Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

FRST report - Please do not post other FRST reports in this topic


  • This topic is locked This topic is locked
6 replies to this topic

#1 Guest_PhoenixRisen_*

Guest_PhoenixRisen_*

  • Guests
  • OFFLINE
  •  

Posted 12 September 2014 - 10:51 AM

From my Dell Inspiron 17R 5721

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-09-2014
Ran by Master (administrator) on HOME on 12-09-2014 10:58:55
Running from C:\Users\Master\Desktop
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell) C:\Program Files\Dell\Tech Concierge\srvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\n360.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\n360.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dell) C:\Program Files\Dell\Tech Concierge\cust.exe
(Dell) C:\Program Files\Dell\Tech Concierge\capp.exe
(Dell) C:\Program Files\Dell\Tech Concierge\cutil.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5757328 2012-10-19] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520 2012-11-19] (Realtek Semiconductor)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [143888 2012-06-02] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\.DEFAULT\...\RunOnce: [JRTcleanup] => C:\windows\TEMP\jrt\JRT.bat <===== ATTENTION
HKU\.DEFAULT\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Master\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [397632 2013-05-02] ()
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Run: [Google Update] => C:\Users\Master\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-06-25] (Google Inc.)
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2014-06-05] (TomTom)
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6462744 2014-08-21] (Piriform Ltd)
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Winlogon: [Shell] - <==== ATTENTION 
AppInit_DLLs-x32: 0 => "0" File Not Found
Startup: C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupFaster ()
ShellIconOverlayIdentifiers: OverlayExcluded -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security Suite\Engine64\21.5.0.19\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayPending -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security Suite\Engine64\21.5.0.19\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayProtected -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security Suite\Engine64\21.5.0.19\buShell.dll (Symantec Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
URLSearchHook: HKCU - Default Value = {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
SearchScopes: HKLM - DefaultScope {BDCE2A19-94AD-4EAC-90F0-13192FCAD409} URL = 
SearchScopes: HKLM-x32 - DefaultScope {C77377FE-1997-4140-AC2F-4AD95670DF70} URL = 
SearchScopes: HKLM-x32 - {BDCE2A19-94AD-4EAC-90F0-13192FCAD409} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
SearchScopes: HKCU - {03E58AD9-B894-4939-AF1B-1FCF7EE277C6} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=380920&p={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=SOLTDF&q={searchTerms}&src={referrer:source?}
SearchScopes: HKCU - {0A14967C-84C6-45B4-9E78-082A09E3DF9D} URL = 
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {7B778A05-D20F-5F8F-66DF-EA2ADE1B9C35} URL = http://www.bing.com/search?q={searchTerms}&pc=ZUGO&form=ZGAIDF
SearchScopes: HKCU - {9E0417C5-29B2-4BB8-853C-1AF4FA76542B} URL = http://www.weather.com/search/enhanced?where={searchTerms}
SearchScopes: HKCU - {BDCE2A19-94AD-4EAC-90F0-13192FCAD409} URL = 
SearchScopes: HKCU - {C77377FE-1997-4140-AC2F-4AD95670DF70} URL = 
SearchScopes: HKCU - {E5F5D888-2587-E012-A817-7038F5690F26} URL = http://www.whitesmokestart.com/s/?q={searchTerms}&iesrc=IE-SearchBox&site=Bing&cfg=2-122-0-XbjI
 
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine64\21.5.0.19\coIEPlg.dll (Symantec Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - No Name - {25515A79-C1C7-4B97-97F8-31A711694487} -  No File
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75
 
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Master\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Master\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Master\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Master\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Master\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Master\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Master\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: No Name - C:\Users\Master\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\links@rivalgaming.com [2012-01-15]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2014-03-02]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2014-09-11]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKCU\...\Firefox\Extensions: [{6CEE1AFA-4FF9-B4C1-61FB-DAD39485A1FF}] - C:\Program Files (x86)\ViewPassword-soft\161.xpi
 
Chrome: 
=======
CHR Profile: C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-24]
CHR Extension: (YouTube) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-24]
CHR Extension: (Google Search) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-24]
CHR Extension: (Norton Identity Safe) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-24]
CHR Extension: (Norton Security Toolbar) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-24]
CHR Extension: (Gmail) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-24]
CHR Profile: C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-23]
CHR Extension: (Google Drive) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-23]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-23]
CHR Extension: (YouTube) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-23]
CHR Extension: (Google Search) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-23]
CHR Extension: (Norton Identity Safe) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-23]
CHR Extension: (Norton Security Toolbar) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-23]
CHR Extension: (Google Wallet) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-23]
CHR Extension: (Gmail) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-23]
CHR HKCU\...\Chrome\Extension: [klibnahbojhkanfgaglnlalfkgpcppfi] - C:\Users\Master\AppData\Local\CRE\klibnahbojhkanfgaglnlalfkgpcppfi.crx []
CHR HKLM-x32\...\Chrome\Extension: [klibnahbojhkanfgaglnlalfkgpcppfi] - C:\Users\Master\AppData\Local\CRE\klibnahbojhkanfgaglnlalfkgpcppfi.crx []
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\Exts\Chrome.crx [2014-08-12]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-17] (Adobe Systems Incorporated)
R2 Dell Tech Concierge; C:\Program Files\Dell\Tech Concierge\srvc.exe [107840 2014-02-17] (Dell)
S4 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [File not signed]
S4 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [43520 2012-07-25] (Microsoft Corporation)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
R2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\21.5.0.19\N360.exe [265040 2014-08-01] (Symantec Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [634368 2012-07-25] (Microsoft Corporation)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201872 2012-11-23] (Realtek Semiconductor)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [143288 2014-06-18] (Stardock Software, Inc)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18432 2012-07-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
S4 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BHDrvx64; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20140821.007\BHDrvx64.sys [1588016 2014-08-18] (Symantec Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-25] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [121728 2012-08-27] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1505000.013\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2012-08-05] (OSR Open Systems Resources, Inc.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-12] (Symantec Corporation)
R3 EraserUtilDrv11313; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11313.sys [142128 2014-06-10] (Symantec Corporation)
U3 EraserUtilDrv11410; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11410.sys [142640 2014-09-12] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20140911.001\IDSvia64.sys [633560 2014-08-31] (Symantec Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140911.035\ENG64.SYS [129752 2014-08-21] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140911.035\EX64.SYS [2137304 2014-08-21] (Symantec Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-10-08] (Intel Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
R3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [31472 2013-11-22] (Synaptics Incorporated)
R1 SRTSP; C:\Windows\System32\Drivers\N360x64\1505000.013\SRTSP64.SYS [875736 2014-07-23] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1505000.013\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
S3 ssmirrdr; C:\Windows\system32\DRIVERS\ssmirrdr.sys [10112 2014-01-09] (support.com, Inc)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1505000.013\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1505000.013\SYMEFA64.SYS [1148120 2014-07-23] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1505000.013\SymELAM.sys [23568 2013-09-09] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-03-02] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1505000.013\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1505000.013\SYMNETS.SYS [593112 2014-07-23] (Symantec Corporation)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows ® Win 7 DDK provider)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows ® Win 7 DDK provider)
S1 AntiLog32; \??\C:\Windows\system32\drivers\AntiLog64.sys [X]
S3 cpuz134; \??\C:\Users\Master\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S1 {b525993a-167d-44eb-9f03-5966d1af451f}Gw64; system32\drivers\{b525993a-167d-44eb-9f03-5966d1af451f}Gw64.sys [X]
S1 {c8905eec-9eab-447c-84a8-9e864d454523}Gw64; system32\drivers\{c8905eec-9eab-447c-84a8-9e864d454523}Gw64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-12 10:56 - 2014-09-12 10:59 - 00022736 _____ () C:\Users\Master\Desktop\FRST.txt
2014-09-12 10:55 - 2014-09-12 10:55 - 00000795 _____ () C:\Users\Master\Desktop\FARBAR(FRST)RECOVERY.txt
2014-09-12 10:44 - 2014-09-12 10:44 - 02105856 _____ (Farbar) C:\Users\Master\Desktop\FRST64.exe
2014-09-12 10:30 - 2014-09-12 10:30 - 00000588 _____ () C:\Users\Master\Desktop\DorsetAppleCakeFromHelena.txt
2014-09-11 23:20 - 2014-09-11 23:20 - 00002321 _____ () C:\Users\Master\Desktop\Nortonsupportforbackupissue09112014.txt
2014-09-11 22:48 - 2014-09-11 22:48 - 00000000 ____D () C:\N360_BACKUP
2014-09-11 22:28 - 2014-09-11 23:19 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Rescue RC - c91ca8ea-0069-4cb8-9f1f-86d007de7eff
2014-09-11 22:26 - 2014-09-11 22:26 - 01525056 _____ (LogMeIn, Inc.) C:\Users\Master\Downloads\Support-LogMeInRescue (1).exe
2014-09-11 22:13 - 2014-09-11 22:13 - 00002161 _____ () C:\Users\Master\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-09-11 22:12 - 2014-09-11 22:12 - 00000000 ____D () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-09-11 22:03 - 2014-09-11 22:03 - 09526552 _____ () C:\Users\Master\Desktop\tweaking.com_windows_repair_aio_setup.exe
2014-09-10 14:11 - 2014-09-10 14:11 - 00000255 _____ () C:\Users\Master\Desktop\advanced_disposal.txt
2014-09-10 13:13 - 2014-08-09 04:30 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2014-09-10 13:13 - 2014-08-09 04:29 - 00144896 _____ (Microsoft Corporation) C:\windows\system32\tssdisai.dll
2014-09-10 11:16 - 2014-09-10 11:16 - 00000255 _____ () C:\Users\Master\Documents\advanced_disposal.txt
2014-09-10 10:39 - 2014-09-10 10:39 - 00007320 ____N () C:\bootsqm.dat
2014-09-10 03:07 - 2014-08-16 05:34 - 01407488 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-09-10 03:07 - 2014-08-16 05:34 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2014-09-10 03:07 - 2014-08-16 05:34 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-09-10 03:07 - 2014-08-16 05:33 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-09-10 03:07 - 2014-08-16 05:33 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-09-10 03:07 - 2014-08-16 05:32 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-09-10 03:07 - 2014-08-16 05:32 - 02655232 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-09-10 03:07 - 2014-08-16 05:32 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-09-10 03:07 - 2014-08-16 05:32 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-09-10 03:07 - 2014-08-16 05:32 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-09-10 03:07 - 2014-08-16 03:37 - 01180672 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 02861568 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 02055168 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-09-10 03:07 - 2014-08-16 03:36 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-09-10 03:07 - 2014-03-06 20:47 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-09-10 03:07 - 2013-05-15 18:37 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2014-09-10 03:07 - 2013-05-15 18:35 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2014-09-10 03:07 - 2013-05-14 09:14 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-09-10 03:07 - 2013-05-14 05:23 - 02706432 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-09-10 03:07 - 2013-02-21 06:29 - 00109056 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-09-10 03:07 - 2013-02-21 06:29 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-09-10 03:07 - 2013-02-21 06:29 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-09-10 03:07 - 2013-02-21 06:14 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-09-10 03:07 - 2013-02-19 05:53 - 00534528 _____ (Microsoft Corporation) C:\windows\SysWOW64\uxtheme.dll
2014-09-10 03:07 - 2012-11-08 00:20 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-09-10 03:07 - 2012-11-08 00:20 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-09-10 03:07 - 2012-07-25 23:06 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-09-10 03:06 - 2014-08-16 05:34 - 02239488 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-09-10 03:06 - 2014-08-16 05:33 - 19280384 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-09-10 03:06 - 2014-08-16 05:32 - 15399424 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-09-10 03:06 - 2014-08-16 05:32 - 01508864 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-09-10 03:06 - 2014-08-16 05:32 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-09-10 03:06 - 2014-08-16 03:37 - 01766400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-09-10 03:06 - 2014-08-16 03:36 - 14369280 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-09-10 03:06 - 2014-08-16 03:36 - 13757440 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-09-10 03:06 - 2014-08-16 03:36 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-09-10 03:06 - 2014-08-16 03:35 - 01440768 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-09-10 03:06 - 2013-02-21 06:29 - 00039424 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-09-10 03:06 - 2013-02-21 06:14 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-09-10 01:26 - 2014-08-28 07:34 - 00059400 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-09-10 01:26 - 2014-08-28 02:05 - 00630272 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-09-10 01:26 - 2014-08-28 02:05 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-09-10 01:26 - 2014-08-28 02:05 - 00086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-09-10 01:26 - 2014-08-28 02:05 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-09-10 01:26 - 2014-08-28 02:02 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-09-10 01:26 - 2014-08-28 02:01 - 03285504 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 01623552 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 00253440 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-09-10 01:26 - 2014-08-28 02:01 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\wuaext.dll
2014-09-10 01:26 - 2014-07-31 19:40 - 01287680 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2014-09-10 01:26 - 2014-07-23 23:33 - 00875688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2014-09-10 01:26 - 2014-07-23 23:33 - 00869544 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2014-09-10 01:26 - 2014-06-04 21:12 - 00678600 _____ (Microsoft Corporation) C:\windows\system32\msvcp120_clr0400.dll
2014-09-10 01:26 - 2014-06-03 19:12 - 00536776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp120_clr0400.dll
2014-09-09 23:00 - 2014-09-09 23:00 - 00031122 _____ () C:\Users\Master\Documents\cc_20140909_230043.reg
2014-09-08 00:48 - 2014-09-08 00:48 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Master\Desktop\tdsskiller.exe
2014-09-06 11:04 - 2014-09-06 11:05 - 00000747 _____ () C:\Users\Master\Desktop\XfinintySupport call.txt
2014-09-05 15:17 - 2014-09-12 10:58 - 00000000 ____D () C:\FRST
2014-09-03 19:00 - 2014-09-04 11:57 - 00000000 ____D () C:\Users\Master\Downloads\ASCIIv3_1
2014-09-03 18:59 - 2014-09-03 18:59 - 00292956 _____ () C:\Users\Master\Downloads\ASCIIv3_1.zip
2014-09-03 18:00 - 2014-09-03 18:00 - 00250828 _____ () C:\Users\Master\Desktop\Master-HOME-09.03.14-logs_.zip
2014-09-03 17:09 - 2014-09-03 17:09 - 01792080 _____ (Stardock) C:\Users\Master\Downloads\SDSupportTool.exe
2014-09-03 16:24 - 2014-09-03 16:24 - 00416444 _____ () C:\Users\Master\Documents\932014CCleanerFileNO_DRIV_E_Duplicates_9_3_2014.txt
2014-09-03 16:22 - 2014-09-03 16:22 - 00416444 _____ () C:\Users\Master\Documents\932014CCleanerFileDuplicates_9_3_2014.txt
2014-09-03 03:23 - 2014-09-03 03:23 - 00830248 _____ (SlimWare Utilities, Inc.) C:\Users\Master\Downloads\DriverUpdate-setup.exe
2014-09-03 03:00 - 2014-09-03 03:00 - 00013612 _____ () C:\Users\Master\Downloads\voicemail.wav
2014-09-03 02:22 - 2014-09-03 02:22 - 00000000 ____D () C:\Users\Public\Documents\Stardock
2014-09-03 02:22 - 2014-09-03 02:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2014-09-03 02:22 - 2014-09-03 02:22 - 00000000 ____D () C:\Program Files (x86)\Stardock
2014-09-03 02:10 - 2014-09-03 02:10 - 07961656 _____ () C:\Users\Master\Downloads\Start8_1.45_setup_sd (1).exe
2014-09-03 01:52 - 2014-09-03 17:11 - 00000000 ____D () C:\ProgramData\Stardock
2014-09-03 01:52 - 2014-09-03 01:52 - 00000000 ____D () C:\Users\Master\AppData\Local\Stardock
2014-09-03 01:51 - 2014-09-08 00:54 - 00000000 ____D () C:\Users\Master\Downloads\Stardock
2014-09-02 22:14 - 2014-09-08 00:55 - 00008012 _____ () C:\windows\PFRO.log
2014-09-02 21:39 - 2014-09-02 21:39 - 00000334 _____ () C:\Users\Master\Downloads\3276269-Start8-9_2_2014.csv
2014-09-02 02:23 - 2014-09-02 02:23 - 30517960 _____ (Microsoft Corporation) C:\Users\Master\Downloads\Windows-KB890830-x64-V5.15.exe
2014-09-01 20:33 - 2014-09-01 20:33 - 00002158 _____ () C:\Users\Public\Desktop\Dell Tech Concierge.lnk
2014-09-01 20:33 - 2014-09-01 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Tech Concierge
2014-09-01 19:58 - 2014-09-01 19:58 - 00003440 _____ () C:\windows\System32\Tasks\PCDEventLauncherTask
2014-09-01 19:58 - 2014-09-01 19:58 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-09-01 19:58 - 2014-09-01 19:58 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-09-01 19:52 - 2014-09-01 19:52 - 00000000 ____D () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-01 19:51 - 2014-09-01 19:51 - 00417824 _____ () C:\Users\Master\Downloads\DellSystemDetect.exe
2014-09-01 19:21 - 2014-09-01 19:21 - 00074703 _____ () C:\windows\SysWOW64\mfc45.dat
2014-09-01 19:21 - 2014-09-01 19:21 - 00000000 ____D () C:\Program Files (x86)\iolo
2014-09-01 18:19 - 2014-09-01 18:20 - 00008604 _____ () C:\Users\Master\Documents\cc_20140901_181927.reg
2014-09-01 17:58 - 2014-09-01 17:58 - 00000000 ____D () C:\Users\Master\AppData\Roaming\Thunderbird
2014-09-01 17:58 - 2014-09-01 17:58 - 00000000 ____D () C:\Users\Master\AppData\Local\Thunderbird
2014-09-01 12:34 - 2014-09-01 12:34 - 00130048 _____ () C:\windows\SysWOW64\SpoonUninstall.exe
2014-09-01 12:34 - 2014-09-01 12:34 - 00034358 _____ () C:\windows\SysWOW64\SpoonUninstall-Password Recovery 5.0.bmp
2014-09-01 12:34 - 2014-09-01 12:34 - 00000598 _____ () C:\Users\Administrator\Desktop\Password - Instructions.lnk
2014-09-01 12:34 - 2014-09-01 12:34 - 00000591 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Recovery 5.0.lnk
2014-09-01 12:34 - 2014-09-01 12:34 - 00000581 _____ () C:\windows\SysWOW64\SpoonUninstall-Password Recovery 5.0.dat
2014-09-01 12:34 - 2014-09-01 12:34 - 00000579 _____ () C:\Users\Administrator\Desktop\Password Recovery 5.0.lnk
2014-09-01 12:34 - 2014-09-01 12:34 - 00000000 ____D () C:\password
2014-09-01 07:38 - 2014-09-01 07:38 - 00001417 _____ () C:\Users\Master\Downloads\transaction_activity.csv
2014-09-01 05:23 - 2014-09-04 21:14 - 00000210 _____ () C:\WirelessDiagLog.csv
2014-09-01 00:06 - 2014-09-01 00:06 - 00073936 _____ () C:\Users\Master\Desktop\cc_20140901_000530.reg
2014-08-31 20:14 - 2014-09-06 02:14 - 00286208 ___SH () C:\Users\Master\Documents\Thumbs.db
2014-08-31 07:53 - 2014-09-06 18:59 - 00000000 ____D () C:\Program Files\Defraggler
2014-08-31 07:53 - 2014-08-31 07:54 - 00000000 ____D () C:\Program Files\Speccy
2014-08-31 07:53 - 2014-08-31 07:53 - 00001726 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-08-31 07:53 - 2014-08-31 07:53 - 00001660 _____ () C:\Users\Public\Desktop\Recuva.lnk
2014-08-31 07:53 - 2014-08-31 07:53 - 00000798 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-08-31 07:53 - 2014-08-31 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-08-31 07:53 - 2014-08-31 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2014-08-31 07:53 - 2014-08-31 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2014-08-31 07:50 - 2014-08-31 07:52 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-31 07:50 - 2014-08-31 07:50 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-08-31 07:50 - 2014-08-31 07:50 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-31 07:50 - 2014-08-31 07:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-31 07:49 - 2014-08-31 07:49 - 14125392 _____ (Piriform Ltd) C:\Users\Master\Downloads\CCleanerBundle-0814-Setup.exe
2014-08-31 00:42 - 2014-08-31 00:42 - 00000000 ____D () C:\Users\Master\AppData\Local\Microsoft_Corporation
2014-08-30 17:02 - 2014-08-30 17:02 - 00021546 _____ () C:\Users\Master\Documents\Des.odt
2014-08-27 21:06 - 2014-08-27 21:06 - 00869456 _____ () C:\Users\Master\Downloads\Norton_Removal_Tool.exe
2014-08-27 14:43 - 2014-08-23 02:47 - 04036096 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-08-26 21:15 - 2014-08-26 21:16 - 00002406 _____ () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2014-08-26 18:40 - 2014-05-29 00:04 - 00094552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2014-08-26 18:40 - 2014-05-07 21:34 - 00328024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Classpnp.sys
2014-08-26 15:17 - 2014-08-26 15:18 - 140852175 _____ () C:\Users\Master\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_en-US.exe
2014-08-26 02:27 - 2014-08-26 02:27 - 00003196 _____ () C:\windows\System32\Tasks\{29A82D05-7413-4193-93B3-F9AA8BA7D9BF}
2014-08-25 17:30 - 2014-08-25 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saved Startup Items
2014-08-25 17:28 - 2014-08-25 17:28 - 00000000 ____D () C:\iBTWU
2014-08-25 17:18 - 2014-08-25 17:18 - 00000207 _____ () C:\windows\tweaking.com-regbackup-HOME-Microsoft-Windows-8-(64-bit).dat
2014-08-25 17:18 - 2014-08-25 17:18 - 00000000 ____D () C:\RegBackup
2014-08-25 17:16 - 2014-08-25 17:16 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-08-24 23:10 - 2014-08-24 23:10 - 00003060 _____ () C:\windows\System32\Tasks\{381763AF-A149-460E-B274-B7D710902A89}
2014-08-24 23:09 - 2014-09-01 19:58 - 00000000 ____D () C:\Program Files\My Dell
2014-08-23 23:15 - 2014-08-23 23:18 - 00002342 _____ () C:\Users\Master\Desktop\Google Chrome.lnk
2014-08-23 23:12 - 2014-08-23 23:12 - 00475351 _____ () C:\Users\Master\Desktop\bookmarks_8_23_14.html
2014-08-23 23:02 - 2014-08-23 23:02 - 01525056 _____ (LogMeIn, Inc.) C:\Users\Master\Downloads\Support-LogMeInRescue.exe
2014-08-23 23:02 - 2014-08-23 23:02 - 00002216 _____ () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Symantec Support.lnk
2014-08-23 18:03 - 2014-08-23 18:03 - 02087752 _____ (Dell Inc) C:\Users\Master\Downloads\aulauncher.exe
2014-08-20 09:59 - 2014-08-20 09:59 - 00000000 ____D () C:\windows\ERUNT
2014-08-20 09:26 - 2014-08-20 09:26 - 18767256 _____ (SUPERAntiSpyware) C:\Users\Master\Downloads\SUPERAntiSpyware.exe
2014-08-20 09:23 - 2014-08-20 09:23 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Master\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-20 04:53 - 2014-08-20 04:53 - 05974273 _____ () C:\Users\Master\Documents\dict-en.oxt
2014-08-20 04:52 - 2014-08-20 04:52 - 00029500 _____ () C:\Users\Master\Documents\NortonDiagnostics.odt
2014-08-18 07:46 - 2014-09-02 15:32 - 00705480 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-08-18 07:46 - 2014-09-02 15:32 - 00104904 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-16 16:06 - 2014-08-16 16:06 - 00272808 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-08-16 16:06 - 2014-08-16 16:06 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-08-16 16:06 - 2014-08-16 16:06 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-08-16 16:06 - 2014-08-16 16:06 - 00098216 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-16 16:06 - 2014-08-16 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-16 16:06 - 2014-08-16 16:06 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-16 16:04 - 2014-08-16 16:04 - 29421992 _____ (Oracle Corporation) C:\Users\Master\Downloads\jre-7u67-windows-i586 (1).exe
2014-08-16 16:02 - 2014-08-16 16:02 - 29421992 _____ (Oracle Corporation) C:\Users\Master\Downloads\jre-7u67-windows-i586.exe
2014-08-15 07:25 - 2014-06-10 18:44 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-08-15 07:25 - 2014-06-10 18:43 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-08-15 03:35 - 2014-08-07 02:33 - 00712192 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-08-15 03:35 - 2014-08-06 23:09 - 00556544 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-08-15 03:35 - 2014-07-15 19:03 - 01300992 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-08-15 03:35 - 2014-07-11 22:36 - 01023488 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-08-15 03:35 - 2014-06-12 21:57 - 01453400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-08-15 03:35 - 2014-06-12 21:55 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-08-15 03:34 - 2014-06-19 19:35 - 01312768 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-08-15 03:34 - 2014-06-19 18:24 - 00694272 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-08-15 03:34 - 2014-06-05 13:56 - 00112984 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-08-15 03:34 - 2014-06-05 13:30 - 10116608 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2014-08-15 03:34 - 2014-06-05 13:29 - 02885632 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-08-15 03:34 - 2014-06-05 13:29 - 00393216 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-08-15 03:34 - 2014-06-05 13:28 - 02306560 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-08-15 03:34 - 2014-06-05 13:28 - 02146304 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2014-08-15 03:34 - 2014-06-05 09:12 - 08857600 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2014-08-15 03:34 - 2014-06-05 09:11 - 02416128 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-08-15 03:34 - 2014-06-05 09:11 - 00295424 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-08-15 03:34 - 2014-06-05 09:10 - 02037760 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-08-15 03:34 - 2014-06-05 09:10 - 00754176 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2014-08-13 17:42 - 2014-08-13 17:42 - 00000000 ____D () C:\windows\System32\Tasks\Norton Security Suite
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-12 10:59 - 2014-09-12 10:56 - 00022736 _____ () C:\Users\Master\Desktop\FRST.txt
2014-09-12 10:58 - 2014-09-05 15:17 - 00000000 ____D () C:\FRST
2014-09-12 10:55 - 2014-09-12 10:55 - 00000795 _____ () C:\Users\Master\Desktop\FARBAR(FRST)RECOVERY.txt
2014-09-12 10:44 - 2014-09-12 10:44 - 02105856 _____ (Farbar) C:\Users\Master\Desktop\FRST64.exe
2014-09-12 10:30 - 2014-09-12 10:30 - 00000588 _____ () C:\Users\Master\Desktop\DorsetAppleCakeFromHelena.txt
2014-09-12 10:30 - 2013-02-22 15:07 - 00433152 ___SH () C:\Users\Master\Desktop\Thumbs.db
2014-09-12 10:03 - 2014-06-05 09:15 - 00000922 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1117365386-700382574-2236707266-1001UA.job
2014-09-12 10:02 - 2012-07-26 04:12 - 00000000 ____D () C:\windows\system32\sru
2014-09-12 07:16 - 2013-02-22 09:24 - 00003598 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1117365386-700382574-2236707266-1001
2014-09-12 06:43 - 2014-06-29 21:26 - 01584936 _____ () C:\windows\WindowsUpdate.log
2014-09-12 06:30 - 2013-01-16 16:00 - 00000000 ____D () C:\Users\Master\AppData\Local\LogMeIn Rescue Applet
2014-09-11 23:52 - 2014-06-05 09:15 - 00000870 _____ () C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1117365386-700382574-2236707266-1001Core.job
2014-09-11 23:20 - 2014-09-11 23:20 - 00002321 _____ () C:\Users\Master\Desktop\Nortonsupportforbackupissue09112014.txt
2014-09-11 23:19 - 2014-09-11 22:28 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Rescue RC - c91ca8ea-0069-4cb8-9f1f-86d007de7eff
2014-09-11 22:48 - 2014-09-11 22:48 - 00000000 ____D () C:\N360_BACKUP
2014-09-11 22:26 - 2014-09-11 22:26 - 01525056 _____ (LogMeIn, Inc.) C:\Users\Master\Downloads\Support-LogMeInRescue (1).exe
2014-09-11 22:17 - 2012-07-26 04:12 - 00000000 ___HD () C:\windows\ELAMBKUP
2014-09-11 22:13 - 2014-09-11 22:13 - 00002161 _____ () C:\Users\Master\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2014-09-11 22:12 - 2014-09-11 22:12 - 00000000 ____D () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-09-11 22:03 - 2014-09-11 22:03 - 09526552 _____ () C:\Users\Master\Desktop\tweaking.com_windows_repair_aio_setup.exe
2014-09-11 03:02 - 2012-07-26 03:59 - 00000000 ____D () C:\windows\CbsTemp
2014-09-11 01:42 - 2012-07-26 03:22 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-10 22:00 - 2012-07-26 01:26 - 00262144 ___SH () C:\windows\system32\config\BBI
2014-09-10 20:12 - 2014-05-18 09:11 - 00718848 ___SH () C:\Users\Master\Downloads\Thumbs.db
2014-09-10 14:11 - 2014-09-10 14:11 - 00000255 _____ () C:\Users\Master\Desktop\advanced_disposal.txt
2014-09-10 11:53 - 2012-07-26 04:12 - 00000000 ____D () C:\windows\rescache
2014-09-10 11:16 - 2014-09-10 11:16 - 00000255 _____ () C:\Users\Master\Documents\advanced_disposal.txt
2014-09-10 10:41 - 2012-07-26 01:26 - 00262144 ___SH () C:\windows\system32\config\ELAM
2014-09-10 10:39 - 2014-09-10 10:39 - 00007320 ____N () C:\bootsqm.dat
2014-09-10 03:08 - 2013-02-22 10:44 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-10 03:06 - 2013-08-14 17:23 - 00000000 ____D () C:\windows\system32\MRT
2014-09-10 03:01 - 2013-02-22 09:40 - 101694776 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-09-09 23:00 - 2014-09-09 23:00 - 00031122 _____ () C:\Users\Master\Documents\cc_20140909_230043.reg
2014-09-08 09:08 - 2009-03-12 21:56 - 00000000 ____D () C:\Users\Master\Documents\My Received Files
2014-09-08 00:55 - 2014-09-02 22:14 - 00008012 _____ () C:\windows\PFRO.log
2014-09-08 00:54 - 2014-09-03 01:51 - 00000000 ____D () C:\Users\Master\Downloads\Stardock
2014-09-08 00:48 - 2014-09-08 00:48 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Master\Desktop\tdsskiller.exe
2014-09-06 18:59 - 2014-08-31 07:53 - 00000000 ____D () C:\Program Files\Defraggler
2014-09-06 11:05 - 2014-09-06 11:04 - 00000747 _____ () C:\Users\Master\Desktop\XfinintySupport call.txt
2014-09-06 02:14 - 2014-08-31 20:14 - 00286208 ___SH () C:\Users\Master\Documents\Thumbs.db
2014-09-04 23:06 - 2012-07-26 04:12 - 00000000 ____D () C:\windows\AUInstallAgent
2014-09-04 21:14 - 2014-09-01 05:23 - 00000210 _____ () C:\WirelessDiagLog.csv
2014-09-04 11:57 - 2014-09-03 19:00 - 00000000 ____D () C:\Users\Master\Downloads\ASCIIv3_1
2014-09-03 18:59 - 2014-09-03 18:59 - 00292956 _____ () C:\Users\Master\Downloads\ASCIIv3_1.zip
2014-09-03 18:00 - 2014-09-03 18:00 - 00250828 _____ () C:\Users\Master\Desktop\Master-HOME-09.03.14-logs_.zip
2014-09-03 17:11 - 2014-09-03 01:52 - 00000000 ____D () C:\ProgramData\Stardock
2014-09-03 17:09 - 2014-09-03 17:09 - 01792080 _____ (Stardock) C:\Users\Master\Downloads\SDSupportTool.exe
2014-09-03 16:24 - 2014-09-03 16:24 - 00416444 _____ () C:\Users\Master\Documents\932014CCleanerFileNO_DRIV_E_Duplicates_9_3_2014.txt
2014-09-03 16:22 - 2014-09-03 16:22 - 00416444 _____ () C:\Users\Master\Documents\932014CCleanerFileDuplicates_9_3_2014.txt
2014-09-03 09:10 - 2012-07-26 03:28 - 00850046 _____ () C:\windows\system32\PerfStringBackup.INI
2014-09-03 03:24 - 2013-01-15 19:13 - 00000000 ____D () C:\Users\Master\AppData\Local\SlimWare Utilities Inc
2014-09-03 03:24 - 2012-05-03 20:06 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-09-03 03:23 - 2014-09-03 03:23 - 00830248 _____ (SlimWare Utilities, Inc.) C:\Users\Master\Downloads\DriverUpdate-setup.exe
2014-09-03 03:12 - 2012-07-26 04:12 - 00000000 ____D () C:\windows\system32\NDF
2014-09-03 03:00 - 2014-09-03 03:00 - 00013612 _____ () C:\Users\Master\Downloads\voicemail.wav
2014-09-03 02:22 - 2014-09-03 02:22 - 00000000 ____D () C:\Users\Public\Documents\Stardock
2014-09-03 02:22 - 2014-09-03 02:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2014-09-03 02:22 - 2014-09-03 02:22 - 00000000 ____D () C:\Program Files (x86)\Stardock
2014-09-03 02:10 - 2014-09-03 02:10 - 07961656 _____ () C:\Users\Master\Downloads\Start8_1.45_setup_sd (1).exe
2014-09-03 01:52 - 2014-09-03 01:52 - 00000000 ____D () C:\Users\Master\AppData\Local\Stardock
2014-09-02 21:39 - 2014-09-02 21:39 - 00000334 _____ () C:\Users\Master\Downloads\3276269-Start8-9_2_2014.csv
2014-09-02 15:32 - 2014-08-18 07:46 - 00705480 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-09-02 15:32 - 2014-08-18 07:46 - 00104904 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-02 02:23 - 2014-09-02 02:23 - 30517960 _____ (Microsoft Corporation) C:\Users\Master\Downloads\Windows-KB890830-x64-V5.15.exe
2014-09-02 01:32 - 2013-02-22 20:41 - 00000000 ____D () C:\Users\Master\AppData\Local\CrashDumps
2014-09-01 20:33 - 2014-09-01 20:33 - 00002158 _____ () C:\Users\Public\Desktop\Dell Tech Concierge.lnk
2014-09-01 20:33 - 2014-09-01 20:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Tech Concierge
2014-09-01 20:33 - 2013-02-02 04:03 - 00000000 ____D () C:\Program Files\Dell
2014-09-01 20:15 - 2013-02-02 04:19 - 00000000 ____D () C:\Temp
2014-09-01 19:58 - 2014-09-01 19:58 - 00003440 _____ () C:\windows\System32\Tasks\PCDEventLauncherTask
2014-09-01 19:58 - 2014-09-01 19:58 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2014-09-01 19:58 - 2014-09-01 19:58 - 00000000 ____D () C:\Program Files\Dell Support Center
2014-09-01 19:58 - 2014-08-24 23:09 - 00000000 ____D () C:\Program Files\My Dell
2014-09-01 19:58 - 2013-05-21 19:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-01 19:52 - 2014-09-01 19:52 - 00000000 ____D () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-01 19:52 - 2013-02-22 15:19 - 00000000 ____D () C:\Users\Master\AppData\Local\Deployment
2014-09-01 19:51 - 2014-09-01 19:51 - 00417824 _____ () C:\Users\Master\Downloads\DellSystemDetect.exe
2014-09-01 19:28 - 2009-08-25 03:52 - 00000000 ____D () C:\ProgramData\iolo
2014-09-01 19:21 - 2014-09-01 19:21 - 00074703 _____ () C:\windows\SysWOW64\mfc45.dat
2014-09-01 19:21 - 2014-09-01 19:21 - 00000000 ____D () C:\Program Files (x86)\iolo
2014-09-01 18:20 - 2014-09-01 18:19 - 00008604 _____ () C:\Users\Master\Documents\cc_20140901_181927.reg
2014-09-01 17:58 - 2014-09-01 17:58 - 00000000 ____D () C:\Users\Master\AppData\Roaming\Thunderbird
2014-09-01 17:58 - 2014-09-01 17:58 - 00000000 ____D () C:\Users\Master\AppData\Local\Thunderbird
2014-09-01 12:34 - 2014-09-01 12:34 - 00130048 _____ () C:\windows\SysWOW64\SpoonUninstall.exe
2014-09-01 12:34 - 2014-09-01 12:34 - 00034358 _____ () C:\windows\SysWOW64\SpoonUninstall-Password Recovery 5.0.bmp
2014-09-01 12:34 - 2014-09-01 12:34 - 00000598 _____ () C:\Users\Administrator\Desktop\Password - Instructions.lnk
2014-09-01 12:34 - 2014-09-01 12:34 - 00000591 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Recovery 5.0.lnk
2014-09-01 12:34 - 2014-09-01 12:34 - 00000581 _____ () C:\windows\SysWOW64\SpoonUninstall-Password Recovery 5.0.dat
2014-09-01 12:34 - 2014-09-01 12:34 - 00000579 _____ () C:\Users\Administrator\Desktop\Password Recovery 5.0.lnk
2014-09-01 12:34 - 2014-09-01 12:34 - 00000000 ____D () C:\password
2014-09-01 07:38 - 2014-09-01 07:38 - 00001417 _____ () C:\Users\Master\Downloads\transaction_activity.csv
2014-09-01 05:19 - 2013-02-02 04:10 - 00000000 ____D () C:\ProgramData\CyberLink
2014-09-01 00:06 - 2014-09-01 00:06 - 00073936 _____ () C:\Users\Master\Desktop\cc_20140901_000530.reg
2014-09-01 00:04 - 2014-05-15 17:01 - 00000000 ____D () C:\windows\Minidump
2014-09-01 00:01 - 2009-03-12 21:56 - 00000000 ____D () C:\Users\Master\Documents\Recuva
2014-08-31 07:54 - 2014-08-31 07:53 - 00000000 ____D () C:\Program Files\Speccy
2014-08-31 07:53 - 2014-08-31 07:53 - 00001726 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-08-31 07:53 - 2014-08-31 07:53 - 00001660 _____ () C:\Users\Public\Desktop\Recuva.lnk
2014-08-31 07:53 - 2014-08-31 07:53 - 00000798 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-08-31 07:53 - 2014-08-31 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-08-31 07:53 - 2014-08-31 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2014-08-31 07:53 - 2014-08-31 07:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2014-08-31 07:53 - 2014-07-18 16:35 - 00000000 ____D () C:\Program Files\Recuva
2014-08-31 07:52 - 2014-08-31 07:50 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-31 07:50 - 2014-08-31 07:50 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-08-31 07:50 - 2014-08-31 07:50 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-08-31 07:50 - 2014-08-31 07:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-08-31 07:49 - 2014-08-31 07:49 - 14125392 _____ (Piriform Ltd) C:\Users\Master\Downloads\CCleanerBundle-0814-Setup.exe
2014-08-31 07:44 - 2012-08-17 11:22 - 00000000 ____D () C:\Users\Master\AppData\Local\NPE
2014-08-31 00:42 - 2014-08-31 00:42 - 00000000 ____D () C:\Users\Master\AppData\Local\Microsoft_Corporation
2014-08-30 18:04 - 2014-07-13 18:35 - 00007599 _____ () C:\Users\Master\AppData\Local\Resmon.ResmonCfg
2014-08-30 17:02 - 2014-08-30 17:02 - 00021546 _____ () C:\Users\Master\Documents\Des.odt
2014-08-29 21:36 - 2013-02-22 09:16 - 00000000 ____D () C:\Users\Master
2014-08-28 07:34 - 2014-09-10 01:26 - 00059400 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-08-28 02:05 - 2014-09-10 01:26 - 00630272 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-08-28 02:05 - 2014-09-10 01:26 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-08-28 02:05 - 2014-09-10 01:26 - 00086528 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-08-28 02:05 - 2014-09-10 01:26 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-08-28 02:02 - 2014-09-10 01:26 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-08-28 02:01 - 2014-09-10 01:26 - 03285504 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 01623552 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 00253440 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-08-28 02:01 - 2014-09-10 01:26 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\wuaext.dll
2014-08-27 21:22 - 2014-07-11 14:21 - 00397768 _____ () C:\windows\system32\FNTCACHE.DAT
2014-08-27 21:06 - 2014-08-27 21:06 - 00869456 _____ () C:\Users\Master\Downloads\Norton_Removal_Tool.exe
2014-08-26 21:16 - 2014-08-26 21:15 - 00002406 _____ () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2014-08-26 16:15 - 2014-07-18 19:24 - 00000550 _____ () C:\backup.status
2014-08-26 15:18 - 2014-08-26 15:17 - 140852175 _____ () C:\Users\Master\Downloads\Apache_OpenOffice_4.1.1_Win_x86_install_en-US.exe
2014-08-26 02:27 - 2014-08-26 02:27 - 00003196 _____ () C:\windows\System32\Tasks\{29A82D05-7413-4193-93B3-F9AA8BA7D9BF}
2014-08-26 02:18 - 2014-01-31 17:15 - 00000538 _____ () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Online Checkers  Pogo.com Board Games.website
2014-08-26 02:01 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-25 17:30 - 2014-08-25 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saved Startup Items
2014-08-25 17:30 - 2012-07-26 01:26 - 00000312 _____ () C:\windows\win.ini
2014-08-25 17:28 - 2014-08-25 17:28 - 00000000 ____D () C:\iBTWU
2014-08-25 17:23 - 2013-02-02 04:10 - 00850046 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-08-25 17:18 - 2014-08-25 17:18 - 00000207 _____ () C:\windows\tweaking.com-regbackup-HOME-Microsoft-Windows-8-(64-bit).dat
2014-08-25 17:18 - 2014-08-25 17:18 - 00000000 ____D () C:\RegBackup
2014-08-25 17:16 - 2014-08-25 17:16 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-08-25 15:44 - 2012-05-08 07:37 - 00000000 ____D () C:\DELL
2014-08-24 23:10 - 2014-08-24 23:10 - 00003060 _____ () C:\windows\System32\Tasks\{381763AF-A149-460E-B274-B7D710902A89}
2014-08-23 23:18 - 2014-08-23 23:15 - 00002342 _____ () C:\Users\Master\Desktop\Google Chrome.lnk
2014-08-23 23:12 - 2014-08-23 23:12 - 00475351 _____ () C:\Users\Master\Desktop\bookmarks_8_23_14.html
2014-08-23 23:02 - 2014-08-23 23:02 - 01525056 _____ (LogMeIn, Inc.) C:\Users\Master\Downloads\Support-LogMeInRescue.exe
2014-08-23 23:02 - 2014-08-23 23:02 - 00002216 _____ () C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Symantec Support.lnk
2014-08-23 18:12 - 2013-02-02 04:09 - 00000000 ____D () C:\ProgramData\PCDr
2014-08-23 18:03 - 2014-08-23 18:03 - 02087752 _____ (Dell Inc) C:\Users\Master\Downloads\aulauncher.exe
2014-08-23 16:52 - 2014-08-07 08:49 - 00000000 ____D () C:\Users\Master\AppData\Local\FluxSoftware
2014-08-23 02:47 - 2014-08-27 14:43 - 04036096 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-08-20 09:59 - 2014-08-20 09:59 - 00000000 ____D () C:\windows\ERUNT
2014-08-20 09:26 - 2014-08-20 09:26 - 18767256 _____ (SUPERAntiSpyware) C:\Users\Master\Downloads\SUPERAntiSpyware.exe
2014-08-20 09:23 - 2014-08-20 09:23 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Master\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-20 09:23 - 2009-03-13 18:40 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-20 04:53 - 2014-08-20 04:53 - 05974273 _____ () C:\Users\Master\Documents\dict-en.oxt
2014-08-20 04:52 - 2014-08-20 04:52 - 00029500 _____ () C:\Users\Master\Documents\NortonDiagnostics.odt
2014-08-18 07:42 - 2014-07-11 13:53 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-08-18 07:42 - 2012-07-26 04:12 - 00000000 ___RD () C:\windows\ToastData
2014-08-16 16:06 - 2014-08-16 16:06 - 00272808 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2014-08-16 16:06 - 2014-08-16 16:06 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2014-08-16 16:06 - 2014-08-16 16:06 - 00175528 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2014-08-16 16:06 - 2014-08-16 16:06 - 00098216 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-16 16:06 - 2014-08-16 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-16 16:06 - 2014-08-16 16:06 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-16 16:06 - 2013-12-18 11:49 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-16 16:04 - 2014-08-16 16:04 - 29421992 _____ (Oracle Corporation) C:\Users\Master\Downloads\jre-7u67-windows-i586 (1).exe
2014-08-16 16:02 - 2014-08-16 16:02 - 29421992 _____ (Oracle Corporation) C:\Users\Master\Downloads\jre-7u67-windows-i586.exe
2014-08-16 05:34 - 2014-09-10 03:07 - 01407488 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-08-16 05:34 - 2014-09-10 03:07 - 00915968 _____ (Microsoft Corporation) C:\windows\system32\uxtheme.dll
2014-08-16 05:34 - 2014-09-10 03:07 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-08-16 05:34 - 2014-09-10 03:06 - 02239488 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-08-16 05:33 - 2014-09-10 03:07 - 00603136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-08-16 05:33 - 2014-09-10 03:07 - 00097280 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-08-16 05:33 - 2014-09-10 03:06 - 19280384 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-08-16 05:32 - 2014-09-10 03:07 - 03959296 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-08-16 05:32 - 2014-09-10 03:07 - 02655232 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-08-16 05:32 - 2014-09-10 03:07 - 00855552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-08-16 05:32 - 2014-09-10 03:07 - 00451584 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-08-16 05:32 - 2014-09-10 03:07 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-08-16 05:32 - 2014-09-10 03:06 - 15399424 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-08-16 05:32 - 2014-09-10 03:06 - 01508864 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-08-16 05:32 - 2014-09-10 03:06 - 00255488 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-08-16 03:37 - 2014-09-10 03:07 - 01180672 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-08-16 03:37 - 2014-09-10 03:06 - 01766400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 02861568 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 02055168 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 00493056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-08-16 03:36 - 2014-09-10 03:07 - 00080384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-08-16 03:36 - 2014-09-10 03:06 - 14369280 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-08-16 03:36 - 2014-09-10 03:06 - 13757440 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-08-16 03:36 - 2014-09-10 03:06 - 00226816 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-08-16 03:35 - 2014-09-10 03:06 - 01440768 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-08-13 17:42 - 2014-08-13 17:42 - 00000000 ____D () C:\windows\System32\Tasks\Norton Security Suite
2014-08-13 17:36 - 2014-03-02 23:44 - 00003228 _____ () C:\windows\System32\Tasks\Norton WSC Integration
2014-08-13 17:36 - 2014-03-02 23:44 - 00002442 _____ () C:\Users\Public\Desktop\Norton Security Suite.lnk
2014-08-13 17:36 - 2014-03-02 23:43 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Suite
2014-08-13 17:36 - 2014-03-02 23:43 - 00000000 ____D () C:\windows\system32\Drivers\N360x64
 
Files to move or delete:
====================
C:\Users\Administrator\ntuser (1).dat
C:\ProgramData\MainApp.dll
C:\Users\Master\Agent.Dat
C:\Users\Master\Cards.Dat
C:\Users\Master\Houses.Dat
C:\Users\Master\Letters.Dat
C:\Users\Master\microsoft.dat
C:\Users\Master\ntuser (1).dat
C:\Users\Master\Numbers.Dat
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-09-11 03:00

Attached Files


Edited by hamluis, 12 September 2014 - 10:57 AM.
Moved from Win 8 to Malware Removal Logs - Hamluis.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,909 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada

Posted 12 September 2014 - 01:46 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start
(Dell) C:\Program Files\Dell\Tech Concierge\srvc.exe
HKU\.DEFAULT\...\RunOnce: [JRTcleanup] => C:\windows\TEMP\jrt\JRT.bat <===== ATTENTION
HKU\S-1-5-21-1117365386-700382574-2236707266-1001\...\Winlogon: [Shell] - <==== ATTENTION
AppInit_DLLs-x32: 0 => "0" File Not Found
SearchScopes: HKLM-x32 - {BDCE2A19-94AD-4EAC-90F0-13192FCAD409} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
SearchScopes: HKCU - {7B778A05-D20F-5F8F-66DF-EA2ADE1B9C35} URL = http://www.bing.com/search?q={searchTerms}&pc=ZUGO&form=ZGAIDF
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=S1122&geo=US&ver=21&locale=en_US&gct=kwd&qsrc=2869
Toolbar: HKLM-x32 - No Name - {25515A79-C1C7-4B97-97F8-31A711694487} -  No File
FF HKCU\...\Firefox\Extensions: [{6CEE1AFA-4FF9-B4C1-61FB-DAD39485A1FF}] - C:\Program Files (x86)\ViewPassword-soft\161.xpi
CHR HKCU\...\Chrome\Extension: [klibnahbojhkanfgaglnlalfkgpcppfi] - C:\Users\Master\AppData\Local\CRE\klibnahbojhkanfgaglnlalfkgpcppfi.crx []
CHR HKLM-x32\...\Chrome\Extension: [klibnahbojhkanfgaglnlalfkgpcppfi] - C:\Users\Master\AppData\Local\CRE\klibnahbojhkanfgaglnlalfkgpcppfi.crx []
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S1 AntiLog32; \??\C:\Windows\system32\drivers\AntiLog64.sys [X]
S3 cpuz134; \??\C:\Users\Master\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt64.sys [X]
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 SmbDrv; \SystemRoot\System32\drivers\Smb_driver_AMDASF.sys [X]
S1 {b525993a-167d-44eb-9f03-5966d1af451f}Gw64; system32\drivers\{b525993a-167d-44eb-9f03-5966d1af451f}Gw64.sys [X]
S1 {c8905eec-9eab-447c-84a8-9e864d454523}Gw64; system32\drivers\{c8905eec-9eab-447c-84a8-9e864d454523}Gw64.sys [X]
Task: {1BBE546F-D170-425C-8F99-D996A60B003B} - \ViewPassword Update No Task File <==== ATTENTION
Task: {28C9FDC3-F78B-452C-804F-E93D2ECDF91F} - \BrowserSafeguard Update Task No Task File <==== ATTENTION
Task: {5143A037-5579-4B4D-A197-0F2912C1DB40} - \pcreg No Task File <==== ATTENTION
Task: {52C12DED-3192-4B66-9E4F-9C832821735E} - \APSnotifierPP3 No Task File <==== ATTENTION
Task: {5F09F932-A655-4AF1-8630-00890D60A798} - \ViewPassword_wd No Task File <==== ATTENTION
Task: {B4E8D4B9-01CE-48B4-B39D-9E1B3B8171D7} - \APSnotifierPP1 No Task File <==== ATTENTION
Task: {C61BA31B-3208-430F-BD35-0084B6313DC4} - \APSnotifierPP2 No Task File <==== ATTENTION
AlternateDataStreams: C:\2013-05-13 at 08:21 AM 3.anf
AlternateDataStreams: C:\2014-07-11 at 01:52 PM 2.anf
AlternateDataStreams: C:\2014-07-11 at 01:52 PM 3.anf
AlternateDataStreams: C:\2014-07-15 at 09:28 AM 2.anf
AlternateDataStreams: C:\2014-07-15 at 09:28 AM 3.anf
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:56E2E879
AlternateDataStreams: C:\ProgramData\Temp:ECC979BD

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.
===

How is the computer running now?

The tool will create a log (Fixlog.txt) please post it to your reply.

#3 Guest_PhoenixRisen_*

Guest_PhoenixRisen_*

  • Guests
  • OFFLINE
  •  

Posted 12 September 2014 - 03:55 PM

I will let you know ASAP. Today is fill the 5 ton dumpster day and if I sit longer than 10 minutes, I lock up. I will do it this evening around 9 a.m. local. Be well.



#4 Guest_PhoenixRisen_*

Guest_PhoenixRisen_*

  • Guests
  • OFFLINE
  •  

Posted 13 September 2014 - 08:26 PM

The system is running faster.

 

I do hate to report that I am still having trouble with certain Admin tasks being unavailable to me. I will do my best to get a few screen captures and attach them to my next post. Right now I am totally knackered from 16 hour works days yesterday and today.



#5 nasdaq

nasdaq

  • Malware Response Team
  • 39,909 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:45 PM

Posted 14 September 2014 - 08:45 AM

I am still having trouble with certain Admin tasks being unavailable to me.


Not sure exactly what your problem is.

Was this a problem before you got infected?

This article may help solve you Administrative rights.

http://www.thewindowsclub.com/lost-administrative-rights-in-windows

===

Keep in mind that you possibly have a good Restore point to a date prior to your infection.

#6 Guest_PhoenixRisen_*

Guest_PhoenixRisen_*

  • Guests
  • OFFLINE
  •  

Posted 14 September 2014 - 06:23 PM

Hallelujah! Consider this issue resolved. Thank you for your kindness and patience. I have to give a shoutout to rockysosua for a tip he gave. The entire staff here deserves kudos. Any time any of you are in the neighborhood, dinner is on me!

 

I went from this  :smash:  to this  :clapping:



#7 nasdaq

nasdaq

  • Malware Response Team
  • 39,909 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada

Posted 15 September 2014 - 06:46 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users