - 000000431 ____C C:\Users\pc\Desktop\PC Cleaner.lnk
2022-02-24 22:07 - 2022-02-24 22:07 - 000000000 ___DC C:\Users\pc\AppData\Roaming\PC Cleaner
2022-02-24 22:07 - 2022-02-24 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Cleaner
2022-02-24 22:05 - 2022-02-24 22:06 - 006584584 _____ (PC Helpsoft ) C:\Users\pc\Downloads\PC_Cleaner_5352.exe
2022-02-24 21:45 - 2022-02-24 21:45 - 000005882 ____C C:\Users\pc\Documents\UsbFix-Report-01.txt android disk.txt
2022-02-24 21:45 - 2022-02-24 21:45 - 000001578 ____C C:\Users\pc\Desktop\Pre_Scan_Restore.lnk
2022-02-24 21:45 - 2022-02-24 21:45 - 000001230 ____C C:\Users\pc\Desktop\Pre_Scan_Donate.lnk
2022-02-24 21:45 - 2022-02-24 21:45 - 000000000 ____D C:\Pre_Scan
2022-02-24 21:42 - 2022-02-25 07:05 - 000000000 ____D C:\Program Files (x86)\UsbFix
2022-02-24 21:42 - 2022-02-24 21:42 - 000003262 _____ C:\WINDOWS\system32\Tasks\UsbFix Monitor
2022-02-24 21:36 - 2022-02-24 21:37 - 003082136 _____ (SosVirus) C:\Users\pc\Desktop\pre-scan_V9_18.10.19.1.exe
2022-02-24 21:36 - 2022-02-24 21:36 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\Non confirmé 971560.crdownload
2022-02-24 21:36 - 2022-02-24 21:36 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\Non confirmé 686620.crdownload
2022-02-24 21:34 - 2022-02-24 21:28 - 004860461 ____C (SOSVirus) C:\Users\pc\Desktop\UsbFix_Premium.exe
2022-02-24 21:28 - 2022-02-24 21:28 - 004860461 _____ (SOSVirus) C:\Users\pc\Downloads\UsbFix_Premium.exe
2022-02-24 21:25 - 2022-02-24 21:25 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 11
2022-02-24 21:25 - 2022-02-24 21:25 - 000000000 ____D C:\ProgramData\Registry First Aid
2022-02-24 21:22 - 2022-02-24 21:23 - 009368888 _____ (RoseCitySoftware ) C:\Users\pc\Downloads\rfasetup (1).exe
2022-02-24 21:15 - 2022-02-24 21:15 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-120822950-1225855894-879144086-1001
2022-02-24 21:14 - 2022-02-24 21:15 - 000002377 ____C C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-24 21:10 - 2022-02-24 21:10 - 000000258 __RSH C:\ProgramData\ntuser.pol
2022-02-24 21:09 - 2022-02-24 21:10 - 001380408 _____ (Akeo Consulting) C:\Users\pc\Downloads\rufus-3.17.exe
2022-02-24 21:09 - 2022-02-24 21:10 - 001380408 _____ (Akeo Consulting) C:\Users\pc\Downloads\rufus-3.17 (1).exe
2022-02-24 21:05 - 2022-02-24 21:05 - 000000000 ___HD C:\$GetCurrent
2022-02-24 21:04 - 2022-02-25 17:37 - 000000000 ____D C:\ProgramData\Adaware VPN
2022-02-24 21:04 - 2022-02-25 17:35 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Adaware VPN
2022-02-24 21:03 - 2022-02-24 21:03 - 000000814 ____C C:\Users\pc\Desktop\Windows 10 Update Assistant.lnk
2022-02-08 20:04 - 2022-02-08 20:04 - 000003401 ____C C:\Users\pc\Desktop\AdwCleaner[C00].txt
2022-02-08 19:57 - 2022-02-08 20:03 - 000000000 ____D C:\AdwCleaner
2022-02-08 19:55 - 2022-02-08 19:57 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\pre-scan_V9_18.10.19.1.exe
2022-02-08 19:53 - 2022-02-08 19:56 - 008540344 _____ (Malwarebytes) C:\Users\pc\Downloads\adwcleaner_8.3.1.exe
2022-02-08 13:51 - 2022-02-08 13:51 - 000000964 _____ C:\Users\Public\Desktop\Immunet 3.lnk
2022-02-08 13:51 - 2022-02-08 13:51 - 000000000 ____D C:\ProgramData\Immunet
2022-02-08 13:46 - 2022-02-24 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2022-02-08 13:46 - 2022-02-24 21:49 - 000000000 ____D C:\Program Files\RogueKiller
2022-02-08 13:46 - 2022-02-08 15:42 - 000000000 ____D C:\ProgramData\RogueKiller
2022-02-08 13:46 - 2022-02-08 13:46 - 000000912 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2022-02-08 13:43 - 2022-02-25 19:08 - 000000000 ____D C:\Program Files\Immunet
2022-02-08 13:43 - 2022-02-08 13:43 - 000329800 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000100048 _____ (Sourcefire, Inc.) C:\WINDOWS\system32\Drivers\ImmunetNetworkMonitor.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000058064 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\immunetprotect.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000032976 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\immunetselfprotect.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2022-02-08 13:43 - 2022-02-08 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2022-02-08 13:40 - 2022-02-08 13:44 - 042051760 _____ (Adlice Software ) C:\Users\pc\Downloads\RogueKiller_setup.exe
2022-02-08 13:30 - 2022-02-08 13:30 - 000000916 _____ C:\Users\Public\Desktop\Voodoo Shield.lnk
2022-02-08 13:30 - 2022-02-08 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VoodooShield
2022-02-08 13:30 - 2018-06-25 08:48 - 000029752 _____ (VoodooSoft, LLC) C:\WINDOWS\system32\Drivers\vsscanner.sys
2022-02-08 13:28 - 2022-02-25 18:09 - 000000000 ____D C:\ProgramData\VoodooShield
2022-02-08 13:28 - 2022-02-08 13:31 - 000000000 ____D C:\Program Files\VoodooShield
2022-02-08 13:26 - 2022-02-08 13:27 - 031875272 _____ (VoodooSoft, LLC ) C:\Users\pc\Downloads\InstallVoodooShield.exe
2022-02-08 13:26 - 2022-02-08 13:27 - 000539448 _____ (Sourcefire, Inc.) C:\Users\pc\Downloads\ImmunetSetup-3.1.13.9666.exe
2022-02-08 13:15 - 2022-02-08 13:15 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Thinstall
2022-02-08 13:15 - 2022-02-08 13:15 - 000000000 ___DC C:\Users\pc\AppData\Local\Thinstall
2022-02-08 13:13 - 2022-02-08 13:13 - 000000000 ____D C:\Users\pc\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable
2022-02-08 13:12 - 2022-02-08 13:12 - 000001143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2022-02-08 13:12 - 2022-02-08 13:12 - 000001097 _____ C:\Users\Public\Desktop\WinRAR.lnk
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ___DC C:\Users\pc\AppData\Roaming\WinRAR
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ____D C:\Program Files (x86)\WinRAR
2022-02-08 13:11 - 2022-02-08 13:11 - 003323688 _____ (Alexander Roshal) C:\Users\pc\Downloads\winrar-x32-610fr.exe
2022-02-08 13:06 - 2022-02-08 13:08 - 037005470 _____ C:\Users\pc\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.rar
2022-02-08 12:55 - 2022-02-08 12:55 - 000000000 ___DC C:\Users\pc\AppData\Local\OneDrive
2022-02-06 22:38 - 2022-02-25 17:59 - 000000000 ____D C:\Program Files (x86)\Everything
2022-02-06 22:38 - 2022-02-06 22:38 - 000001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything.lnk
2022-02-06 22:38 - 2022-02-06 22:38 - 000001111 _____ C:\Users\Public\Desktop\Everything.lnk
2022-02-06 22:32 - 2022-02-06 22:32 - 001710728 _____ () C:\Users\pc\Downloads\Everything-1.4.1.1015.x86-Setup.exe
2022-02-06 22:21 - 2022-02-06 22:21 - 000003650 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-02-06 22:20 - 2022-02-06 22:43 - 000000000 ____D C:\WINDOWS\ERUNT
2022-02-06 22:09 - 2022-02-06 22:09 - 000001185 ____C C:\Users\pc\Documents\New BCUninstaller Junk Export.txt
2022-02-06 22:09 - 2022-02-06 22:09 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-06_22-09-34
2022-02-04 03:54 - 2022-02-06 22:01 - 000001091 ____C C:\Users\pc\Desktop\Drive_Shortcut.lnk
2022-02-04 03:53 - 2022-02-04 03:53 - 000000336 ____C C:\Users\pc\Desktop\WUCU.txt
2022-02-04 03:49 - 2022-02-04 03:50 - 000942320 _____ (SosVirus) C:\Users\pc\Downloads\WindowsKeyFinder.exe
2022-02-04 03:49 - 2022-02-04 03:50 - 000942320 _____ (SosVirus) C:\Users\pc\Downloads\Non confirmé 416789.crdownload
2022-02-04 03:48 - 2022-02-04 03:49 - 000908016 _____ (SosVirus) C:\Users\pc\Downloads\TaskbarSize11.exe
2022-02-04 03:46 - 2022-02-04 03:47 - 000916208 _____ (g3n-h@ckm@n) C:\Users\pc\Downloads\Drive_Shortcut.exe
2022-02-04 03:42 - 2022-02-04 03:43 - 000974576 _____ (SOSVirus) C:\Users\pc\Downloads\WUCU.exe
2022-02-04 03:22 - 2022-02-04 03:22 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-04_03-22-58
2022-02-04 03:16 - 2022-02-04 03:16 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-04_03-16-01
2022-02-01 07:00 - 2022-02-01 07:00 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-01_07-00-24
2022-02-01 06:54 - 2022-02-01 06:54 - 000000000 ___RD C:\Users\pc\Recorded Calls
2022-01-30 04:02 - 2022-01-30 04:02 - 000000000 ____D C:\ProgramData\COMODO
2022-01-29 22:31 - 2022-01-29 22:32 - 015346080 _____ (adaware) C:\Users\pc\Downloads\adawarevpn.exe
2022-01-29 21:40 - 2022-01-29 21:40 - 000000000 ___DC C:\Users\pc\AppData\Local\NuGet
2022-01-29 21:17 - 2022-01-29 21:52 - 000000000 ____D C:\ProgramData\chocolatey
2022-01-29 21:04 - 2022-01-29 21:04 - 006812280 _____ (Avanquest ) C:\Users\pc\Downloads\OneSafe_PC_Cleaner_D (1).exe
2022-01-29 21:02 - 2022-01-29 21:03 - 006812280 _____ (Avanquest ) C:\Users\pc\Downloads\OneSafe_PC_Cleaner_D.exe
2022-01-29 20:46 - 2022-01-29 20:48 - 009368888 _____ (RoseCitySoftware ) C:\Users\pc\Downloads\rfasetup.exe
2022-01-29 12:16 - 2022-01-29 12:16 - 000000928 _____ C:\Users\Public\Desktop\BCUninstaller.lnk
2022-01-29 12:16 - 2022-01-29 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCUninstaller
2022-01-29 12:09 - 2022-01-29 12:27 - 000000000 ____D C:\Program Files\BCUninstaller
2022-01-28 23:19 - 2022-01-28 23:19 - 000039920 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2022-01-28 23:18 - 2022-02-04 03:00 - 000000951 _____ C:\WINDOWS\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job
2022-01-28 23:18 - 2022-02-04 03:00 - 000000765 _____ C:\WINDOWS\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job
2022-01-28 23:18 - 2022-02-01 06:57 - 000003562 _____ C:\WINDOWS\system32\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}
2022-01-28 23:18 - 2022-02-01 06:57 - 000003384 _____ C:\WINDOWS\system32\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}
2022-01-28 23:18 - 2022-01-28 23:18 - 000000000 ____D C:\Program Files\Common Files\EPSON
2022-01-28 23:17 - 2022-01-31 23:18 - 000000000 ____D C:\ProgramData\EPSON
2022-01-28 23:16 - 2015-01-16 04:16 - 000179712 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMBLPE.DLL
2022-01-28 23:16 - 2015-01-16 04:16 - 000083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BLPE.DLL
2022-01-28 23:16 - 2015-01-16 04:16 - 000010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2022-01-28 23:13 - 2022-01-28 23:15 - 015166368 _____ (adaware) C:\Users\pc\Downloads\adawaresafebrowser.exe
2022-01-28 23:01 - 2022-01-28 23:01 - 000001064 ____C C:\Users\pc\Desktop\Internet Explorer.lnk
2022-01-28 18:42 - 2022-01-28 18:46 - 014532512 _____ (adaware) C:\Users\pc\Downloads\Adaware_protect_Installer.exe
2022-01-28 09:08 - 2022-01-28 09:08 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8 (1).exe
2022-01-28 08:54 - 2022-01-28 08:54 - 000768140 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-desktop-launcher-vipad.exe
2022-01-28 08:53 - 2022-01-28 08:53 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8.exe
2022-01-28 08:50 - 2022-01-28 08:50 - 000914782 _____ C:\Users\pc\Downloads\fidelizer.zip
2022-01-28 06:43 - 2022-02-25 09:34 - 000004158 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E08EDB29-CD7B-4FBF-8971-4AAE2577D114}
2022-01-28 06:42 - 2006-10-11 12:45 - 000073728 _____ C:\WINDOWS\SysWOW64\pv.exe
2022-01-28 06:20 - 2022-01-28 06:20 - 000820150 _____ (Windows X) C:\Users\pc\Downloads\LiveTuner 1.0.exe
2022-01-28 06:13 - 2022-01-28 06:15 - 000000000 ____D C:\ProgramData\iTop
2022-01-27 10:28 - 2022-01-27 10:28 - 003292824 _____ (Nicolas Coolman) C:\Users\pc\Downloads\Non confirmé 318578.crdownload
2022-01-27 10:17 - 2022-01-27 10:17 - 000532480 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2022-01-27 10:17 - 2022-01-27 10:17 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2022-01-27 10:17 - 2022-01-27 10:17 - 000028672 _____ C:\WINDOWS\system32\config\SAM.iobit
2022-01-27 10:16 - 2022-01-27 10:17 - 102715392 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2021-12-19 07:02 - 2022-02-24 21:15 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-120822950-1225855894-879144086-1001
==================== Three months (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-25 18:50 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-25 18:18 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2022-02-25 18:08 - 2021-05-23 09:36 - 000743704 _____ C:\WINDOWS\system32\perfh010.dat
2022-02-25 18:08 - 2021-05-23 09:36 - 000138032 _____ C:\WINDOWS\system32\perfc010.dat
2022-02-25 18:08 - 2018-06-25 04:30 - 000734274 _____ C:\WINDOWS\system32\perfh019.dat
2022-02-25 18:08 - 2018-06-25 04:30 - 000143698 _____ C:\WINDOWS\system32\perfc019.dat
2022-02-25 18:08 - 2018-06-25 04:24 - 000750950 _____ C:\WINDOWS\system32\perfh00A.dat
2022-02-25 18:08 - 2018-06-25 04:24 - 000147412 _____ C:\WINDOWS\system32\perfc00A.dat
2022-02-25 18:08 - 2018-06-25 04:18 - 000704720 _____ C:\WINDOWS\system32\perfh007.dat
2022-02-25 18:08 - 2018-06-25 04:18 - 000142040 _____ C:\WINDOWS\system32\perfc007.dat
2022-02-25 18:08 - 2018-06-25 04:13 - 000417860 _____ C:\WINDOWS\system32\prfh0404.dat
2022-02-25 18:08 - 2018-06-25 04:13 - 000125590 _____ C:\WINDOWS\system32\prfc0404.dat
2022-02-25 18:08 - 2018-06-25 04:08 - 000404906 _____ C:\WINDOWS\system32\prfh0804.dat
2022-02-25 18:08 - 2018-06-25 04:08 - 000124978 _____ C:\WINDOWS\system32\prfc0804.dat
2022-02-25 18:08 - 2018-05-26 05:10 - 005296028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-25 18:00 - 2020-09-29 19:57 - 000000000 __SHD C:\Users\pc\IntelGraphicsProfiles
2022-02-25 18:00 - 2018-05-26 04:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-25 18:00 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-25 17:59 - 2020-09-29 19:57 - 000000000 ____D C:\Users\pc
2022-02-25 17:25 - 2018-05-26 04:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-25 13:17 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-02-25 05:58 - 2021-05-24 21:32 - 000000000 ___DC C:\Users\pc\AppData\Local\D3DSCache
2022-02-25 05:56 - 2021-05-22 20:30 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-24 21:47 - 2021-05-25 09:32 - 000000000 ____D C:\WINDOWS\Panther
2022-02-24 21:18 - 2021-05-28 15:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-24 21:17 - 2021-05-23 07:23 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-24 21:03 - 2021-05-23 03:56 - 000000826 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk
2022-02-24 21:02 - 2021-05-23 03:56 - 000000000 ____D C:\Windows10Upgrade
2022-02-08 20:03 - 2021-06-13 09:24 - 000000000 ____D C:\ProgramData\BSD
2022-02-08 19:12 - 2021-05-25 09:32 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-08 12:53 - 2021-05-24 08:45 - 000000000 ___DC C:\Users\pc\Documents\iFun Screen Recorder
2022-02-08 12:45 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-06 22:22 - 2021-05-22 19:44 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-06 22:22 - 2021-05-22 19:44 - 000002270 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-04 03:13 - 2020-09-29 19:57 - 000000000 ___DC C:\Users\pc\AppData\Local\Packages
2022-02-04 02:59 - 2021-06-01 07:45 - 000000000 ____D C:\ProgramData\ProductData
2022-02-04 02:59 - 2021-06-01 07:43 - 000000000 ___DC C:\Users\pc\AppData\Roaming\IObit
2022-02-04 02:59 - 2021-05-24 08:45 - 000000000 ___DC C:\Users\pc\AppData\LocalLow\IObit
2022-02-04 02:59 - 2021-05-24 08:45 - 000000000 ____D C:\ProgramData\IObit
2022-02-01 10:37 - 2021-06-01 07:52 - 000000000 ____D C:\ProgramData\iTop VPN
2022-02-01 07:00 - 2021-05-22 20:47 - 000000000 ___DC C:\Users\pc\AppData\Local\Avira
2022-02-01 07:00 - 2021-05-22 20:30 - 000000000 ____D C:\Program Files (x86)\Avira
2022-02-01 06:57 - 2021-05-22 19:24 - 000003468 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-01 06:57 - 2021-05-22 19:24 - 000003244 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-01 06:53 - 2021-05-30 16:12 - 000000000 ____D C:\Program Files (x86)\Magoshare
2022-02-01 06:18 - 2021-05-22 20:30 - 000000000 ____D C:\ProgramData\Avira
2022-02-01 06:18 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-01-30 04:13 - 2018-05-26 04:56 - 000242144 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-29 00:02 - 2020-09-29 19:57 - 000000000 ___DC C:\Users\pc\AppData\Local\VirtualStore
2022-01-28 06:14 - 2021-05-24 08:45 - 000000000 ____D C:\Program Files (x86)\iFun
2022-01-27 10:59 - 2021-06-01 07:52 - 000000000 ____D C:\Program Files (x86)\iTop VPN
2022-01-27 10:59 - 2018-05-26 05:07 - 000002826 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
==================== SigCheckExt =========================
2008-05-30 12:11 - 2008-05-30 12:11 - 000000000 _____ C:\WINDOWS\system32\d3dx9_38.dll
2018-05-09 07:34 - 2015-12-11 22:19 - 000189440 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4364.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 003404288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libssl-1_1-x64.dll
2022-02-25 05:11 - 2019-11-08 10:15 - 003600896 _____ C:\WINDOWS\system32\pwNative.exe
2021-05-31 14:34 - 1987-12-19 22:00 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2018-05-26 05:42 - 2014-04-17 17:54 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2021-05-31 14:34 - 1987-12-19 22:00 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libcrypto-1_1.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001276928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libssl-1_1.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2022-01-28 06:42 - 2006-10-11 12:45 - 000073728 _____ C:\WINDOWS\SysWOW64\pv.exe
2021-05-31 14:34 - 1987-12-19 22:00 - 000276992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\ssleay32.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2022-02-24 21:36 - 2022-02-24 21:37 - 003082136 _____ (SosVirus) C:\Users\pc\Desktop\pre-scan_V9_18.10.19.1.exe
2022-02-24 21:34 - 2022-02-24 21:28 - 004860461 ____C (SOSVirus) C:\Users\pc\Desktop\UsbFix_Premium.exe
2022-02-04 03:46 - 2022-02-04 03:47 - 000916208 _____ (g3n-h@ckm@n) C:\Users\pc\Downloads\Drive_Shortcut.exe
2022-02-25 18:52 - 2022-02-25 18:55 - 002312192 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2022-01-28 06:20 - 2022-01-28 06:20 - 000820150 _____ (Windows X) C:\Users\pc\Downloads\LiveTuner 1.0.exe
2022-02-08 19:55 - 2022-02-08 19:57 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\pre-scan_V9_18.10.19.1.exe
2022-02-24 22:08 - 2022-02-24 22:08 - 005321112 _____ (SosVirus) C:\Users\pc\Downloads\quickdiag_V5_29.10.19.1.exe
2022-02-04 03:48 - 2022-02-04 03:49 - 000908016 _____ (SosVirus) C:\Users\pc\Downloads\TaskbarSize11.exe
2022-02-24 21:28 - 2022-02-24 21:28 - 004860461 _____ (SOSVirus) C:\Users\pc\Downloads\UsbFix_Premium.exe
2022-01-28 08:54 - 2022-01-28 08:54 - 000768140 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-desktop-launcher-vipad.exe
2022-01-28 09:08 - 2022-01-28 09:08 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8 (1).exe
2022-01-28 08:53 - 2022-01-28 08:53 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8.exe
2022-02-04 03:49 - 2022-02-04 03:50 - 000942320 _____ (SosVirus) C:\Users\pc\Downloads\WindowsKeyFinder.exe
2022-02-04 03:42 - 2022-02-04 03:43 - 000974576 _____ (SOSVirus) C:\Users\pc\Downloads\WUCU.exe
2022-02-25 18:32 - 2022-02-25 18:32 - 003479704 _____ (Nicolas Coolman) C:\Users\pc\Downloads\ZHPSuite.exe
==================== FCheck ================================
(If an entry is included in the fixlist, the file/folder will be moved.)
FCheck: C:\WINDOWS\system32\d3dx9_38.dll [2008-05-30] <==== ATTENTION (zero byte File/Folder)
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== BCD ================================
Firmware Boot Manager
---------------------
identifier {fwbootmgr}
displayorder {bootmgr}
{ac1577e4-d671-11ea-95db-806e6f6e6963}
{f88e1a27-d679-11ea-9f9d-936676110ab0}
timeout 2
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale en-US
inherit {globalsettings}
default {current}
resumeobject {dd31d7c0-d679-11ea-9f9d-936676110ab0}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Firmware Application (101fffff)
-------------------------------
identifier {ac1577e4-d671-11ea-95db-806e6f6e6963}
device partition=\Device\HarddiskVolume1
path \EFI\RECOVERY\BOOT\BOOTMGFW.EFI
description Windows Recovery
Firmware Application (101fffff)
-------------------------------
identifier {f88e1a27-d679-11ea-9f9d-936676110ab0}
description UEFI: Built-in EFI Shell
Windows Boot Loader
-------------------
identifier {1e2ce58a-d673-11ea-95db-ac5d5c5d3902}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{1e2ce58b-d673-11ea-95db-ac5d5c5d3902}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale en-US
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{1e2ce58b-d673-11ea-95db-ac5d5c5d3902}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale en-US
loadoptions ENABLE_INTEGRITY_CHECKS
inherit {bootloadersettings}
recoverysequence {1e2ce58a-d673-11ea-95db-ac5d5c5d3902}
displaymessageoverride Recovery
recoveryenabled Yes
testsigning No
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {dd31d7c0-d679-11ea-9f9d-936676110ab0}
nx OptIn
bootmenupolicy Standard
Resume from Hibernate
---------------------
identifier {dd31d7c0-d679-11ea-9f9d-936676110ab0}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale en-US
inherit {resumeloadersettings}
recoverysequence {1e2ce58a-d673-11ea-95db-ac5d5c5d3902}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Windows Memory Diagnostic
locale en-US
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {1e2ce58b-d673-11ea-95db-ac5d5c5d3902}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== End of FRST.txt ========================
Ran by pc (administrator) on DESKTOP-IUI5T6N (PIPO W2pro) (25-02-2022 18:57:10)
Running from C:\Users\pc\Downloads
Loaded Profiles: pc
Platform: Microsoft Windows 10 Home Version 1803 17134.1304 (X64) Language: English (United States)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Nicolas Coolman -> Nicolas Coolman) [File not signed] C:\Users\pc\Downloads\ZHPSuite.exe
(C:\Program Files\Adaware VPN\AdawareVPNService.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> The OpenVPN Project) C:\Program Files\Adaware VPN\openvpn.exe
(C:\Program Files\iTop Screen Recorder\iScrRec.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrEditer.exe
(C:\Program Files\iTop Screen Recorder\iScrRec.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrPaint.exe
(C:\Program Files\RogueKiller\RogueKillerSvc.exe ->) (ADLICE -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(explorer.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware Software) C:\Program Files (x86)\Adaware Driver Manager\AdawareDriverManager.exe
(explorer.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware) C:\Program Files\Adaware VPN\AdawareVPN.exe
(explorer.exe ->) (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <23>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(MiniTool Software Limited -> ) C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe
(services.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware) C:\Program Files\Adaware VPN\AdawareVPNService.exe
(services.exe ->) (ADLICE -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(services.exe ->) (Sourcefire, Inc. -> Sourcefire, Inc.) C:\Program Files\Immunet\3.1.13\sfc.exe
(services.exe ->) (VoodooSoft, LLC -> VoodooSoft, LLC) C:\Program Files\VoodooShield\VoodooShieldService.exe
(Sourcefire, Inc. -> Immunet) C:\Program Files\Immunet\3.1.13\iptray.exe
(svchost.exe ->) () [File not signed] C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe
(svchost.exe ->) (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware Software) C:\Program Files (x86)\Adaware Driver Manager\ADMTray.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrRec.exe
(voidtools -> voidtools) C:\Program Files (x86)\Everything\Everything.exe <2>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [rfagent] => D:\Program Files\RFA 11\rfagent64.exe [3848208 2019-04-04] (Rose City Software -> RoseCitySoftware)
HKLM\...\Run: [MTPW] => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Everything] => C:\Program Files (x86)\Everything\Everything.exe [1775264 2021-12-16] (voidtools -> voidtools)
HKLM-x32\...\Run: [Immunet Protect] => C:\Program Files\Immunet\3.1.13\iptray.exe [3232464 2022-02-08] (Sourcefire, Inc. -> Immunet)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe (No File)
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [] => [X]
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [MicrosoftEdgeAutoLaunch_72FC07CE8FBC282A90F28F3BD5668C8E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1361016 2022-02-11] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Run: [Adaware VPN] => C:\Program Files\Adaware VPN\AdawareVPN.exe [8239656 2021-12-24] (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware)
HKU\S-1-5-21-120822950-1225855894-879144086-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Print\Monitors\EPSON XP-710 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLPE.DLL [179712 2015-01-16] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\IppMon: C:\WINDOWS\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {12FEF0C2-EF58-4EF6-9738-6632748CB080} - System32\Tasks\iTop Screen Recorder SkipUAC (pc) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14643200 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {17D452ED-42A6-46FC-8E78-CF7FCF4D9112} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1235968 2021-10-06] () [File not signed]
Task: {35775D25-4E0A-4D0D-A8C4-8677DB8EE4A2} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [1549824 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {3D35BD68-1721-49C5-9C82-ABA399817DB2} - System32\Tasks\MiniToolPartitionWizard => C:\Program Files\MiniTool Partition Wizard 12\updatechecker.exe [219616 2020-02-19] (MiniTool Software Limited -> )
Task: {46DDFBEA-7B80-499F-8D16-8FB7836BEBDC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan
Task: {4BC82F9A-BA78-4123-8409-968573B9B6B1} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14643200 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {4EDB364F-4E65-4E0A-B752-0427B990965D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {57B9EC36-C782-432C-B896-AD40FFA670B3} - System32\Tasks\Adaware Driver Manager automatic scan and new device notifications => C:\Program Files (x86)\Adaware Driver Manager\ADMTray.exe [3485736 2022-01-18] (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware Software)
Task: {918F5E1F-39A7-4963-B74A-D71C1DF9B536} - System32\Tasks\PC Cleaner automatic scan and notifications => D:\PC Cleaner\PCCNotifications.exe (No File) <==== ATTENTION
Task: {93C44E3B-3F3E-455F-AFE2-B403B8C89E73} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [2831872 2022-02-18] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {A06E8DD2-9657-4EAA-9613-3A02B4795AAC} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\Program Files\CUAssistant\culauncher.exe (No File)
Task: {B3908C18-F1F3-4069-A94C-91936BDEE3BC} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
Task: {CCC82A9F-FDBB-4280-9584-69A071AE0471} - System32\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488 2015-01-16] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {E525F942-F094-470E-BB41-4A35286DAF0D} - System32\Tasks\WinThruster automatic scan and notifications
Task: {EAE1BEE0-5293-4633-86B4-37B950594F9A} - System32\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488 2015-01-16] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {F097D6BD-143C-400B-9B98-E6211856F22D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE:/EXE:{9D10E9E5-7FD9-4BFF-83FA-951772CB2824} /F:UpdateWORKGROUP\DESKTOP-IUI5T6N$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{35540548-1d9f-4fc6-8f04-a5bef75240c4}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Notifications: HKU\S-1-5-21-120822950-1225855894-879144086-1001 -> hxxps://www.adaware.com; hxxps://mradio.fr; hxxps://uploadrar.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\pc\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-25]
Edge Notifications: Default -> hxxps://mail.google.com
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdawareVPNService; C:\Program Files\Adaware VPN\AdawareVPNService.exe [5542440 2021-12-24] (Adaware Software (Lavasoft Software Canada Inc.) -> Adaware)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U2 agp440; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three months (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-25 19:12 - 2022-02-25 19:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-25 19:01 - 2022-02-25 19:11 - 002412728 _____ (Malwarebytes) C:\Users\pc\Desktop\MBSetup-10789.10789-consumer.exe
2022-02-25 18:57 - 2022-02-25 19:01 - 000011959 _____ C:\Users\pc\Downloads\FRST.txt
2022-02-25 18:56 - 2022-02-25 18:58 - 000000000 ____D C:\FRST
2022-02-25 18:52 - 2022-02-25 18:55 - 002312192 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2022-02-25 18:45 - 2022-02-25 18:45 - 000319522 ____C C:\Users\pc\Desktop\ZHPDiag.html
2022-02-25 18:45 - 2022-02-25 18:45 - 000253399 ____C C:\Users\pc\Desktop\ZHPDiag.txt
2022-02-25 18:32 - 2022-02-25 18:45 - 000000000 ___DC C:\Users\pc\AppData\Roaming\ZHP
2022-02-25 18:32 - 2022-02-25 18:32 - 003479704 _____ (Nicolas Coolman) C:\Users\pc\Downloads\ZHPSuite.exe
2022-02-25 18:32 - 2022-02-25 18:32 - 000000869 ____C C:\Users\pc\Desktop\ZHPSuite.lnk
2022-02-25 18:32 - 2022-02-25 18:32 - 000000000 ___DC C:\Users\pc\AppData\Local\ZHP
2022-02-25 18:31 - 2022-02-25 18:31 - 000000421 ____C C:\Users\pc\Documents\jambes, fanny nabad, ingrid santana.txt
2022-02-25 18:18 - 2022-02-25 18:18 - 000087504 _____ (Everest Semiconducor Co., Ltd) C:\WINDOWS\system32\Drivers\ESAuDriver.sys
2022-02-25 18:01 - 2022-02-25 18:01 - 000042056 _____ C:\WINDOWS\system32\Drivers\rkflt.sys
2022-02-25 18:01 - 2022-02-25 18:01 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2022-02-25 18:00 - 2022-02-25 18:00 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-02-25 17:35 - 2022-02-25 17:35 - 000001934 _____ C:\Users\Public\Desktop\Adaware VPN.lnk
2022-02-25 17:35 - 2022-02-25 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adaware VPN
2022-02-25 17:35 - 2022-02-25 17:35 - 000000000 ____D C:\Program Files\Adaware VPN
2022-02-25 15:54 - 2022-02-25 15:54 - 000000000 ____D C:\Program Files (x86)\EaseUS
2022-02-25 15:48 - 2022-02-25 15:49 - 064686928 _____ (EaseUS ) C:\Users\pc\Downloads\ekf_free_easeus.exe
2022-02-25 15:46 - 2022-02-25 15:46 - 001423856 _____ C:\Users\pc\Downloads\keyfinder_install_20220225.457828.exe
2022-02-25 13:35 - 2022-02-25 13:35 - 000000000 ___HD C:\$WINDOWS.~BT
2022-02-25 13:31 - 2022-02-25 13:31 - 000000000 ___HD C:\$WinREAgent
2022-02-25 13:08 - 2022-02-25 13:22 - 000003254 _____ C:\WINDOWS\system32\Tasks\Adaware Driver Manager automatic scan and new device notifications
2022-02-25 13:07 - 2022-02-25 18:19 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:14 - 000000000 ____D C:\ProgramData\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:08 - 000000000 ____D C:\Program Files (x86)\Adaware Driver Manager
2022-02-25 13:07 - 2022-02-25 13:07 - 000001267 _____ C:\Users\Public\Desktop\Adaware Driver Manager.lnk
2022-02-25 13:06 - 2022-02-25 13:07 - 014658464 _____ (adaware) C:\Users\pc\Downloads\Adaware_Driver_Manager_Installer.exe
2022-02-25 12:30 - 2022-02-25 12:34 - 000000000 ____D C:\Program Files\RAVAntivirus
2022-02-25 12:30 - 2022-02-25 12:30 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Opera Software
2022-02-25 12:26 - 2022-02-25 12:26 - 002653880 _____ ( ) C:\Users\pc\Downloads\BitlordSetup.exe
2022-02-25 07:16 - 2022-02-25 07:16 - 000007384 ____C C:\Users\pc\Documents\UsbFix-Report-01.txt micro sd music tag edtor.txt
2022-02-25 07:13 - 2022-02-25 07:13 - 000007384 ____C C:\Users\pc\Desktop\UsbFix_Report.txt
2022-02-25 07:07 - 2022-02-25 07:07 - 000001963 _____ C:\Users\Public\Desktop\UsbFix Anti-Malware.lnk
2022-02-25 07:04 - 2022-02-25 07:04 - 000000000 ____D C:\Users\pc\Downloads\com.tpc.ringpaper_104_aab_apkplz.net
2022-02-25 06:56 - 2022-02-25 06:56 - 000000000 ___DC C:\Users\pc\AppData\Local\Microvirt
2022-02-25 06:54 - 2022-02-25 06:56 - 014060640 _____ (Microvirt Software Technology Co. Ltd.) C:\Users\pc\Downloads\MEmu-setup-abroad-sdk.exe
2022-02-25 06:53 - 2022-02-25 06:53 - 012828884 _____ C:\Users\pc\Downloads\com.tpc.ringpaper_104_aab_apkplz.net.zip
2022-02-25 06:09 - 2022-02-25 06:09 - 000003322 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder Startup
2022-02-25 06:09 - 2022-02-25 06:09 - 000003320 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder Update
2022-02-25 06:09 - 2022-02-25 06:09 - 000003076 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder SkipUAC (pc)
2022-02-25 06:09 - 2022-02-25 06:09 - 000003052 _____ C:\WINDOWS\system32\Tasks\iTop Screen Recorder UAC
2022-02-25 06:09 - 2022-02-25 06:09 - 000001033 _____ C:\Users\Public\Desktop\iTop Screen Recorder.lnk
2022-02-25 06:09 - 2022-02-25 06:09 - 000000000 ___DC C:\Users\pc\AppData\LocalLow\iTop Screen Recorder
2022-02-25 06:09 - 2022-02-25 06:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop Screen Recorder
2022-02-25 06:08 - 2022-02-25 06:15 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2022-02-25 06:08 - 2022-02-25 06:10 - 000000000 ___DC C:\Users\pc\AppData\Roaming\iTop Screen Recorder
2022-02-25 06:02 - 2022-02-25 06:02 - 000001427 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2022-02-25 06:02 - 2022-02-25 06:02 - 000000892 _____ C:\Users\Public\Desktop\Free YouTube To MP3 Converter.lnk
2022-02-25 06:02 - 2022-02-25 06:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2022-02-25 06:00 - 2022-02-25 06:07 - 063207736 _____ (iTop Inc. ) C:\Users\pc\Downloads\isr-setup-seo.exe
2022-02-25 05:57 - 2022-02-25 05:57 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2022-02-25 05:56 - 2022-02-25 06:05 - 000000000 ___DC C:\Users\pc\AppData\Roaming\DVDVideoSoft
2022-02-25 05:48 - 2022-02-25 05:50 - 078382464 _____ (Digital Wave Ltd ) C:\Users\pc\Desktop\FreeYouTubeToMP3Converter_4.3.67.211_o_d65b4d18-cf65-401e-aaaf-a3ffadc63b76.exe
2022-02-25 05:43 - 2022-02-25 05:44 - 000000000 ____D C:\ProgramData\Aimersoft
2022-02-25 05:43 - 2022-02-25 05:43 - 000001443 _____ C:\Users\Public\Desktop\KeepVid Music Tag Editor.lnk
2022-02-25 05:43 - 2022-02-25 05:43 - 000000000 ___DC C:\Users\pc\AppData\Local\Aimersoft
2022-02-25 05:43 - 2022-02-25 05:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeepVid
2022-02-25 05:43 - 2022-02-25 05:43 - 000000000 ____D C:\Program Files\Common Files\Aimersoft
2022-02-25 05:42 - 2022-02-25 05:42 - 000000000 ____D C:\ProgramData\KeepVid
2022-02-25 05:42 - 2022-02-25 05:42 - 000000000 ____D C:\Program Files (x86)\KeepVid
2022-02-25 05:35 - 2022-02-25 09:05 - 000000000 ____D C:\ProgramData\WinThruster
2022-02-25 05:35 - 2022-02-25 08:56 - 000000000 _____ C:\WINDOWS\system32\Tasks\WinThruster automatic scan and notifications
2022-02-25 05:34 - 2022-02-25 05:35 - 000000000 ___DC C:\Users\pc\AppData\Roaming\WinThruster
2022-02-25 05:34 - 2022-02-25 05:34 - 000000623 ____C C:\Users\pc\Desktop\WinThruster.lnk
2022-02-25 05:34 - 2022-02-25 05:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
2022-02-25 05:33 - 2022-02-25 05:33 - 006420400 _____ (Solvusoft ) C:\Users\pc\Downloads\Setup_WinThruster_2021.exe
2022-02-25 05:15 - 2022-02-25 05:41 - 019067976 _____ (KeepVid Software Co., Ltd. ) C:\Users\pc\Downloads\keepvid-music-tag-editor_full4171.exe
2022-02-25 05:11 - 2022-02-25 05:11 - 000000000 ___DC C:\Users\pc\AppData\Roaming\QtProject
2022-02-25 05:11 - 2021-03-09 18:41 - 000037336 _____ C:\WINDOWS\system32\pwdrvio.sys
2022-02-25 05:11 - 2019-11-08 10:15 - 003600896 _____ C:\WINDOWS\system32\pwNative.exe
2022-02-25 05:11 - 2019-11-08 10:15 - 000012504 _____ C:\WINDOWS\system32\pwdspio.sys
2022-02-25 05:10 - 2022-02-25 05:11 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12
2022-02-25 05:10 - 2022-02-25 05:10 - 000003270 _____ C:\WINDOWS\system32\Tasks\MiniToolPartitionWizard
2022-02-25 05:10 - 2022-02-25 05:10 - 000001061 _____ C:\Users\Public\Desktop\MiniTool Partition Wizard.lnk
2022-02-25 05:10 - 2022-02-25 05:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 12
2022-02-25 05:08 - 2022-02-25 05:09 - 002117872 _____ (MiniTool Software Limited ) C:\Users\pc\Downloads\pw1206-free-online.exe
2022-02-25 05:07 - 2022-02-25 17:44 - 000000000 ___DC C:\Users\pc\AppData\Local\CrashDumps
2022-02-25 05:01 - 2022-02-25 05:01 - 000009883 ____C C:\Users\pc\Desktop\UsbFix_Report micro sd 400go pipo w2pro.txt
2022-02-24 22:33 - 2022-02-24 22:33 - 000534081 __RST C:\QuickDiag_24_02_2022_22_33_47.txt
2022-02-24 22:09 - 2022-02-24 22:33 - 000534081 _RSOT C:\Users\pc\Desktop\QuickDiag_24_02_2022_22_33_47.txt
2022-02-24 22:08 - 2022-02-24 22:33 - 000000000 ____D C:\QuickDiag
2022-02-24 22:08 - 2022-02-24 22:08 - 005321112 _____ (SosVirus) C:\Users\pc\Downloads\quickdiag_V5_29.10.19.1.exe
2022-02-24 22:07 - 2022-02-24 22:10 - 000000000 ____D C:\ProgramData\PC Cleaner
2022-02-24 22:07 - 2022-02-24 22:07 - 000003152 _____ C:\WINDOWS\system32\Tasks\PC Cleaner automatic scan and notifications
2022-02-24 22:07 - 2022-02-24 22:07 - 000000431 ____C C:\Users\pc\Desktop\PC Cleaner.lnk
2022-02-24 22:07 - 2022-02-24 22:07 - 000000000 ___DC C:\Users\pc\AppData\Roaming\PC Cleaner
2022-02-24 22:07 - 2022-02-24 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Cleaner
2022-02-24 22:05 - 2022-02-24 22:06 - 006584584 _____ (PC Helpsoft ) C:\Users\pc\Downloads\PC_Cleaner_5352.exe
2022-02-24 21:45 - 2022-02-24 21:45 - 000005882 ____C C:\Users\pc\Documents\UsbFix-Report-01.txt android disk.txt
2022-02-24 21:45 - 2022-02-24 21:45 - 000001578 ____C C:\Users\pc\Desktop\Pre_Scan_Restore.lnk
2022-02-24 21:45 - 2022-02-24 21:45 - 000001230 ____C C:\Users\pc\Desktop\Pre_Scan_Donate.lnk
2022-02-24 21:45 - 2022-02-24 21:45 - 000000000 ____D C:\Pre_Scan
2022-02-24 21:42 - 2022-02-25 07:05 - 000000000 ____D C:\Program Files (x86)\UsbFix
2022-02-24 21:42 - 2022-02-24 21:42 - 000003262 _____ C:\WINDOWS\system32\Tasks\UsbFix Monitor
2022-02-24 21:36 - 2022-02-24 21:37 - 003082136 _____ (SosVirus) C:\Users\pc\Desktop\pre-scan_V9_18.10.19.1.exe
2022-02-24 21:36 - 2022-02-24 21:36 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\Non confirmé 971560.crdownload
2022-02-24 21:36 - 2022-02-24 21:36 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\Non confirmé 686620.crdownload
2022-02-24 21:34 - 2022-02-24 21:28 - 004860461 ____C (SOSVirus) C:\Users\pc\Desktop\UsbFix_Premium.exe
2022-02-24 21:28 - 2022-02-24 21:28 - 004860461 _____ (SOSVirus) C:\Users\pc\Downloads\UsbFix_Premium.exe
2022-02-24 21:25 - 2022-02-24 21:25 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 11
2022-02-24 21:25 - 2022-02-24 21:25 - 000000000 ____D C:\ProgramData\Registry First Aid
2022-02-24 21:22 - 2022-02-24 21:23 - 009368888 _____ (RoseCitySoftware ) C:\Users\pc\Downloads\rfasetup (1).exe
2022-02-24 21:15 - 2022-02-24 21:15 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-120822950-1225855894-879144086-1001
2022-02-24 21:14 - 2022-02-24 21:15 - 000002377 ____C C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-24 21:10 - 2022-02-24 21:10 - 000000258 __RSH C:\ProgramData\ntuser.pol
2022-02-24 21:09 - 2022-02-24 21:10 - 001380408 _____ (Akeo Consulting) C:\Users\pc\Downloads\rufus-3.17.exe
2022-02-24 21:09 - 2022-02-24 21:10 - 001380408 _____ (Akeo Consulting) C:\Users\pc\Downloads\rufus-3.17 (1).exe
2022-02-24 21:05 - 2022-02-24 21:05 - 000000000 ___HD C:\$GetCurrent
2022-02-24 21:04 - 2022-02-25 17:37 - 000000000 ____D C:\ProgramData\Adaware VPN
2022-02-24 21:04 - 2022-02-25 17:35 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Adaware VPN
2022-02-24 21:03 - 2022-02-24 21:03 - 000000814 ____C C:\Users\pc\Desktop\Windows 10 Update Assistant.lnk
2022-02-08 20:04 - 2022-02-08 20:04 - 000003401 ____C C:\Users\pc\Desktop\AdwCleaner[C00].txt
2022-02-08 19:57 - 2022-02-08 20:03 - 000000000 ____D C:\AdwCleaner
2022-02-08 19:55 - 2022-02-08 19:57 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\pre-scan_V9_18.10.19.1.exe
2022-02-08 19:53 - 2022-02-08 19:56 - 008540344 _____ (Malwarebytes) C:\Users\pc\Downloads\adwcleaner_8.3.1.exe
2022-02-08 13:51 - 2022-02-08 13:51 - 000000964 _____ C:\Users\Public\Desktop\Immunet 3.lnk
2022-02-08 13:51 - 2022-02-08 13:51 - 000000000 ____D C:\ProgramData\Immunet
2022-02-08 13:46 - 2022-02-24 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2022-02-08 13:46 - 2022-02-24 21:49 - 000000000 ____D C:\Program Files\RogueKiller
2022-02-08 13:46 - 2022-02-08 15:42 - 000000000 ____D C:\ProgramData\RogueKiller
2022-02-08 13:46 - 2022-02-08 13:46 - 000000912 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2022-02-08 13:43 - 2022-02-25 19:08 - 000000000 ____D C:\Program Files\Immunet
2022-02-08 13:43 - 2022-02-08 13:43 - 000329800 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000100048 _____ (Sourcefire, Inc.) C:\WINDOWS\system32\Drivers\ImmunetNetworkMonitor.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000058064 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\immunetprotect.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000032976 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\immunetselfprotect.sys
2022-02-08 13:43 - 2022-02-08 13:43 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2022-02-08 13:43 - 2022-02-08 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2022-02-08 13:40 - 2022-02-08 13:44 - 042051760 _____ (Adlice Software ) C:\Users\pc\Downloads\RogueKiller_setup.exe
2022-02-08 13:30 - 2022-02-08 13:30 - 000000916 _____ C:\Users\Public\Desktop\Voodoo Shield.lnk
2022-02-08 13:30 - 2022-02-08 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VoodooShield
2022-02-08 13:30 - 2018-06-25 08:48 - 000029752 _____ (VoodooSoft, LLC) C:\WINDOWS\system32\Drivers\vsscanner.sys
2022-02-08 13:28 - 2022-02-25 18:09 - 000000000 ____D C:\ProgramData\VoodooShield
2022-02-08 13:28 - 2022-02-08 13:31 - 000000000 ____D C:\Program Files\VoodooShield
2022-02-08 13:26 - 2022-02-08 13:27 - 031875272 _____ (VoodooSoft, LLC ) C:\Users\pc\Downloads\InstallVoodooShield.exe
2022-02-08 13:26 - 2022-02-08 13:27 - 000539448 _____ (Sourcefire, Inc.) C:\Users\pc\Downloads\ImmunetSetup-3.1.13.9666.exe
2022-02-08 13:15 - 2022-02-08 13:15 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Thinstall
2022-02-08 13:15 - 2022-02-08 13:15 - 000000000 ___DC C:\Users\pc\AppData\Local\Thinstall
2022-02-08 13:13 - 2022-02-08 13:13 - 000000000 ____D C:\Users\pc\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable
2022-02-08 13:12 - 2022-02-08 13:12 - 000001143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2022-02-08 13:12 - 2022-02-08 13:12 - 000001097 _____ C:\Users\Public\Desktop\WinRAR.lnk
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ___DC C:\Users\pc\AppData\Roaming\WinRAR
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ___DC C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-08 13:12 - 2022-02-08 13:12 - 000000000 ____D C:\Program Files (x86)\WinRAR
2022-02-08 13:11 - 2022-02-08 13:11 - 003323688 _____ (Alexander Roshal) C:\Users\pc\Downloads\winrar-x32-610fr.exe
2022-02-08 13:06 - 2022-02-08 13:08 - 037005470 _____ C:\Users\pc\Downloads\EaseUS.Todo.PCTrans.Pro.Tech.13.0.20211223.Portable.rar
2022-02-08 12:55 - 2022-02-08 12:55 - 000000000 ___DC C:\Users\pc\AppData\Local\OneDrive
2022-02-06 22:38 - 2022-02-25 17:59 - 000000000 ____D C:\Program Files (x86)\Everything
2022-02-06 22:38 - 2022-02-06 22:38 - 000001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything.lnk
2022-02-06 22:38 - 2022-02-06 22:38 - 000001111 _____ C:\Users\Public\Desktop\Everything.lnk
2022-02-06 22:32 - 2022-02-06 22:32 - 001710728 _____ () C:\Users\pc\Downloads\Everything-1.4.1.1015.x86-Setup.exe
2022-02-06 22:21 - 2022-02-06 22:21 - 000003650 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-02-06 22:20 - 2022-02-06 22:43 - 000000000 ____D C:\WINDOWS\ERUNT
2022-02-06 22:09 - 2022-02-06 22:09 - 000001185 ____C C:\Users\pc\Documents\New BCUninstaller Junk Export.txt
2022-02-06 22:09 - 2022-02-06 22:09 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-06_22-09-34
2022-02-04 03:54 - 2022-02-06 22:01 - 000001091 ____C C:\Users\pc\Desktop\Drive_Shortcut.lnk
2022-02-04 03:53 - 2022-02-04 03:53 - 000000336 ____C C:\Users\pc\Desktop\WUCU.txt
2022-02-04 03:49 - 2022-02-04 03:50 - 000942320 _____ (SosVirus) C:\Users\pc\Downloads\WindowsKeyFinder.exe
2022-02-04 03:49 - 2022-02-04 03:50 - 000942320 _____ (SosVirus) C:\Users\pc\Downloads\Non confirmé 416789.crdownload
2022-02-04 03:48 - 2022-02-04 03:49 - 000908016 _____ (SosVirus) C:\Users\pc\Downloads\TaskbarSize11.exe
2022-02-04 03:46 - 2022-02-04 03:47 - 000916208 _____ (g3n-h@ckm@n) C:\Users\pc\Downloads\Drive_Shortcut.exe
2022-02-04 03:42 - 2022-02-04 03:43 - 000974576 _____ (SOSVirus) C:\Users\pc\Downloads\WUCU.exe
2022-02-04 03:22 - 2022-02-04 03:22 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-04_03-22-58
2022-02-04 03:16 - 2022-02-04 03:16 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-04_03-16-01
2022-02-01 07:00 - 2022-02-01 07:00 - 000000000 ___DC C:\Users\pc\Documents\BCU Backup 2022-02-01_07-00-24
2022-02-01 06:54 - 2022-02-01 06:54 - 000000000 ___RD C:\Users\pc\Recorded Calls
2022-01-30 04:02 - 2022-01-30 04:02 - 000000000 ____D C:\ProgramData\COMODO
2022-01-29 22:31 - 2022-01-29 22:32 - 015346080 _____ (adaware) C:\Users\pc\Downloads\adawarevpn.exe
2022-01-29 21:40 - 2022-01-29 21:40 - 000000000 ___DC C:\Users\pc\AppData\Local\NuGet
2022-01-29 21:17 - 2022-01-29 21:52 - 000000000 ____D C:\ProgramData\chocolatey
2022-01-29 21:04 - 2022-01-29 21:04 - 006812280 _____ (Avanquest ) C:\Users\pc\Downloads\OneSafe_PC_Cleaner_D (1).exe
2022-01-29 21:02 - 2022-01-29 21:03 - 006812280 _____ (Avanquest ) C:\Users\pc\Downloads\OneSafe_PC_Cleaner_D.exe
2022-01-29 20:46 - 2022-01-29 20:48 - 009368888 _____ (RoseCitySoftware ) C:\Users\pc\Downloads\rfasetup.exe
2022-01-29 12:16 - 2022-01-29 12:16 - 000000928 _____ C:\Users\Public\Desktop\BCUninstaller.lnk
2022-01-29 12:16 - 2022-01-29 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCUninstaller
2022-01-29 12:09 - 2022-01-29 12:27 - 000000000 ____D C:\Program Files\BCUninstaller
2022-01-28 23:19 - 2022-01-28 23:19 - 000039920 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys
2022-01-28 23:18 - 2022-02-04 03:00 - 000000951 _____ C:\WINDOWS\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job
2022-01-28 23:18 - 2022-02-04 03:00 - 000000765 _____ C:\WINDOWS\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}.job
2022-01-28 23:18 - 2022-02-01 06:57 - 000003562 _____ C:\WINDOWS\system32\Tasks\EPSON XP-710 Series Update {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}
2022-01-28 23:18 - 2022-02-01 06:57 - 000003384 _____ C:\WINDOWS\system32\Tasks\EPSON XP-710 Series Invitation {9D10E9E5-7FD9-4BFF-83FA-951772CB2824}
2022-01-28 23:18 - 2022-01-28 23:18 - 000000000 ____D C:\Program Files\Common Files\EPSON
2022-01-28 23:17 - 2022-01-31 23:18 - 000000000 ____D C:\ProgramData\EPSON
2022-01-28 23:16 - 2015-01-16 04:16 - 000179712 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ILMBLPE.DLL
2022-01-28 23:16 - 2015-01-16 04:16 - 000083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_ID4BLPE.DLL
2022-01-28 23:16 - 2015-01-16 04:16 - 000010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2022-01-28 23:13 - 2022-01-28 23:15 - 015166368 _____ (adaware) C:\Users\pc\Downloads\adawaresafebrowser.exe
2022-01-28 23:01 - 2022-01-28 23:01 - 000001064 ____C C:\Users\pc\Desktop\Internet Explorer.lnk
2022-01-28 18:42 - 2022-01-28 18:46 - 014532512 _____ (adaware) C:\Users\pc\Downloads\Adaware_protect_Installer.exe
2022-01-28 09:08 - 2022-01-28 09:08 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8 (1).exe
2022-01-28 08:54 - 2022-01-28 08:54 - 000768140 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-desktop-launcher-vipad.exe
2022-01-28 08:53 - 2022-01-28 08:53 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8.exe
2022-01-28 08:50 - 2022-01-28 08:50 - 000914782 _____ C:\Users\pc\Downloads\fidelizer.zip
2022-01-28 06:43 - 2022-02-25 09:34 - 000004158 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E08EDB29-CD7B-4FBF-8971-4AAE2577D114}
2022-01-28 06:42 - 2006-10-11 12:45 - 000073728 _____ C:\WINDOWS\SysWOW64\pv.exe
2022-01-28 06:20 - 2022-01-28 06:20 - 000820150 _____ (Windows X) C:\Users\pc\Downloads\LiveTuner 1.0.exe
2022-01-28 06:13 - 2022-01-28 06:15 - 000000000 ____D C:\ProgramData\iTop
2022-01-27 10:28 - 2022-01-27 10:28 - 003292824 _____ (Nicolas Coolman) C:\Users\pc\Downloads\Non confirmé 318578.crdownload
2022-01-27 10:17 - 2022-01-27 10:17 - 000532480 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2022-01-27 10:17 - 2022-01-27 10:17 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2022-01-27 10:17 - 2022-01-27 10:17 - 000028672 _____ C:\WINDOWS\system32\config\SAM.iobit
2022-01-27 10:16 - 2022-01-27 10:17 - 102715392 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2021-12-19 07:02 - 2022-02-24 21:15 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-120822950-1225855894-879144086-1001
==================== Three months (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-25 18:50 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-25 18:18 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2022-02-25 18:08 - 2021-05-23 09:36 - 000743704 _____ C:\WINDOWS\system32\perfh010.dat
2022-02-25 18:08 - 2021-05-23 09:36 - 000138032 _____ C:\WINDOWS\system32\perfc010.dat
2022-02-25 18:08 - 2018-06-25 04:30 - 000734274 _____ C:\WINDOWS\system32\perfh019.dat
2022-02-25 18:08 - 2018-06-25 04:30 - 000143698 _____ C:\WINDOWS\system32\perfc019.dat
2022-02-25 18:08 - 2018-06-25 04:24 - 000750950 _____ C:\WINDOWS\system32\perfh00A.dat
2022-02-25 18:08 - 2018-06-25 04:24 - 000147412 _____ C:\WINDOWS\system32\perfc00A.dat
2022-02-25 18:08 - 2018-06-25 04:18 - 000704720 _____ C:\WINDOWS\system32\perfh007.dat
2022-02-25 18:08 - 2018-06-25 04:18 - 000142040 _____ C:\WINDOWS\system32\perfc007.dat
2022-02-25 18:08 - 2018-06-25 04:13 - 000417860 _____ C:\WINDOWS\system32\prfh0404.dat
2022-02-25 18:08 - 2018-06-25 04:13 - 000125590 _____ C:\WINDOWS\system32\prfc0404.dat
2022-02-25 18:08 - 2018-06-25 04:08 - 000404906 _____ C:\WINDOWS\system32\prfh0804.dat
2022-02-25 18:08 - 2018-06-25 04:08 - 000124978 _____ C:\WINDOWS\system32\prfc0804.dat
2022-02-25 18:08 - 2018-05-26 05:10 - 005296028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-25 18:00 - 2020-09-29 19:57 - 000000000 __SHD C:\Users\pc\IntelGraphicsProfiles
2022-02-25 18:00 - 2018-05-26 04:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-25 18:00 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-25 17:59 - 2020-09-29 19:57 - 000000000 ____D C:\Users\pc
2022-02-25 17:25 - 2018-05-26 04:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-25 13:17 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2022-02-25 05:58 - 2021-05-24 21:32 - 000000000 ___DC C:\Users\pc\AppData\Local\D3DSCache
2022-02-25 05:56 - 2021-05-22 20:30 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-24 21:47 - 2021-05-25 09:32 - 000000000 ____D C:\WINDOWS\Panther
2022-02-24 21:18 - 2021-05-28 15:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-24 21:17 - 2021-05-23 07:23 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-24 21:03 - 2021-05-23 03:56 - 000000826 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk
2022-02-24 21:02 - 2021-05-23 03:56 - 000000000 ____D C:\Windows10Upgrade
2022-02-08 20:03 - 2021-06-13 09:24 - 000000000 ____D C:\ProgramData\BSD
2022-02-08 19:12 - 2021-05-25 09:32 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-08 12:53 - 2021-05-24 08:45 - 000000000 ___DC C:\Users\pc\Documents\iFun Screen Recorder
2022-02-08 12:45 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-06 22:22 - 2021-05-22 19:44 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-06 22:22 - 2021-05-22 19:44 - 000002270 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-04 03:13 - 2020-09-29 19:57 - 000000000 ___DC C:\Users\pc\AppData\Local\Packages
2022-02-04 02:59 - 2021-06-01 07:45 - 000000000 ____D C:\ProgramData\ProductData
2022-02-04 02:59 - 2021-06-01 07:43 - 000000000 ___DC C:\Users\pc\AppData\Roaming\IObit
2022-02-04 02:59 - 2021-05-24 08:45 - 000000000 ___DC C:\Users\pc\AppData\LocalLow\IObit
2022-02-04 02:59 - 2021-05-24 08:45 - 000000000 ____D C:\ProgramData\IObit
2022-02-01 10:37 - 2021-06-01 07:52 - 000000000 ____D C:\ProgramData\iTop VPN
2022-02-01 07:00 - 2021-05-22 20:47 - 000000000 ___DC C:\Users\pc\AppData\Local\Avira
2022-02-01 07:00 - 2021-05-22 20:30 - 000000000 ____D C:\Program Files (x86)\Avira
2022-02-01 06:57 - 2021-05-22 19:24 - 000003468 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-01 06:57 - 2021-05-22 19:24 - 000003244 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-01 06:53 - 2021-05-30 16:12 - 000000000 ____D C:\Program Files (x86)\Magoshare
2022-02-01 06:18 - 2021-05-22 20:30 - 000000000 ____D C:\ProgramData\Avira
2022-02-01 06:18 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-01-30 04:13 - 2018-05-26 04:56 - 000242144 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-29 00:02 - 2020-09-29 19:57 - 000000000 ___DC C:\Users\pc\AppData\Local\VirtualStore
2022-01-28 06:14 - 2021-05-24 08:45 - 000000000 ____D C:\Program Files (x86)\iFun
2022-01-27 10:59 - 2021-06-01 07:52 - 000000000 ____D C:\Program Files (x86)\iTop VPN
2022-01-27 10:59 - 2018-05-26 05:07 - 000002826 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
==================== SigCheckExt =========================
2008-05-30 12:11 - 2008-05-30 12:11 - 000000000 _____ C:\WINDOWS\system32\d3dx9_38.dll
2018-05-09 07:34 - 2015-12-11 22:19 - 000189440 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4364.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 003404288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libssl-1_1-x64.dll
2022-02-25 05:11 - 2019-11-08 10:15 - 003600896 _____ C:\WINDOWS\system32\pwNative.exe
2021-05-31 14:34 - 1987-12-19 22:00 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2018-05-26 05:42 - 2014-04-17 17:54 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2021-05-31 14:34 - 1987-12-19 22:00 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libcrypto-1_1.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001276928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libssl-1_1.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL
2021-05-31 14:34 - 1987-12-19 22:00 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2022-01-28 06:42 - 2006-10-11 12:45 - 000073728 _____ C:\WINDOWS\SysWOW64\pv.exe
2021-05-31 14:34 - 1987-12-19 22:00 - 000276992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\ssleay32.dll
2021-05-31 14:34 - 1987-12-19 22:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2022-02-24 21:36 - 2022-02-24 21:37 - 003082136 _____ (SosVirus) C:\Users\pc\Desktop\pre-scan_V9_18.10.19.1.exe
2022-02-24 21:34 - 2022-02-24 21:28 - 004860461 ____C (SOSVirus) C:\Users\pc\Desktop\UsbFix_Premium.exe
2022-02-04 03:46 - 2022-02-04 03:47 - 000916208 _____ (g3n-h@ckm@n) C:\Users\pc\Downloads\Drive_Shortcut.exe
2022-02-25 18:52 - 2022-02-25 18:55 - 002312192 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2022-01-28 06:20 - 2022-01-28 06:20 - 000820150 _____ (Windows X) C:\Users\pc\Downloads\LiveTuner 1.0.exe
2022-02-08 19:55 - 2022-02-08 19:57 - 003082136 _____ (SosVirus) C:\Users\pc\Downloads\pre-scan_V9_18.10.19.1.exe
2022-02-24 22:08 - 2022-02-24 22:08 - 005321112 _____ (SosVirus) C:\Users\pc\Downloads\quickdiag_V5_29.10.19.1.exe
2022-02-04 03:48 - 2022-02-04 03:49 - 000908016 _____ (SosVirus) C:\Users\pc\Downloads\TaskbarSize11.exe
2022-02-24 21:28 - 2022-02-24 21:28 - 004860461 _____ (SOSVirus) C:\Users\pc\Downloads\UsbFix_Premium.exe
2022-01-28 08:54 - 2022-01-28 08:54 - 000768140 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-desktop-launcher-vipad.exe
2022-01-28 09:08 - 2022-01-28 09:08 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8 (1).exe
2022-01-28 08:53 - 2022-01-28 08:53 - 001245702 _____ (Lee-Soft.com) C:\Users\pc\Downloads\windows-start-menu-vistart-8.exe
2022-02-04 03:49 - 2022-02-04 03:50 - 000942320 _____ (SosVirus) C:\Users\pc\Downloads\WindowsKeyFinder.exe
2022-02-04 03:42 - 2022-02-04 03:43 - 000974576 _____ (SOSVirus) C:\Users\pc\Downloads\WUCU.exe
2022-02-25 18:32 - 2022-02-25 18:32 - 003479704 _____ (Nicolas Coolman) C:\Users\pc\Downloads\ZHPSuite.exe
==================== FCheck ================================
(If an entry is included in the fixlist, the file/folder will be moved.)
FCheck: C:\WINDOWS\system32\d3dx9_38.dll [2008-05-30] <==== ATTENTION (zero byte File/Folder)
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== BCD ================================
Firmware Boot Manager
---------------------
identifier {fwbootmgr}
displayorder {bootmgr}
{ac1577e4-d671-11ea-95db-806e6f6e6963}
{f88e1a27-d679-11ea-9f9d-936676110ab0}
timeout 2
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale en-US
inherit {globalsettings}
default {current}
resumeobject {dd31d7c0-d679-11ea-9f9d-936676110ab0}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Firmware Application (101fffff)
-------------------------------
identifier {ac1577e4-d671-11ea-95db-806e6f6e6963}
device partition=\Device\HarddiskVolume1
path \EFI\RECOVERY\BOOT\BOOTMGFW.EFI
description Windows Recovery
Firmware Application (101fffff)
-------------------------------
identifier {f88e1a27-d679-11ea-9f9d-936676110ab0}
description UEFI: Built-in EFI Shell
Windows Boot Loader
-------------------
identifier {1e2ce58a-d673-11ea-95db-ac5d5c5d3902}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{1e2ce58b-d673-11ea-95db-ac5d5c5d3902}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale en-US
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{1e2ce58b-d673-11ea-95db-ac5d5c5d3902}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale en-US
loadoptions ENABLE_INTEGRITY_CHECKS
inherit {bootloadersettings}
recoverysequence {1e2ce58a-d673-11ea-95db-ac5d5c5d3902}
displaymessageoverride Recovery
recoveryenabled Yes
testsigning No
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {dd31d7c0-d679-11ea-9f9d-936676110ab0}
nx OptIn
bootmenupolicy Standard
Resume from Hibernate
---------------------
identifier {dd31d7c0-d679-11ea-9f9d-936676110ab0}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale en-US
inherit {resumeloadersettings}
recoverysequence {1e2ce58a-d673-11ea-95db-ac5d5c5d3902}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Windows Memory Diagnostic
locale en-US
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {1e2ce58b-d673-11ea-95db-ac5d5c5d3902}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== End of FRST.txt ========================