Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.10.2018 Ran by Abdul (administrator) on ABDUL-PC (13-10-2018 09:40:41) Running from E:\ Loaded Profiles: Abdul (Available Profiles: Abdul) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Electronic Arts) D:\Origin\OriginWebHelperService.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (FreeDownloadManager.org) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (Valve Corporation) D:\Steam\Steam.exe (Eusing Software) C:\Users\Abdul\Downloads\EFClock.exe (Electronic Arts) D:\Origin\Origin.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Lavalys, Inc.) C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe () D:\Origin\QtWebEngineProcess.exe () D:\Origin\QtWebEngineProcess.exe () D:\Origin\QtWebEngineProcess.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation) HKLM-x32\...\Run: [DelReg] => C:\Program Files (x86)\MSI\DualCoreCenter\DelReg.exe HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-08-10] (Disc Soft Ltd) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [Free Download Manager] => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe [10177536 2018-05-28] (FreeDownloadManager.org) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [Steam] => D:\Steam\steam.exe [3208992 2018-10-13] (Valve Corporation) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [Eusing Clock - Default] => C:\Users\Abdul\Downloads\EFClock.exe [458752 2018-09-25] (Eusing Software) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3113256 2018-10-12] (Electronic Arts) HKU\S-1-5-21-2685662787-1516377248-208156778-1001\...\Run: [OscarEditor] => "C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe" Minimum HKU\S-1-5-21-2685662787-1516377248-208156778-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.100.252 Tcpip\..\Interfaces\{3DFE73EB-9390-4CAD-B3F7-AB7165D3E9F3}: [DhcpNameServer] 192.168.100.252 Tcpip\..\Interfaces\{CA902060-E99E-442D-9020-94FB16409070}: [DhcpNameServer] 192.168.43.1 Internet Explorer: ================== HKU\S-1-5-21-2685662787-1516377248-208156778-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2017-08-23] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-11] (Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-08-15] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: ckf8n3je.default FF ProfilePath: C:\Users\Abdul\AppData\Roaming\Mozilla\Firefox\Profiles\ckf8n3je.default [2018-10-10] FF Extension: (Telemetry coverage) - C:\Users\Abdul\AppData\Roaming\Mozilla\Firefox\Profiles\ckf8n3je.default\features\{74888410-4618-4898-a377-4ad9501a1df4}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-10] [Legacy] FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-08-23] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-13] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems) Chrome: ======= CHR Profile: C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default [2018-10-13] CHR Extension: (Prezentacje) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-13] CHR Extension: (Free Download Manager) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2018-08-13] CHR Extension: (Dokumenty) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-13] CHR Extension: (Dysk Google) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-13] CHR Extension: (YouTube) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-13] CHR Extension: (Arkusze) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-13] CHR Extension: (Dokumenty Google offline) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-12] CHR Extension: (AdBlock) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-09-19] CHR Extension: (Backspace to go Back) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlffgllnjjkheddehpolbanogdeaogbc [2018-08-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-12] CHR Extension: (Konwerter Audio) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2018-08-13] CHR Extension: (Gmail) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-08-13] CHR Extension: (Chrome Media Router) - C:\Users\Abdul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-12] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [File not signed] R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3570792 2018-08-10] (Disc Soft Ltd) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation) S3 Origin Client Service; D:\Origin\OriginClientService.exe [2216256 2018-10-12] (Electronic Arts) R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3087176 2018-10-12] (Electronic Arts) S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [94472 2018-08-17] (Advanced Micro Devices, Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13632 2006-10-19] () R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-08-13] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-08-13] (Disc Soft Ltd) R3 EverestDriver; C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [26752 2010-03-31] () R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] () S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2212496 2014-07-05] (MediaTek Inc.) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation) S3 x3320001; C:\Windows\SysWOW64\drivers\x3320001.sys [42928 2010-06-19] (Your Corporation) R3 x3640001; C:\Windows\System32\drivers\x3640001.sys [67104 2010-06-19] (Your Corporation) S4 NVHDA; system32\drivers\nvhda64v.sys [X] S4 nvlddmkm; system32\DRIVERS\nvlddmkm.sys [X] U4 WdBoot; no ImagePath U4 WdFilter; no ImagePath U4 WdNisDrv; no ImagePath U4 WdNisSvc; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-10-13 06:46 - 2018-10-13 06:46 - 000000000 ____D C:\Users\Abdul\AppData\Local\Microsoft_Corporation 2018-10-12 15:42 - 2018-10-12 15:42 - 000351360 _____ C:\Windows\Minidump\101218-11185-01.dmp 2018-10-12 14:00 - 2018-10-12 17:55 - 000000000 ____D C:\Program Files (x86)\OSCAR Editor X7 2018-10-12 13:59 - 2018-10-12 13:59 - 000000000 ____D C:\Users\Abdul\Desktop\7Key_V12.08V17 2018-10-12 13:56 - 2018-10-12 13:58 - 021107252 _____ C:\Users\Abdul\Desktop\7Key_V12.08V17.zip 2018-10-12 13:00 - 2018-10-13 09:38 - 000000000 ____D C:\Program Files (x86)\Origin Games 2018-10-12 09:05 - 2018-10-12 09:05 - 000000653 _____ C:\Users\Public\Desktop\Battlefield Hardline.lnk 2018-10-12 09:05 - 2018-10-12 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Games 2018-10-12 08:05 - 2018-10-12 07:26 - 000000528 _____ C:\Users\Abdul\Desktop\CPY.ini 2018-10-12 08:05 - 2015-08-10 02:50 - 001153304 ____R (Electronic Arts) C:\Users\Abdul\Desktop\GDFBinary_pl_PL_64.dll 2018-10-12 07:49 - 2018-10-12 07:49 - 000000542 _____ C:\Users\Public\Desktop\Origin.lnk 2018-10-12 07:49 - 2018-10-12 07:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2018-10-12 07:45 - 2018-10-13 09:39 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Origin 2018-10-12 07:45 - 2018-10-12 07:50 - 000000000 ____D C:\Users\Abdul\AppData\Local\Origin 2018-10-12 07:39 - 2018-10-12 07:40 - 063318280 _____ (Electronic Arts) C:\Users\Abdul\Desktop\OriginThinSetup.exe 2018-10-11 20:27 - 2018-10-12 13:32 - 000001621 _____ C:\Users\Abdul\Desktop\PROFSAVE_profile 2018-10-11 20:25 - 2018-10-11 20:27 - 000000000 ____D C:\Users\Abdul\Documents\BFH 2018-10-10 11:52 - 2018-10-10 11:52 - 000004096 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1539165143 2018-10-10 11:52 - 2018-10-10 11:52 - 000001287 _____ C:\Users\Abdul\Desktop\Przeglądarka Opera.lnk 2018-10-10 11:52 - 2018-10-10 11:52 - 000001287 _____ C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2018-10-10 11:52 - 2018-10-10 11:52 - 000000000 ____D C:\Users\Abdul\AppData\Local\Opera Software 2018-10-10 11:51 - 2018-10-10 11:51 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Opera Software 2018-10-09 16:33 - 2018-10-09 16:33 - 000054834 _____ C:\Users\Abdul\Desktop\ABDUL-PC.txt 2018-10-08 15:06 - 2018-10-08 15:06 - 000001272 _____ C:\Users\Abdul\Desktop\Snipping Tool.lnk 2018-10-08 11:06 - 2018-10-08 11:06 - 000000727 _____ C:\Users\Abdul\Desktop\Wolfenstein II The New Colossus.lnk 2018-10-08 11:06 - 2018-10-08 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein II The New Colossus 2018-10-07 00:49 - 2018-10-07 00:56 - 000000000 ____D C:\Users\Abdul\Documents\Battlefield 4 2018-10-06 22:29 - 2018-10-06 22:29 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Steam 2018-10-06 22:28 - 2018-10-06 22:28 - 000000657 _____ C:\Users\Abdul\Desktop\Wolfenstein The Old Blood.lnk 2018-10-06 22:28 - 2018-10-06 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wolfenstein The Old Blood 2018-10-05 06:05 - 2018-10-05 06:05 - 000000000 ____D C:\ProgramData\WRC 6 2018-10-04 14:23 - 2018-10-13 09:40 - 000000000 ____D C:\FRST 2018-10-02 13:11 - 2018-10-02 13:11 - 000000000 ____D C:\ProgramData\Electronic Arts 2018-10-02 12:47 - 2018-10-02 12:47 - 000000779 _____ C:\Users\Public\Desktop\Need for Speed™ Payback.lnk 2018-10-02 12:47 - 2018-10-02 12:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed™ Payback 2018-10-02 09:38 - 2018-10-02 09:38 - 000000963 _____ C:\Users\Abdul\Desktop\TechPowerUp GPU-Z.lnk 2018-10-02 09:38 - 2018-10-02 09:38 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2018-10-02 09:38 - 2018-10-02 09:38 - 000000000 ____D C:\Program Files (x86)\GPU-Z 2018-10-02 01:56 - 2018-10-02 01:56 - 000000000 ____D C:\Users\Abdul\.QtWebEngineProcess 2018-10-02 01:56 - 2018-10-02 01:56 - 000000000 ____D C:\Users\Abdul\.Origin 2018-10-01 10:25 - 2018-10-01 10:25 - 000000000 ____D C:\Users\Abdul\AppData\Local\RadeonSettings 2018-10-01 10:16 - 2018-10-01 10:16 - 000000000 ____D C:\Users\Abdul\AppData\LocalLow\AMD 2018-10-01 10:15 - 2018-10-13 09:36 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2018-10-01 10:15 - 2018-10-01 10:15 - 000000000 ____D C:\Users\Abdul\AppData\Local\AMD 2018-10-01 10:15 - 2018-08-17 17:01 - 000094472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2018-10-01 10:14 - 2018-10-01 10:14 - 000003146 _____ C:\Windows\System32\Tasks\StartCN 2018-10-01 10:14 - 2018-10-01 10:14 - 000003060 _____ C:\Windows\System32\Tasks\StartDVR 2018-10-01 10:14 - 2018-10-01 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings 2018-10-01 10:14 - 2018-10-01 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard 2018-10-01 10:13 - 2018-10-01 10:13 - 000000000 ____D C:\Program Files (x86)\AMD 2018-10-01 10:12 - 2018-10-01 10:12 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies 2018-10-01 10:11 - 2018-09-26 15:20 - 000113256 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll 2018-10-01 10:11 - 2018-09-26 15:20 - 000104840 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys 2018-10-01 10:11 - 2018-09-26 05:48 - 000331144 _____ C:\Windows\system32\clinfo.exe 2018-10-01 10:11 - 2018-09-26 05:48 - 000169864 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2018-10-01 10:11 - 2018-09-26 05:48 - 000146312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2018-10-01 10:11 - 2018-09-26 05:47 - 060112264 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2018-10-01 10:11 - 2018-09-26 05:47 - 026375560 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll 2018-10-01 10:11 - 2018-09-26 05:47 - 021076360 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll 2018-10-01 10:11 - 2018-09-26 05:46 - 049420168 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 012034200 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdvt.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 011980616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 000166240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amduve64.dll 2018-10-01 10:11 - 2018-09-26 05:40 - 000141496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amduve32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 038207880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 031333768 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 012654248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6t.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 012587304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000188112 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000162880 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000134040 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000114976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000103664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll 2018-10-01 10:11 - 2018-09-26 05:39 - 000103664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 047102856 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys 2018-10-01 10:11 - 2018-09-26 05:38 - 015924104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 013778824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 003709832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 003338120 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 000150408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 000127368 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll 2018-10-01 10:11 - 2018-09-26 05:38 - 000060296 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 001532808 _____ (AMD) C:\Windows\system32\coinst_18.30.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000543624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000373640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000139144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll 2018-10-01 10:11 - 2018-09-26 05:37 - 000117128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 016219048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 013290240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 001927264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 001569336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000561544 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000472456 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000349064 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe 2018-10-01 10:11 - 2018-09-26 05:29 - 000176008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000153992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000144776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000129928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000067464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe 2018-10-01 10:11 - 2018-09-26 05:29 - 000036744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll 2018-10-01 10:11 - 2018-09-26 05:29 - 000033672 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 014957960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 012391304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 000910728 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll 2018-10-01 10:11 - 2018-09-26 05:28 - 000741256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll 2018-10-01 10:11 - 2018-09-26 05:21 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap 2018-10-01 10:11 - 2018-09-26 05:20 - 003437632 _____ C:\Windows\system32\atiumd6a.cap 2018-10-01 10:11 - 2018-09-26 05:18 - 012897328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 010501008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000205128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000204952 _____ C:\Windows\system32\ativvsvl.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000189136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000173168 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000157144 _____ C:\Windows\system32\ativvsva.dat 2018-10-01 10:11 - 2018-09-26 05:18 - 000155176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000009936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll 2018-10-01 10:11 - 2018-09-26 05:18 - 000009936 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000578440 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys 2018-10-01 10:11 - 2018-09-26 05:17 - 000489352 _____ (AMD) C:\Windows\system32\atitmm64.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000480648 _____ C:\Windows\system32\dgtrayicon.exe 2018-10-01 10:11 - 2018-09-26 05:17 - 000467848 _____ C:\Windows\system32\GameManager64.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000373640 _____ C:\Windows\SysWOW64\GameManager32.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000240520 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000209800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000158088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000135048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll 2018-10-01 10:11 - 2018-09-26 05:17 - 000115592 _____ (AMD) C:\Windows\system32\atimuixx.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 001619848 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 001183624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 001183624 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 000746376 _____ (AMD) C:\Windows\system32\atieclxx.exe 2018-10-01 10:11 - 2018-09-26 05:16 - 000496008 _____ (AMD) C:\Windows\system32\atiesrxx.exe 2018-10-01 10:11 - 2018-09-26 05:16 - 000458632 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2018-10-01 10:11 - 2018-09-26 05:16 - 000423304 _____ C:\Windows\system32\atieah64.exe 2018-10-01 10:11 - 2018-09-26 05:16 - 000341384 _____ C:\Windows\SysWOW64\atieah32.exe 2018-10-01 10:11 - 2018-09-26 05:15 - 000457096 _____ C:\Windows\system32\amdgfxinfo64.dll 2018-10-01 10:11 - 2018-09-26 05:15 - 000370568 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2018-10-01 10:11 - 2018-09-26 05:15 - 000223624 _____ C:\Windows\system32\Drivers\amdacpksd.sys 2018-10-01 10:11 - 2018-09-26 05:04 - 000902184 _____ C:\Windows\SysWOW64\atiapfxx.blb 2018-10-01 10:11 - 2018-09-26 05:04 - 000902184 _____ C:\Windows\system32\atiapfxx.blb 2018-10-01 10:11 - 2018-09-06 16:03 - 001024862 _____ C:\Windows\system32\amdicdxx.dat 2018-10-01 10:11 - 2018-08-03 17:28 - 000160768 _____ C:\Windows\system32\ativce03.dat 2018-10-01 10:11 - 2018-08-03 17:16 - 000159072 _____ C:\Windows\system32\amde31a.dat 2018-10-01 10:11 - 2018-07-18 19:22 - 000376384 _____ C:\Windows\system32\ativvaxy_vg20_nd.dat 2018-10-01 10:11 - 2018-07-18 19:20 - 000376256 _____ C:\Windows\system32\ativvaxy_gl_nd.dat 2018-10-01 10:11 - 2018-06-25 10:26 - 000000700 _____ C:\Windows\SysWOW64\amd-vulkan32.json 2018-10-01 10:11 - 2018-06-25 10:25 - 000000700 _____ C:\Windows\system32\amd-vulkan64.json 2018-10-01 10:11 - 2018-05-31 21:33 - 000165088 _____ C:\Windows\system32\amde40a.dat 2018-10-01 10:11 - 2018-05-01 21:51 - 000100832 _____ C:\Windows\system32\ativce02.dat 2018-10-01 10:11 - 2018-05-01 21:47 - 000166624 _____ C:\Windows\system32\amde34b.dat 2018-10-01 10:11 - 2018-05-01 21:46 - 000166624 _____ C:\Windows\system32\amde34a.dat 2018-10-01 10:11 - 2018-04-27 16:34 - 000374304 _____ C:\Windows\system32\ativvaxy_el_nd.dat 2018-10-01 10:11 - 2018-04-24 17:32 - 000343328 _____ C:\Windows\system32\ativvaxy_rv.dat 2018-10-01 10:11 - 2018-03-27 17:56 - 000281096 _____ C:\Windows\system32\amdefctb.dat 2018-10-01 10:11 - 2018-03-23 22:50 - 000121392 _____ C:\Windows\system32\kapp_ci.sbin 2018-10-01 10:11 - 2018-03-19 22:49 - 000277792 _____ C:\Windows\system32\ativvaxy_stn_nd.dat 2018-10-01 10:11 - 2018-03-19 22:47 - 000267732 _____ C:\Windows\system32\ativvaxy_FJ.dat 2018-10-01 10:11 - 2018-03-19 22:47 - 000267472 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat 2018-10-01 10:11 - 2018-03-19 22:43 - 000324804 _____ C:\Windows\system32\ativvaxy_vi.dat 2018-10-01 10:11 - 2018-03-19 22:43 - 000324544 _____ C:\Windows\system32\ativvaxy_vi_nd.dat 2018-10-01 10:11 - 2018-03-19 22:41 - 000272160 _____ C:\Windows\system32\ativvaxy_cz_nd.dat 2018-10-01 10:11 - 2018-02-21 18:09 - 000034450 _____ C:\Windows\system32\AMDKernelEvents.man 2018-10-01 10:11 - 2018-02-01 21:46 - 000362624 _____ C:\Windows\system32\ativvaxy_vg20.dat 2018-10-01 10:11 - 2017-10-20 19:33 - 000117072 _____ C:\Windows\system32\kapp_si.sbin 2018-10-01 10:11 - 2017-02-08 01:41 - 000234292 _____ C:\Windows\system32\ativvaxy_cik.dat 2018-10-01 10:11 - 2017-02-08 01:41 - 000234032 _____ C:\Windows\system32\ativvaxy_cik_nd.dat 2018-10-01 10:11 - 2016-09-02 17:24 - 000154384 _____ C:\Windows\system32\samu_krnl_ci.sbin 2018-10-01 10:11 - 2014-11-06 12:53 - 000737410 _____ C:\Windows\system32\atiicdxx.dat 2018-10-01 10:11 - 2013-12-12 15:53 - 000138832 _____ C:\Windows\system32\samu_krnl_isv_ci.sbin 2018-10-01 10:10 - 2018-10-01 10:16 - 000000000 ____D C:\Program Files\AMD 2018-10-01 10:10 - 2018-10-01 10:10 - 000000000 ____D C:\Users\Abdul\AppData\Local\RadeonInstaller 2018-10-01 09:48 - 2018-10-07 15:38 - 000000000 ____D C:\Users\Abdul\Documents\OCCT 2018-10-01 09:48 - 2018-10-01 09:48 - 000000000 ____D C:\Users\Abdul\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me 2018-10-01 09:46 - 2018-10-01 09:46 - 000000967 _____ C:\Users\Abdul\Desktop\OCCT.lnk 2018-10-01 09:46 - 2018-10-01 09:46 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT 2018-10-01 09:46 - 2018-10-01 09:46 - 000000000 ____D C:\Program Files (x86)\OCCTPT 2018-09-25 23:22 - 2018-09-25 23:22 - 000164168 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdihk64.dll 2018-09-25 23:22 - 2018-09-25 23:22 - 000135328 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdihk32.dll 2018-09-25 06:54 - 2018-09-25 06:54 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Eusing 2018-09-25 06:53 - 2018-09-25 06:53 - 000458752 _____ (Eusing Software) C:\Users\Abdul\Downloads\EFClock.exe 2018-09-24 22:18 - 2018-09-24 22:18 - 000023856 _____ C:\cert.cer 2018-09-24 22:18 - 2018-09-24 22:18 - 000000400 _____ C:\disable.vbs 2018-09-24 22:14 - 2018-09-24 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2018-09-24 22:13 - 2018-09-24 22:14 - 001181017 _____ (Igor Pavlov) C:\Windows\7z_installer.exe 2018-09-24 22:13 - 2018-09-24 22:14 - 000000000 ____D C:\Windows\7z 2018-09-24 18:35 - 2018-09-24 18:35 - 007571152 _____ (Malwarebytes) C:\Users\Abdul\Downloads\adwcleaner_7.2.3.1.exe 2018-09-24 11:44 - 2018-09-24 11:44 - 000000202 _____ C:\Users\Abdul\Desktop\WRC 7.url 2018-09-24 11:44 - 2018-09-24 11:44 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2018-09-24 11:38 - 2018-09-24 11:38 - 000000000 ____D C:\Users\Abdul\AppData\Local\Steam 2018-09-24 11:34 - 2018-09-24 11:34 - 000000516 _____ C:\Users\Public\Desktop\Steam.lnk 2018-09-24 11:34 - 2018-09-24 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2018-09-24 07:01 - 2018-09-24 07:02 - 000000000 __SHD C:\Users\Abdul\AppData\Local\{8R09D6WS-2UMJ-451K-Y8NU-SI9VJ4XXJ3AC} 2018-09-24 07:01 - 2018-09-24 07:01 - 000000154 ___SH C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x64A.dll 2018-09-23 23:14 - 2018-09-24 22:14 - 003761152 _____ (curl, hxxps://curl.haxx.se/) C:\Windows\curl.exe 2018-09-23 23:14 - 2018-09-24 22:14 - 000926208 _____ (The curl library, hxxps://curl.haxx.se/) C:\Windows\libcurl.dll 2018-09-23 23:14 - 2018-09-24 22:14 - 000213947 _____ C:\Windows\curl-ca-bundle.crt 2018-09-23 23:14 - 2018-09-24 22:14 - 000088576 _____ C:\Windows\cmdow.exe 2018-09-23 23:14 - 2018-09-24 22:14 - 000044544 _____ (NirSoft) C:\Windows\nircmd.exe 2018-09-23 23:14 - 2018-09-24 19:08 - 000001562 _____ C:\kdf.ps1 2018-09-23 23:14 - 2018-09-24 07:02 - 000000000 __SHD C:\ProgramData\{S2JQ9NZT-M55Z-GGS1-AIEB-4TSKGK1YWTJU} 2018-09-23 23:14 - 2018-09-23 23:14 - 000000140 ___SH C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x86A.dll 2018-09-23 23:14 - 2018-09-23 23:14 - 000000000 ____D C:\Windows\temps 2018-09-22 01:46 - 2018-09-22 01:46 - 000000000 ____D C:\Users\Abdul\Downloads\WRC.7.FIA.World.Rally.Championship.V1.0.Steamworks.Fix-REVOLT 2018-09-22 01:45 - 2018-09-22 01:45 - 055605894 _____ C:\Users\Abdul\Downloads\WRC.7.FIA.World.Rally.Championship.V1.0.Steamworks.Fix-REVOLT.7z 2018-09-22 01:23 - 2018-09-22 01:23 - 000000000 ____D C:\Users\Abdul\Documents\CPY_SAVES 2018-09-22 01:23 - 2018-09-22 01:23 - 000000000 ____D C:\Users\Abdul\AppData\Local\CrashRpt 2018-09-22 01:23 - 2018-09-22 01:23 - 000000000 ____D C:\Users\Abdul\ansel 2018-09-20 15:22 - 2018-10-10 19:08 - 000000000 ____D C:\Program Files\Mozilla Firefox 2018-09-20 15:22 - 2018-10-10 19:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2018-09-20 15:22 - 2018-10-10 11:51 - 000000000 ____D C:\Users\Abdul\AppData\LocalLow\Mozilla 2018-09-20 15:22 - 2018-10-08 17:27 - 000000000 ____D C:\Users\Abdul\AppData\Local\Mozilla 2018-09-20 15:22 - 2018-09-20 15:22 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2018-09-20 15:22 - 2018-09-20 15:22 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk 2018-09-20 15:22 - 2018-09-20 15:22 - 000000000 ____D C:\Users\Abdul\AppData\Roaming\Mozilla 2018-09-20 15:10 - 2018-09-20 15:10 - 000000000 ____D C:\Users\Abdul\AppData\Local\ElevatedDiagnostics ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2018-10-13 09:38 - 2018-08-20 12:19 - 000000000 ____D C:\ProgramData\Origin 2018-10-13 09:38 - 2018-08-13 13:45 - 000000000 ____D C:\Users\Abdul\AppData\Local\Free Download Manager 2018-10-13 09:38 - 2018-08-13 13:21 - 000003186 _____ C:\Windows\System32\Tasks\EVEREST AutoStart 2018-10-13 09:38 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-10-13 09:06 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-10-13 09:06 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-10-13 09:04 - 2009-07-14 07:13 - 000781606 _____ C:\Windows\system32\PerfStringBackup.INI 2018-10-13 09:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2018-10-13 06:50 - 2018-08-17 12:28 - 000000000 ____D C:\Users\Abdul\AppData\Local\Adobe 2018-10-12 15:42 - 2018-08-15 09:30 - 693959939 _____ C:\Windows\MEMORY.DMP 2018-10-12 15:42 - 2018-08-15 09:30 - 000000000 ____D C:\Windows\Minidump 2018-10-12 14:00 - 2018-08-13 14:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2018-10-11 18:00 - 2018-08-13 12:48 - 000000000 ____D C:\ProgramData\Package Cache 2018-10-10 13:16 - 2018-08-13 12:39 - 000001547 _____ C:\Users\Abdul\Documents\New Text Document (3).txt 2018-10-07 17:18 - 2018-08-13 12:49 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2018-10-07 17:18 - 2018-08-13 12:47 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2018-10-07 17:17 - 2018-08-13 12:50 - 000000000 ____D C:\ProgramData\NVIDIA 2018-10-07 17:17 - 2018-08-13 12:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2018-10-07 17:17 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\Help 2018-10-07 15:30 - 2018-08-13 12:58 - 000000000 ____D C:\Users\Abdul\AppData\Local\CrashDumps 2018-10-07 15:27 - 2018-08-13 12:50 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2018-10-07 15:27 - 2018-08-13 12:49 - 000000000 ____D C:\Windows\system32\unknown 2018-10-05 06:05 - 2018-08-13 16:54 - 000000000 ____D C:\Users\Abdul\Documents\My Games 2018-10-05 05:26 - 2018-08-13 16:54 - 000000000 ____D C:\ProgramData\Codemasters 2018-10-05 05:26 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2018-10-04 15:55 - 2018-08-21 15:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUFSB 2018-10-03 05:44 - 2018-08-14 18:29 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update 2018-10-02 01:56 - 2018-08-13 12:36 - 000000000 ____D C:\Users\Abdul 2018-10-01 11:29 - 2018-08-17 12:39 - 000000000 ____D C:\Users\Abdul\AppData\Local\NVIDIA 2018-10-01 10:15 - 2018-08-13 12:38 - 000112368 _____ C:\Users\Abdul\AppData\Local\GDIPFONTCACHEV1.DAT 2018-10-01 10:15 - 2009-07-14 06:45 - 000435016 _____ C:\Windows\system32\FNTCACHE.DAT 2018-09-24 22:08 - 2018-08-13 12:38 - 000002231 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-09-23 19:31 - 2009-07-14 07:08 - 000032636 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2018-09-20 20:15 - 2018-08-13 12:38 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk ==================== Files in the root of some directories ======= 2018-08-21 15:37 - 2018-08-21 15:37 - 000250173 _____ () C:\Program Files (x86)\SetFSB 2.2.134.98 Free.exe 2018-09-24 07:01 - 2018-09-24 07:01 - 000000154 ___SH () C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x64A.dll 2018-09-23 23:14 - 2018-09-23 23:14 - 000000140 ___SH () C:\Users\Abdul\AppData\Local\7601.23391.amd64fre.win7sp1_ldr.160316-0600_x86A.dll 2018-08-17 12:41 - 2018-08-17 12:41 - 331075033 _____ () C:\Users\Abdul\AppData\Local\ACCCx4_6_0_391.zip.aamdownload 2018-08-17 12:41 - 2018-08-17 12:41 - 000003672 _____ () C:\Users\Abdul\AppData\Local\ACCCx4_6_0_391.zip.aamdownload.aamd Some files in TEMP: ==================== 2018-10-07 17:17 - 2018-06-24 17:40 - 000395200 _____ (NVIDIA Corporation) C:\Users\Abdul\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2018-10-05 05:20 ==================== End of FRST.txt ============================