Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03.10.2018 01 Ran by Abdul (administrator) on ABDUL-PC (04-10-2018 14:26:12) Running from E:\ Loaded Profiles: Abdul (Available Profiles: Abdul) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe (Electronic Arts) D:\Origin\OriginWebHelperService.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (Valve Corporation) D:\Steam\Steam.exe (Eusing Software) C:\Users\Abdul\Downloads\EFClock.exe (Electronic Arts) D:\Origin\Origin.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Lavalys, Inc.) C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe () D:\Origin\QtWebEngineProcess.exe () D:\Origin\QtWebEngineProcess.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\browsernativehost.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation) HKLM-x32\...\Run: [DelReg] => C:\Program Files (x86)\MSI\DualCoreCenter\DelReg.exe HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-08-10] (Disc Soft Ltd) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [Free Download Manager] => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe [10177536 2018-05-28] (FreeDownloadManager.org) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [Steam] => D:\Steam\steam.exe [3207968 2018-09-08] (Valve Corporation) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [Eusing Clock - Default] => C:\Users\Abdul\Downloads\EFClock.exe [458752 2018-09-25] (Eusing Software) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3113256 2018-10-02] (Electronic Arts) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.100.252 Tcpip\..\Interfaces\{3DFE73EB-9390-4CAD-B3F7-AB7165D3E9F3}: [NameServer] 172.98.193.42,192.99.85.244 Tcpip\..\Interfaces\{3DFE73EB-9390-4CAD-B3F7-AB7165D3E9F3}: [DhcpNameServer] 192.168.100.252 Tcpip\..\Interfaces\{CA902060-E99E-442D-9020-94FB16409070}: [DhcpNameServer] 192.168.43.1 Internet Explorer: ================== HKU\S-1-5-21-2685662787-1516377248-208156778-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2017-08-23] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation) BHO-x32: No Name -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> No File BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: ckf8n3je.default FF ProfilePath: C:\Users\Abdul\AppData\Roaming\Mozilla\Firefox\Profiles\ckf8n3je.default [2018-10-02] FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-23] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-13] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems) Chrome: ======= CHR Profile: C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default [2018-10-04] CHR Extension: (Prezentacje) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-13] CHR Extension: (Free Download Manager) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2018-08-13] CHR Extension: (Dokumenty) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-13] CHR Extension: (Dysk Google) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-13] CHR Extension: (YouTube) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-13] CHR Extension: (Arkusze) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-13] CHR Extension: (Dokumenty Google offline) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-03] CHR Extension: (AdBlock) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-09-19] CHR Extension: (Backspace to go Back) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlffgllnjjkheddehpolbanogdeaogbc [2018-08-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-03] CHR Extension: (Konwerter Audio) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2018-08-13] CHR Extension: (Gmail) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-08-13] CHR Extension: (Chrome Media Router) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-03] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed] R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3570792 2018-08-10] (Disc Soft Ltd) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation) S3 Origin Client Service; D:\Origin\OriginClientService.exe [2216256 2018-10-02] (Electronic Arts) R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3087176 2018-10-02] (Electronic Arts) S3 RPC Endpoint Resource Monitor; C:\Windows\Temp\sdhost.exe [10240 2018-09-24] (Microsoft) [File not signed] S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [94472 2018-08-17] (Advanced Micro Devices, Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13632 2006-10-19] () R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-08-13] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-08-13] (Disc Soft Ltd) R3 EverestDriver; C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [26752 2010-03-31] () R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] () S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2212496 2014-07-05] (MediaTek Inc.) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation) S3 x3320001; C:\Windows\SysWOW64\drivers\x3320001.sys [42928 2010-06-19] (Your Corporation) R3 x3640001; C:\Windows\System32\drivers\x3640001.sys [67104 2010-06-19] (Your Corporation) S2 ASInsHelp; \??\C:\Windows\SysWow64\drivers\AsInsHelp64.sys [X] S2 iocbios2; \??\C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [X] S4 NVHDA; system32\drivers\nvhda64v.sys [X] S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] U4 WdBoot; no ImagePath U4 WdFilter; no ImagePath U4 WdNisDrv; no ImagePath U4 WdNisSvc; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-10-04 14:23 - 2018-10-04 14:26 - 000000000 ____D C:\FRST 2018-10-02 13:11 - 2018-10-02 13:11 - 000000000 ____D C:\ProgramData\Electronic Arts 2018-10-02 12:47 - 2018-10-02 12:47 - 000000779 _____ C:\Users\Public\Desktop\Need for Speed™ Payback.lnk 2018-10-02 12:47 - 2018-10-02 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed™ Payback 2018-10-02 09:38 - 2018-10-02 09:38 - 000000963 _____ C:\Users\Abdul\Desktop\TechPowerUp GPU-Z.lnk 2018-10-02 09:38 - 2018-10-02 09:38 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2018-10-02 09:38 - 2018-10-02 09:38 - 000000000 ____D C:\Program Files (x86)\GPU-Z 2018-10-02 01:59 - 2018-10-02 01:59 - 000000542 _____ C:\Users\Public\Desktop\Origin.lnk 2018-10-02 01:59 - 2018-10-02 01:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2018-10-02 01:56 - 2018-10-04 13:42 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Origin 2018-10-02 01:56 - 2018-10-02 08:49 - 000000000 ____D C:\Users\Abdul\AppData\Local\Origin 2018-10-02 01:56 - 2018-10-02 01:56 - 000000000 ____D C:\Users\Abdul\.QtWebEngineProcess 2018-10-02 01:56 - 2018-10-02 01:56 - 000000000 ____D C:\Users\Abdul\.Origin 2018-10-01 10:25 - 2018-10-01 10:25 - 000000000 ____D C:\Users\Abdul\AppData\Local\RadeonSettings 2018-10-01 10:16 - 2018-10-01 10:16 - 000000000 ____D C:\Users\Abdul\AppData\LocalLow\AMD 2018-10-01 10:15 - 2018-10-04 00:29 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2018-10-01 10:15 - 2018-10-01 10:15 - 000000000 ____D C:\Users\Abdul\AppData\Local\AMD 2018-10-01 10:15 - 2018-08-17 17:01 - 000094472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2018-10-01 10:14 - 2018-10-01 10:14 - 000003146 _____ C:\Windows\System32\Tasks\StartCN 2018-10-01 10:14 - 2018-10-01 10:14 - 000003060 _____ C:\Windows\System32\Tasks\StartDVR 2018-10-01 10:14 - 2018-10-01 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings 2018-10-01 10:14 - 2018-10-01 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard 2018-10-01 10:13 - 2018-10-01 10:13 - 000000000 ____D C:\Program Files (x86)\AMD 2018-10-01 10:12 - 2018-10-01 10:12 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies 2018-10-01 10:11 - 2018-09-26 15:20 - 000113256 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll 2018-10-01 10:11 - 2018-09-26 15:20 - 000104840 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys 2018-10-01 10:11 - 2018-09-26 05:48 - 000331144 _____ C:\Windows\system32\clinfo.exe 2018-10-01 10:11 - 2018-09-26 05:48 - 000169864 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2018-10-01 10:11 - 2018-09-26 05:48 - 000146312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2018-10-01 10:11 - 2018-09-26 05:47 - 060112264 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2018-10-01 10:11 - 2018-09-26 05:47 - 026375560 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll 2018-10-01 10:11 - 2018-09-26 05:47 - 021076360 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll 2018-10-01 10:11 - 2018-09-26 05:46 - 049420168 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 012034200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdvt.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 011980616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 000166240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amduve64.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 000141496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amduve32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 038207880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 031333768 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 012654248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6t.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 012587304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000188112 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000162880 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000134040 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000114976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000103664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000103664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 047102856 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys 2018-10-01 10:11 - 2018-09-26 05:38 - 015924104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 013778824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 003709832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 003338120 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 000150408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 000127368 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 000060296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 001532808 _____ (AMD) C:\Windows\system32\coinst_18.30.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000543624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000373640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000139144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000117128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 016219048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 013290240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 001927264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 001569336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000561544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000472456 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000349064 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe 2018-10-01 10:11 - 2018-09-26 05:29 - 000176008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000153992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000144776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000129928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000067464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe 2018-10-01 10:11 - 2018-09-26 05:29 - 000036744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000033672 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 014957960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 012391304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 000910728 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 000741256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2018-10-01 10:11 - 2018-09-26 05:21 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2018-10-01 10:11 - 2018-09-26 05:20 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2018-10-01 10:11 - 2018-09-26 05:18 - 012897328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 010501008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000205128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000204952 _____ C:\Windows\system32\ativvsvl.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000189136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000173168 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000157144 _____ C:\Windows\system32\ativvsva.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000155176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000009936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000009936 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000578440 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys 2018-10-01 10:11 - 2018-09-26 05:17 - 000489352 _____ (AMD) C:\Windows\system32\atitmm64.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000480648 _____ C:\Windows\system32\dgtrayicon.exe 2018-10-01 10:11 - 2018-09-26 05:17 - 000467848 _____ C:\Windows\system32\GameManager64.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000373640 _____ C:\Windows\SysWOW64\GameManager32.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000240520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000209800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000158088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000115592 _____ (AMD) C:\Windows\system32\atimuixx.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 001619848 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 001183624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 001183624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 000746376 _____ (AMD) C:\Windows\system32\atieclxx.exe 2018-10-01 10:11 - 2018-09-26 05:16 - 000496008 _____ (AMD) C:\Windows\system32\atiesrxx.exe 2018-10-01 10:11 - 2018-09-26 05:16 - 000458632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 000423304 _____ C:\Windows\system32\atieah64.exe 2018-10-01 10:11 - 2018-09-26 05:16 - 000341384 _____ C:\Windows\SysWOW64\atieah32.exe 2018-10-01 10:11 - 2018-09-26 05:15 - 000457096 _____ C:\Windows\system32\amdgfxinfo64.dll 2018-10-01 10:11 - 2018-09-26 05:15 - 000370568 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2018-10-01 10:11 - 2018-09-26 05:15 - 000223624 _____ C:\Windows\system32\Drivers\amdacpksd.sys 2018-10-01 10:11 - 2018-09-26 05:04 - 000902184 _____ C:\Windows\SysWOW64\atiapfxx.blb 2018-10-01 10:11 - 2018-09-26 05:04 - 000902184 _____ C:\Windows\system32\atiapfxx.blb 2018-10-01 10:11 - 2018-09-06 16:03 - 001024862 _____ C:\Windows\system32\amdicdxx.dat 2018-10-01 10:11 - 2018-08-03 17:28 - 000160768 _____ C:\Windows\system32\ativce03.dat 2018-10-01 10:11 - 2018-08-03 17:16 - 000159072 _____ C:\Windows\system32\amde31a.dat 2018-10-01 10:11 - 2018-07-18 19:22 - 000376384 _____ C:\Windows\system32\ativvaxy_vg20_nd.dat 2018-10-01 10:11 - 2018-07-18 19:20 - 000376256 _____ C:\Windows\system32\ativvaxy_gl_nd.dat 2018-10-01 10:11 - 2018-06-25 10:26 - 000000700 _____ C:\Windows\SysWOW64\amd-vulkan32.json 2018-10-01 10:11 - 2018-06-25 10:25 - 000000700 _____ C:\Windows\system32\amd-vulkan64.json 2018-10-01 10:11 - 2018-05-31 21:33 - 000165088 _____ C:\Windows\system32\amde40a.dat 2018-10-01 10:11 - 2018-05-01 21:51 - 000100832 _____ C:\Windows\system32\ativce02.dat 2018-10-01 10:11 - 2018-05-01 21:47 - 000166624 _____ C:\Windows\system32\amde34b.dat 2018-10-01 10:11 - 2018-05-01 21:46 - 000166624 _____ C:\Windows\system32\amde34a.dat 2018-10-01 10:11 - 2018-04-27 16:34 - 000374304 _____ C:\Windows\system32\ativvaxy_el_nd.dat 2018-10-01 10:11 - 2018-04-24 17:32 - 000343328 _____ C:\Windows\system32\ativvaxy_rv.dat 2018-10-01 10:11 - 2018-03-27 17:56 - 000281096 _____ C:\Windows\system32\amdefctb.dat 2018-10-01 10:11 - 2018-03-23 22:50 - 000121392 _____ C:\Windows\system32\kapp_ci.sbin 2018-10-01 10:11 - 2018-03-19 22:49 - 000277792 _____ C:\Windows\system32\ativvaxy_stn_nd.dat 2018-10-01 10:11 - 2018-03-19 22:47 - 000267732 _____ C:\Windows\system32\ativvaxy_FJ.dat 2018-10-01 10:11 - 2018-03-19 22:47 - 000267472 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat 2018-10-01 10:11 - 2018-03-19 22:43 - 000324804 _____ C:\Windows\system32\ativvaxy_vi.dat 2018-10-01 10:11 - 2018-03-19 22:43 - 000324544 _____ C:\Windows\system32\ativvaxy_vi_nd.dat 2018-10-01 10:11 - 2018-03-19 22:41 - 000272160 _____ C:\Windows\system32\ativvaxy_cz_nd.dat 2018-10-01 10:11 - 2018-02-21 18:09 - 000034450 _____ C:\Windows\system32\AMDKernelEvents.man 2018-10-01 10:11 - 2018-02-01 21:46 - 000362624 _____ C:\Windows\system32\ativvaxy_vg20.dat 2018-10-01 10:11 - 2017-10-20 19:33 - 000117072 _____ C:\Windows\system32\kapp_si.sbin 2018-10-01 10:11 - 2017-02-08 01:41 - 000234292 _____ C:\Windows\system32\ativvaxy_cik.dat 2018-10-01 10:11 - 2017-02-08 01:41 - 000234032 _____ C:\Windows\system32\ativvaxy_cik_nd.dat 2018-10-01 10:11 - 2016-09-02 17:24 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin 2018-10-01 10:11 - 2014-11-06 12:53 - 000737410 _____ C:\Windows\system32\atiicdxx.dat 2018-10-01 10:11 - 2013-12-12 15:53 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin 2018-10-01 10:10 - 2018-10-01 10:16 - 000000000 ____D C:\Program Files\AMD 2018-10-01 10:10 - 2018-10-01 10:10 - 000000000 ____D C:\Users\Abdul\AppData\Local\RadeonInstaller 2018-10-01 09:48 - 2018-10-01 09:48 - 000000000 ____D C:\Users\Abdul\Documents\OCCT 2018-10-01 09:48 - 2018-10-01 09:48 - 000000000 ____D C:\Users\Abdul\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me 2018-10-01 09:46 - 2018-10-01 09:46 - 000000967 _____ C:\Users\Abdul\Desktop\OCCT.lnk 2018-10-01 09:46 - 2018-10-01 09:46 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT 2018-10-01 09:46 - 2018-10-01 09:46 - 000000000 ____D C:\Program Files (x86)\OCCTPT 2018-09-25 23:22 - 2018-09-25 23:22 - 000164168 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll 2018-09-25 23:22 - 2018-09-25 23:22 - 000135328 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll 2018-09-25 06:54 - 2018-09-25 06:54 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Eusing 2018-09-25 06:53 - 2018-09-25 06:53 - 000458752 _____ (Eusing Software) C:\Users\Abdul\Downloads\EFClock.exe 2018-09-24 22:18 - 2018-09-24 22:18 - 000023856 _____ C:\cert.cer 2018-09-24 22:18 - 2018-09-24 22:18 - 000000400 _____ C:\disable.vbs 2018-09-24 22:14 - 2018-09-24 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2018-09-24 22:13 - 2018-09-24 22:14 - 001181017 _____ (Igor Pavlov) C:\Windows\7z_installer.exe 2018-09-24 22:13 - 2018-09-24 22:14 - 000000000 ____D C:\Windows\7z 2018-09-24 18:35 - 2018-09-24 18:35 - 007571152 _____ (Malwarebytes) C:\Users\Abdul\Downloads\adwcleaner_7.2.3.1.exe 2018-09-24 11:44 - 2018-09-24 11:44 - 000000202 _____ C:\Users\Abdul\Desktop\WRC 7.url 2018-09-24 11:44 - 2018-09-24 11:44 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2018-09-24 11:38 - 2018-09-24 11:38 - 000000000 ____D C:\Users\Abdul\AppData\Local\Steam 2018-09-24 11:34 - 2018-09-24 11:34 - 000000516 _____ C:\Users\Public\Desktop\Steam.lnk 2018-09-24 11:34 - 2018-09-24 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2018-09-24 11:32 - 2018-09-24 11:32 - 000000673 _____ C:\Users\Public\Desktop\WRC 6 FIA Word Rally Championship.lnk 2018-09-24 11:32 - 2018-09-24 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WRC 6 FIA Word Rally Championship 2018-09-24 11:16 - 2018-09-24 11:16 - 000000000 ____D C:\Program Files (x86)\Steam 2018-09-24 07:01 - 2018-09-24 07:02 - 000000000 __SHD C:\Users\Abdul\AppData\Local\{8R09D6WS-2UMJ-451K-Y8NU-SI9VJ4XXJ3AC} 2018-09-24 07:01 - 2018-09-24 07:01 - 000000154 ___SH C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x64A.dll 2018-09-23 23:14 - 2018-09-24 22:14 - 003761152 _____ (curl, hxxps://curl.haxx.se/) C:\Windows\curl.exe 2018-09-23 23:14 - 2018-09-24 22:14 - 000926208 _____ (The curl library, hxxps://curl.haxx.se/) C:\Windows\libcurl.dll 2018-09-23 23:14 - 2018-09-24 22:14 - 000213947 _____ C:\Windows\curl-ca-bundle.crt 2018-09-23 23:14 - 2018-09-24 22:14 - 000088576 _____ C:\Windows\cmdow.exe 2018-09-23 23:14 - 2018-09-24 22:14 - 000044544 _____ (NirSoft) C:\Windows\nircmd.exe 2018-09-23 23:14 - 2018-09-24 19:08 - 000001562 _____ C:\kdf.ps1 2018-09-23 23:14 - 2018-09-24 07:02 - 000000000 __SHD C:\ProgramData\{S2JQ9NZT-M55Z-GGS1-AIEB-4TSKGK1YWTJU} 2018-09-23 23:14 - 2018-09-23 23:14 - 000000140 ___SH C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x86A.dll 2018-09-23 23:14 - 2018-09-23 23:14 - 000000000 ____D C:\Windows\temps 2018-09-22 01:46 - 2018-09-22 01:46 - 000000000 ____D C:\Users\Abdul\Downloads\WRC.7.FIA.World.Rally.Championship.V1.0.Steamworks.Fix-REVOLT 2018-09-22 01:45 - 2018-09-22 01:45 - 055605894 _____ C:\Users\Abdul\Downloads\WRC.7.FIA.World.Rally.Championship.V1.0.Steamworks.Fix-REVOLT.7z 2018-09-22 01:23 - 2018-09-22 01:23 - 000000000 ____D C:\Users\Abdul\Documents\CPY_SAVES 2018-09-22 01:23 - 2018-09-22 01:23 - 000000000 ____D C:\Users\Abdul\AppData\Local\CrashRpt 2018-09-22 01:23 - 2018-09-22 01:23 - 000000000 ____D C:\Users\Abdul\ansel 2018-09-20 15:22 - 2018-10-02 17:26 - 000000000 ____D C:\Users\Abdul\AppData\LocalLow\Mozilla 2018-09-20 15:22 - 2018-09-20 15:22 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2018-09-20 15:22 - 2018-09-20 15:22 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk 2018-09-20 15:22 - 2018-09-20 15:22 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Mozilla 2018-09-20 15:22 - 2018-09-20 15:22 - 000000000 ____D C:\Users\Abdul\AppData\Local\Mozilla 2018-09-20 15:22 - 2018-09-20 15:22 - 000000000 ____D C:\Program Files\Mozilla Firefox 2018-09-20 15:22 - 2018-09-20 15:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2018-09-20 15:10 - 2018-09-20 15:10 - 000000000 ____D C:\Users\Abdul\AppData\Local\ElevatedDiagnostics 2018-09-11 23:47 - 2018-09-11 23:47 - 000000294 _____ C:\Users\Abdul\Desktop\GRID - Shortcut.lnk 2018-09-11 23:47 - 2018-09-11 23:47 - 000000000 ____D C:\Users\Abdul\Documents\Codemasters 2018-09-11 22:55 - 2018-09-11 22:55 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2018-09-11 22:55 - 2018-09-11 22:55 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2018-09-11 22:55 - 2018-09-11 22:55 - 000121880 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2018-09-11 22:55 - 2018-09-11 22:55 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2018-09-11 22:55 - 2018-09-11 22:55 - 000000000 ____D C:\Program Files (x86)\OpenAL 2018-09-11 22:55 - 2008-04-28 15:53 - 000805400 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpF106.tmp 2018-09-11 22:54 - 2008-04-28 15:53 - 000805400 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpF105.tmp 2018-09-08 13:00 - 2018-09-08 13:00 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf 2018-09-08 12:46 - 2018-09-08 12:46 - 000000000 ____D C:\Program Files\ShanWan 2018-09-08 12:46 - 2018-09-08 12:46 - 000000000 ____D C:\Program Files (x86)\ShanWan 2018-09-08 12:45 - 2018-09-08 12:45 - 000000000 ____D C:\Windows\xbox360driver 2018-09-08 12:45 - 2018-09-08 12:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Xbox 360 Accessories 2018-09-07 19:24 - 2018-09-07 19:24 - 000001306 _____ C:\Users\Public\Desktop\Skype.lnk 2018-09-07 19:24 - 2018-09-07 19:24 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Skype 2018-09-07 19:24 - 2018-09-07 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-10-04 14:23 - 2018-08-13 13:45 - 000000000 ____D C:\Users\Abdul\AppData\Local\Free Download Manager 2018-10-04 13:51 - 2018-08-17 12:28 - 000000000 ____D C:\Users\Abdul\AppData\Local\Adobe 2018-10-04 13:49 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-10-04 13:49 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-10-04 13:47 - 2009-07-14 07:13 - 000781606 _____ C:\Windows\system32\PerfStringBackup.INI 2018-10-04 13:47 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2018-10-04 13:41 - 2018-08-20 12:19 - 000000000 ____D C:\ProgramData\Origin 2018-10-04 13:41 - 2018-08-13 13:21 - 000003186 _____ C:\Windows\System32\Tasks\EVEREST AutoStart 2018-10-04 13:41 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-10-03 07:30 - 2018-08-13 12:39 - 000001516 _____ C:\Users\Abdul\Documents\New Text Document (3).txt 2018-10-03 05:44 - 2018-08-14 18:29 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update 2018-10-02 01:56 - 2018-08-13 12:36 - 000000000 ____D C:\Users\Abdul 2018-10-01 11:29 - 2018-08-17 12:39 - 000000000 ____D C:\Users\Abdul\AppData\Local\NVIDIA 2018-10-01 11:29 - 2018-08-13 12:50 - 000000000 ____D C:\ProgramData\NVIDIA 2018-10-01 11:29 - 2018-08-13 12:49 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2018-10-01 11:29 - 2018-08-13 12:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2018-10-01 11:29 - 2018-08-13 12:47 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2018-10-01 11:29 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\Help 2018-10-01 10:15 - 2018-08-13 12:38 - 000112368 _____ C:\Users\Abdul\AppData\Local\GDIPFONTCACHEV1.DAT 2018-10-01 10:15 - 2009-07-14 06:45 - 000435016 _____ C:\Windows\system32\FNTCACHE.DAT 2018-10-01 10:11 - 2018-08-13 12:50 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2018-09-29 07:13 - 2018-08-13 12:58 - 000000000 ____D C:\Users\Abdul\AppData\Local\CrashDumps 2018-09-26 13:36 - 2018-08-13 12:49 - 000000000 ____D C:\Windows\system32\unknown 2018-09-24 22:08 - 2018-08-13 12:38 - 000002231 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-09-23 19:31 - 2009-07-14 07:08 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2018-09-22 01:23 - 2018-08-13 16:54 - 000000000 ____D C:\Users\Abdul\Documents\My Games 2018-09-20 20:15 - 2018-08-13 12:38 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-09-11 23:47 - 2018-08-13 16:54 - 000000000 ____D C:\ProgramData\Codemasters 2018-09-11 22:55 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2018-09-11 22:48 - 2018-08-13 14:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2018-09-11 09:12 - 2018-08-14 18:29 - 000000000 ____D C:\Program Files\CCleaner 2018-09-08 12:45 - 2018-08-13 17:20 - 000000000 ____D C:\Windows\USB_Vibration ==================== Files in the root of some directories ======= 2018-08-21 15:37 - 2018-08-21 15:37 - 000250173 _____ () C:\Program Files (x86)\SetFSB 2.2.134.98 Free.exe 2018-09-24 07:01 - 2018-09-24 07:01 - 000000154 ___SH () C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x64A.dll 2018-09-23 23:14 - 2018-09-23 23:14 - 000000140 ___SH () C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x86A.dll 2018-08-17 12:41 - 2018-08-17 12:41 - 331075033 _____ () C:\Users\Abdul\AppData\Local\ACCCx4_6_0_391.zip.aamdownload 2018-08-17 12:41 - 2018-08-17 12:41 - 000003672 _____ () C:\Users\Abdul\AppData\Local\ACCCx4_6_0_391.zip.aamdownload.aamd Some files in TEMP: ==================== 2018-08-17 12:41 - 2015-03-05 08:54 - 002212008 _____ (Adobe Systems Incorporated) C:\Users\Abdul\AppData\Local\Temp\AdobeApplicationManager.exe 2018-09-24 07:08 - 2018-09-25 04:42 - 001018880 _____ () C:\Users\Abdul\AppData\Local\Temp\msbuild-1.exe 2018-08-13 12:50 - 2018-06-24 17:40 - 000730560 _____ (NVIDIA Corporation) C:\Users\Abdul\AppData\Local\Temp\nvSCPAPI64.dll 2018-09-26 13:35 - 2018-09-18 15:35 - 000395576 _____ (NVIDIA Corporation) C:\Users\Abdul\AppData\Local\Temp\nvStInst.exe 2018-08-14 18:23 - 2018-08-14 18:23 - 013275736 _____ (Restoro) C:\Users\Abdul\AppData\Local\Temp\RestoroSetup.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2018-10-01 21:31 ==================== End of FRST.txt ============================