Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

acer aspire 5560G windows 7 recovery UNINSTALL and REINSTALL


  • This topic is locked This topic is locked
2 replies to this topic

#1 robdogg83

robdogg83

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:11 AM

Posted 14 June 2015 - 03:55 AM

i followed instructions from a previous forum

Remove Windows 7 Recovery (Uninstall Guide)

By Lawrence Abrams on May 14, 2011 @ 12:21 PM

 

and followed instructions and posting logs after running Rkill, TDSSKiller and FRST64.

 

Attached File  Addition.txt   21.62KB   3 downloads

Attached File  FRST.txt   62.98KB   5 downloads

Attached File  Rkill.txt   1.99KB   2 downloads

 

if someone could please have a look at my logs and help so i can continue to fix my laptop.

 

cheers Rob

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015

Ran by RoBDoGG (administrator) on ROBDOGG-PC on 14-06-2015 17:13:21

Running from C:\Users\RoBDoGG\Desktop

Loaded Profiles: RoBDoGG (Available Profiles: RoBDoGG)

Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 9 (Default browser: IE)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(AMD) C:\Windows\System32\atiesrxx.exe

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\afwServ.exe

(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe

(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe

(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe

(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe

(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\BingApp.exe

(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe

(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe

 

 

==================== Registry (Whitelisted) ==================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13320808 2011-10-26] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2278504 2011-10-20] (Realtek Semiconductor)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2830120 2011-10-04] (Synaptics Incorporated)

HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831016 2011-08-03] (Acer Incorporated)

HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-02] (Symantec Corporation)

HKLM-x32\...\Run: [Adobe ARM] => c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-06-07] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-13] (Advanced Micro Devices, Inc.)

HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-02] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1081424 2011-03-15] (Dritek System Inc.)

HKLM-x32\...\Run: [ArcadeMovieService] => C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-10-28] (CyberLink Corp.)

HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-21] (Egis Technology Inc.)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-14] (Avast Software s.r.o.)

HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}

HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}

HKU\S-1-5-21-1233259159-1211768280-2418169651-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr [450048 2011-09-02] ()

HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}

Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-15]

ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-14] (Avast Software s.r.o.)

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com

HKU\S-1-5-21-1233259159-1211768280-2418169651-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com

HKU\S-1-5-21-1233259159-1211768280-2418169651-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox

SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox

SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox

SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox

SearchScopes: HKU\S-1-5-21-1233259159-1211768280-2418169651-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-08] (Advanced Micro Devices)

BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-14] (Avast Software s.r.o.)

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)

BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-07] (Adobe Systems Incorporated)

BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2011-06-08] (Advanced Micro Devices)

BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-14] (Avast Software s.r.o.)

BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)

BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-08] (Microsoft Corporation.)

Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-08] (Microsoft Corporation.)

Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

 

FireFox:

========

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll [2010-04-01] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-08] ()

FF Plugin-x32: Adobe Reader -> c:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2011-06-07] (Adobe Systems Inc.)

FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-06-14]

 

Chrome: 

=======

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-14]

 

==================== Services (Whitelisted) =================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-14] (Avast Software s.r.o.)

R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [107448 2015-06-14] (Avast Software s.r.o.)

R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)

R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-14] ()

R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-06-14] (Avast Software s.r.o.)

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-14] (Avast Software s.r.o.)

R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449896 2015-06-14] (Avast Software s.r.o.)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-14] (Avast Software s.r.o.)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-14] ()

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-14] (Avast Software s.r.o.)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-14] (Avast Software s.r.o.)

R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-14] (Avast Software s.r.o.)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-14] ()

S3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-09-01] (Broadcom Corporation.)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-15 06:25 - 2015-06-15 06:25 - 00000000 ____D C:\Windows\NAPP_Dism_Log

2015-06-15 06:25 - 2015-06-15 06:15 - 00001894 _____ C:\Windows\Patch.log

2015-06-15 06:24 - 2015-06-15 06:25 - 00004673 _____ C:\Windows\WisGAPas.log

2015-06-15 06:24 - 2015-06-15 06:24 - 00000919 _____ C:\Windows\MOD01SET74EN0N0008.XML

2015-06-15 06:24 - 2015-06-15 06:22 - 00000267 _____ C:\Windows\LaunApp.ini

2015-06-15 06:23 - 2015-06-15 06:23 - 17786368 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 12279808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 10886656 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 09705472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-06-15 06:23 - 2015-06-15 06:23 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-06-15 06:23 - 2015-06-15 06:23 - 02309120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 02144256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 01798144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 01792000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-06-15 06:23 - 2015-06-15 06:23 - 01427456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-06-15 06:23 - 2015-06-15 06:23 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 01127424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 01103360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00818688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00716800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-06-15 06:23 - 2015-06-15 06:23 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-06-15 06:21 - 2015-06-15 06:21 - 00000000 ____D C:\ProgramData\EgisTec

2015-06-15 06:20 - 2015-06-15 06:20 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2015-06-15 06:20 - 2015-06-15 06:20 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2015-06-15 06:20 - 2015-06-15 06:20 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00580608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-06-15 06:20 - 2015-06-15 06:20 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-06-15 06:20 - 2015-06-15 06:20 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2015-06-15 06:20 - 2015-06-15 06:20 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2015-06-15 06:20 - 2015-06-15 06:20 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2015-06-15 06:20 - 2015-06-15 06:20 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2015-06-15 06:20 - 2015-06-15 06:20 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2015-06-15 06:19 - 2015-06-15 06:19 - 00001973 _____ C:\Users\Public\Desktop\clear.fi Tutorial.lnk

2015-06-15 06:19 - 2012-03-08 16:08 - 00003911 __RSH C:\Patch.rev

2015-06-15 06:19 - 2006-10-19 14:57 - 00000000 _____ C:\Windows\SysWOW64\Drivers\1025_ACER_Acer_Aspire 5560.mrk

2015-06-15 06:19 - 2006-10-19 14:57 - 00000000 _____ C:\Windows\system32\Drivers\1025_ACER_Acer_Aspire 5560.mrk

2015-06-15 06:17 - 2015-06-15 06:21 - 00000000 ____D C:\ProgramData\clear.fi

2015-06-15 06:16 - 2015-06-15 06:16 - 00002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk

2015-06-15 06:16 - 2015-06-15 06:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

2015-06-15 06:15 - 2011-10-04 09:04 - 00392752 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys

2015-06-15 06:15 - 2011-10-04 09:01 - 00169256 _____ (Synaptics Incorporated) C:\Windows\system32\SynGlwPadShlExt.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00415528 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00276776 _____ (Synaptics Incorporated) C:\Windows\system32\SynCtrl.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00226600 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00222504 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCtrl.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00177448 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00148264 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo9.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00107816 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll

2015-06-15 06:15 - 2011-10-04 09:00 - 00066856 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPEnhPS.dll

2015-06-15 06:15 - 2011-09-15 11:41 - 01048576 _____ C:\Windows\system32\syndata.bin

2015-06-15 06:15 - 2011-03-02 16:05 - 03905848 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll

2015-06-15 06:15 - 2011-03-02 16:05 - 03571512 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll

2015-06-15 06:15 - 2011-03-02 16:03 - 04720704 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL664.SYS

2015-06-15 06:15 - 2011-03-02 16:03 - 00095544 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll

2015-06-15 06:15 - 2010-12-02 12:38 - 00281168 _____ (Dritek System Inc.) C:\Windows\UNINSTLMv4.EXE

2015-06-15 06:15 - 2009-08-08 04:19 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll

2015-06-15 06:14 - 2015-06-15 06:14 - 00003340 _____ C:\Windows\System32\Tasks\EgisUpdate

2015-06-15 06:14 - 2015-06-15 06:14 - 00003272 _____ C:\Windows\System32\Tasks\PMMUpdate

2015-06-15 06:14 - 2015-06-15 06:14 - 00000000 ___HD C:\BOOK

2015-06-15 06:14 - 2015-06-15 06:14 - 00000000 ____D C:\Windows\OEMTemp

2015-06-15 06:13 - 2015-06-15 06:31 - 00000000 ____D C:\ProgramData\EgisTec IPS

2015-06-15 06:13 - 2015-06-15 06:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec

2015-06-15 06:13 - 2015-06-15 06:13 - 00062776 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDVDisk.sys

2015-06-15 06:13 - 2015-06-15 06:13 - 00022648 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDFilter.sys

2015-06-15 06:13 - 2015-06-15 06:13 - 00020520 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDNserv.sys

2015-06-15 06:13 - 2015-06-15 06:13 - 00000000 ____D C:\Program Files\EgisTec IPS

2015-06-15 06:13 - 2015-06-15 06:13 - 00000000 ____D C:\Program Files (x86)\EgisTec Shredder

2015-06-15 06:13 - 2015-06-15 06:13 - 00000000 ____D C:\Program Files (x86)\EgisTec MyWinLocker

2015-06-15 06:13 - 2015-06-15 06:13 - 00000000 ____D C:\Program Files (x86)\EgisTec IPS

2015-06-15 06:12 - 2015-06-15 06:12 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys

2015-06-15 06:12 - 2015-06-15 06:12 - 00000000 ____D C:\Program Files (x86)\EgisTec MyWinLockerSuite

2015-06-15 06:12 - 2015-06-14 14:18 - 00000226 _____ C:\Windows\User.xml

2015-06-15 06:12 - 2011-10-13 06:10 - 10207232 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys

2015-06-15 06:12 - 2011-10-13 05:42 - 24604160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll

2015-06-15 06:12 - 2011-10-13 05:34 - 00198664 _____ C:\Windows\system32\atiapfxx.blb

2015-06-15 06:12 - 2011-10-13 05:33 - 00736768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll

2015-06-15 06:12 - 2011-10-13 05:33 - 00159744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe

2015-06-15 06:12 - 2011-10-13 05:32 - 00867328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll

2015-06-15 06:12 - 2011-10-13 05:29 - 00487936 _____ (AMD) C:\Windows\system32\atieclxx.exe

2015-06-15 06:12 - 2011-10-13 05:29 - 00466944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll

2015-06-15 06:12 - 2011-10-13 05:28 - 00204288 _____ (AMD) C:\Windows\system32\atiesrxx.exe

2015-06-15 06:12 - 2011-10-13 05:27 - 00423424 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll

2015-06-15 06:12 - 2011-10-13 05:27 - 00356352 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll

2015-06-15 06:12 - 2011-10-13 05:27 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll

2015-06-15 06:12 - 2011-10-13 05:27 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll

2015-06-15 06:12 - 2011-10-13 05:27 - 00021504 _____ (AMD) C:\Windows\system32\atimuixx.dll

2015-06-15 06:12 - 2011-10-13 05:26 - 18587648 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll

2015-06-15 06:12 - 2011-10-13 05:26 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll

2015-06-15 06:12 - 2011-10-13 05:23 - 04231680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll

2015-06-15 06:12 - 2011-10-13 05:14 - 04960768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll

2015-06-15 06:12 - 2011-10-13 05:13 - 01113088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll

2015-06-15 06:12 - 2011-10-13 05:12 - 04023296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll

2015-06-15 06:12 - 2011-10-13 05:12 - 01828864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll

2015-06-15 06:12 - 2011-10-13 05:08 - 01847904 _____ C:\Windows\system32\atiumd6a.cap

2015-06-15 06:12 - 2011-10-13 05:05 - 09877504 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll

2015-06-15 06:12 - 2011-10-13 05:05 - 00051200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll

2015-06-15 06:12 - 2011-10-13 05:05 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll

2015-06-15 06:12 - 2011-10-13 05:05 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll

2015-06-15 06:12 - 2011-10-13 05:05 - 00044032 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll

2015-06-15 06:12 - 2011-10-13 05:04 - 04289024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll

2015-06-15 06:12 - 2011-10-13 05:02 - 08391680 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll

2015-06-15 06:12 - 2011-10-13 05:02 - 04174848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll

2015-06-15 06:12 - 2011-10-13 05:01 - 01849344 _____ C:\Windows\SysWOW64\atiumdva.cap

2015-06-15 06:12 - 2011-10-13 04:58 - 05431808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll

2015-06-15 06:12 - 2011-10-13 04:57 - 00058880 _____ (AMD) C:\Windows\system32\coinst.dll

2015-06-15 06:12 - 2011-10-13 04:51 - 00479744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll

2015-06-15 06:12 - 2011-10-13 04:51 - 00335872 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll

2015-06-15 06:12 - 2011-10-13 04:51 - 00017408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll

2015-06-15 06:12 - 2011-10-13 04:50 - 00317952 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys

2015-06-15 06:12 - 2011-10-13 04:50 - 00039936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll

2015-06-15 06:12 - 2011-10-13 04:50 - 00032768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll

2015-06-15 06:12 - 2011-10-13 04:50 - 00014336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll

2015-06-15 06:12 - 2011-10-13 04:50 - 00014336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll

2015-06-15 06:12 - 2011-10-13 04:49 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll

2015-06-15 06:12 - 2011-10-13 04:49 - 00040960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll

2015-06-15 06:12 - 2011-10-13 04:49 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll

2015-06-15 06:12 - 2011-10-13 04:49 - 00031744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll

2015-06-15 06:12 - 2011-10-13 04:49 - 00029184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll

2015-06-15 06:12 - 2011-10-13 04:47 - 00054784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll

2015-06-15 06:12 - 2011-10-13 04:47 - 00054784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll

2015-06-15 06:12 - 2011-10-13 04:47 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll

2015-06-15 06:12 - 2011-10-13 04:47 - 00053760 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll

2015-06-15 06:12 - 2011-09-22 21:26 - 00035707 _____ C:\Windows\atiogl.xml

2015-06-15 06:12 - 2011-08-18 09:18 - 00237701 _____ C:\Windows\system32\atiicdxx.dat

2015-06-15 06:12 - 2011-06-17 08:38 - 00079488 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_sata.sys

2015-06-15 06:12 - 2011-06-17 08:38 - 00040064 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_xata.sys

2015-06-15 06:12 - 2011-03-31 08:16 - 00114704 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys

2015-06-15 06:12 - 2011-03-18 07:21 - 00003929 _____ C:\Windows\SysWOW64\atipblag.dat

2015-06-15 06:12 - 2011-03-18 07:21 - 00003929 _____ C:\Windows\system32\atipblag.dat

2015-06-15 06:12 - 2010-08-28 08:03 - 00332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe

2015-06-15 06:12 - 2009-06-23 05:04 - 00051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe

2015-06-15 06:12 - 2009-05-12 11:05 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe

2015-06-15 06:11 - 2015-06-15 06:32 - 00000225 _____ C:\Windows\Factory.xml

2015-06-15 06:11 - 2011-12-27 10:32 - 00519208 _____ (Wistron Corp.) C:\Windows\WGRegOfPEX64.exe

2015-06-15 06:11 - 2011-07-24 07:42 - 00434728 _____ (Wistron Corp.) C:\Windows\WisGAPasx64.exe

2015-06-15 06:11 - 2011-05-10 17:06 - 00494632 _____ (Wistron Corp.) C:\Windows\WisMvImg.exe

2015-06-15 06:11 - 2009-10-28 04:16 - 00342560 _____ (Acer Inc.) C:\Windows\ParseModule_X64.exe

2015-06-15 06:10 - 2015-06-15 06:27 - 00001175 _____ C:\Windows\WPatchProgress.ini

2015-06-15 06:10 - 2015-06-15 06:24 - 00328263 _____ C:\Windows\CapsuleDll.log

2015-06-15 06:10 - 2011-07-24 07:42 - 00357416 _____ (Wistron Corp.) C:\Windows\WisGAPas.exe

2015-06-15 06:10 - 2009-10-28 04:16 - 00231968 _____ (Acer Inc.) C:\Windows\ParseModule_X86.exe

2015-06-15 06:10 - 2009-10-21 00:20 - 00433952 _____ (Wistron Corp.) C:\Windows\CAPSULE.DLL

2015-06-15 06:08 - 2015-06-15 06:17 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\clear.fi

2015-06-15 06:08 - 2015-06-15 06:09 - 00000000 ____D C:\ProgramData\CLSK

2015-06-15 06:08 - 2015-06-15 06:08 - 00003418 _____ C:\Windows\System32\Tasks\clear.fi

2015-06-15 06:08 - 2015-06-15 06:08 - 00003366 _____ C:\Windows\System32\Tasks\DMREngine

2015-06-15 06:08 - 2015-06-15 06:08 - 00003348 _____ C:\Windows\System32\Tasks\clear.fiAgent

2015-06-15 06:08 - 2015-06-15 06:08 - 00002171 _____ C:\Users\Public\Desktop\clear.fi.lnk

2015-06-15 06:08 - 2015-06-15 06:08 - 00000000 ____D C:\Program Files (x86)\Cyberlink

2015-06-15 06:06 - 2015-06-15 06:09 - 00015027 _____ C:\ProgramData\ArcadeDeluxe5.log

2015-06-15 06:06 - 2015-06-15 06:09 - 00000000 ____D C:\ProgramData\CyberLink

2015-06-15 06:05 - 2015-06-15 06:05 - 00000000 _____ C:\Windows\ativpsrm.bin

2015-06-15 06:02 - 2015-06-15 06:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_b57xdbd_01009.Wdf

2015-06-15 06:01 - 2015-06-15 06:01 - 00772430 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2015-06-15 05:57 - 2015-06-15 05:57 - 00000184 _____ C:\Windows\LMv4.UNI

2015-06-15 05:57 - 2015-06-15 05:57 - 00000000 ____D C:\Program Files (x86)\Launch Manager

2015-06-15 05:56 - 2015-06-15 05:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf

2015-06-15 05:56 - 2015-06-15 05:56 - 00000000 ____D C:\Program Files\Synaptics

2015-06-15 05:55 - 2015-06-15 05:56 - 00004702 _____ C:\Windows\DPINST.LOG

2015-06-15 05:55 - 2015-06-15 05:56 - 00001458 _____ C:\Windows\Synaptics.log

2015-06-15 05:55 - 2011-09-01 00:00 - 00620072 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys

2015-06-15 05:54 - 2011-09-01 00:00 - 00178728 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys

2015-06-15 05:54 - 2011-09-01 00:00 - 00167976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys

2015-06-15 05:54 - 2011-09-01 00:00 - 00089640 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwdpan.sys

2015-06-15 05:54 - 2011-09-01 00:00 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys

2015-06-15 05:54 - 2011-09-01 00:00 - 00022056 _____ (Broadcom Corporation.) C:\Windows\system32\btwcoins.dll

2015-06-15 05:54 - 2011-09-01 00:00 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys

2015-06-15 05:53 - 2015-06-15 05:53 - 00000000 ____D C:\Program Files\WIDCOMM

2015-06-15 05:52 - 2015-06-15 06:08 - 00000000 ____D C:\ProgramData\Temp

2015-06-15 05:50 - 2015-06-15 06:06 - 00000000 ____D C:\Dolby PCEE4

2015-06-15 05:50 - 2015-06-15 06:02 - 00000000 ____D C:\Program Files\Broadcom

2015-06-15 05:50 - 2015-06-15 05:50 - 00000000 ____D C:\Windows\Options

2015-06-15 05:50 - 2015-06-15 05:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby

2015-06-15 05:50 - 2009-12-04 08:58 - 00064000 ____N (LSI Corporation) C:\Windows\SysWOW64\agrsmdel.exe

2015-06-15 05:50 - 2009-12-04 08:58 - 00027648 ____N (LSI Corporation) C:\Windows\SysWOW64\agrsco64.dll

2015-06-15 05:49 - 2015-06-15 05:50 - 00000000 ___HD C:\Program Files (x86)\Temp

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Windows\SysWOW64\RTCOM

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Program Files\Realtek

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Program Files\AMD

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Program Files (x86)\Realtek

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Program Files (x86)\AMD APP

2015-06-15 05:49 - 2015-06-15 05:49 - 00000000 ____D C:\Program Files (x86)\AMD

2015-06-15 05:49 - 2011-10-26 12:57 - 02934376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys

2015-06-15 05:49 - 2011-10-26 10:06 - 01892864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat

2015-06-15 05:49 - 2011-10-26 09:36 - 00177052 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT

2015-06-15 05:49 - 2011-10-26 08:23 - 02540136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll

2015-06-15 05:49 - 2011-10-25 07:34 - 01915496 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll

2015-06-15 05:49 - 2011-10-25 07:19 - 02359400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll

2015-06-15 05:49 - 2011-10-19 11:40 - 00099432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll

2015-06-15 05:49 - 2011-10-19 07:25 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll

2015-06-15 05:49 - 2011-09-27 16:11 - 00000024 _____ C:\Windows\system32\Drivers\rtkhdaud.dat

2015-06-15 05:49 - 2011-09-03 07:51 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll

2015-06-15 05:49 - 2011-09-03 07:51 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll

2015-06-15 05:49 - 2011-09-03 07:51 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll

2015-06-15 05:49 - 2011-09-01 12:42 - 01698408 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll

2015-06-15 05:49 - 2011-07-30 09:49 - 00050686 _____ C:\Windows\system32\Drivers\RtPCEE4.DAT

2015-06-15 05:49 - 2011-07-28 18:25 - 02604376 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll

2015-06-15 05:49 - 2011-07-28 18:25 - 02132824 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll

2015-06-15 05:49 - 2011-07-23 13:05 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll

2015-06-15 05:49 - 2011-07-01 09:44 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl

2015-06-15 05:49 - 2011-06-28 08:15 - 03768152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll

2015-06-15 05:49 - 2011-06-01 03:12 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll

2015-06-15 05:49 - 2011-05-06 08:54 - 02085440 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll

2015-06-15 05:49 - 2011-05-03 07:57 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll

2015-06-15 05:49 - 2011-05-03 07:57 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll

2015-06-15 05:49 - 2011-05-03 07:57 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll

2015-06-15 05:49 - 2011-05-03 07:57 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll

2015-06-15 05:49 - 2011-05-03 07:57 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll

2015-06-15 05:49 - 2010-11-19 05:19 - 00121744 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll

2015-06-15 05:49 - 2010-11-09 01:01 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll

2015-06-15 05:49 - 2010-11-09 01:01 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll

2015-06-15 05:49 - 2010-11-09 01:01 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll

2015-06-15 05:49 - 2010-11-09 01:01 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll

2015-06-15 05:49 - 2010-11-09 01:01 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll

2015-06-15 05:49 - 2010-11-09 01:01 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll

2015-06-15 05:49 - 2010-11-04 12:00 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll

2015-06-15 05:49 - 2010-10-04 07:16 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2015-06-15 05:49 - 2010-09-28 03:04 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll

2015-06-15 05:49 - 2010-09-24 10:51 - 00039672 _____ C:\Windows\system32\Drivers\RtPCEE3.DAT

2015-06-15 05:49 - 2010-07-23 10:18 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll

2015-06-15 05:49 - 2010-07-23 10:07 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll

2015-06-15 05:49 - 2010-05-07 11:04 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll

2015-06-15 05:49 - 2010-03-23 06:51 - 00247560 _____ C:\Windows\system32\Drivers\RTConvEQ.dat

2015-06-15 05:49 - 2010-03-23 06:51 - 00001448 _____ C:\Windows\system32\Drivers\RtHdatEx.dat

2015-06-15 05:49 - 2010-02-12 09:15 - 00000176 _____ C:\Windows\system32\Drivers\RTHDAEQ1.dat

2015-06-15 05:49 - 2010-01-27 15:22 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX3.dat

2015-06-15 05:49 - 2009-11-25 03:25 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll

2015-06-15 05:49 - 2009-11-25 03:25 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll

2015-06-15 05:49 - 2009-11-25 03:25 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll

2015-06-15 05:49 - 2009-11-25 03:25 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll

2015-06-15 05:49 - 2009-11-18 11:42 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll

2015-06-15 05:49 - 2008-08-22 07:13 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX2.dat

2015-06-15 05:49 - 2005-06-27 22:59 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX1.dat

2015-06-15 05:49 - 2005-06-27 22:59 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX0.dat

2015-06-15 05:48 - 2015-06-15 05:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center

2015-06-15 05:48 - 2011-08-18 10:14 - 00053376 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys

2015-06-15 05:47 - 2015-06-15 05:48 - 00000000 ____D C:\Program Files (x86)\ATI Technologies

2015-06-15 05:47 - 2015-06-15 05:47 - 00000000 ____D C:\Program Files\ATI

2015-06-15 05:42 - 2015-06-15 05:42 - 00003986 _____ C:\Windows\System32\Tasks\UALU notificatin

2015-06-15 05:41 - 2015-06-15 05:41 - 00000000 ____D C:\Windows\system32\Macromed

2015-06-15 05:39 - 2011-11-17 16:11 - 01731920 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-06-15 05:39 - 2011-11-17 15:08 - 01292080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-06-15 05:38 - 2011-10-26 14:55 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll

2015-06-15 05:38 - 2011-10-26 14:55 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll

2015-06-15 05:38 - 2011-10-26 14:02 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll

2015-06-15 05:38 - 2011-10-26 14:02 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

2015-06-15 05:37 - 2011-11-20 00:28 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2015-06-15 05:37 - 2011-11-19 23:31 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2015-06-15 05:37 - 2011-11-17 16:19 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-06-15 05:37 - 2011-11-17 16:19 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-06-15 05:37 - 2011-11-17 16:14 - 00459232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2015-06-15 05:37 - 2011-11-17 16:05 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-06-15 05:37 - 2011-11-17 16:05 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll

2015-06-15 05:37 - 2011-11-17 16:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-06-15 05:37 - 2011-11-17 16:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-06-15 05:37 - 2011-11-17 16:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-06-15 05:37 - 2011-11-17 16:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-06-15 05:37 - 2011-11-17 16:03 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-06-15 05:37 - 2011-11-17 15:05 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll

2015-06-15 05:37 - 2011-11-17 15:04 - 00224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-06-15 05:37 - 2011-11-17 15:04 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-06-15 05:37 - 2011-11-17 14:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-06-15 05:36 - 2011-11-24 14:22 - 03145216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-06-15 05:35 - 2011-11-05 15:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2015-06-15 05:35 - 2011-11-05 13:56 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

2015-06-15 05:35 - 2011-10-26 14:51 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-06-15 05:35 - 2011-10-15 16:01 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll

2015-06-15 05:35 - 2011-10-15 15:08 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll

2015-06-15 05:33 - 2011-09-30 01:59 - 01923952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2015-06-15 05:33 - 2011-08-30 14:55 - 14173184 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-06-15 05:33 - 2011-08-30 13:51 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-06-15 05:33 - 2011-08-17 14:56 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll

2015-06-15 05:33 - 2011-08-17 14:55 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax

2015-06-15 05:33 - 2011-08-17 13:54 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll

2015-06-15 05:33 - 2011-08-17 13:49 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax

2015-06-15 05:32 - 2015-06-14 16:55 - 00693125 _____ C:\Windows\WindowsUpdate.log

2015-06-15 05:32 - 2011-08-27 15:07 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2015-06-15 05:32 - 2011-08-27 15:07 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll

2015-06-15 05:32 - 2011-08-27 13:56 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2015-06-15 05:32 - 2011-08-27 13:56 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll

2015-06-14 17:13 - 2015-06-14 17:13 - 00013742 _____ C:\Users\RoBDoGG\Desktop\FRST.txt

2015-06-14 17:12 - 2015-06-14 17:13 - 00000000 ____D C:\FRST

2015-06-14 17:09 - 2015-06-14 17:12 - 02109952 _____ (Farbar) C:\Users\RoBDoGG\Desktop\FRST64.exe

2015-06-14 16:26 - 2015-06-14 16:33 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\RoBDoGG\Desktop\123.com.exe

2015-06-14 16:22 - 2015-06-14 16:23 - 00002038 _____ C:\Users\RoBDoGG\Desktop\Rkill.txt

2015-06-14 16:18 - 2015-06-14 16:19 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\RoBDoGG\Desktop\iExplore.exe

2015-06-14 14:42 - 2015-06-14 14:42 - 00001986 _____ C:\Users\Public\Desktop\Avast SafeZone.lnk

2015-06-14 14:42 - 2015-06-14 14:42 - 00001926 _____ C:\Users\Public\Desktop\Avast Premier.lnk

2015-06-14 14:42 - 2015-06-14 14:42 - 00000000 ____D C:\Users\RoBDoGG\AppData\Roaming\AVAST Software

2015-06-14 14:42 - 2015-06-14 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software

2015-06-14 14:40 - 2015-06-14 14:40 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe

2015-06-14 14:40 - 2015-06-14 14:40 - 00272248 _____ C:\Windows\system32\Drivers\aswVmm.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00065736 _____ C:\Windows\system32\Drivers\aswRvrt.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr

2015-06-14 14:40 - 2015-06-14 14:40 - 00029168 _____ C:\Windows\system32\Drivers\aswHwid.sys

2015-06-14 14:40 - 2015-06-14 14:40 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update

2015-06-14 14:40 - 2015-06-14 14:39 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys

2015-06-14 14:40 - 2015-06-14 14:39 - 00028144 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswKbd.sys

2015-06-14 14:39 - 2015-06-14 14:39 - 00449896 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswNdisFlt.sys

2015-06-14 14:39 - 2012-02-17 16:08 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll

2015-06-14 14:39 - 2012-02-17 15:04 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll

2015-06-14 14:39 - 2012-02-17 14:28 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys

2015-06-14 14:39 - 2012-02-17 14:27 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys

2015-06-14 14:24 - 2015-06-14 14:24 - 00000000 ____D C:\Users\RoBDoGG\AppData\Local\EgisTec IPS

2015-06-14 14:24 - 2015-06-14 14:24 - 00000000 ____D C:\Program Files\AVAST Software

2015-06-14 14:22 - 2015-06-14 14:22 - 00000000 ____D C:\ProgramData\AVAST Software

2015-06-14 14:19 - 2014-05-15 01:53 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-06-14 14:19 - 2014-05-15 01:53 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-06-14 14:19 - 2014-05-15 01:53 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-06-14 14:19 - 2014-05-15 01:51 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-06-14 14:18 - 2015-06-14 14:18 - 00000000 ____D C:\Users\RoBDoGG\AppData\Roaming\Adobe

2015-06-14 14:18 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-06-14 14:18 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-06-14 14:18 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-06-14 14:18 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-06-14 14:16 - 2015-06-14 14:16 - 00002609 _____ C:\Users\Public\Desktop\eBay.lnk

2015-06-14 14:16 - 2015-06-14 14:16 - 00001417 _____ C:\Users\RoBDoGG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk

2015-06-14 14:16 - 2015-06-14 14:16 - 00000959 _____ C:\Users\Public\Desktop\Kobo.lnk

2015-06-14 14:16 - 2015-06-14 14:16 - 00000000 ____D C:\Users\RoBDoGG\AppData\Roaming\Screensaver

2015-06-14 14:16 - 2015-06-14 14:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kobo

2015-06-14 14:16 - 2015-06-14 14:16 - 00000000 ____D C:\Program Files (x86)\OEM

2015-06-14 14:16 - 2015-06-14 14:16 - 00000000 ____D C:\Program Files (x86)\Kobo

2015-06-14 14:15 - 2015-06-14 14:17 - 00002318 _____ C:\Windows\WisGRegOffer.log

2015-06-14 14:15 - 2015-06-14 14:17 - 00000000 ____D C:\Users\RoBDoGG\AppData\Local\PowerCinema

2015-06-14 14:15 - 2015-06-14 14:16 - 00001451 _____ C:\Users\RoBDoGG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2015-06-14 14:15 - 2015-06-14 14:15 - 00059968 _____ C:\Users\RoBDoGG\AppData\Local\GDIPFONTCACHEV1.DAT

2015-06-14 14:15 - 2015-06-14 14:15 - 00000122 _____ C:\Windows\WLangUpt.log

2015-06-14 14:15 - 2015-06-14 14:15 - 00000000 ____D C:\Users\RoBDoGG\AppData\Roaming\CyberLink

2015-06-14 14:15 - 2015-06-14 14:15 - 00000000 ____D C:\Users\RoBDoGG\AppData\Local\VirtualStore

2015-06-14 14:15 - 2015-06-14 14:15 - 00000000 ____D C:\Users\RoBDoGG\AppData\Local\Acer

2015-06-14 14:14 - 2015-06-14 14:15 - 00000000 ____D C:\Users\RoBDoGG

2015-06-14 14:14 - 2015-06-14 14:14 - 00000020 ___SH C:\Users\RoBDoGG\ntuser.ini

2015-06-14 14:14 - 2015-06-14 14:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Family Protection

2015-06-14 14:14 - 2011-11-03 09:16 - 00000000 ___RD C:\Users\RoBDoGG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-06-14 14:14 - 2011-11-03 09:16 - 00000000 ___RD C:\Users\RoBDoGG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-06-14 14:14 - 2011-11-03 07:08 - 00000000 ____D C:\Users\RoBDoGG\AppData\Roaming\Macromedia

2015-06-14 14:13 - 2015-06-14 14:13 - 00000000 __SHD C:\Recovery

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-15 06:41 - 2009-07-14 12:50 - 00000000 ____D C:\Windows\rescache

2015-06-15 06:31 - 2011-02-15 10:24 - 00000000 ____D C:\Windows\Panther

2015-06-15 06:31 - 2009-07-14 12:50 - 00000000 ____D C:\Windows\system32\sysprep

2015-06-15 06:30 - 2009-07-14 14:16 - 00005075 _____ C:\Windows\DtcInstall.log

2015-06-15 06:28 - 2009-07-14 15:08 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG

2015-06-15 06:28 - 2009-07-14 15:02 - 00028672 _____ C:\Windows\system32\config\BCD-Template

2015-06-15 06:27 - 2009-03-12 19:00 - 00000000 ____D C:\Windows\LP

2015-06-15 06:24 - 2011-11-03 06:45 - 00024358 _____ C:\Windows\InfoBOM.xml

2015-06-15 06:20 - 2009-07-14 12:50 - 00000000 ____D C:\Windows\PolicyDefinitions

2015-06-15 06:17 - 2011-11-03 07:49 - 00000000 ____D C:\Program Files (x86)\Acer

2015-06-15 06:17 - 2011-11-03 06:54 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2015-06-15 06:15 - 2011-02-12 12:42 - 00000000 ____D C:\Windows\DeployWinRE2

2015-06-15 06:15 - 2009-07-14 12:50 - 00000000 ____D C:\Windows\system32\Recovery

2015-06-15 06:14 - 2011-11-03 07:49 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer

2015-06-15 06:14 - 2011-11-03 07:49 - 00000000 ____D C:\Program Files\Acer

2015-06-15 06:11 - 2009-07-14 15:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-06-15 06:11 - 2009-07-14 15:02 - 00000000 ____D C:\Program Files\Microsoft Games

2015-06-15 06:05 - 2011-11-03 06:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem

2015-06-15 06:02 - 2011-11-03 07:04 - 00000000 ____D C:\Windows\Downloaded Installations

2015-06-15 05:55 - 2009-07-14 12:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

2015-06-15 05:47 - 2009-07-14 12:50 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared

2015-06-15 05:43 - 2011-11-03 06:45 - 00000226 _____ C:\Windows\RCD.xml

2015-06-15 05:42 - 2011-11-03 07:49 - 00002002 _____ C:\Users\Public\Desktop\Acer Registration.lnk

2015-06-15 05:41 - 2011-11-03 06:48 - 00414368 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2015-06-15 05:30 - 2011-02-15 10:26 - 00005949 _____ C:\Windows\TSSysprep.log

2015-06-14 16:53 - 2009-07-14 12:50 - 00000000 ____D C:\Windows\system32\NDF

2015-06-14 16:18 - 2009-07-14 14:43 - 00778150 _____ C:\Windows\system32\PerfStringBackup.INI

2015-06-14 15:45 - 2009-07-14 14:15 - 00024432 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-06-14 15:45 - 2009-07-14 14:15 - 00024432 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-06-14 15:38 - 2011-11-03 06:55 - 00000000 ____D C:\ProgramData\McAfee

2015-06-14 15:37 - 2010-11-21 13:17 - 00010606 _____ C:\Windows\PFRO.log

2015-06-14 15:37 - 2009-07-14 14:38 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-06-14 15:37 - 2009-07-14 14:21 - 00051999 _____ C:\Windows\setupact.log

2015-06-14 15:29 - 2009-07-14 14:15 - 00282960 _____ C:\Windows\system32\FNTCACHE.DAT

2015-06-14 15:02 - 2011-11-03 06:54 - 00000000 ____D C:\ProgramData\oem

2015-06-14 14:18 - 2011-11-03 06:46 - 00000000 __SHD C:\OEM

2015-06-14 14:18 - 2011-11-03 06:27 - 01871039 _____ C:\Windows\launApp.log

2015-06-14 14:18 - 2011-02-15 09:54 - 00000000 __HDC C:\elements

2015-06-14 14:18 - 2009-07-14 15:02 - 00000000 ____D C:\Windows\system32\restore

2015-06-14 14:18 - 2009-07-14 12:50 - 00000000 ____D C:\Windows\Help

2015-06-14 14:15 - 2011-11-03 06:45 - 00557869 _____ C:\Windows\PLaunch.log

2015-06-14 14:15 - 2011-11-03 06:45 - 00000174 __RSH C:\Preload.rev

2015-06-14 14:15 - 2011-11-03 06:45 - 00000166 _____ C:\Windows\WisLangCode.ini

2015-06-14 14:15 - 2011-11-03 06:27 - 00007964 _____ C:\Windows\PatchFul.log

2015-06-14 14:13 - 2009-07-14 12:50 - 00000000 __RHD C:\Users\Public\Libraries

 

==================== Files in the root of some directories =======

 

2015-06-15 06:06 - 2015-06-15 06:09 - 0015027 _____ () C:\ProgramData\ArcadeDeluxe5.log

 

Some files in TEMP:

====================

C:\Users\RoBDoGG\AppData\Local\Temp\0016801434261857mcinst.exe

 

 

==================== Bamital & volsnap Check =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2011-02-15 10:24

 

==================== End of log ============================


Edited by jntkwx, 16 June 2015 - 01:36 PM.
Including logs in post (easier to read)


BC AdBot (Login to Remove)

 


#2 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:07:41 PM

Posted 16 June 2015 - 01:49 PM

Hello Rob, and :welcome: to Bleeping Computer!

 

Ground Rules:

  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met.   :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started   :thumbup2:

===================================================

 

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

 

Note to others: The instructions here are intended for the person who began this topic. If you need help, please create your own topic in the appropriate forum.

 

 

 

I don't see any malware in those logs.
 
:step1: Please download adwcleaner.png AdwCleaner (by Xplode) and save it to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select "Run As Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • After rebooting, a log file (that is saved in C:\AdwCleaner[S#].txt) will open automatically.
    Copy and paste the contents of that logfile in your next reply.

 

:step2: Please download HitmanPro.

  • For 32-bit Operating System - dEMD6.gif.
  • This is the mirror - dEMD6.gif
  • For 64-bit Operating System - dEMD6.gif
  • This is the mirror - dEMD6.gif

2.Launch the program by double clicking on the 5vo5F.jpg icon. (Windows Vista/7 users right click on the HitmanPro icon and select run as administrator).

Note: If the program won't run please then open the program while holding down the left CTRL key until the program is loaded.

3.Click on the next button. You must agree with the terms of EULA. (if asked)

4.Check the box beside "No, I only want to perform a one-time scan to check this computer".

5.Click on the next button.

6.The program will start to scan the computer. The scan will typically take no more than 2-3 minutes.

7.When the scan is done click on drop-down menu of the found entries (if any) and choose - Apply to all => Ignore <= IMPORTANT!!!
 
6-scanfin-choose.jpg
 
8.Click on the next button.

9.Click on the "Save Log" button.

10.Save that file to your desktop and post the content of that file in your next reply.
 
Note: if there isn't a dropdown menu when the scan is done then please don't delete anything and close HitmanPro

Navigate to C:\ProgramData\HitmanPro\Logs open the report and copy and paste it to your next reply.
 
Note: Programdata is hidden by default. Please make sure that you can view all hidden files. Instructions on how to do this can be found here:
How to see hidden files in Windows
 
 
 
:step3: emsisoft_emergency_kit.pnglogo.png

  • Download EmsisoftEmergencyKit, run the exe and extract the content in a folder of your choice like (C:\EEK) by clicking the Extract button.
  • Double-click the desktop-shortcut called Start Emsisoft Emergency Kit to start the tool.
  • Click on the "Yes" button when asked to obtain the latest malware definitions.
  • Once the update is complete click "Scan".
  • Click on the "Yes" button when asked to enable the scan for Potentially Unwanted Applications.
  • Next click on the Full Scan. When the scan complete, click on the View Report button (don't delete or quarantine anything).
  • Please copy and paste the content of the report in your next reply.

 

In your next reply, please include:

  • Adwcleaner log
  • HitmanPro log
  • Emsisoft log
  • How is your computer running now? (Please be as descriptive as possible)

Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif


#3 jntkwx

jntkwx

  • Malware Response Team
  • 4,339 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New England, U.S.A.
  • Local time:07:41 PM

Posted 21 June 2015 - 09:39 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Regards,
Jason

 

Simple and easy ways to keep your computer safe and secure on the Internet

If I am helping you and have not returned in 48 hours, please feel free to send me a PM with a link to the topic.
My help is free... however, if you wish to show appreciation and support me personally fighting against malware, please consider a donation: btn_donate_SM.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users