No log file ==================== Services (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdvancedSystemCareService14; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1288976 2020-12-24] (IObit Information Technology -> IObit) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208432 2021-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484904 2021-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484904 2021-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [575776 2021-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [634768 2021-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [383976 2021-05-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [244040 2021-05-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 btwdins; D:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [945440 2012-02-02] (Broadcom Corporation -> Broadcom Corporation.) R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [File not signed] S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [149776 2018-06-28] (IObit Information Technology -> IObit) R2 LPlatSvc; C:\Windows\system32\LPlatSvc.exe [774736 2017-09-06] (Lenovo -> Lenovo.) R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation -> Microsoft Corporation) S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation -> Microsoft Corporation) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-20] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13261608 2021-05-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Drivers (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscFileFilter.sys [29272 2020-07-21] (IObit CO., LTD -> IObit) R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscRegistryFilter.sys [28064 2020-06-03] (IObit CO., LTD -> IObit) R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [222984 2021-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [177112 2021-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-06-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-11-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-06-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2021-06-18] (CPUID -> CPUID) R3 evserial; C:\Windows\System32\DRIVERS\evserial.sys [67072 2008-05-19] (Eltima Software -> ELTIMA Software) S3 evserial9; C:\Windows\System32\DRIVERS\evserial9.sys [38544 2019-04-16] (Electronic Team, Inc. -> Electronic Team, Inc.) R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [342528 2012-10-02] (Intel(R) Corporation) [File not signed] R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [14680 2020-12-02] (IObit Information Technology -> IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19312 2018-05-12] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [25488 2018-05-15] (IObit Information Technology -> IObit) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2018-11-30] (Malwarebytes Corporation -> Malwarebytes) S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-10-25] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [269968 2012-07-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) S3 RtlvVga; C:\Windows\System32\DRIVERS\RtlvVga.sys [11920 2014-03-19] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) R3 VSBC; C:\Windows\System32\DRIVERS\evsbc.sys [32768 2008-05-19] (Eltima Software -> ELTIMA Software) S3 VSBC9; C:\Windows\System32\DRIVERS\evsbc9.sys [126096 2019-04-16] (Electronic Team, Inc. -> Electronic Team, Inc.) S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One month (created) (Whitelisted) ========= (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-19 18:01 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\Downloads\How To Remove Shortcut Virus Easily By Yourself.mp4.exe 2021-06-19 18:01 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\Downloads\FRST.txt.exe 2021-06-19 18:01 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\Desktop\desktop.ini.exe 2021-06-19 17:59 - 2021-06-19 18:02 - 000006539 _____ C:\Users\ONGDI\Downloads\FRST.txt 2021-06-19 17:59 - 2021-06-19 18:01 - 000000000 ____D C:\FRST 2021-06-19 17:58 - 2021-06-19 17:56 - 002300416 _____ (Farbar) C:\Users\ONGDI\Downloads\FRST 64.exe 2021-06-18 16:14 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\AppData\Roaming\Microsoft\Windows\Start Menu\Start Menu.exe 2021-06-18 16:14 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programs.exe 2021-06-18 16:12 - 2021-06-19 18:03 - 000000000 ____D C:\Users\ONGDI\Desktop\exe virus 2021-06-18 13:22 - 2021-06-18 13:22 - 000001658 _____ C:\Users\Public\Desktop\Recuva.lnk 2021-06-18 13:22 - 2021-06-18 13:22 - 000001658 _____ C:\ProgramData\Desktop\Recuva.lnk 2021-06-18 13:22 - 2021-06-18 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva 2021-06-18 13:22 - 2021-06-18 13:22 - 000000000 ____D C:\Program Files\Recuva 2021-06-09 18:54 - 2021-06-18 16:15 - 000000000 ____D C:\Users\ONGDI\Desktop\thesis document WORD 2021-06-08 17:20 - 2021-06-18 16:12 - 000000000 ____D C:\personality development 2021-06-07 13:36 - 2021-06-07 13:36 - 000000000 ____D C:\Program Files (x86)\Wondershare 2021-06-07 13:21 - 2021-06-07 13:24 - 000000000 ____D C:\Program Files (x86)\FixAuto 2021-06-07 13:21 - 2021-06-07 13:21 - 000000933 _____ C:\Users\Public\Desktop\FixAuto.lnk 2021-06-07 13:21 - 2021-06-07 13:21 - 000000933 _____ C:\ProgramData\Desktop\FixAuto.lnk 2021-06-07 13:21 - 2021-06-07 13:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FixAuto 2021-06-07 13:21 - 2017-01-23 23:02 - 004018030 ____S C:\Users\Public\Documents\.exe 2021-06-07 13:21 - 2017-01-23 23:02 - 004018030 ____S C:\ProgramData\Documents\.exe 2021-06-07 13:21 - 2003-09-23 12:00 - 000608448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX 2021-06-07 13:20 - 2021-06-09 18:35 - 000000000 ____D C:\Users\ONGDI\Downloads\FixAuto1.1.7 2021-06-07 13:20 - 2017-01-23 23:02 - 004018030 ____S C:\ProgramData\.exe 2021-06-07 13:17 - 2021-06-07 13:18 - 000920990 _____ C:\Users\ONGDI\Downloads\FixAuto1.1.7.zip 2021-06-07 13:07 - 2021-06-07 13:08 - 001390520 _____ C:\Users\ONGDI\Downloads\recoverit_setup_full4134.exe 2021-06-07 12:49 - 2017-01-23 23:02 - 004018030 ____S C:\Windows\Tasks\Tasks.exe 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\Documents\My Documents.exe 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\Documents\Documents.exe 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\Desktop\Desktop.exe 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\AppData\Roaming\Application Data.exe 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\AppData\Local\Local Settings.exe 2021-06-07 12:47 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\AppData\Roaming\Roaming.exe 2021-06-07 12:46 - 2017-01-23 23:02 - 004018030 ____S C:\Users\Public\Documents\Documents.exe 2021-06-07 12:46 - 2017-01-23 23:02 - 004018030 ____S C:\ProgramData\Documents\Documents.exe 2021-06-07 12:45 - 2021-06-09 18:35 - 000000000 ____D C:\Users\ONGDI\Desktop\00 2021-06-06 21:47 - 2021-06-06 21:49 - 001156152 _____ (Akeo Consulting) C:\Users\ONGDI\Downloads\rufus-3.13.exe 2021-06-06 21:45 - 2021-06-07 12:48 - 000000000 ____D C:\Users\ONGDI\Downloads\torrent 2021-06-06 18:58 - 2021-06-06 18:58 - 000000000 __SHD C:\found.000 2021-06-04 22:18 - 2021-06-04 22:19 - 000288408 _____ C:\Windows\Minidump\060421-26270-01.dmp 2021-06-04 11:07 - 2021-06-04 11:07 - 005205044 _____ C:\Users\ONGDI\Downloads\onlydatedneedtobechanged___resteverythingisperfect_ (2).zip 2021-06-04 11:07 - 2021-06-04 11:07 - 005205044 _____ C:\Users\ONGDI\Downloads\onlydatedneedtobechanged___resteverythingisperfect_ (1).zip 2021-06-04 11:06 - 2021-06-04 11:07 - 005205044 _____ C:\Users\ONGDI\Downloads\onlydatedneedtobechanged___resteverythingisperfect_.zip 2021-06-02 21:19 - 2017-01-23 23:02 - 004018030 ____S C:\Users\ONGDI\AppData\Local\Application Data.exe 2021-06-02 21:19 - 2017-01-23 23:02 - 004018030 ____S C:\ProgramData\All Users.exe 2021-06-02 21:18 - 2017-01-23 23:02 - 004018030 ____S C:\ProgramData\Application Data.exe 2021-06-02 21:17 - 2017-01-23 23:02 - 004018030 ____S C:\ProgramData\ProgramData.exe 2021-06-02 18:13 - 2021-06-07 13:07 - 000000000 ____D C:\Users\ONGDI\Downloads\attachments (1) 2021-06-02 18:13 - 2021-06-02 18:13 - 006007754 _____ C:\Users\ONGDI\Downloads\attachments (1).zip 2021-06-02 18:11 - 2021-06-07 12:48 - 000000000 ____D C:\Users\ONGDI\Downloads\attachments 2021-06-02 18:07 - 2021-06-02 18:10 - 003333552 _____ (Alexander Roshal) C:\Users\ONGDI\Downloads\winrar-x64-601.exe 2021-06-02 18:01 - 2021-06-02 18:02 - 000018011 _____ C:\Users\ONGDI\Downloads\attachments.zip 2021-05-27 14:45 - 2021-05-27 14:45 - 000000000 _____ C:\Windows\Minidump\052721-27346-01.dmp 2021-05-25 08:37 - 2021-05-25 08:37 - 000288408 _____ C:\Windows\Minidump\052521-19531-01.dmp 2021-05-24 22:42 - 2021-05-24 22:42 - 000280696 _____ C:\Windows\Minidump\052421-18876-01.dmp ==================== One month (modified) ================== (If an entry is included in the fixlist, the file/folder will be moved.) 2021-06-19 18:02 - 2019-07-27 13:19 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-06-19 18:01 - 2020-09-05 10:51 - 000000000 ____D C:\Users\Public\Speedup Sessions 2021-06-19 18:01 - 2017-10-26 09:02 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\IObit 2021-06-19 18:00 - 2017-10-26 09:02 - 000000000 ____D C:\Users\ONGDI\AppData\LocalLow\IObit 2021-06-19 18:00 - 2017-08-16 12:54 - 000000000 ____D C:\Users\ONGDI 2021-06-19 17:58 - 2017-10-26 09:02 - 000000000 ____D C:\ProgramData\ProductData 2021-06-19 17:53 - 2009-07-14 10:15 - 000023616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-06-19 17:53 - 2009-07-14 10:15 - 000023616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-06-18 16:15 - 2017-11-15 23:21 - 000000000 ___RD C:\Users\ONGDI\Documents\Scanned Documents 2021-06-18 16:14 - 2019-08-30 10:59 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ 2021-06-18 16:14 - 2019-07-28 20:20 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ScreenRecorder 2021-06-18 16:14 - 2017-12-10 04:59 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-06-18 16:14 - 2017-11-20 19:25 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks 2021-06-18 16:14 - 2017-08-17 00:13 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\uTorrent 2021-06-18 16:12 - 2017-08-15 11:25 - 000000000 ____D C:\Intel 2021-06-18 13:07 - 2019-07-27 13:14 - 000000000 ____D C:\Users\ONGDI\Desktop\M.Tech APG 2021-06-18 12:55 - 2017-08-16 13:05 - 000000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job 2021-06-18 12:55 - 2009-07-14 10:38 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-06-09 18:50 - 2017-08-17 03:09 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\vlc 2021-06-09 18:22 - 2021-05-17 22:21 - 000002225 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-06-09 18:22 - 2021-05-17 22:21 - 000002184 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-06-09 18:22 - 2021-05-17 22:21 - 000002184 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-06-08 17:25 - 2017-12-15 07:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2021-06-07 13:42 - 2017-10-27 22:32 - 000418184 _____ C:\Windows\system32\FNTCACHE.DAT 2021-06-07 13:42 - 2017-08-17 14:20 - 000109984 _____ C:\Users\ONGDI\AppData\Local\GDIPFONTCACHEV1.DAT 2021-06-07 13:38 - 2018-11-27 20:24 - 000000000 ____D C:\Temp 2021-06-07 13:36 - 2021-01-14 22:14 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} 2021-06-07 13:36 - 2020-07-06 11:14 - 000000000 ____D C:\ProgramData\Wondershare 2021-06-07 13:36 - 2018-03-04 04:20 - 000000000 ____D C:\ProgramData\YTD Video Downloader 2021-06-07 13:36 - 2017-12-15 08:18 - 000000000 ____D C:\Python27 2021-06-07 13:36 - 2017-12-09 12:08 - 000000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A} 2021-06-07 13:36 - 2017-10-24 11:00 - 000000000 __HDC C:\ProgramData\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6} 2021-06-07 13:31 - 2020-07-06 10:48 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2021-06-07 13:31 - 2020-07-06 10:48 - 000000000 ____D C:\ProgramData\Documents\Wondershare 2021-06-07 13:21 - 2020-07-06 10:56 - 000000000 ____D C:\ProgramData\Wondershare Filmora 2021-06-07 13:21 - 2019-08-04 14:53 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio 2021-06-07 13:21 - 2019-08-03 15:03 - 000000000 ____D C:\ProgramData\PreEmptive Solutions 2021-06-07 13:21 - 2019-06-17 20:25 - 000000000 ____D C:\ProgramData\Oracle 2021-06-07 13:21 - 2019-06-17 19:05 - 000000000 ____D C:\ProgramData\ELTIMA Software 2021-06-07 13:21 - 2018-11-27 20:29 - 000000000 ____D C:\ProgramData\Tencent 2021-06-07 13:21 - 2018-04-04 00:22 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2021-06-07 13:21 - 2017-12-09 13:12 - 000000000 ____D C:\ProgramData\Microsoft Toolkit 2021-06-07 13:21 - 2017-11-27 15:44 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-06-07 13:21 - 2017-10-27 13:22 - 000000000 ____D C:\ProgramData\b75bed44d29445cd9f6467b5d82af744 2021-06-07 13:21 - 2017-10-27 13:20 - 000000000 ____D C:\ProgramData\Mail.Ru 2021-06-07 13:21 - 2017-10-26 09:02 - 000000000 ____D C:\ProgramData\IObit 2021-06-07 13:21 - 2017-08-17 08:43 - 000000000 ____D C:\ProgramData\Mozilla 2021-06-07 13:21 - 2017-08-16 13:05 - 000000000 ____D C:\ProgramData\Intel 2021-06-07 13:20 - 2019-06-17 19:07 - 000000000 ____D C:\ProgramData\AutoUpdate 2021-06-07 13:20 - 2018-04-04 00:05 - 000000000 ____D C:\ProgramData\Adobe 2021-06-07 13:20 - 2017-11-27 15:58 - 000000000 ____D C:\ProgramData\Avira 2021-06-07 13:20 - 2017-10-27 14:05 - 000000000 ____D C:\ProgramData\AVAST Software 2021-06-07 13:20 - 2017-10-27 13:23 - 000000000 ____D C:\ProgramData\817645c0f5294b4b919fda54e70b3e5c 2021-06-07 13:19 - 2017-12-10 04:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-06-07 12:48 - 2020-07-20 14:48 - 000000000 ____D C:\Users\ONGDI\Documents\dewkota signature doctor 2021-06-07 12:48 - 2020-05-14 18:04 - 000000000 ____D C:\Users\ONGDI\Desktop\bandana2020 project 2021-06-07 12:48 - 2019-12-20 16:06 - 000000000 ____D C:\Users\ONGDI\Desktop\Agastya 2021-06-07 12:48 - 2019-08-03 14:59 - 000000000 ____D C:\Users\ONGDI\Documents\Visual Studio 2010 2021-06-07 12:48 - 2019-08-03 14:59 - 000000000 ____D C:\Users\ONGDI\Documents\Visual Studio 2008 2021-06-07 12:48 - 2019-08-03 13:48 - 000000000 ____D C:\Users\ONGDI\Documents\lifi 2021-06-07 12:48 - 2019-06-30 00:47 - 000000000 ____D C:\Users\ONGDI\Downloads\MSCOMM32 2021-06-07 12:48 - 2019-06-17 20:26 - 000000000 ____D C:\Users\ONGDI\Documents\Arduino 2021-06-07 12:48 - 2019-06-17 19:37 - 000000000 ____D C:\Users\Public\Documents\Downloaded Data Sheets 2021-06-07 12:48 - 2019-06-17 19:37 - 000000000 ____D C:\ProgramData\Documents\Downloaded Data Sheets 2021-06-07 12:48 - 2019-06-17 19:04 - 000000000 ____D C:\Users\ONGDI\Desktop\dd 2021-06-07 12:48 - 2017-12-15 08:36 - 000000000 ____D C:\Users\ONGDI\Documents\notepad++ 2021-06-07 12:48 - 2017-11-28 10:05 - 000000000 ____D C:\Users\ONGDI\Desktop\FromKC 2021-06-07 12:48 - 2017-11-15 23:21 - 000000000 ____D C:\Users\ONGDI\Documents\Fax 2021-06-07 12:48 - 2017-11-12 14:20 - 000000000 ____D C:\Users\ONGDI\Desktop\sam 2021-06-07 12:48 - 2017-10-29 08:20 - 000000000 ____D C:\Users\ONGDI\Documents\Bluetooth Exchange Folder 2021-06-07 12:48 - 2017-08-17 08:44 - 000000000 ____D C:\Users\ONGDI\AppData\Roaming\Mozilla 2021-06-07 12:47 - 2017-10-27 13:37 - 000000000 ____D C:\Users\ONGDI\AppData\Local\wupdate 2021-06-06 22:16 - 2017-10-27 13:23 - 000000400 __RSH C:\ProgramData\ntuser.pol 2021-06-06 21:54 - 2017-11-27 16:17 - 000874582 _____ C:\Windows\system32\PerfStringBackup.INI 2021-06-06 21:54 - 2009-07-14 08:50 - 000000000 ____D C:\Windows\inf 2021-06-06 21:52 - 2020-07-03 11:46 - 000000000 ____D C:\Users\ONGDI\Downloads\whatsapp 2021-06-04 22:19 - 2017-08-16 13:05 - 000000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job 2021-06-04 22:18 - 2017-10-22 13:30 - 000000000 ____D C:\Windows\Minidump 2021-05-28 22:51 - 2020-09-05 10:53 - 000003596 _____ C:\Windows\system32\Tasks\Avira_Security_Update 2021-05-21 19:44 - 2009-07-14 10:38 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT ==================== Files in the root of some directories ======== 2021-06-07 13:20 - 2017-01-23 23:02 - 004018030 ____S () C:\ProgramData\.exe 2021-06-02 21:19 - 2017-01-23 23:02 - 004018030 ____S () C:\ProgramData\All Users.exe 2021-06-02 21:18 - 2017-01-23 23:02 - 004018030 ____S () C:\ProgramData\Application Data.exe 2021-06-02 21:17 - 2017-01-23 23:02 - 004018030 ____S () C:\ProgramData\ProgramData.exe 2021-03-25 22:29 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\ntuser.ini.exe 2021-03-25 21:17 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\ONGDI.exe 2021-03-25 22:58 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\Public\desktop.ini.exe 2021-03-25 22:48 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\Public\Public.exe 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Roaming\Application Data.exe 2021-06-07 12:47 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Roaming\Roaming.exe 2021-03-25 21:31 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Roaming\Microsoft\Microsoft.exe 2021-06-02 21:19 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Local\Application Data.exe 2017-10-27 13:23 - 2017-10-27 13:24 - 000011568 _____ () C:\Users\ONGDI\AppData\Local\InstallationConfiguration.xml 2017-10-27 13:23 - 2017-10-27 13:23 - 000140800 _____ () C:\Users\ONGDI\AppData\Local\installer.dat 2021-06-07 12:48 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Local\Local Settings.exe 2021-03-25 21:17 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Local\Local.exe 2021-03-25 22:29 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Local\WiDiSetupLog.20171025.193120.txt.exe 2021-03-25 22:29 - 2017-01-23 23:02 - 004018030 ____S () C:\Users\ONGDI\AppData\Local\WiDiSetupLog.20171108.181942.txt.exe ==================== SigCheck ============================ (There is no automatic fix for files that do not pass verification.) LastRegBack: 2021-06-03 20:35 ==================== End of FRST.txt ========================