Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 30-06-2019 Ran by JUNI (administrator) on JUNI-PC (Acer Aspire 5630) (01-07-2019 23:17:40) Running from C:\Users\JUNI\Downloads Loaded Profiles: JUNI (Available Profiles: JUNI) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (FoxxApp/PortableAppZ.ru) [File not signed] C:\Users\JUNI\Downloads\Revo.Uninstaller.Pro.4.1.0.Portable\Revo.Uninstaller.Pro.4.1.0.Portable\RevoUninstallerPROPortable.exe (FoxxApp/PortableAppZ.ru) [File not signed] C:\Users\JUNI\Downloads\Revo.Uninstaller.Pro.4.1.0.Portable\Revo.Uninstaller.Pro.4.1.0.Portable\RevoUninstallerPROPortable.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Lagerkvist Teknisk Radgivning i Boras HB -> Olof Lagerkvist) C:\Windows\System32\imdsksvc.exe (Microsoft Corporation) [File not signed] C:\Windows\explorer.exe (Microsoft Corporation) [File not signed] C:\Windows\explorer.exe (Microsoft Corporation) [File not signed] C:\Windows\servicing\TrustedInstaller.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\audiodg.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\cmd.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\conhost.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\dllhost.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\taskmgr.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\wbem\WmiPrvSE.exe (Microsoft Corporation) [File not signed] C:\Windows\System32\wuauclt.exe (Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Nir Sofer -> NirSoft) C:\Users\JUNI\Downloads\fulleventlogview\FullEventLogView.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE (Shanghai Oriental Webcasting Co. Ltd. -> www.ejie.me) C:\Program Files\Clover\Clover.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (UltraDefrag Development Team) [File not signed] C:\Program Files\UltraDefrag\ultradefrag.exe (VS Revo Group Ltd. -> VS Revo Group) C:\Users\JUNI\Downloads\Revo.Uninstaller.Pro.4.1.0.Portable\Revo.Uninstaller.Pro.4.1.0.Portable\App\RevoUninstaller\RevoUninPro.exe (Wen Jia Liu -> wj32) C:\Users\JUNI\Downloads\processhacker-2.39-bin\x86\ProcessHacker.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2299176 2019-03-06] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [688128 2009-07-14] (Microsoft Corporation) [File not signed] HKLM\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [414176 2019-04-18] (Power Software Limited -> Power Software Ltd) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [54272 2010-11-20] (Microsoft Corporation) [File not signed] HKLM\...\Winlogon: [Shell] C:\Windows\explorer.exe [3000320 2019-01-25] (Microsoft Corporation) [File not signed] HKLM\...\Policies\Explorer: [NoThumbnailCache] 1 HKLM\...\Policies\Explorer: [DisableThumbnailsOnNetworkFolders] 1 HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKLM\ DisallowedCertificates: 1990649205B55EAB5D692E9EDB1BE0DDD3B037DE (U) HKLM\ DisallowedCertificates: C597D4E7FF9CE5BD3EC321C11827FCA9294A6BA1 (U) HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [121344 2009-07-14] (Microsoft Corporation) [File not signed] HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [121344 2009-07-14] (Microsoft Corporation) [File not signed] HKU\S-1-5-21-3580717453-3749451280-948394680-1001\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-21-3580717453-3749451280-948394680-1001\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKU\S-1-5-21-3580717453-3749451280-948394680-1001\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{89820200-ECBD-11cf-8B85-00AA005B4340}] -> regsvr32.exe /s /n /i:U C:\Windows\System32\shell32.dll ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0E25C489-F0C5-4A9C-A4C9-0951DCAB8957} - \GoogleUpdateTaskMachineCore -> No File <==== ATTENTION Task: {12F6291C-D10E-4383-BD6F-1C247CF17B25} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => c:\program files\windows defender\MpCmdRun.exe [184832 2009-07-14] (Microsoft Corporation) [File not signed] Task: {23C27CA2-0FCE-41ED-9769-5A3D1830B5EB} - System32\Tasks\TweakPowerSkipUAC => C:\USERS\JUNI\DOWNLOADS\TWEAKPOWERX32\TweakPower.exe [4116048 2019-06-26] (Kurt Zimmermann -> Kurt Zimmermann) [File not signed] Task: {2C59ECAF-3A27-4640-9F4B-519B05BDD70F} - \Microsoft\Windows\MUI\LPRemove -> No File <==== ATTENTION Task: {2D7E6FD3-CA64-4866-B875-C0AB798AA118} - System32\Tasks\Microsoft\Windows\PLA\New Data Collector Set => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "New Data Collector Set" "$(Arg0)" Task: {43F79E9D-2487-4B5C-A99D-818BCC382471} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5444505E-1D71-4B51-BF26-6878C670B4A0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16667424 2019-06-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5B184694-64C3-4633-94C5-945B3FA561D6} - System32\Tasks\Microsoft\Windows\WindowsBackup\ConfigNotification => C:\Windows\System32\sdclt.exe [1158656 2010-11-20] (Microsoft Corporation) [File not signed] Task: {60158C7A-6808-42CD-95EE-AFD9A57925DB} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\Windows\system32\appidpolicyconverter.exe [125440 2019-01-25] (Microsoft Corporation) [File not signed] Task: {6B7AC694-8D6D-481B-9DD8-2A3A741ADA6D} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => C:\Windows\System32\powercfg.exe [87040 2009-07-14] (Microsoft Corporation) [File not signed] Task: {72CD34A2-84C1-44F3-BB62-652CADC2BAEC} - System32\Tasks\GU5SkipUAC => C:\Program Files\Glary Utilities 5\Integrator.exe [915952 2019-06-24] (Glarysoft LTD -> Glarysoft Ltd) Task: {731E9C62-95B5-4C8C-AB64-4CC591C9FF5B} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [129536 2009-07-14] (Microsoft Corporation) [File not signed] Task: {7D3C7871-A917-4EF0-82E8-5F0A96423051} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\BthUdTask.exe [62976 2009-07-14] (Microsoft Corporation) [File not signed] Task: {A108E0BF-B723-4636-8AE1-9F50BF78655B} - System32\Tasks\RunUninstallTool_SkipUac => C:\Program Files\Uninstall Tool\UninstallTool.exe [3844168 2019-05-17] (CrystalBit Solutions -> CrystalIDEA Software) [File not signed] Task: {A10EC8A8-7D45-4A77-8E26-BFE5135C6DEF} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\Windows\system32\DFDWiz.exe [96256 2009-07-14] (Microsoft Corporation) [File not signed] Task: {A6394592-54CE-4E93-8D64-1A068F462632} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\Windows\System32\wsqmcons.exe [282624 2010-11-20] (Microsoft Corporation) [File not signed] Task: {B08BC448-9239-4C5A-B02F-AC2E5F151F65} - \GoogleUpdateTaskMachineUA -> No File <==== ATTENTION Task: {B9BEE219-C29E-4310-819C-147A5A0E045E} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\Windows\system32\defrag.exe [203776 2009-07-14] (Microsoft Corp.) [File not signed] Task: {BDF8FB55-F569-4284-BB7B-36863718A615} - System32\Tasks\User_Feed_Synchronization-{30085BD1-DF23-4034-A0DD-A4C8A0D99B2F} => C:\Windows\system32\msfeedssync.exe [40448 2019-01-25] (Microsoft Corporation) [File not signed] Task: {C90440A0-6D8F-423F-8F42-83EEF05CE708} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\Windows\system32\appidcertstorecheck.exe [44544 2019-01-25] (Microsoft Corporation) [File not signed] Task: {D21F6024-191F-4454-BBBC-09A650DA2549} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => C:\Windows\system32\aitagent.exe [147456 2010-11-20] (Microsoft Corporation) [File not signed] Task: {DE8699D2-8A05-42F7-8A85-5162AF47D26A} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [81920 2019-01-25] (Microsoft Corporation) [File not signed] <==== ATTENTION Task: {F93C7104-998A-4A38-B935-775A3138B3C3} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotifications.exe [117248 2009-07-14] (Microsoft Corporation) [File not signed] Task: {FB2ED1D4-8A5D-4390-A006-0C9E6E3183CA} - \GlaryUpdate 5 -> No File <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{7D640BE7-A84B-484E-99B0-073CBC135DB3}: [DhcpNameServer] 172.20.10.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKLM -> DefaultScope value is missing BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files\Clover\TabHelper32.dll [2019-06-22] (Shanghai Oriental Webcasting Co. Ltd. -> EJIE Technology) Handler: AutorunsDisabled\belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - No File [] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.nl/ CHR Session Restore: Default -> is enabled. CHR Profile: C:\Users\JUNI\AppData\Local\Google\Chrome\User Data\Default [2019-07-01] CHR Extension: (Google Drive) - C:\Users\JUNI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-22] CHR Extension: (YouTube) - C:\Users\JUNI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-22] CHR Extension: (Betalingen via Chrome Web Store) - C:\Users\JUNI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-06-22] CHR Extension: (Gmail) - C:\Users\JUNI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-22] CHR Extension: (Chrome Media Router) - C:\Users\JUNI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-29] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) HKLM\SYSTEM\CurrentControlSet\Services\AscFileFilter <==== ATTENTION (Rootkit!) S3 ALG; C:\Windows\System32\alg.exe [87040 2009-07-14] (Microsoft Corporation) [File not signed] S3 COMSysApp; C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [34816 2009-07-14] (Microsoft Corporation) [File not signed] S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [132608 2019-01-25] (Microsoft Corporation) [File not signed] R2 ImDskSvc; C:\Windows\system32\imdsksvc.exe [18528 2018-05-11] (Lagerkvist Teknisk Radgivning i Boras HB -> Olof Lagerkvist) S4 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5394136 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) S4 MSDTC; C:\Windows\System32\msdtc.exe [161792 2009-07-14] (Microsoft Corporation) [File not signed] S3 msiserver; C:\Windows\System32\msiexec.exe /V [100864 2019-01-25] (Microsoft Corporation) [File not signed] S3 RpcLocator; C:\Windows\system32\locator.exe [36864 2009-07-14] (Microsoft Corporation) [File not signed] S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [40448 2009-07-14] (Microsoft Corporation) [File not signed] S4 Spooler; C:\Windows\System32\spoolsv.exe [345600 2019-01-25] (Microsoft Corporation) [File not signed] S2 sppsvc; C:\Windows\system32\sppsvc.exe [3207168 2010-11-20] (Microsoft Corporation) [File not signed] S4 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [72016 2017-05-05] (Code Sector -> Code Sector) R2 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [232448 2010-11-20] (Microsoft Corporation) [File not signed] S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [63488 2009-07-14] (Microsoft Corporation) [File not signed] S3 vds; C:\Windows\System32\vds.exe [481280 2010-11-20] (Microsoft Corporation) [File not signed] S3 VSS; C:\Windows\system32\vssvc.exe [1053184 2010-11-20] (Microsoft Corporation) [File not signed] S3 wbengine; C:\Windows\system32\wbengine.exe [1230848 2010-11-20] (Microsoft Corporation) [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2019-01-25] (Microsoft Windows -> Microsoft Corporation) S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [163840 2009-07-14] (Microsoft Corporation) [File not signed] ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 ampa; C:\Windows\system32\ampa.sys [35760 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 AWEAlloc; C:\Windows\System32\DRIVERS\awealloc.sys [17592 2018-05-11] (Lagerkvist Teknisk Radgivning i Boras HB -> Olof Lagerkvist) S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [33200 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2014-12-21] (Elaborate Bytes AG -> Elaborate Bytes AG) R3 EMSCR; C:\Windows\System32\DRIVERS\EMS7SK.sys [68096 2007-08-12] (Microsoft Windows Hardware Compatibility Publisher -> ENE Technology Inc.) R3 ESDCR; C:\Windows\System32\DRIVERS\ESD7SK.sys [46592 2007-04-11] (Microsoft Windows Hardware Compatibility Publisher -> ENE Technology Inc.) R3 ESMCR; C:\Windows\System32\DRIVERS\ESM7SK.sys [63488 2007-04-11] (Microsoft Windows Hardware Compatibility Publisher -> ENE Technology Inc.) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [25864 2019-06-22] (Glarysoft LTD -> Glarysoft Ltd) R2 ImDisk; C:\Windows\System32\DRIVERS\imdisk.sys [41024 2018-05-11] (Lagerkvist Teknisk Radgivning i Boras HB -> Olof Lagerkvist) R2 inpout32; C:\Windows\System32\Drivers\inpout32.sys [11936 2019-07-01] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) R4 KProcessHacker3; C:\Users\JUNI\Downloads\processhacker-2.39-bin\x86\kprocesshacker.sys [41624 2016-03-28] (Wen Jia Liu -> wj32) S3 MDA_NTDRV; C:\Windows\system32\MDA_NTDRV.sys [31224 2017-01-19] (Bada Technology Co.,Ltd -> ) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18944 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R0 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6639616 2011-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R1 SCDEmu; C:\Windows\System32\Drivers\SCDEmu.sys [124616 2017-06-07] (Power Software Limited -> Power Software Ltd) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [323736 2019-06-23] (Disc Soft Ltd -> Duplex Secure Ltd.) S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL3.SYS [207360 2009-07-14] (Microsoft Windows -> Conexant Systems, Inc.) S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV3.SYS [980992 2009-07-14] (Microsoft Windows -> Conexant Systems, Inc.) S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT3.SYS [661504 2009-07-14] (Microsoft Windows -> Conexant Systems, Inc.) U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2019-06-27] (Adlice -> ) R3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 WiseUnlock; C:\Windows\WiseUnlock.sys [32840 2019-06-22] (Beijing Lang Xingda Network Technology Co., Ltd -> WiseCleaner.com) S3 VGPU; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-07-01 23:35 - 2019-07-01 23:35 - 006525384 _____ C:\Users\JUNI\Downloads\Windows6.1-KB2446710-x86.msu 2019-07-01 23:34 - 2019-07-01 23:34 - 000000000 ____D C:\Users\JUNI\Downloads\CloverPortable_3.5.0 2019-07-01 23:28 - 2019-07-01 23:29 - 019091604 _____ C:\Users\JUNI\Downloads\Windows6.1-KB3172605-x86.msu 2019-07-01 23:27 - 2019-07-01 23:27 - 008630728 _____ C:\Users\JUNI\Downloads\Windows6.1-KB3080149-x86.msu 2019-07-01 23:17 - 2019-07-01 23:37 - 000019851 _____ C:\Users\JUNI\Downloads\FRST.txt 2019-07-01 23:14 - 2019-07-01 23:17 - 000000000 ____D C:\FRST 2019-07-01 23:06 - 2019-07-01 23:07 - 001798144 _____ (Farbar) C:\Users\JUNI\Downloads\FRST (1).exe 2019-07-01 22:58 - 2019-07-01 22:58 - 012004535 _____ C:\Users\JUNI\Downloads\CloverPortable_3.5.0.zip 2019-07-01 22:56 - 2019-07-01 22:56 - 000000000 ____D C:\Users\JUNI\AppData\Local\Phrozen 2019-07-01 22:55 - 2019-07-01 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winja 2019-07-01 22:54 - 2019-07-01 22:55 - 000000000 ____D C:\Program Files\Winja 2019-07-01 22:33 - 2019-07-01 22:33 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} 2019-07-01 22:23 - 2019-07-01 22:23 - 000000000 __RSH C:\MSDOS.SYS 2019-07-01 22:23 - 2019-07-01 22:23 - 000000000 __RSH C:\IO.SYS 2019-07-01 22:11 - 2019-07-01 22:11 - 000000000 ____D C:\Users\JUNI\Downloads\kd_crk_dc_24_01 2019-07-01 22:09 - 2019-07-01 22:09 - 001146854 _____ C:\Users\JUNI\Downloads\kd_crk_dc_24_01.rar 2019-07-01 22:08 - 2019-07-01 22:10 - 042258944 _____ (Kerish Products ) C:\Users\JUNI\Downloads\Kerish_Doctor_4.75.exe 2019-07-01 22:04 - 2019-07-01 23:26 - 000000000 ____D C:\Users\JUNI\Downloads\Windows.System.Control.Center.4.0.0.6.Full 2019-07-01 22:02 - 2019-07-01 22:02 - 000000000 ____D C:\Users\JUNI\Downloads\Winja.Virustotal.Uploader.7.1 2019-07-01 22:02 - 2019-07-01 22:02 - 000000000 ____D C:\Users\JUNI\Downloads\Windows.Privacy.Dashboard.1.3.1203 2019-07-01 22:02 - 2019-07-01 22:02 - 000000000 ____D C:\Users\JUNI\Downloads\RDS.Knight.4.2.7.1.Ultimate.Protection 2019-07-01 22:02 - 2019-07-01 22:02 - 000000000 ____D C:\Users\JUNI\Downloads\OneSafe.PC.Cleaner.Pro.6.9.6.8 2019-07-01 22:02 - 2019-07-01 22:02 - 000000000 ____D C:\Users\JUNI\Downloads\ILike.External.Hard.Drive.Data.Recovery.9.0 2019-07-01 21:55 - 2019-07-01 21:59 - 003949256 _____ C:\Users\JUNI\Downloads\RDS.Knight.4.2.7.1.Ultimate.Protection.rar 2019-07-01 21:55 - 2019-07-01 21:59 - 003524846 _____ C:\Users\JUNI\Downloads\Windows.Privacy.Dashboard.1.3.1203.rar 2019-07-01 21:54 - 2019-07-01 22:03 - 014668477 _____ C:\Users\JUNI\Downloads\Windows.System.Control.Center.4.0.0.6.Full.rar 2019-07-01 21:54 - 2019-07-01 22:01 - 012113865 _____ C:\Users\JUNI\Downloads\ILike.External.Hard.Drive.Data.Recovery.9.0.rar 2019-07-01 21:54 - 2019-07-01 22:01 - 011718704 _____ C:\Users\JUNI\Downloads\Winja.Virustotal.Uploader.7.1.rar 2019-07-01 21:54 - 2019-07-01 21:59 - 005030142 _____ C:\Users\JUNI\Downloads\OneSafe.PC.Cleaner.Pro.6.9.6.8.rar 2019-07-01 21:44 - 2019-07-01 21:45 - 000450880 _____ (NoVirusThanks Company Srl ) C:\Users\JUNI\Downloads\systray_refresh_setup.exe 2019-07-01 21:43 - 2019-07-01 22:09 - 000000000 ____D C:\Users\JUNI\Downloads\LookInMyPC 2019-07-01 21:43 - 2019-07-01 21:43 - 000000000 ____D C:\Users\JUNI\Downloads\NET_Check-2.1 2019-07-01 21:42 - 2019-07-01 21:42 - 000081755 _____ C:\Users\JUNI\Downloads\NET_Check-2.1.zip 2019-07-01 21:41 - 2019-07-01 21:41 - 000000980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraDefrag.lnk 2019-07-01 21:41 - 2019-07-01 21:41 - 000000000 ____D C:\Users\JUNI\Downloads\evonsysinfo 2019-07-01 21:39 - 2019-07-01 22:44 - 000000000 ____D C:\Program Files\UltraDefrag 2019-07-01 21:39 - 2019-07-01 21:41 - 001965552 _____ C:\Users\JUNI\Downloads\LookInMyPC.zip 2019-07-01 21:37 - 2019-07-01 21:38 - 000519800 _____ C:\Users\JUNI\Downloads\evonsysinfo.zip 2019-07-01 21:36 - 2019-07-01 21:37 - 000876647 _____ (Black Bird Cleaner Software) C:\Users\JUNI\Downloads\BlackBirdSystemInfo.exe 2019-07-01 21:35 - 2019-07-01 21:35 - 002222744 _____ (UltraDefrag Development Team) C:\Users\JUNI\Downloads\ultradefrag-7.1.2.bin.i386.exe 2019-07-01 21:34 - 2019-07-01 21:34 - 000000000 ____D C:\Users\JUNI\Downloads\HDCleanerX32 2019-07-01 21:34 - 2019-07-01 21:34 - 000000000 ____D C:\Users\JUNI\Downloads\Everything-1.4.1.947.x86 2019-07-01 21:34 - 2019-07-01 21:34 - 000000000 ____D C:\Users\JUNI\Downloads\Battery Limiter setup 2019-07-01 21:33 - 2019-07-01 21:34 - 003174026 _____ C:\Users\JUNI\Downloads\HDCleanerX32.zip 2019-07-01 21:33 - 2019-07-01 21:33 - 000716400 _____ C:\Users\JUNI\Downloads\Everything-1.4.1.947.x86.zip 2019-07-01 21:32 - 2019-07-01 21:32 - 000605240 _____ (Alternate Tools ) C:\Users\JUNI\Downloads\DllAnalyzer.exe 2019-07-01 21:29 - 2019-07-01 21:32 - 004845230 _____ C:\Users\JUNI\Downloads\Battery Limiter setup.zip 2019-07-01 21:25 - 2019-07-01 21:25 - 004217422 _____ C:\Users\JUNI\Downloads\windows6.1-kb4490628-x86_3cdb3df55b9cd7ef7fcb24fc4e237ea287ad0992 (1).msu 2019-07-01 21:23 - 2019-07-01 21:23 - 000486917 _____ C:\Users\JUNI\Downloads\Windows6.1-KB3021917-x86.msu 2019-07-01 20:55 - 2019-07-01 20:55 - 000058416 _____ C:\Users\JUNI\AppData\Local\GDIPFONTCACHEV1.DAT 2019-07-01 04:58 - 2019-07-01 04:58 - 000000610 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2019-07-01 04:31 - 2019-07-01 04:31 - 000000000 ____D C:\Users\JUNI\Downloads\Multiboot.USB.Flash.Drive.PLUS.15.05.2017 2019-07-01 02:44 - 2019-07-01 02:44 - 000000000 ____D C:\Users\JUNI\Downloads\_archa_soft_YeahBit.PC.SpeedUp.4.0.5 2019-07-01 02:04 - 2019-07-01 02:31 - 000000000 ____D C:\Users\JUNI\Downloads\WinToUSB.Enterprise.4.9.buyur-indir.com 2019-07-01 01:44 - 2019-07-01 01:44 - 000000000 ____D C:\Users\JUNI\Downloads\14.0.18.6.3-PVP 2019-07-01 01:33 - 2019-07-01 01:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IsoBuster 2019-07-01 01:33 - 2019-07-01 01:33 - 000000000 ____D C:\Program Files\Smart Projects 2019-07-01 01:20 - 2019-07-01 01:20 - 000000000 ____D C:\Users\JUNI\Downloads\4.4.4.4.0.00-PVP 2019-07-01 01:04 - 2015-09-16 12:08 - 150001664 _____ C:\pwse91-x86.iso 2019-07-01 00:58 - 2019-07-01 01:04 - 000000000 ____D C:\winpe 2019-07-01 00:58 - 2019-06-29 06:49 - 332398592 _____ C:\Gnome.Partition.Editor.(GPartEd).Live.1.0.0-3.Stable.x86_YasDL.com.iso 2019-07-01 00:25 - 2019-07-01 00:25 - 000000000 ____D C:\Users\JUNI\Downloads\Kaspersky Cleaner 1.0.1.150 Final Portable 2019-06-30 23:43 - 2019-06-30 23:43 - 000000000 ____D C:\Users\JUNI\Downloads\ProcessExplorerPortable 2019-06-30 23:39 - 2019-06-30 23:39 - 000000000 ____D C:\Users\JUNI\Downloads\Gnome.Partition.Editor.(GPartEd).Live.1.0.0-3.Stable.x86_YasDL.com 2019-06-30 23:39 - 2019-06-30 23:39 - 000000000 ____D C:\Users\JUNI\Downloads\Etcher.1.5.19.x86_YasDL.com 2019-06-30 23:30 - 2019-06-30 23:30 - 000000000 ____D C:\Users\JUNI\Downloads\IsMyHdOK 2019-06-30 23:30 - 2019-06-30 23:30 - 000000000 ____D C:\Users\JUNI\Downloads\bcdw150z_peb_en 2019-06-30 23:25 - 2019-07-01 00:13 - 000000000 ____D C:\WIN7X86JAN2019 2019-06-30 23:23 - 2019-06-30 23:24 - 000000000 ____D C:\pebuilder3110a 2019-06-30 23:23 - 2019-06-30 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PE Builder 2019-06-30 23:18 - 2019-06-30 23:35 - 341232792 _____ C:\Users\JUNI\Downloads\Gnome.Partition.Editor.(GPartEd).Live.1.0.0-3.Stable.x86_YasDL.com.rar 2019-06-30 23:14 - 2019-06-30 23:14 - 000000000 ____D C:\Users\JUNI\Downloads\ThisIsMyFile 2019-06-30 23:00 - 2019-06-30 23:00 - 000000000 ____D C:\Users\JUNI\Downloads\ImDisk.Toolkit.20190629 2019-06-30 23:00 - 2019-06-30 23:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2019-06-30 22:57 - 2019-06-30 23:00 - 000000000 ____D C:\Users\JUNI\Downloads\PowerISO.7.4 2019-06-30 22:45 - 2019-06-30 22:45 - 000761656 _____ (Sysinternals - www.sysinternals.com) C:\Users\JUNI\Downloads\autoruns.exe 2019-06-30 05:18 - 2005-01-28 08:40 - 000196608 _____ C:\Windows\system32\ErdHelp.exe 2019-06-30 05:18 - 2005-01-28 08:40 - 000069632 _____ C:\Windows\system32\PWDSERV.EXE 2019-06-30 05:18 - 2005-01-28 08:40 - 000003482 _____ C:\Windows\system32\ERDCMDR2005.CNT 2019-06-30 04:39 - 2019-06-30 04:42 - 259816890 _____ C:\BackupWholeRegistry(20190630).reg 2019-06-30 04:37 - 2019-07-01 05:19 - 000001908 _____ C:\Windows\diagwrn.xml 2019-06-30 04:37 - 2019-07-01 05:19 - 000001908 _____ C:\Windows\diagerr.xml 2019-06-30 02:58 - 2019-06-30 02:59 - 000000000 ____D C:\Program Files\dotnet 2019-06-30 02:58 - 2019-06-30 02:58 - 000000000 ____D C:\ProgramData\Package Cache 2019-06-29 05:38 - 2019-06-29 05:38 - 000000000 ____D C:\Program Files\DVD Maker 2019-06-29 04:45 - 2019-07-01 04:33 - 000000000 ____D C:\Users\JUNI\Desktop\AiO-SRT Logs 2019-06-29 04:39 - 2015-03-16 14:58 - 000444840 _____ (Microsoft Corporation) C:\Windows\system32\mshflxgd.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000660120 _____ (Microsoft Corporation) C:\Windows\system32\mscomct2.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000279192 _____ (Microsoft Corporation) C:\Windows\system32\msdatgrd.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000259736 _____ (Microsoft Corporation) C:\Windows\system32\msflxgrd.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000253080 _____ (Microsoft Corporation) C:\Windows\system32\msdatlst.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000222360 _____ (Microsoft Corporation) C:\Windows\system32\tabctl32.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000179352 _____ (Microsoft Corporation) C:\Windows\system32\msmask32.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000131728 _____ (Microsoft Corporation) C:\Windows\system32\msinet.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000130712 _____ (Microsoft Corporation) C:\Windows\system32\msstdfmt.dll 2019-06-29 04:39 - 2013-12-20 00:48 - 000119960 _____ (Microsoft Corporation) C:\Windows\system32\mscomm32.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000108696 _____ (Microsoft Corporation) C:\Windows\system32\msstkprp.dll 2019-06-29 04:39 - 2013-12-20 00:48 - 000104088 _____ (Microsoft Corporation) C:\Windows\system32\picclp32.ocx 2019-06-29 04:39 - 2013-12-20 00:48 - 000084624 _____ (Microsoft Corporation) C:\Windows\system32\sysinfo.ocx 2019-06-29 04:39 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71ita.dll 2019-06-29 04:39 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71fra.dll 2019-06-29 04:39 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc71esp.dll 2019-06-29 04:39 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71kor.dll 2019-06-29 04:39 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc71jpn.dll 2019-06-29 04:39 - 2010-09-17 16:30 - 000565760 _____ (Microsoft Corporation) C:\Windows\system32\msvcp50.dll 2019-06-29 04:39 - 2008-01-01 20:00 - 000487424 _____ (Microsoft Corporation) C:\Windows\system32\msvcp70.dll 2019-06-29 04:39 - 2007-03-12 12:34 - 000798773 _____ (Microsoft Corporation) C:\Windows\system32\MFCO42D.DLL 2019-06-29 04:39 - 2007-03-12 12:34 - 000274485 _____ (Microsoft Corporation) C:\Windows\system32\MFCD42D.DLL 2019-06-29 04:39 - 2007-03-12 12:34 - 000041013 _____ (Microsoft Corporation) C:\Windows\system32\MFCN42D.DLL 2019-06-29 04:39 - 2007-01-30 23:04 - 000339968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr70.dll 2019-06-29 04:39 - 2006-04-10 13:41 - 001066176 _____ (Microsoft Corporation) C:\Windows\system32\mscomctl32.ocx 2019-06-29 04:39 - 2005-01-20 20:25 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\msvci70.dll 2019-06-29 04:39 - 1996-01-12 04:00 - 000722192 _____ (Microsoft Corporation) C:\Windows\system32\vb40032.dll 2019-06-29 04:39 - 1993-07-23 20:31 - 000210944 _____ C:\Windows\system32\msvcrt10.dll 2019-06-29 04:38 - 2013-12-20 00:48 - 000218776 _____ (Microsoft Corporation) C:\Windows\system32\dblist32.ocx 2019-06-29 04:38 - 2013-12-20 00:48 - 000212112 _____ (Microsoft Corporation) C:\Windows\system32\mci32.ocx 2019-06-29 04:38 - 2011-01-12 14:25 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\mfc71deu.dll 2019-06-29 04:38 - 2011-01-12 14:25 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc71enu.dll 2019-06-29 04:38 - 2011-01-12 14:25 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc71cht.dll 2019-06-29 04:38 - 2011-01-12 14:25 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc71chs.dll 2019-06-29 04:38 - 2007-03-12 12:29 - 000929844 _____ (Microsoft Corporation) C:\Windows\system32\MFC42D.DLL 2019-06-29 04:38 - 2006-08-26 01:28 - 001017344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70u.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70ita.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70fra.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70esp.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\system32\mfc70deu.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\mfc70enu.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70kor.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\mfc70jpn.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\mfc70cht.dll 2019-06-29 04:38 - 2006-08-26 01:15 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\mfc70chs.dll 2019-06-29 04:38 - 2006-08-26 01:07 - 001024000 _____ (Microsoft Corporation) C:\Windows\system32\mfc70.dll 2019-06-29 04:26 - 2019-06-29 04:26 - 000267944 _____ C:\Windows\system32\FNTCACHE.DAT 2019-06-29 03:04 - 2019-06-29 03:05 - 001044168 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\vbrun60-setup.exe 2019-06-29 01:55 - 2019-06-29 01:55 - 000000000 ____D C:\Users\JUNI\Downloads\winsdk_web 2019-06-29 01:50 - 2019-06-29 01:51 - 000509264 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\winsdk_web.exe 2019-06-29 01:14 - 2019-06-29 01:14 - 000000000 ____D C:\Windows\system32\CCBootPnP 2019-06-29 01:05 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2019-06-29 01:05 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2019-06-29 01:05 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2019-06-29 01:04 - 2019-07-01 05:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alternate EXE Packer 2019-06-29 00:22 - 2019-06-29 04:45 - 000000674 _____ C:\custom.ini 2019-06-29 00:20 - 2019-06-29 00:20 - 000000000 ____D C:\Users\JUNI\Downloads\All.in.One-System.Rescue.Toolkit.2018-01-02.Lite_YasDL.com 2019-06-29 00:12 - 2019-06-29 00:12 - 000000000 ____D C:\Program Files\CONEXANT 2019-06-29 00:10 - 2010-02-10 16:10 - 000987704 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\HSX_DPV.sys 2019-06-29 00:10 - 2010-02-10 16:10 - 000668216 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\HSX_CNXT.sys 2019-06-29 00:10 - 2010-02-10 16:10 - 000417336 _____ (Conexant Systems, Inc.) C:\Windows\system32\XAudio32.dll 2019-06-29 00:10 - 2010-02-10 16:10 - 000264760 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI32M41.dll 2019-06-29 00:10 - 2010-02-10 16:10 - 000214072 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\HSXHWAZL.sys 2019-06-29 00:10 - 2010-02-10 16:10 - 000100920 _____ (Conexant) C:\Windows\system32\mdmxsdk.dll 2019-06-29 00:10 - 2010-02-10 16:10 - 000019384 _____ (Conexant) C:\Windows\system32\Drivers\mdmxsdk.sys 2019-06-29 00:10 - 2010-02-10 16:10 - 000015416 _____ (Conexant Systems, Inc.) C:\Windows\system32\Drivers\XAudio32.sys 2019-06-29 00:10 - 2008-03-25 01:42 - 000146036 _____ C:\Windows\system32\Drivers\HSFProf.cty 2019-06-28 23:58 - 2019-06-28 23:58 - 000000000 ____D C:\Users\JUNI\Downloads\DriverMax.Pro.10.18.0.36.Portable 2019-06-28 23:44 - 2019-06-28 23:47 - 191220855 _____ (ALL Runtime Libraries COPYRIGHT © MICROSOFT ) C:\Users\JUNI\Downloads\AIO Runtime Libraries [LC] by Wilenty 2019-03-25.exe 2019-06-28 23:36 - 2019-06-28 23:36 - 000000000 ____D C:\Users\JUNI\Downloads\Bootable.USB.Test.1.2.0001_YasDL.com 2019-06-28 23:12 - 2019-06-28 23:12 - 000606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll 2019-06-28 22:42 - 2019-06-28 22:42 - 000000000 ____D C:\Users\JUNI\Downloads\Defraggler.2.22.995_YasDL.com 2019-06-28 22:28 - 2019-06-30 23:24 - 000000000 ____D C:\Users\JUNI\Downloads\ESET.SysInspector.1.3.14.0.x86_YasDL.com 2019-06-28 22:03 - 2019-06-23 00:16 - 034967397 _____ (Soft98.iR) C:\Users\JUNI\Downloads\DriverMax.Pro.10.18.0.36.Portable.exe 2019-06-28 21:33 - 2019-06-28 21:33 - 000000000 ____D C:\Users\JUNI\AppData\Local\mbam 2019-06-28 21:22 - 2019-06-28 21:22 - 000000000 ____D C:\Users\JUNI\AppData\Local\mbamtray 2019-06-28 21:19 - 2019-06-28 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-06-28 21:19 - 2019-06-28 21:19 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-06-28 21:19 - 2019-01-08 16:32 - 000128552 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys 2019-06-28 21:18 - 2019-06-28 21:18 - 000000000 ____D C:\Windows\system32\Drivers\etc\BACKUP 2019-06-28 21:18 - 2019-06-28 21:18 - 000000000 ____D C:\Program Files\Malwarebytes 2019-06-28 20:58 - 2019-06-28 20:58 - 000000000 ____D C:\Program Files\Common Files\IObit 2019-06-28 20:40 - 2019-06-28 20:40 - 000000000 ____D C:\Users\JUNI\.swt 2019-06-28 20:18 - 2019-06-28 20:18 - 000000000 ____D C:\Users\JUNI\Downloads\VCR_Hyb_x86_28.06.2019 2019-06-28 19:54 - 2019-06-28 19:54 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\TweakPower 2019-06-28 19:34 - 2019-06-29 00:16 - 000000000 ____D C:\7e82b2838f4375cecc5dab9aa71b2f 2019-06-28 08:26 - 2019-06-28 08:26 - 000199168 _____ (UltraDefrag Development Team) C:\Windows\system32\udefrag-dbg.exe 2019-06-28 08:25 - 2019-06-28 08:25 - 000393216 _____ (UltraDefrag Development Team) C:\Windows\system32\defrag_native.exe 2019-06-28 08:25 - 2019-06-28 08:25 - 000334336 _____ (UltraDefrag Development Team) C:\Windows\system32\udefrag.exe 2019-06-28 08:25 - 2019-06-28 08:25 - 000333312 _____ (UltraDefrag Development Team) C:\Windows\system32\zenwinx.dll 2019-06-28 08:25 - 2019-06-28 08:25 - 000317440 _____ C:\Windows\system32\lua5.1a.dll 2019-06-28 08:25 - 2019-06-28 08:25 - 000078336 _____ (UltraDefrag Development Team) C:\Windows\system32\hibernate4win.exe 2019-06-28 08:25 - 2019-06-28 08:25 - 000067072 _____ (UltraDefrag Development Team) C:\Windows\system32\bootexctrl.exe 2019-06-28 08:25 - 2019-06-28 08:25 - 000054784 _____ (UltraDefrag Development Team) C:\Windows\system32\udefrag.dll 2019-06-28 04:17 - 2019-06-28 04:17 - 000000000 ___DL C:\Windows\AntiSMS 2019-06-28 04:17 - 2019-06-28 04:17 - 000000000 ____D C:\Windows\SmartFix 2019-06-28 04:17 - 2019-06-28 04:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartFix 2019-06-28 03:52 - 2019-06-28 03:52 - 000000000 ____D C:\Windows\pss 2019-06-28 03:48 - 2019-06-28 03:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2019-06-28 03:14 - 2019-06-28 03:14 - 000000000 ____D C:\Users\JUNI\Documents\PassMark 2019-06-28 02:36 - 2013-10-24 10:23 - 006441984 _____ (Debenu Pty Ltd) C:\Windows\system32\DebenuPDFLibraryLite1011.dll 2019-06-28 02:33 - 2019-06-28 02:34 - 010703680 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\dotnetfxsp1.exe 2019-06-28 02:31 - 2019-06-28 02:33 - 024265736 _____ (Microsoft) C:\Users\JUNI\Downloads\dotnetfx.exe 2019-06-28 02:19 - 2019-06-28 02:37 - 000000000 ____D C:\DotNet 2019-06-28 01:51 - 2019-06-28 01:51 - 000000000 ____D C:\Windows\MiniDump 2019-06-28 01:45 - 2019-06-28 01:45 - 002959376 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\dotnetfx35setup.exe 2019-06-28 00:07 - 2019-06-28 00:07 - 000000000 ____D C:\Users\JUNI\Downloads\-rsload.net-iobit_unlocker_1.1.2.1 2019-06-27 23:59 - 2019-06-28 00:30 - 000000000 ____D C:\Users\JUNI\Downloads\Ccleaner_browser 2019-06-27 23:20 - 2019-06-27 23:20 - 000000000 ____D C:\Users\JUNI\Downloads\MS.Visual.C_2015.2019.Redistributable.14.21.27702.2.x32 2019-06-27 23:04 - 2019-06-27 23:09 - 000000000 ____D C:\Users\JUNI\Downloads\Tablacus Explorer 2019-06-27 23:04 - 2019-06-27 23:05 - 000000000 ____D C:\Users\JUNI\Downloads\TweakPowerX32 2019-06-27 05:51 - 2013-11-25 15:27 - 000416408 _____ (Microsoft Corporation ) C:\Windows\system32\comct332.ocx 2019-06-27 05:51 - 2013-11-25 15:27 - 000170920 _____ (Microsoft Corporation) C:\Windows\system32\comct232.ocx 2019-06-27 05:51 - 2008-04-15 14:00 - 001355776 _____ (Microsoft Corporation) C:\Windows\system32\msvbvm50.dll 2019-06-27 05:51 - 2006-08-25 21:17 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\atl70.dll 2019-06-27 05:51 - 1996-01-12 02:00 - 000935632 _____ (Microsoft Corporation) C:\Windows\system\Vb40016.dll 2019-06-27 05:51 - 1993-05-11 19:00 - 000398416 _____ (Microsoft Corporation) C:\Windows\system\Vbrun300.dll 2019-06-27 05:51 - 1992-10-21 00:00 - 000356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll 2019-06-27 05:51 - 1991-05-10 01:00 - 000271264 _____ C:\Windows\system\vbrun100.dll 2019-06-27 05:24 - 2019-06-27 05:24 - 000000000 ____D C:\Users\JUNI\Downloads\System.Explorer.v7.0.0.5356_Rahim-soft.com 2019-06-27 05:03 - 2019-06-27 05:03 - 000000000 ____D C:\Program Files\OneClickFirewall 2019-06-27 05:01 - 2019-06-27 05:01 - 000038672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtproscsibus.sys 2019-06-27 04:41 - 2019-06-27 04:42 - 024879748 _____ C:\Users\JUNI\Downloads\windows6.1-kb4493448-x86_187831a12093488fb2fc5be81af26f8f8d0fb386.msu 2019-06-27 04:40 - 2019-06-27 04:41 - 004217422 _____ C:\Users\JUNI\Downloads\windows6.1-kb4490628-x86_3cdb3df55b9cd7ef7fcb24fc4e237ea287ad0992.msu 2019-06-27 04:40 - 2019-06-27 04:40 - 027391410 _____ C:\Users\JUNI\Downloads\windows6.1-kb4489885-x86_8078e687b908bf6319d77d48fc2f70e0f67dfcf5.msu 2019-06-27 04:36 - 2019-06-27 04:36 - 004479832 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\vcredist_x86_470640aa4bb7db8e69196b5edb0010933569e98d (4).exe 2019-06-27 04:35 - 2019-06-27 04:36 - 004479832 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\vcredist_x86_470640aa4bb7db8e69196b5edb0010933569e98d (3).exe 2019-06-27 04:17 - 2019-06-27 04:18 - 035288225 _____ C:\Users\JUNI\Downloads\windows6.1-kb4474419-x86_b531905efe3aabdd95037d84672b126c65133335.msu 2019-06-27 04:14 - 2019-06-27 04:16 - 018794910 _____ C:\Users\JUNI\Downloads\windows6.1-kb4486564-x86_4b0702863cf9aeea96f06ebb99778922019b7ff4.msu 2019-06-27 03:07 - 2019-06-27 03:07 - 014841273 _____ C:\php-7.3.6.tar.bz2 2019-06-27 02:52 - 2019-06-27 02:51 - 024809232 _____ C:\php-debug-pack-7.3.6-nts-Win32-VC15-x86.zip 2019-06-27 02:15 - 2019-06-27 02:20 - 000000000 ____D C:\Windows\system32\directx 2019-06-27 01:36 - 2019-06-27 01:36 - 000024688 _____ C:\Windows\system32\Drivers\TrueSight.sys 2019-06-27 01:33 - 2019-06-27 01:33 - 000000000 ____D C:\Users\JUNI\AppData\Local\CEF 2019-06-27 01:00 - 2017-01-09 08:02 - 000384008 _____ (Database Harbor Software) C:\Windows\system32\SIDService.exe 2019-06-27 01:00 - 2014-12-17 10:44 - 000016144 _____ (Database Harbor Software) C:\Windows\system32\SysInfoDetector.sys 2019-06-27 01:00 - 2014-12-17 10:44 - 000014608 _____ (Database Harbor Software) C:\Windows\system32\SysInfoDetectorX64.sys 2019-06-27 00:17 - 2019-06-27 00:17 - 000000000 ____D C:\Users\JUNI\Downloads\AdsFix.6_24.06.19.1_YasDL.com 2019-06-26 23:53 - 2019-06-27 00:38 - 000000000 ____D C:\Users\JUNI\Downloads\RegCoolPortable_1.10 2019-06-26 23:53 - 2019-06-27 00:07 - 000000000 ____D C:\Users\JUNI\Downloads\VisualCppRedist_AIO_x86_x64_23 2019-06-26 23:25 - 2019-06-26 23:33 - 014427176 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\vc_redist.x86.exe 2019-06-26 23:04 - 2019-06-26 23:04 - 000000000 ____D C:\Windows\CheckSur 2019-06-25 05:23 - 2019-06-25 05:23 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Adobe 2019-06-25 05:00 - 2015-03-31 08:22 - 000046440 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bhbase.sys 2019-06-25 04:33 - 2019-06-25 04:33 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2019-06-25 04:17 - 2019-06-25 04:17 - 000000000 ____D C:\Users\JUNI\Downloads\GeekUninstaller.1.4.6.140 2019-06-25 03:48 - 2019-06-25 03:48 - 000000000 ____D C:\Users\JUNI\Downloads\Q-Dir_Portable 2019-06-25 03:43 - 2019-06-25 03:43 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\ChemTable Software 2019-06-25 03:41 - 2019-06-25 03:48 - 000000000 ____D C:\Users\JUNI\AppData\Local\ChemTable Software 2019-06-25 03:06 - 2019-06-25 03:07 - 013357056 _____ C:\Windows\system32\config\SYSTEM.jv16pt_bak 2019-06-25 03:05 - 2019-06-25 03:06 - 042491904 _____ C:\Windows\system32\config\SOFTWARE.jv16pt_bak 2019-06-25 02:34 - 2019-06-25 02:34 - 000000000 ____D C:\ProgramData\LockHunter 2019-06-25 02:33 - 2019-06-25 02:33 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\LockHunter 2019-06-25 02:33 - 2019-06-25 02:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LockHunter 2019-06-25 02:33 - 2019-06-25 02:33 - 000000000 ____D C:\Program Files\LockHunter 2019-06-25 02:26 - 2019-05-31 05:20 - 239126136 _____ C:\Users\JUNI\Downloads\Windows6.1-KB947821-v34-x86.msu 2019-06-25 02:16 - 2015-11-05 09:00 - 001070232 _____ (Microsoft Corporation) C:\Windows\system32\mscomctl.ocx 2019-06-25 02:16 - 2015-03-27 03:54 - 000163480 ____R (Microsoft Corporation) C:\Windows\system32\comDlg32.ocx 2019-06-25 02:16 - 2014-11-12 09:46 - 000354944 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll 2019-06-25 02:16 - 2013-11-25 15:27 - 000617896 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx 2019-06-25 02:16 - 2011-01-12 20:53 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\atl71.dll 2019-06-25 02:16 - 2011-01-12 06:06 - 001054208 _____ (Microsoft Corporation) C:\Windows\system32\mfc71u.dll 2019-06-25 02:16 - 2011-01-12 05:49 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll 2019-06-25 02:16 - 2007-02-01 14:43 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll 2019-06-25 02:00 - 2019-06-25 02:00 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\VS Revo Group 2019-06-25 01:58 - 2019-06-25 01:58 - 000061440 _____ C:\MobaLiveCD HardDisk.mlc 2019-06-25 01:56 - 2019-06-25 01:56 - 000000000 ____D C:\Users\JUNI\Downloads\Visual C++ Redist Installer V56 2019-06-25 01:34 - 2019-07-01 05:15 - 000000000 ____D C:\Windows\system32\URTTEMP 2019-06-25 01:15 - 2019-06-25 01:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirectX Utilities 2019-06-25 01:15 - 2008-04-12 18:17 - 000681478 _____ C:\Windows\system32\msvcrtnew.dll 2019-06-25 01:15 - 2008-04-12 18:14 - 000874502 _____ C:\Windows\system32\kernel32new.dll 2019-06-25 01:15 - 2008-04-08 15:40 - 000681472 _____ (KM-Software) C:\Users\JUNI\Documents\msvcrt(DEBUG).dll 2019-06-25 01:15 - 2008-03-05 16:03 - 000329224 _____ (Microsoft Corporation) C:\Windows\system32\DXErr.exe 2019-06-25 01:15 - 2008-03-05 16:03 - 000209416 _____ (Microsoft Corporation) C:\Windows\system32\dxcpl.exe 2019-06-25 01:15 - 2006-11-02 12:47 - 001162656 _____ (Microsoft Corporation) C:\Windows\system32\ntdllnew.dll 2019-06-25 01:13 - 2019-06-25 01:40 - 000000000 ____D C:\Users\JUNI\Desktop\DirectX10_RC2_Fix_3-Pre-Final 2019-06-25 00:51 - 2019-06-25 01:12 - 317325312 _____ C:\MSSS_Media32.iso 2019-06-25 00:12 - 2019-06-25 00:12 - 000132832 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\ksapi_ev.sys 2019-06-25 00:12 - 2019-06-25 00:12 - 000124592 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\ksapi.sys 2019-06-25 00:12 - 2019-06-25 00:12 - 000089776 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\ksapi64_ev.sys 2019-06-25 00:12 - 2019-06-25 00:12 - 000081584 _____ (Kingsoft Corporation) C:\Windows\system32\Drivers\ksapi64.sys 2019-06-25 00:10 - 2019-06-25 00:10 - 000028672 _____ C:\Users\JUNI\Documents\bcdjuni.bcd 2019-06-25 00:03 - 2019-06-25 00:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DualBootPRO 2019-06-25 00:03 - 2019-06-25 00:03 - 000000000 ____D C:\Program Files\PROnetworks 2019-06-24 23:52 - 2019-06-24 23:52 - 000000512 _____ C:\Users\JUNI\Documents\mbr.bin 2019-06-24 23:42 - 2019-06-28 00:15 - 000000000 ____D C:\Program Files\jv16 PowerTools 2019-06-24 23:42 - 2019-06-24 23:42 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools 2019-06-24 23:41 - 2019-07-01 04:34 - 000000000 ____D C:\pebuilder3110 2019-06-24 23:13 - 2019-06-24 23:13 - 000000000 ____D C:\Users\JUNI\Downloads\BOOTICEx86_v1.332 2019-06-24 23:08 - 2019-06-24 23:08 - 000000000 ____D C:\Users\JUNI\AppData\Local\Apple_Inc 2019-06-24 22:58 - 2019-06-24 22:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3uTools 2019-06-24 22:53 - 2019-06-28 00:15 - 000000000 ____D C:\Program Files\3uTools 2019-06-24 21:50 - 2019-06-24 21:50 - 000000000 ____D C:\Users\JUNI\AppData\LocalLow\Temp 2019-06-24 21:34 - 2019-06-24 21:34 - 000000000 ____D C:\Users\JUNI\Downloads\WinISO.Standard.6.4.1.6137.Portable 2019-06-24 21:16 - 2019-06-24 21:16 - 000000000 ____D C:\Users\JUNI\Downloads\DiskDiggerPortable_1 2019-06-24 20:40 - 2019-06-25 01:46 - 000000000 ____D C:\ProgramData\GlarySoft 2019-06-24 20:11 - 2019-06-24 20:11 - 000000000 ____D C:\Users\JUNI\Downloads\crystal_security_3.7.0.40 2019-06-24 19:50 - 2019-06-24 19:53 - 241303552 _____ C:\ampe.iso 2019-06-23 11:09 - 2019-06-24 19:39 - 000001024 ____H C:\SYSTAG.BIN 2019-06-23 11:06 - 2019-06-27 05:45 - 000000150 _____ C:\Windows\system32\winsevr.dat 2019-06-23 11:05 - 2017-09-01 18:12 - 000034864 _____ C:\Windows\system32\amwrtdrv.sys 2019-06-23 11:05 - 2016-12-21 22:54 - 000046896 _____ C:\Windows\system32\ambakdrv.sys 2019-06-23 11:05 - 2016-12-21 22:53 - 000150192 _____ C:\Windows\system32\ammntdrv.sys 2019-06-23 09:09 - 2019-06-23 09:09 - 000323736 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys 2019-06-23 09:07 - 2019-07-01 04:56 - 000000000 ____D C:\Program Files\PowerISO 2019-06-23 09:04 - 2019-06-23 09:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes 2019-06-23 09:04 - 2019-06-23 09:04 - 000000000 ____D C:\Program Files\Elaborate Bytes 2019-06-23 08:43 - 2019-06-23 08:46 - 016070039 _____ C:\Users\JUNI\Downloads\Windows6.1-KB958559-x86-RefreshPkg.msu 2019-06-23 08:28 - 2019-06-23 08:28 - 000000000 ____D C:\Users\JUNI\Downloads\RegOwnit 2019-06-23 08:11 - 2019-06-23 08:11 - 000000000 ____D C:\Users\JUNI\Downloads\GrantPerms 2019-06-23 08:11 - 2019-06-23 08:11 - 000000000 ____D C:\Users\JUNI\Downloads\freefixer_portable 2019-06-23 07:12 - 2019-06-23 07:13 - 050449456 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\dotNetFx40_Full_x86_x64.exe 2019-06-23 07:01 - 2019-06-23 07:01 - 000000000 ____D C:\Program Files\Easy Context Menu 2019-06-23 07:00 - 2019-06-23 07:00 - 000000000 ____D C:\Users\JUNI\Downloads\ec_menu 2019-06-23 06:47 - 2019-06-23 06:58 - 000000000 ____D C:\Users\JUNI\Downloads\netfx_setupverifier_new 2019-06-23 06:44 - 2019-06-23 06:51 - 001274216 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\NetFxRepairTool.exe 2019-06-23 06:36 - 2019-06-28 23:02 - 000000000 ____D C:\Windows\SoftwareDistribution.old 2019-06-23 06:33 - 2019-06-23 06:33 - 000000000 ____D C:\Windows\CSC 2019-06-23 04:59 - 2019-07-01 22:29 - 000011936 _____ (Highresolution Enterprises [www.highrez.co.uk]) C:\Windows\system32\Drivers\inpout32.sys 2019-06-23 04:58 - 2011-01-20 01:07 - 000098304 _____ (Highresolution Enterprises) C:\Windows\system32\inpout32.dll 2019-06-23 04:21 - 2019-06-24 23:08 - 000000000 ____D C:\Users\JUNI\AppData\Local\Apple Computer 2019-06-23 04:21 - 2019-06-23 04:30 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Apple Computer 2019-06-23 03:58 - 2019-06-14 18:13 - 000157568 _____ (Ray Hinchliffe) C:\Windows\system32\Drivers\SIVX32.sys 2019-06-23 03:53 - 2019-07-01 05:32 - 000000000 ____D C:\FU_Backup 2019-06-23 03:53 - 2019-06-29 02:02 - 000000000 ____D C:\Program Files\FinalUninstaller 2019-06-23 03:53 - 2019-06-23 03:53 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\CheeseSoft 2019-06-23 03:53 - 2019-06-23 03:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Final Uninstaller 2019-06-23 03:38 - 2019-06-23 03:39 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\PE Explorer 2019-06-23 03:37 - 2019-06-23 03:38 - 001798144 _____ (Farbar) C:\Users\JUNI\Downloads\FRST.exe 2019-06-23 03:37 - 2019-06-23 03:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PE Explorer 2019-06-23 03:37 - 2019-06-23 03:37 - 000000000 ____D C:\Program Files\PE Explorer 2019-06-23 03:35 - 2019-06-23 03:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant 8.2 2019-06-23 03:35 - 2016-12-27 18:45 - 000033200 _____ C:\Windows\system32\ddmdrv.sys 2019-06-23 03:35 - 2016-09-29 09:44 - 001129624 _____ C:\Windows\ddmmain.exe 2019-06-23 03:34 - 2019-06-23 03:34 - 000000000 ____D C:\Program Files\AOMEI 2019-06-23 03:34 - 2019-04-26 18:08 - 001880936 _____ C:\Windows\ampa.exe 2019-06-23 03:34 - 2017-02-28 14:20 - 000035760 _____ C:\Windows\system32\ampa.sys 2019-06-23 03:31 - 2019-06-23 03:31 - 000000000 ____D C:\Users\JUNI\Downloads\depends22_x86 2019-06-23 03:30 - 2019-06-23 03:30 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_netaapl_01009.Wdf 2019-06-23 03:27 - 2019-07-01 21:13 - 000000000 ____D C:\ProgramData\ProductData 2019-06-23 03:27 - 2019-06-23 03:27 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled 2019-06-23 03:17 - 2019-06-23 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMazing 2019-06-23 03:15 - 2019-06-23 03:15 - 000000000 ____D C:\Program Files\DigiDNA 2019-06-23 03:12 - 2019-06-23 03:12 - 003958984 _____ (Webroot) C:\Users\JUNI\Downloads\syswranalyzer.exe 2019-06-23 02:58 - 2019-06-23 02:58 - 000000000 ____D C:\Users\JUNI\Downloads\Revo.Uninstaller.Pro.4.1.0.Portable 2019-06-23 02:51 - 2019-06-23 02:58 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Wise Uninstaller 2019-06-23 02:50 - 2019-06-23 02:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Program Uninstaller 2019-06-23 02:50 - 2019-06-23 02:50 - 000000000 ____D C:\Program Files\Wise 2019-06-23 02:41 - 2019-07-01 21:09 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\CrystalIdea Software 2019-06-23 02:41 - 2019-06-23 06:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Tool 2019-06-23 02:41 - 2019-06-23 02:41 - 000000000 ____D C:\Program Files\Uninstall Tool 2019-06-23 02:32 - 2019-06-23 02:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2019-06-23 02:31 - 2019-06-23 02:31 - 000000000 ____D C:\Program Files\iPod 2019-06-23 02:24 - 2019-06-23 02:31 - 000000000 ____D C:\Program Files\iTunes 2019-06-23 02:24 - 2019-06-23 02:24 - 000000000 ____D C:\ProgramData\Apple Computer 2019-06-23 02:21 - 2019-06-23 02:21 - 000002563 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2019-06-23 02:21 - 2019-06-23 02:21 - 000000000 ____D C:\Users\JUNI\AppData\Local\Apple 2019-06-23 02:21 - 2019-06-23 02:21 - 000000000 ____D C:\Program Files\Apple Software Update 2019-06-23 02:20 - 2019-06-23 02:20 - 000000000 ____D C:\Users\JUNI\Downloads\RuntimePack.19.6.5.Full 2019-06-23 02:20 - 2019-06-23 02:20 - 000000000 ____D C:\Users\JUNI\Downloads\Dism___10.1.1000.100 2019-06-23 02:19 - 2019-06-23 02:19 - 000000000 ____D C:\Program Files\Bonjour 2019-06-23 02:17 - 2019-07-01 04:33 - 000000000 ____D C:\ProgramData\Apple 2019-06-23 02:17 - 2019-06-23 02:20 - 000000000 ____D C:\Program Files\Common Files\Apple 2019-06-23 01:54 - 2019-06-23 01:54 - 000000000 ____D C:\Users\JUNI\Downloads\Win.TK.1.7.0.0 2019-06-23 01:51 - 2019-06-07 06:08 - 054419240 _____ (Microsoft Corporation) C:\Users\JUNI\Downloads\windows6.1-kb2483139-x86-nl-nl_b7e1c3046b218fb45a665ab5f5ed8a5ea8125760.exe 2019-06-23 01:49 - 2019-06-23 01:49 - 000000000 ____D C:\ProgramData\NVIDIA 2019-06-23 00:56 - 2019-06-23 00:56 - 000000000 ____D C:\Users\JUNI\Downloads\Victoria 4.73b 2019-06-23 00:42 - 2016-02-05 20:44 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll 2019-06-23 00:42 - 2016-02-05 19:33 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll 2019-06-23 00:42 - 2015-06-03 22:22 - 000355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2019-06-23 00:41 - 2019-06-23 00:45 - 000000000 ____D C:\Users\JUNI\Downloads\FastCopy382 2019-06-23 00:12 - 2019-06-23 00:12 - 000000000 ____D C:\Users\Public\Thunder Network 2019-06-22 23:49 - 2019-06-28 05:06 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\TeraCopy 2019-06-22 23:49 - 2019-06-25 03:10 - 000000000 ___HD C:\Users\JUNI\AppData\Roaming\Obsidium 2019-06-22 23:49 - 2019-06-24 22:08 - 000000000 ___HD C:\Users\JUNI\.obs32 2019-06-22 23:49 - 2019-06-22 23:49 - 000032840 _____ (WiseCleaner.com) C:\Windows\WiseUnlock.sys 2019-06-22 23:48 - 2019-06-22 23:48 - 000001840 _____ C:\ProgramData\Microsoft\Windows\Start Menu\TeraCopy.lnk 2019-06-22 23:46 - 2019-06-22 23:49 - 000000000 ____D C:\Program Files\TeraCopy 2019-06-22 23:44 - 2019-06-22 23:44 - 000024576 _____ C:\Users\JUNI\Documents\EasyBCD Backup (2019-06-22) (2).bcd 2019-06-22 23:44 - 2019-06-22 23:44 - 000000000 ____D C:\Users\JUNI\Downloads\RegSeeker47 2019-06-22 23:32 - 2019-06-22 23:32 - 000024576 _____ C:\Users\JUNI\Documents\EasyBCD Backup (2019-06-22).bcd 2019-06-22 23:31 - 2019-06-22 23:31 - 000000000 ____D C:\Users\JUNI\AppData\Local\NeoSmart_Technologies 2019-06-22 23:30 - 2019-06-22 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NeoSmart Technologies 2019-06-22 23:29 - 2019-06-22 23:29 - 000000000 ____D C:\Program Files\NeoSmart Technologies 2019-06-22 23:29 - 2018-12-11 00:04 - 000499424 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2019-06-22 22:55 - 2019-06-22 22:55 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\WinRAR 2019-06-22 22:39 - 2019-06-23 03:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 Manager 2019-06-22 22:39 - 2019-06-22 22:39 - 000000000 ____D C:\Program Files\Windows 7 Manager 2019-06-22 22:38 - 2019-06-22 22:38 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Process Hacker 2 2019-06-22 22:38 - 2019-06-22 22:38 - 000000000 ____D C:\ProgramData\Auslogics 2019-06-22 22:37 - 2019-06-22 22:37 - 000000000 ____D C:\Users\JUNI\AppData\Local\VS Revo Group 2019-06-22 22:37 - 2019-06-22 22:37 - 000000000 ____D C:\ProgramData\VS Revo Group 2019-06-22 22:37 - 2019-06-22 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2019-06-22 22:37 - 2019-06-22 22:37 - 000000000 ____D C:\Program Files\VS Revo Group 2019-06-22 22:37 - 2016-12-21 14:52 - 000035632 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys 2019-06-22 22:35 - 2019-06-25 02:09 - 000000000 ____D C:\Program Files\UVK - Ultra Virus Killer 2019-06-22 22:35 - 2019-06-22 22:35 - 000000000 ____D C:\ProgramData\UVK 2019-06-22 22:35 - 2019-06-22 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UVK - Ultra Virus Killer 2019-06-22 22:26 - 2019-06-24 20:24 - 000001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2019-06-22 22:26 - 2019-06-22 22:26 - 000025864 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys 2019-06-22 22:26 - 2019-06-22 22:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2019-06-22 22:25 - 2019-06-29 04:15 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\GlarySoft 2019-06-22 22:25 - 2019-06-24 20:21 - 000000000 ____D C:\Program Files\Glary Utilities 5 2019-06-22 22:22 - 2019-06-28 21:48 - 000000000 ____D C:\Program Files\CCleaner 2019-06-22 22:20 - 2019-06-22 22:20 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-06-22 22:19 - 2019-06-24 21:50 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2019-06-22 22:17 - 2019-06-30 03:49 - 000000000 ____D C:\Users\JUNI\Downloads\Ultra.Virus_Killer 2019-06-22 22:15 - 2019-06-27 01:17 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-06-22 22:15 - 2019-06-27 01:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-06-22 22:15 - 2019-06-22 22:15 - 000000000 ____D C:\Users\JUNI\Downloads\SpeedyFox.2.0.26.140 2019-06-22 22:15 - 2019-06-22 22:15 - 000000000 ____D C:\Users\JUNI\Downloads\Smadav.Pro.2018.12.0.1.Portable_YasDL.com 2019-06-22 22:15 - 2019-06-22 22:15 - 000000000 ____D C:\Users\JUNI\Downloads\processhacker-2.39-bin 2019-06-22 22:15 - 2019-06-22 22:15 - 000000000 ____D C:\Program Files\WinRAR 2019-06-22 22:13 - 2019-06-22 22:13 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2019-06-22 22:11 - 2019-06-22 22:11 - 000000000 ____D C:\Users\JUNI\AppData\Local\Clover 2019-06-22 22:10 - 2019-07-01 05:22 - 000000000 ____D C:\Users\JUNI\AppData\LocalLow\Clover 2019-06-22 22:10 - 2019-06-22 22:41 - 000000000 ____D C:\Program Files\Clover 2019-06-22 22:10 - 2019-06-22 22:10 - 000000904 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clover.lnk 2019-06-22 22:10 - 2019-06-22 22:10 - 000000892 _____ C:\Users\Public\Desktop\Clover.lnk 2019-06-22 22:10 - 2019-06-22 22:10 - 000000892 _____ C:\ProgramData\Desktop\Clover.lnk 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Users\JUNI\Downloads\nirsoft_package_enc_1.22.13 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Users\JUNI\Downloads\iobit_toolbox 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Users\JUNI\Downloads\HiBitUninstaller-Portable 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Users\JUNI\Downloads\fulleventlogview 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Users\JUNI\Downloads\AVZ.Antiviral.Toolkit.5.03 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Users\JUNI\AppData\LocalLow\Clover.users 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clover 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Program Files\Synaptics 2019-06-22 22:10 - 2019-06-22 22:10 - 000000000 ____D C:\Program Files\Common Files\Clover 2019-06-22 22:09 - 2019-06-28 00:24 - 000000000 ____D C:\Users\JUNI\Downloads\AutoRuns.13.95 2019-06-22 22:07 - 2019-06-22 22:07 - 000000000 ____D C:\Users\JUNI\Downloads\Auslogics.BoostSpeed.10.0.24.Portable-RSLOAD.NET- 2019-06-22 22:06 - 2019-06-28 01:18 - 000000000 ____D C:\Users\JUNI\Downloads\7z1900 2019-06-22 22:06 - 2019-06-22 22:06 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Google 2019-06-22 22:05 - 2019-06-22 22:06 - 013030512 _____ (ejie.me) C:\Users\JUNI\Downloads\setup_clover@3.4.9.exe 2019-06-22 22:00 - 2019-06-22 22:00 - 000002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-06-22 21:58 - 2019-06-22 21:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reg Organizer 2019-06-22 21:58 - 2019-06-22 21:58 - 000000000 ____D C:\ProgramData\Chemtable Software 2019-06-22 21:58 - 2019-06-22 21:58 - 000000000 ____D C:\Program Files\Reg Organizer 2019-06-22 21:57 - 2019-06-28 00:15 - 000000000 ____D C:\Program Files\Google 2019-06-22 21:56 - 2019-06-22 22:57 - 000000000 ____D C:\Users\JUNI\AppData\Local\Google 2019-06-22 21:51 - 2019-06-22 21:51 - 000001416 _____ C:\Users\JUNI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2019-06-22 21:51 - 2019-06-22 21:51 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2019-06-22 21:50 - 2019-06-30 06:04 - 000000000 ____D C:\Users\JUNI\AppData\Local\VirtualStore 2019-06-22 21:50 - 2019-06-28 20:40 - 000000000 ____D C:\Users\JUNI 2019-06-22 21:50 - 2019-06-22 21:50 - 000000020 ___SH C:\Users\JUNI\ntuser.ini 2019-06-22 21:50 - 2011-04-12 04:24 - 000000000 ____D C:\Users\JUNI\AppData\Roaming\Media Center Programs 2019-06-22 10:44 - 2019-06-22 10:44 - 000000000 ____D C:\EFI 2019-06-22 10:44 - 2019-06-22 10:44 - 000000000 ____D C:\AIO 2019-06-22 10:44 - 2018-10-09 11:32 - 000957440 _____ (AIOBOOT.COM) C:\AIOCreator.exe 2019-06-22 10:44 - 2018-02-03 11:28 - 000777728 _____ (www.aioboot.com) C:\PartIMGMapper.exe 2019-06-22 09:08 - 2018-05-11 12:07 - 000108656 _____ (Olof Lagerkvist) C:\Windows\system32\imdisk.cpl 2019-06-22 09:08 - 2018-05-11 12:07 - 000051304 _____ (Olof Lagerkvist) C:\Windows\system32\imdisk.exe 2019-06-22 09:08 - 2018-05-11 12:07 - 000041024 _____ (Olof Lagerkvist) C:\Windows\system32\Drivers\imdisk.sys 2019-06-22 09:08 - 2018-05-11 12:07 - 000018528 _____ (Olof Lagerkvist) C:\Windows\system32\imdsksvc.exe 2019-06-22 09:08 - 2018-05-11 12:07 - 000017592 _____ (Olof Lagerkvist) C:\Windows\system32\Drivers\awealloc.sys 2019-06-22 09:08 - 2018-05-11 12:07 - 000001547 _____ C:\Windows\system32\uninstall_imdisk.cmd 2019-06-22 09:08 - 2018-05-11 12:07 - 000000674 _____ C:\Windows\system32\imdisk.cpl.manifest 2019-06-22 06:11 - 2019-06-22 06:11 - 000004096 _____ C:\WIN7X86.MULTi4.JAN2019.bif 2019-06-22 05:15 - 2019-06-22 07:38 - 000000000 ____D C:\jjjj 2019-06-22 04:18 - 2019-06-22 04:35 - 3534731990 _____ C:\install.wim 2019-06-17 09:06 - 2019-06-17 09:06 - 000002052 _____ C:\Windows\system32\ud-boot-time.cmd 2019-06-17 09:06 - 2019-06-17 09:06 - 000000101 _____ C:\Windows\system32\ud-boot-time.ini 2019-06-17 09:06 - 2019-06-17 09:06 - 000000055 _____ C:\Windows\system32\boot-config.cmd 2019-06-17 09:06 - 2019-06-17 09:06 - 000000040 _____ C:\Windows\system32\boot-on.cmd 2019-06-17 09:06 - 2019-06-17 09:06 - 000000040 _____ C:\Windows\system32\boot-off.cmd ==================== One month (modified) ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2019-07-01 22:30 - 2019-01-25 03:21 - 000637076 _____ C:\Windows\system32\perfh01F.dat 2019-07-01 22:30 - 2019-01-25 03:21 - 000137422 _____ C:\Windows\system32\perfc01F.dat 2019-07-01 22:30 - 2019-01-25 03:20 - 000726538 _____ C:\Windows\system32\perfh00C.dat 2019-07-01 22:30 - 2019-01-25 03:20 - 000146954 _____ C:\Windows\system32\perfc00C.dat 2019-07-01 22:30 - 2019-01-25 03:19 - 000676344 _____ C:\Windows\system32\perfh007.dat 2019-07-01 22:30 - 2019-01-25 03:19 - 000145294 _____ C:\Windows\system32\perfc007.dat 2019-07-01 22:30 - 2010-11-20 23:01 - 003162886 _____ C:\Windows\system32\PerfStringBackup.INI 2019-07-01 22:30 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf 2019-07-01 21:09 - 2009-07-14 06:34 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-07-01 21:09 - 2009-07-14 06:34 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-07-01 20:55 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-07-01 05:16 - 2009-07-14 06:52 - 000000000 ____D C:\Program Files\MSBuild 2019-06-29 05:38 - 2009-07-14 04:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-06-27 05:51 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system 2019-06-27 02:34 - 2009-07-14 04:04 - 000000690 _____ C:\Windows\win.ini 2019-06-27 02:18 - 2019-01-25 15:02 - 000000000 ____D C:\Windows\Panther 2019-06-25 06:04 - 2009-07-14 04:03 - 000262144 _____ C:\Windows\system32\config\DEFAULT.jv16pt_bak2 2019-06-25 04:48 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\Registration 2019-06-23 10:35 - 2009-07-14 04:37 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2019-06-23 09:56 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\PolicyDefinitions 2019-06-23 07:30 - 2009-07-14 06:52 - 000032768 _____ C:\Windows\system32\config\BCD-Template 2019-06-22 22:43 - 2009-07-14 06:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2019-06-22 22:25 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\Help 2019-06-22 21:51 - 2009-07-14 06:34 - 000000000 ____D C:\Windows\Setup 2019-06-22 21:46 - 2009-07-14 04:37 - 000000000 __RHD C:\Users\Public\Libraries 2019-06-22 21:44 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache ==================== SigCheck =============================== (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe [2019-01-25 03:56] - [2019-01-25 03:56] - 003000320 _____ (Microsoft Corporation) 4BC5FB7D326FC6F58972B6FE94F08CE3 C:\Windows\system32\userinit.exe [2010-11-20 23:29] - [2010-11-20 23:29] - 000054272 _____ (Microsoft Corporation) 5755852CE3B4B2648C5F994C3334C0EE C:\Windows\system32\dllhost.exe [2009-07-14 01:43] - [2009-07-14 03:14] - 000034816 _____ (Microsoft Corporation) 1B70564779776F2A1E459E5BA914A289 ==================== End of FRST.txt ============================