Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

programs runs slow and stops responding takes for ever to boot pc up

slow start up and hangs up

  • This topic is locked This topic is locked

#1
Tazdrh

Tazdrh

    Member

  • Member
  • PipPip
  • 75 posts
I am looking for help in finding what is causing my pc to take 45 minutes to start  and then  windows  does not repond.  thanks in advance for your help. when i try to run the otl it freezes and says not responding.
 I did finally get the otl to run
David aka Tazdrh

OTL logfile created on: 7/2/2014 9:06:46 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dad\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17126)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.96 Gb Total Physical Memory | 5.84 Gb Available Physical Memory | 73.31% Memory free
15.92 Gb Paging File | 13.58 Gb Available in Paging File | 85.27% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 837.74 Gb Free Space | 89.94% Space Free | Partition Type: NTFS

Computer Name: DAD-PC | User Name: Dad | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/07/02 20:53:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dad\Downloads\OTL(2).exe
PRC - [2014/06/17 21:20:08 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014/06/09 12:46:48 | 000,435,032 | ---- | M] (Garmin Ltd or its subsidiaries) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
PRC - [2014/05/12 07:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014/05/12 07:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014/05/12 07:24:34 | 006,970,168 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2013/12/18 14:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/12/09 22:22:32 | 002,279,712 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2013/12/09 22:21:14 | 001,494,304 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2013/09/03 06:27:02 | 000,181,152 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2013/04/24 05:30:28 | 000,483,864 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
PRC - [2012/05/25 04:25:02 | 006,595,928 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
PRC - [2012/01/28 00:49:14 | 000,137,208 | ---- | M] (Symantec Corporation) -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
PRC - [2012/01/18 06:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/06/13 04:36:54 | 000,922,240 | R--- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
PRC - [2011/05/24 20:54:46 | 001,426,048 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
PRC - [2011/05/10 10:52:18 | 001,101,440 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
PRC - [2011/04/13 15:15:22 | 001,116,800 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
PRC - [2010/12/01 22:15:14 | 000,915,584 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
PRC - [2010/11/26 21:50:04 | 002,931,328 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
PRC - [2010/09/24 21:29:32 | 001,115,776 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe


========== Modules (No Company Name) ==========

MOD - [2014/06/17 21:20:08 | 003,852,912 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/05/25 04:25:00 | 000,921,600 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
MOD - [2012/05/25 04:25:00 | 000,078,336 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll
MOD - [2011/05/20 09:12:18 | 000,881,152 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
MOD - [2011/05/16 17:35:56 | 000,965,632 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
MOD - [2011/05/11 17:03:28 | 000,651,264 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Thermal Radar\ThermalRadar.dll
MOD - [2011/04/07 17:33:18 | 001,607,168 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
MOD - [2011/03/17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2011/03/11 19:53:12 | 001,257,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
MOD - [2011/03/09 14:55:24 | 001,036,800 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll
MOD - [2011/03/04 04:33:44 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
MOD - [2011/02/24 10:19:36 | 000,143,360 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
MOD - [2011/02/09 09:02:28 | 000,873,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll
MOD - [2011/01/07 16:39:36 | 001,246,208 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
MOD - [2010/10/20 15:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2010/08/22 22:17:40 | 000,662,016 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMLib.dll
MOD - [2010/08/06 18:13:48 | 000,886,272 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
MOD - [2010/08/06 18:11:20 | 000,850,944 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
MOD - [2010/06/21 15:21:22 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll
MOD - [2010/06/21 15:21:22 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
MOD - [2009/08/12 20:15:52 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
MOD - [2009/05/21 10:14:14 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014/05/30 05:21:05 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/12/09 22:20:28 | 015,129,376 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013/05/27 01:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/20 13:36:14 | 000,160,784 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009/07/13 21:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014/06/17 21:20:08 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/06/10 18:47:07 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/06/09 12:46:48 | 000,435,032 | ---- | M] (Garmin Ltd or its subsidiaries) [Auto | Running] -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2014/05/19 19:10:40 | 000,413,128 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/05/12 07:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014/05/12 07:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/12/18 14:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/09 22:21:14 | 001,494,304 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2013/09/11 22:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2013/09/03 06:27:02 | 000,181,152 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor12.0)
SRV - [2013/04/24 05:30:28 | 000,483,864 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2012/04/19 04:05:16 | 002,601,544 | ---- | M] (Symantec Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\Smc.exe -- (SmcService)
SRV - [2012/04/19 03:47:05 | 000,325,040 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\snac64.exe -- (SNAC)
SRV - [2012/01/28 00:49:14 | 000,137,208 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe -- (SepMasterService)
SRV - [2012/01/18 06:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011/06/13 04:36:54 | 000,922,240 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe -- (asComSvc)
SRV - [2010/12/01 22:15:14 | 000,915,584 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe -- (asHmComSvc)
SRV - [2010/10/22 13:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/10/21 05:52:26 | 000,586,880 | R--- | M] () [Auto | Stopped] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/07/02 20:07:54 | 000,122,584 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014/06/12 15:05:34 | 000,046,376 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\netfilter64.sys -- (netfilter64)
DRV:64bit: - [2014/05/12 07:26:10 | 000,063,704 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:64bit: - [2014/05/12 07:25:56 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2013/12/05 04:42:30 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013/11/28 09:38:18 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2013/10/01 22:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/20 07:02:12 | 000,204,568 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2013/08/20 07:02:12 | 000,103,576 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2013/07/19 03:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2012/11/01 22:52:50 | 000,075,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2012/09/27 01:00:40 | 000,052,320 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\libusb0.sys -- (libusb0)
DRV:64bit: - [2012/08/23 10:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/07/22 15:48:04 | 001,600,064 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ae1000w7.sys -- (AE1000)
DRV:64bit: - [2012/07/22 15:30:55 | 000,175,736 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2012/04/18 15:05:16 | 000,019,304 | ---- | M] (GARMIN Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\grmnusb.sys -- (grmnusb)
DRV:64bit: - [2012/03/18 22:23:44 | 000,386,168 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SEP\0C01044D\0191.105\x64\symnets.sys -- (SYMNETS)
DRV:64bit: - [2012/03/07 03:09:30 | 000,678,008 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\SEP\0C01044D\0191.105\x64\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2012/03/07 03:09:30 | 000,039,032 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SEP\0C01044D\0191.105\x64\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/26 22:31:39 | 000,932,472 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\SEP\0C01044D\0191.105\x64\SymEFA64.sys -- (SymEFA)
DRV:64bit: - [2012/01/18 06:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:64bit: - [2012/01/18 06:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:64bit: - [2011/11/15 22:11:52 | 000,451,192 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SEP\0C01044D\0191.105\x64\SymDS64.sys -- (SymDS)
DRV:64bit: - [2011/11/15 22:05:11 | 000,171,128 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SEP\0C01044D\0191.105\x64\Ironx64.sys -- (SymIRON)
DRV:64bit: - [2011/09/14 17:05:34 | 000,394,216 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011/09/14 17:05:34 | 000,129,000 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2011/08/23 09:57:24 | 000,565,352 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/08/01 15:59:06 | 000,045,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2011/06/24 18:25:12 | 000,684,032 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\emBDA64.sys -- (USB28xxBGA)
DRV:64bit: - [2011/06/24 18:24:34 | 001,103,232 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\emOEM64.sys -- (USB28xxOEM)
DRV:64bit: - [2011/04/08 23:00:20 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/03/04 14:46:20 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011/03/04 14:46:20 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2010/12/15 23:06:46 | 000,047,232 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/11/24 23:27:42 | 000,120,408 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/08 14:57:58 | 000,014,464 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AiChargerPlus.sys -- (AiChargerPlus)
DRV:64bit: - [2010/07/29 01:25:10 | 000,029,720 | ---- | M] (Initio Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ivusb.sys -- (ivusb)
DRV:64bit: - [2010/02/18 20:07:58 | 000,032,768 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/17 12:54:30 | 000,057,872 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2009/06/17 12:54:22 | 000,055,312 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2009/06/17 12:54:14 | 000,013,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2009/06/17 12:54:06 | 000,074,256 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008/05/06 17:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV - [2014/06/27 22:39:23 | 002,099,288 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Data\Definitions\VirusDefs\20140702.001\ex64.sys -- (NAVEX15)
DRV - [2014/06/27 22:39:23 | 000,142,128 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2014/06/27 22:39:23 | 000,126,040 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Data\Definitions\VirusDefs\20140702.001\eng64.sys -- (NAVENG)
DRV - [2014/06/11 00:42:44 | 000,486,192 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2014/05/12 19:19:59 | 000,525,016 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Data\Definitions\IPSDefs\20140702.001\IDSviA64.sys -- (IDSVia64)
DRV - [2014/05/09 21:08:04 | 001,530,160 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Data\Definitions\BASHDefs\20140612.012\BHDrvx64.sys -- (BHDrvx64)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {34FFDBD8-2B3A-4564-A52D-FD496736E661}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 9C 6E F6 A9 35 68 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE11SR
IE - HKCU\..\SearchScopes\{2AFFA7D6-8251-4FED-BCFE-2BF98A70BA48}: "URL" = http://search.condui...q={searchTerms}
IE - HKCU\..\SearchScopes\{34FFDBD8-2B3A-4564-A52D-FD496736E661}: "URL" = http://search.condui...92-B991E2D3833A
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = https://search.yahoo...0626,0,0,0,8178
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.defaultthis.engineName: "WhiteSmoke New Customized Web Search"
FF - prefs.js..browser.search.order.1: "Yahoo"
FF - prefs.js..browser.search.order.2: ""
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.yahoo.com"
FF - prefs.js..extensions.enabledAddons: low_quality_flash%40pie2k.com:0.2
FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:5.8.1
FF - prefs.js..extensions.enabledAddons: %7Bbee6eb20-01e0-ebd1-da83-080329fb9a3a%7D:1.53
FF - prefs.js..extensions.enabledAddons: %7B635abd67-4fe9-1b23-4f01-e679fa7484c1%7D:3.2.3.20140316101110
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:30.0
FF - prefs.js..keyword.URL: "http://us.yhs4.searc...,0,0,0,8178&p="

FF - user.js..extensions.enabledAddons: [email protected]:1.0

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.60.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5: C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Data\IPSFF [2014/06/24 23:22:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/09/02 18:49:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/09/02 18:49:06 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Perk Prize Panel\FF\
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013/01/05 21:33:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Extensions
[2014/06/28 15:00:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions
[2014/06/28 15:00:31 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2014/04/13 18:00:42 | 000,000,000 | ---D | M] (Flash and Video Download) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
[2014/03/10 20:55:54 | 000,000,000 | ---D | M] ("Flash Video Downloader - Full HD Download") -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions\[email protected]
[2013/01/28 20:48:20 | 000,000,000 | ---D | M] (Low Quality Flash) -- C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions\[email protected]
[2014/06/17 21:20:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/06/17 21:20:08 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Yahoo! Search (Enabled)
CHR - default_search_provider: search_url = https://search.yahoo...0626,0,0,0,8178
CHR - default_search_provider: suggest_url = http://ff.search.yah...={searchTerms},
CHR - homepage: https://search.yahoo...0626,0,0,0,8178
CHR - plugin: Error reading preferences file
CHR - Extension: Google Wallet = C:\Users\Dad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\

O1 HOSTS File: ([2012/09/19 21:42:19 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (SySaver) - {2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} - C:\Users\Dad\AppData\Local\SySaver\temp.dat File not found
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [BrowserSafeguard] "C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe" File not found
O4 - HKCU..\Run: [Akamai NetSession Interface] "C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe" File not found
O4 - HKCU..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [perkda] C:\Program Files (x86)\Perk Prize Panel\pdr.exe File not found
O4 - Startup: C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launch Jawbone Updater.lnk = C:\Program Files (x86)\Jawbone\LaunchJU.exe ()
O4 - Startup: C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verizon Wireless Software Utility Application for Android – Samsung.lnk = C:\Users\Dad\AppData\Roaming\Verizon\UA_ar\UA.exe (SAMSUNG Electornics Co., Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab (Microsoft Office Template and Media Control)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://assaabloy.we...br/ieatgpc1.cab (GpcContainer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 204.89.253.2 204.89.253.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{28CCB39A-DAC5-4069-8D08-F503FD5368A8}: DhcpNameServer = 204.89.253.2 204.89.253.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{28CCB39A-DAC5-4069-8D08-F503FD5368A8}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6D7EEDA1-1157-439F-B73D-C6F9B2509D37}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{84860BB7-AB77-4757-BB66-0098DBD2FFB8}: DhcpNameServer = 204.89.253.2 204.89.253.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{84860BB7-AB77-4757-BB66-0098DBD2FFB8}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0B45DAD-4620-4FA3-857C-49136E458846}: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0B45DAD-4620-4FA3-857C-49136E458846}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9D30176-946B-4D1B-A1AB-FDF641796D53}: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C9D30176-946B-4D1B-A1AB-FDF641796D53}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CBF44532-C6BE-40AD-BF51-9CE63CA339BC}: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CBF44532-C6BE-40AD-BF51-9CE63CA339BC}: NameServer = 184.172.114.130,208.43.110.90
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DB3A7A6E-96C1-4075-8742-8A3030F29F35}: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DB3A7A6E-96C1-4075-8742-8A3030F29F35}: NameServer = 184.172.114.130,208.43.110.90
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O20 - Winlogon\Notify\SEP: DllName - (C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\WinLogoutNotifier.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{081ba7a7-acaf-11e2-a5a2-c86000c5deda}\Shell - "" = AutoRun
O33 - MountPoints2\{081ba7a7-acaf-11e2-a5a2-c86000c5deda}\Shell\AutoRun\command - "" = F:\VZW_Software_upgrade_assistant.exe
O33 - MountPoints2\{2be102f2-df47-11e1-92c9-c86000c5deda}\Shell - "" = AutoRun
O33 - MountPoints2\{2be102f2-df47-11e1-92c9-c86000c5deda}\Shell\AutoRun\command - "" = F:\setup.exe -a
O33 - MountPoints2\{c097865b-d42a-11e1-87c4-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c097865b-d42a-11e1-87c4-806e6f6e6963}\Shell\AutoRun\command - "" = E:\autorun.exe
O33 - MountPoints2\{f5520624-3e4d-11e3-8d1f-c86000c5deda}\Shell - "" = AutoRun
O33 - MountPoints2\{f5520624-3e4d-11e3-8d1f-c86000c5deda}\Shell\AutoRun\command - "" = F:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A02B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/07/01 21:08:22 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\No Company Name
[2014/07/01 20:54:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VS Revo Group
[2014/06/29 09:57:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2014/06/29 09:57:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/06/29 09:57:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2014/06/28 21:14:50 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2014/06/28 19:32:13 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/06/28 19:32:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/06/28 19:32:04 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014/06/28 19:32:04 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014/06/28 19:32:04 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014/06/28 19:32:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/06/28 19:32:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/06/28 19:20:06 | 000,000,000 | ---D | C] -- C:\Users\Dad\Desktop\New folder
[2014/06/28 17:59:05 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Roaming\Yahoo!
[2014/06/28 17:40:04 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM Links
[2014/06/28 17:40:04 | 000,000,000 | ---D | C] -- C:\MININT
[2014/06/28 14:59:51 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Apps
[2014/06/28 14:59:50 | 000,000,000 | ---D | C] -- C:\Users\Dad\AppData\Local\Deployment
[2014/06/26 15:24:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\6E6B36EB-9156-411B-B951-C735F4747DCF
[2014/06/17 21:20:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2014/06/12 15:05:34 | 000,046,376 | ---- | C] (NetFilterSDK.com) -- C:\Windows\SysNative\drivers\netfilter64.sys
[2014/06/12 04:48:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

========== Files - Modified Within 30 Days ==========

[2014/07/02 20:51:53 | 000,000,334 | ---- | M] () -- C:\Windows\tasks\HP Photo Creations Communicator.job
[2014/07/02 20:22:11 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/07/02 20:19:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/07/02 20:19:00 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/07/02 20:16:24 | 000,782,578 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/07/02 20:16:24 | 000,662,430 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/07/02 20:16:24 | 000,122,298 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/07/02 20:14:46 | 000,013,744 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/07/02 20:14:46 | 000,013,744 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/07/02 20:07:54 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/02 19:40:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/07/02 19:40:20 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs
[2014/07/02 19:40:10 | 2117,095,423 | -HS- | M] () -- C:\hiberfil.sys
[2014/06/29 20:16:35 | 000,075,302 | ---- | M] () -- C:\Users\Dad\Desktop\10014549_237635073095774_691442756_n.jpg
[2014/06/28 20:37:37 | 000,178,910 | ---- | M] () -- C:\Users\Dad\Desktop\PhotoShare(1).png
[2014/06/28 19:32:06 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/06/28 18:48:24 | 001,179,973 | ---- | M] () -- C:\Users\Dad\AppData\Local\census.cache
[2014/06/28 18:48:13 | 000,193,959 | ---- | M] () -- C:\Users\Dad\AppData\Local\ars.cache
[2014/06/28 18:23:01 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\MSVCR120.dll
[2014/06/28 18:23:01 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\MSVCP120.dll
[2014/06/28 18:04:04 | 000,000,010 | ---- | M] () -- C:\Users\Dad\AppData\Local\sponge.last.runtime.cache
[2014/06/28 15:38:15 | 001,788,160 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014/06/28 09:14:24 | 894,707,009 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014/06/14 09:46:34 | 000,000,900 | -HS- | M] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2014/06/12 15:05:34 | 000,046,376 | ---- | M] (NetFilterSDK.com) -- C:\Windows\SysNative\drivers\netfilter64.sys
[2014/06/12 08:16:14 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/06/12 04:48:41 | 000,001,888 | ---- | M] () -- C:\Users\Public\Desktop\Garmin Express.lnk

========== Files Created - No Company Name ==========

[2014/06/29 20:16:35 | 000,075,302 | ---- | C] () -- C:\Users\Dad\Desktop\10014549_237635073095774_691442756_n.jpg
[2014/06/28 20:37:34 | 000,178,910 | ---- | C] () -- C:\Users\Dad\Desktop\PhotoShare(1).png
[2014/06/28 19:32:06 | 000,001,106 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/06/28 18:23:01 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\MSVCR120.dll
[2014/06/28 18:23:01 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\MSVCP120.dll
[2014/04/16 18:59:02 | 000,000,010 | ---- | C] () -- C:\Users\Dad\AppData\Local\sponge.last.runtime.cache
[2014/01/15 06:50:57 | 002,489,872 | ---- | C] () -- C:\Windows\PE_Rom.dll
[2013/09/02 18:37:21 | 000,215,126 | ---- | C] () -- C:\Windows\hpoins35.dat
[2013/04/30 20:35:25 | 001,179,973 | ---- | C] () -- C:\Users\Dad\AppData\Local\census.cache
[2013/04/30 20:35:00 | 000,193,959 | ---- | C] () -- C:\Users\Dad\AppData\Local\ars.cache
[2013/04/30 20:24:36 | 000,000,036 | ---- | C] () -- C:\Users\Dad\AppData\Local\housecall.guid.cache
[2013/04/30 18:09:15 | 000,774,700 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/04/30 18:07:32 | 000,000,884 | RHS- | C] () -- C:\Users\Dad\ntuser.pol
[2013/03/07 16:24:10 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2013/03/07 16:24:10 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2013/03/07 16:24:10 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2013/03/07 16:24:10 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2012/12/08 16:27:15 | 000,025,600 | ---- | C] () -- C:\Users\Dad\01191777.pot
[2012/09/22 19:44:47 | 000,000,900 | -HS- | C] () -- C:\Windows\SysWow64\KGyGaAvL.sys
[2012/07/22 12:43:50 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2012/07/22 12:43:45 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2012/07/22 12:36:51 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012/07/22 12:36:46 | 000,028,908 | ---- | C] () -- C:\Windows\Ascd_tmp.ini

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/03/24 22:43:12 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/24 22:09:54 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/05/16 05:53:06 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\DriverCure
[2014/04/30 19:44:19 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Garmin
[2012/12/11 19:20:00 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\JawboneUpdater
[2013/07/08 05:24:08 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Juniper Networks
[2013/01/11 23:04:00 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Leadertech
[2014/07/01 21:08:22 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\No Company Name
[2013/10/26 10:59:30 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Oracle
[2013/05/16 05:53:06 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\ParetoLogic
[2013/05/16 17:27:05 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\player
[2013/09/02 11:52:24 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Samsung
[2013/04/30 18:51:44 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Strongvault
[2014/03/29 17:28:12 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\TeamViewer
[2013/09/14 22:55:30 | 000,000,000 | ---D | M] -- C:\Users\Dad\AppData\Roaming\Visan

========== Purity Check ==========



< End of report >

Edited by Tazdrh, 03 July 2014 - 03:01 AM.

  • 0

Advertisements


#2
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Minion%20Welcome.jpg


My name's Naathim and I'm a GeekU Minion! Now that we are mates and will be working together to clean your machine out of any junkware, feel free to call me Naat :)

Before we start please note the following:

icon_arrow.gif Analysis and research take some time, also sometimes real life gets in the way, please be patient.
icon_arrow.gif Limit your internet access to posting here, some infections just wait to steal typed-in passwords.
icon_arrow.gif Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.
icon_arrow.gif Paste the logs in your posts, attachments make my work harder and more complicated.
icon_arrow.gif Stay with me to the end, the absence of symtoms doesn't mean that your machine is fully operational.
icon_arrow.gif Note that we may live in totally different time zones, what may cause some delays between answers.

icon_idea.gif I can't foresee everything, so if anything unexpected happens, please stop and inform me!
icon_idea.gif There are no silly questions. Never be afraid to ask if in doubt!

Let's start and enjoy the fight! :)
 
 
 

51a612a8b27e2-Zoek.pngScan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on 51a612a8b27e2-Zoek.png icon and select RunAsAdmin.jpgRun as Administrator to start the tool.
  • Wait patiently until the main console will appear, it may take a minute or two.
  • In the main box please paste in the following script:
    createsrpoint;
    process;
    services-list;
    systemspecs;
    startupall;
    skipfix-iedefaults;
    firefoxlook;
    chromelook;
    filesrcm;
    installedprogs;
  • Make sure that Scan All Users option is checked.
  • Push Run Script and wait patiently. The scan may take a couple of minutes.
  • When the scan completes, a zoek-results logfile should open in notepad.
  • If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.

 

 

Cheers,

Naat :)


  • 0

#3
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts

Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by Dad on Thu 07/03/2014 at 20:02:25.36.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dad\Documents\zoek\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-07-03-235905.log 48583 bytes

==== System Restore Info ======================

7/3/2014 8:03:43 PM Zoek.exe System Restore Point Created Succesfully.

==== Installed Programs ======================

64 Bit HP CIO Components Installer
Adobe Flash Player 13 Plugin
Adobe Flash Player 14 ActiveX
Adobe Photoshop Elements 12
Adobe Reader X (10.1.10)
AI Suite II
AMD APP SDK Runtime
ANT Drivers Installer x64
Asmedia ASM104x USB 3.0 Host Controller Driver
ATI Catalyst Install Manager
BufferChm
C309a
CDDRV_Installer
Corel Paint Shop Pro X
Destinations
DeviceDiscovery
DocProc
Elements 12 Organizer
Elevated Installer
erLT
Fax
Garmin Express
Garmin Express Tray
GeForce Experience NvStream Client Components
Google Chrome
Google Update Helper
GPBaseService2
honestech VHS to DVD 5.0 Deluxe
HP Customer Participation Program 13.0
HP Imaging Device Functions 13.0
HP Photo Creations
HP Photosmart C309a All-In-One Driver Software 13.0 Rel .5
HP Smart Web Printing 4.5
HP Solution Center 13.0
HP Update
HPDiagnosticAlert
HPPhotoGadget
HPProductAssistant
HPSSupply
Image Data Converter
Java 7 Update 60
Java Auto Updater
Jawbone Updater
JMicron JMB36X Driver
KhalInstallWrapper
Logitech SetPoint
Malwarebytes Anti-Malware version 2.0.2.1012
MarketResearch
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
Mozilla Firefox 30.0 (x86 en-US)
Mozilla Maintenance Service
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
Network64
NVIDIA 3D Vision Controller Driver
NVIDIA 3D Vision Controller Driver 337.88
NVIDIA 3D Vision Driver 337.88
NVIDIA Control Panel 337.88
NVIDIA GeForce Experience 1.8.1
NVIDIA Graphics Driver 337.88
NVIDIA HD Audio Driver 1.3.30.1
NVIDIA Install Application
NVIDIA LED Visualizer 1.0
NVIDIA Network Service
NVIDIA PhysX
NVIDIA PhysX System Software 9.13.1220
NVIDIA ShadowPlay 10.11.15
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 10.11.15
NVIDIA Update Core
NVIDIA Virtual Audio 1.2.19
OCR Software by I.R.I.S. 13.0
PlayMemories Home
PS_AIO_05_C309_Software_Min
PSE12 STI Installer
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
SAMSUNG USB Driver for Mobile Phones
Scan
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
SHIELD Streaming
Shop for HP Supplies
SmartWebPrinting
SolutionCenter
Status
Strongvault Online Backup
SUABnR
Symantec Endpoint Protection
Toolbox
TrayApp
UnloadSupport
USB2.0 VIDBOX NW03, NW06
Verizon Wireless Software Upgrade Assistant - Samsung(ar)
Verizon Wireless Software Utility Application for Android - Samsung
WebReg
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1)
Yahoo Messenger
Yahoo Software Update

==== Running Processes ======================

C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\Yahoo\SoftwareUpdate\YahooAUService.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Yahoo\Messenger\ymsgr_tray.exe
C:\Users\Dad\Documents\zoek\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\SysWOW64\cmd.exe

==== Services (whitelist) ======================
Powered by E Dev

R2 - [AdobeActiveFileMonitor12.0] - Adobe Active File Monitor V12 - C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [asComSvc] - ASUS Com Service - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
R2 - [asHmComSvc] - ASUS HM Com Service - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
R2 - [Garmin Core Update Service] - Garmin Core Update Service - "C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
R2 - [MBAMService] - MBAMService - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
R2 - [NvNetworkService] - NVIDIA Network Service - "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
R2 - [NvStreamSvc] - NVIDIA Streamer Service - "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
R2 - [nvsvc] - NVIDIA Display Driver Service - "C:\Windows\system32\nvvsvc.exe"
R2 - [PMBDeviceInfoProvider] - PMBDeviceInfoProvider - "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
R2 - [SepMasterService] - Symantec Endpoint Protection - "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe" /s "Symantec Endpoint Protection" /m "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\sms.dll" /prefetch:1
R2 - [UMVPFSrv] - UMVPFSrv - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
R2 - [WSearch] - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
R2 - [YahooAUService] - Yahoo! Updater - "C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe"
R3 - [SmcService] - Symantec Management Client - "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\Smc.exe" /prefetch:1
R3 - [VSS] - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
R4 - [MBAMScheduler] - MBAMScheduler - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
S2 - [AsSysCtrlService] - ASUS System Control Service - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
S2 - [sppsvc] - Software Protection - C:\Windows\system32\sppsvc.exe
S2 - [Stereo Service] - NVIDIA Stereoscopic 3D Driver Service - "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 - [ALG] - Application Layer Gateway Service - C:\Windows\System32\alg.exe
S3 - [aspnet_state] - ASP.NET State Service - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S3 - [COMSysApp] - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [ehRecvr] - Windows Media Center Receiver Service - C:\Windows\ehome\ehRecvr.exe
S3 - [ehSched] - Windows Media Center Scheduler Service - C:\Windows\ehome\ehsched.exe
S3 - [Fax] - Fax - C:\Windows\system32\fxssvc.exe
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\Windows\system32\IEEtwCollector.exe /V
S3 - [LBTServ] - Logitech Bluetooth Service - C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe
S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - "C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE" /auditservice
S3 - [MozillaMaintenance] - Mozilla Maintenance Service - "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\Windows\system32\msiexec.exe /V
S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
S3 - [osppsvc] - Office Software Protection Platform - "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
S3 - [PerfHost] - Performance Counter DLL Host - C:\Windows\SysWow64\perfhost.exe
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
S3 - [SNAC] - Symantec Network Access Control - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\snac64.exe
S3 - [SNMPTRAP] - SNMP Trap - C:\Windows\System32\snmptrap.exe
S3 - [TrustedInstaller] - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - [vds] - Virtual Disk - C:\Windows\System32\vds.exe
S3 - [WatAdminSvc] - Windows Activation Technologies Service - C:\Windows\system32\Wat\WatAdminSvc.exe
S3 - [wbengine] - Block Level Backup Engine Service - "C:\Windows\system32\wbengine.exe"
S3 - [wmiApSrv] - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

==== System Specs ======================

Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 8154 MB
CPU Info: AMD Phenom™ II X4 955 Processor
CPU Speed: 3268.7 MHz
Sound Card: Speakers (Realtek High Definiti |
Realtek Digital Output(Optical) |
Realtek Digital Output (Realtek |
Display Adapters: NVIDIA GeForce GTX 550 Ti | NVIDIA GeForce GTX 550 Ti | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1680 X 1050 - 32 bit
Network: Network Present
Network Adapters: Realtek PCIe GBE Family Controller
CD / DVD Drives: 2x (D: | E: | ) D: Optiarc DVD RW AD-7240S | E: Optiarc DVD RW AD-7240S
Ports: COM1 LPT Port NOT Present.
Mouse: 16 Button Wheel Mouse Present
Hard Disks: C: 931.4GB
Hard Disks - Free: C: 838.0GB
Manufacturer *: American Megatrends Inc.
BIOS Info: AT/AT COMPATIBLE | 10/20/10 | ALASKA - 1072009
Time Zone: US Eastern Standard Time
Motherboard *: ASUSTeK COMPUTER INC. SABERTOOTH 990FX
Country: United States
Language: ENU

==== System Specs (Software) ======================

Anti-Virus: Symantec Endpoint Protection On-access scanning disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: Symantec Endpoint Protection disabled (Outdated)
Default Browser: Firefox 30.0
Internet Explorer Version: 11.0.9600.17126
Mozilla Firefox version: 30.0 (x86 en-US)
Google Chrome version: 35.0.1916.153
Adobe Reader version: 10.1.10.18
Sun Java version: 1.7.0_60 (32-bit)
Flash Player version: 13.0.0.214

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Dad\AppData\Local\Temp ====
2014-06-28 21:58:05 BDE21EC1618633A32EE2ED984B3FEDD8 93008 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\BPMNT.dll
2014-06-28 21:58:05 2AEF7BCC88E8D8B088D961C727E71A30 2997808 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\tscdll64.dll
2014-06-28 21:58:05 28E6D2591EACB4BE4D1A5BB38360FDB1 2279960 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\vsapi64.dll
2014-06-28 21:57:55 F82469A1100DA72AB6071C45FA665E96 318464 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\plugin\downloader.plugin.dll
2014-06-28 21:57:47 09C2419DDBCEB3B3E964733AB2199350 3940200 ----a-w- C:\Users\Dad\AppData\Local\Temp\HCBackup\hcpackage64.exe
====== Java Cache =====
2014-06-23 00:27:18 5A93F13C9E8DB21D21F63AE0F60E0C44 1714 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\3cd11d40-7ae18482
2014-06-22 22:44:30 C88A8EF1BD3C1426A7696D3BCDF7D9DE 1845 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\7c84f6c1-32caaa91
2014-06-22 21:35:00 AFACDB5023B99A60973A7FBE6889634B 797 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\3299864a-7adecba1
2014-06-23 00:06:27 3CA7C8913CCBD4CB0E1C48B023B8AB7B 593 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\5468e8ca-3295456f
2014-06-22 21:34:59 D5DF9004886838E60A9008B995C850A6 1867 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\bc82dca-4dd6e9a4
2014-06-23 00:06:27 7D22BF850536BB1D41DDAC5DDA7B9741 723 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\59fc290c-3781552e
2014-06-22 11:20:26 4AB02D81627C0E878177DE7CF2307D9B 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\398daa4d-ad35e1e592020e304932a984d50ec921ff3a0ddd4f35b5493d5e09846b72f167-6.0.lap
2014-06-22 21:44:20 268325E5F0373C4069B4ACFFB7AAA991 1363 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\2dd7f50e-1e60ec6a
2014-06-22 21:56:21 47D5F3544A2EC3A38F7CA6AE3320CA4C 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\6782a4cf-3655fcaf
2014-06-22 21:35:00 F738AA64C2D1DB9FDFDD5D96A2BA012D 1664 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\743c9a8f-78677da5
2014-06-23 00:06:27 7474993079652BB703B373BE3DF20FD1 633 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\2d66f850-2d28c85a
2014-06-22 21:34:59 473F910779B129F2E55CFD6176F3A38F 542 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\2e446e92-17b9b55f
2014-06-23 00:26:27 AD2BB074330AAF1DF4F53CB3F24240A8 1788 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3612f52-628d21a3
2014-06-23 00:26:11 AEDD2A111185E8214831EE697407E939 1802 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\47c5d713-73519f4f
2014-06-23 00:23:27 B7116FD6679E1BF224FB44EBD9AAE2A4 4933 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\7955fd53-2438ba7c
2014-06-22 21:35:00 420FC7498300E2488B9DF36E35964AA0 613 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\37549ad4-2311886b
2014-06-23 00:23:55 FFB871AF44722C00B50D53C22B02C5E1 1351 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\557a3a14-6222f1ee
2014-06-22 21:40:15 5053AD7D5321D5C63BFB31BA4ABDDCC2 839 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\5f9f9f94-7ad86958
2014-06-23 00:06:28 4DA2B8ECC4F32930E51CC5E0E3A1CACF 611 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\241f1395-6833d792
2014-06-23 00:06:28 CE53BDAC896AB54A0D346D8824E094C8 1858 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\35034d15-61d25913
2014-06-23 00:06:38 BAD5F2701370EC8161ABEC1838F034DE 1679 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\5f0c9dd6-43c01135
2014-06-22 11:20:33 9D5CE6026C11FA3464A67561D1588A09 612 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\1cf80b57-154e3fc1
2014-06-22 21:52:30 723912C056810F2FA2DAB6ECFEC7F022 1768 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\212083d7-1b3ceba1
2014-06-22 11:20:54 9AC067E6B1D3F56915C7C7F5B822FE5A 2461 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\86e3497-2564de2b
2014-06-22 11:20:23 D10480AA73C4A7028D550F51B76D7ACA 1484146 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\3d897a18-185b702d
2014-06-22 11:20:33 3A8C3F5F3BCEAA005601CE9A9D2CEE1D 247641 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\7aca3158-16dc6871
2014-06-22 11:53:50 3ED63E45A044F7A4059C9ACD95064003 562 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\607e9d19-41b5553d
2014-06-23 00:06:28 313F5435CEC9B2BBD102DE559DF85111 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5bd9aa9a-18946474
2014-06-22 22:40:11 21C6F65D028A62CD5540AA3C510B2BEA 697 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\3828b5b-68637475
2014-06-22 22:36:23 7583AC860EC57349C83A4F2B618D3606 1213 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\d93559b-3f53084b
2014-06-23 00:06:28 5F02319780F8DFA465798DE60995F17E 1463 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\21358b5c-323ddeb8
2014-06-22 11:41:56 7AEE1B6B1630765B34E44A883CE2E1A9 699 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\33c2529c-6f2a34d2
2014-06-22 11:21:18 D353EDD533753FF0197C8ABC06361812 9638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\4bd3e99c-1b26cab7
2014-06-22 21:47:10 79462078AC8230707D7D781626BE4D2D 722 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\7eb2039c-4ec2f518
2014-06-22 22:20:51 2807651D2C850F8983A41D3B14BEC82D 12514 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4e48d4dd-7d0fae3a
2014-06-22 22:06:56 F05E8897FF3FF53A8B2EB8A716E350D4 758 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4e9fd6dd-69afbcd6
2014-06-23 00:06:28 F22F97E663E61C765370ACA33072E72E 1388 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\b702bdd-34484109
2014-06-23 00:06:28 F8F06B3FBD669D7348D617AF51C323C5 43891 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\10794383-12c01586
2014-06-22 11:20:33 6B299F4061500B1C873CD77B3F69AD27 57126 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\20ad0483-624b42a7
2014-06-22 22:32:17 4787B11C19951DC203404358BA5AFAB4 1382 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\7addd503-461afab9
2014-06-22 21:34:59 26A59A7D0E8DFD40C865A94AA733B24B 638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\26c36a9e-7e6bb3ce
2014-06-23 00:06:28 C7F9C3445342891073F97B881536F415 525 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1077d7df-12e19957
2014-06-23 00:06:32 9E977301DE3BFCA86BA87C3BEF4FB334 15355 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1f5c4ddf-3a3f7192
2014-06-22 22:45:00 FD223F081F19145D87E691DF79D440A6 1818 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\391b9e1f-168ab8a8
2014-06-22 11:21:16 FAEE4C56A58B73AF7C07AA3A8D9D0D58 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\4e3bfa9f-77e6aa8af06ad5338ea053539562344ebe2c402334951c7428c16f7a53a088fa-6.0.lap
2014-06-23 00:06:27 D59ED9A08D731F5EE3E15F822CCA7B72 27000 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\6191a65f-1330cd71
2014-06-22 11:20:33 B42290CA48AD876E16F9FC8FF4AF55EE 13565 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\27abb5e1-327dca2e
2014-06-22 11:20:33 FF82F9A21EE5E3CAE439F611AC62D5C6 797 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5a77a661-13ea7f83
2014-06-22 21:35:00 3BFD263DE30686C32D6D13617298C857 648 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5b83b9a1-7c7a94d9
2014-06-22 11:20:17 D791A82ED9237EA5E4EA8790E16841D5 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\7b09dde1-6e9283f173ca04d2fe723afe7bcac7e0999e05feb5d8fe89eb6da6231de6caca-6.0.lap
2014-06-22 22:02:17 5AFA5C6D08FC8681EBBC8B34143F5555 632 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\206a6da2-1b3744c1
2014-06-22 22:40:22 8560B48183968D3E748FE2443562E831 587 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4e353a2-7805e7aa
2014-06-22 11:20:33 F1F06794773982D6A682B2201D3EA73F 4940 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\58dd4063-1ebbb298
2014-06-22 21:34:59 FE5E4B596E536F673A4A27E6EA5CBD32 869 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\4fda55e4-6d8f5d01
2014-06-22 22:13:57 E883CDE6201CCDBDFF7AD4F04DF60B86 1330 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\592e4e24-78970140
2014-06-22 21:35:00 5D9530A333FC2C70F5C704A24971ECCB 1320 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\75eb0864-5c1f8f19
2014-06-23 00:12:30 90CDEB5C7CBCA1B89A36195D7CB8E5AB 1671 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\7056d0e5-72c21092
2014-06-22 11:49:12 2BB740E899B0563CAB6B2E71B0BF13E6 1420 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2e5dae6-353773ee
2014-06-22 21:37:26 C5B62DA95AE86336197CCAA67F0A9477 1395 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\5f9c6626-63da878b
2014-06-22 21:35:00 D4061DFC735C1C32016BC0C1C0165659 21975 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\15fc4be7-568d1c2d
2014-06-22 22:26:42 6D6CC4C73C177393A7A87A52F4E55F64 687 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\20388ba7-40417628
2014-06-23 00:23:29 713D6B9F7DCE83DC2F12E091D7B0B2D1 1629 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\38edeca7-1a8860e5
2014-06-22 21:37:32 AE7F0DD62617DD50AF81C99F04D29D76 638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\3f30cca7-1ec64f8d
2014-06-22 11:55:00 D7834A4F4EFA724A1DF278642B29FF80 1616 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\6856ae67-73f8bf36
2014-06-22 11:20:33 9ECFAC9473CF24A388794C9B28614F9A 599 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\2152c5c4-355d849f
2014-06-22 21:41:28 E9773B74D165A0A732C68E1CFC659741 1262 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\23702bc4-35e5b62a
2014-06-22 21:34:59 6A29ACD2602F402492178C10C476239F 634 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\6c035404-7f486fab
2014-06-22 22:41:45 8692C1796ACF00AC366BA4D06489805E 766 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\16c4c228-5bdf6ca1
2014-06-22 21:35:00 0DFC1645BAF6937DC3111346D91A2182 13727 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\24184ca9-5fd2ef89
2014-06-22 12:03:25 A009A570787C0A679397D100A8099DC5 1393 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\4fa4cae9-48c168d0
2014-06-22 11:20:33 F2547AF69CF9B41BEAA95AE6567B506D 18468 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5e4e0a69-4e723b2f
2014-06-22 21:50:06 FF5FDBC72E4139A797044EF77CC15553 1875 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\2562a62b-57c69eab
2014-06-22 22:20:54 CAE05BE6DFCF73C31E9401BC8F1AB847 1562 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\4bb7566b-42657339
2014-06-22 11:20:33 1247A7DD36F817BA31092B1BF41F414E 599 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\5710296b-15d726ff
2014-06-22 21:42:43 F04E96149C8752C1ED75E35FB702A7AC 1606 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\727eb5eb-15fe6dc4
2014-06-22 21:34:59 5EC7EDAAA885263A6835A871B8F6F900 741 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7a83b8ab-2b9a010a
2014-06-22 21:56:03 9667B0CF2993AC5DEF4654DD16F06E3B 673 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7bf65eb-192da2e8
2014-06-22 21:35:00 0727BCFB85974C2E8C359106E64B10AB 1446 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\1d69b1ac-6d20724d
2014-06-22 22:43:15 74D5991E63DF846EED23E8806D3F9BF9 4785 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\dbe3fec-303ed65f
2014-06-22 11:20:33 138AA7B9898F51952B3006DC6F4B0ACE 652 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\474acbad-2aa1852d
2014-06-22 11:30:07 61277B6013E97F7F435DA8EE99022451 831 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\56eaf52d-1204e670
2014-06-29 13:58:44 338FF0BBCD96F62A21017FE78F474B4B 265357 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-4b0ed1f2
2014-06-22 22:40:11 B2488A5BAA59D5BBF0457504EBF9649E 771 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\bfa53ed-454c8ecb
2014-06-22 11:20:22 D791A82ED9237EA5E4EA8790E16841D5 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\2bf19f2e-a5a5a9a9784fc2f718e9a727efbfa6d7ed445044b8eee783d34b6803e23240b1-6.0.lap
2014-06-22 21:35:00 EFD42979D5A22894258219FD6FECF022 760 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\355e7f2e-5eb11e50
2014-06-23 00:15:09 E436F106B264532BB6F1F0783F2ED2AF 786 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\394bd3ae-5901f137
2014-06-22 11:36:36 F80A5A43CE76AF3E5E5A835B205FF5BE 12978 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\4b9eabee-14d3eb12
2014-06-22 21:34:59 42E7583B04D8869F417BA3AB50118235 902 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\10e5fcef-4c2d0660
2014-06-22 22:43:19 DC5F9E912C75DD7F8B427F92B89311A0 902 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1ae0f6af-6824670e
2014-06-22 21:57:39 A5D0AE39CEB7FDE0F8D25E6F850BF792 754 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1b686baf-7878612a
2014-06-22 11:29:39 10FCE55FE4F1C01419AC9C4EC52352EC 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\263fa6ef-2af1cad5
2014-06-22 11:37:04 EE6778D84B0F8399AB01F988EA9FD470 622 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\26b423f0-682f92a4
2014-06-22 21:46:35 4D67E9F73DC1BA5C47050A5575F8CFD4 744 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\37e08570-75a5a8c9
2014-06-22 11:33:06 467E94794411BCF09AA00982C2128164 2398 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\4dfb1cf0-2a538201
2014-06-22 12:02:30 BF15B01F08EEC334F5529B7FB6007C79 14295 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\59bb7430-3b10b44c
2014-06-22 22:12:40 C6C6839F38A3254A5F025123620B3E9A 749 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\366290f1-1a9819b8
2014-06-23 00:06:28 9F1F3DF0202F7AFDD624773F4AA711FE 670 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\783774f1-2aacda18
2014-06-22 22:43:54 C26C88DB36C23DE76A70A5C712E944F5 1699 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\79d37771-34a286d2
2014-06-23 00:06:27 886B5D31C69D17931602CD0F69064B35 591 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\13743d45-5cf956d4
2014-06-22 11:20:32 C148117D846277FFCA4FE532B90D2DDB 43769 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\45acef85-3c854d88
2014-06-22 22:36:35 FE30CDA98E3F45D4613B60381082126B 1865 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\2e294cb2-57eb4e35
2014-06-22 22:29:48 1EAA9C097E59226454E98A1AF71A5CE0 578 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5936d072-42e40834
2014-06-22 22:11:01 49D6676C495CE0E061719F373287BE4B 973 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5c2dc372-5d0d0f7a
2014-06-22 11:39:59 5A65A7C808D53A3E8E34E7FD378D4F0F 643 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6cbff572-420cb150
2014-06-22 21:35:00 0EB7C2B2C2AECFF47A365DCB26261221 720 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\1d2830b4-6ab8a5ce
2014-06-22 21:52:57 14BE486BD3762C6ECE4B4B1EBD8BAA43 663 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\c55a5b4-2823d8d8
2014-06-22 22:05:05 F09B08678A2772A9235E0D0C41AD2399 12239 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\741ac9b6-4a5da9c1
2014-06-22 21:35:00 F5A87E6691F7C8F02D4195E91A68E86A 18525 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\b61dc76-343bc2cc
2014-06-22 21:34:59 556E53FE102604F8130B3D75A64A4E40 1345 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3dc8a8f8-7d9b15b5
2014-06-23 00:06:27 785C1430D624F83250F3C5D460CC70E3 1752 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3ddd5b78-5e4a1f6c
2014-06-23 00:06:28 27EC573C5B4D0FB3399FDB023CAD4926 637 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\26925cf9-494a05fd
2014-06-22 22:40:14 419199ABEF6EAB5649D6DCE0E9F6F5A2 1855 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\49c3cf39-748b758c
2014-06-23 00:06:28 4D98D26076B2D752392454A4B7B9617A 1823 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4afc15b9-64dd84de
2014-06-22 22:42:21 4F9D339BAD99B6962484599D014132A4 1753 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\56f61a39-1689b430
2014-06-22 11:35:56 014DC63A789AAD325CE216C2709A08B7 723 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\760e25f9-59c4c364
2014-06-22 22:04:35 C14A05D6CA99CE808C2DDBBFB7BBBF8A 974 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\76c36179-68ce69a9
2014-06-29 13:58:43 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-65877b52
2014-06-23 00:21:50 2A07DECAD4225952B0859FD07AF00235 7118 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\61eb81ba-2c847b44
2014-06-23 00:06:28 D2B07379C2599892FCC791EA4CED6A7F 1735 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\58a49f3b-6da15aa2
2014-06-23 00:06:28 AFAFFACDDF61C3B582C779D4EFDF408D 755 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\630f8d7b-487585db
2014-06-22 11:20:33 0626A67C94CFF8DE5170686D1C434B98 1841 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\63bc7d7b-156bb677
2014-06-22 21:50:04 8AC6ADF6F2265525EEB93AFF8326A2D2 672 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\6b34c886-358909a1
2014-06-23 00:06:28 ED7C732B1263436513804B23F97AE5D4 564 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\7e47a4c6-7c47efca
2014-06-22 11:20:20 9748CBF37BE0B503D8B9FC65EB3DF4AF 7010 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\14729ffc-616c3dc4
2014-06-22 22:45:53 9015F7AAFE80D21C40457ED3A25409C3 23250 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\43a54afc-688eb87f
2014-06-22 22:07:40 45286165FEC0ED2BD1FDF8AF85E7D28E 1694 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\653c2ebc-41e74525
2014-06-22 21:45:53 A4BC71E08114198D5E681C759EFE0425 587 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\65e0f07c-604fba66
2014-06-22 11:20:33 64AFC1C4B948CD2516A77120D07A9D41 1647 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\7d8fbfbc-25ce0ea0
2014-06-22 12:04:22 2D613125429BBBC4DF12FAAE7DD92B2D 1753 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\32762f3d-31859b38
2014-06-22 21:34:59 C102CD2310B2D416360799E50EC0D04A 619 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\3ed3afbd-5148e3d6
2014-06-22 21:34:59 3DC7A4BE5E50ABD3B0EC96DE58B508C2 1727 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\a666a3d-18867bbb
2014-06-23 00:06:27 6AAD9D946E0E46B9FB29D3EF1178753A 1335 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\28c6f2fe-6795d42e
2014-06-22 21:36:32 F937C9EF6373B4BF758992B2EF52ECBA 672 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5527457e-3eadd24d
2014-06-23 00:06:27 8EAA0E0ABE5A59D59244DCAE863F0AC5 1507 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\88e39fe-24c942a2
2014-06-22 22:34:53 3FB99E24AB1FC41BA78D11C7E282E79A 1226 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\37337cbf-7293d6ae
2014-06-22 11:20:33 FBB1C48A00802119B0B317EFDC3AADEC 16145 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\55e03fff-7965b8ee
2014-06-22 21:50:22 5DA88213B9CC3637E829AFD2B70FB6CA 2054 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\67b951ff-64111337
2014-06-29 13:58:44 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-26b20cbe
2014-06-22 22:21:55 91C18A0D607E2439CD1188101CDE1C41 4775 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\6adb95c7-3b1a5cb7
2014-06-22 21:39:38 9AB4DDA7AD38AF4549E9CA4BA7411EB3 604 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\bd43647-7b2b996b
2014-06-23 00:23:24 40A928BA8822F4894E3B0EF48E086D39 663 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\5fa4de88-64f06feb
2014-06-22 21:52:42 34C901F5B47F6E3157DE302AB3ABB2B3 9102 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\418ed989-7af30226
====== C:\Windows\SysWOW64 =====
2014-06-29 13:57:41 CEE4C9E092168CEBD187491AF6FDA8FB 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe
2014-06-29 13:57:33 ECB3AB701D6E26F5E54C58957E34E719 175528 ----a-w- C:\Windows\SysWOW64\javaw.exe
2014-06-29 13:57:33 8C7C6D494D86307CDCF63E0478767C16 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-29 13:57:33 2251971694E17BAC4E344DC2B7CD7ADD 175528 ----a-w- C:\Windows\SysWOW64\java.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-06-28 22:23:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\MSVCR120.dll
2014-06-28 22:23:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\MSVCP120.dll
====== C:\Windows\Sysnative\drivers =====
2014-06-28 23:32:13 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-06-28 23:32:04 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-06-28 23:32:04 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-06-28 23:32:04 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-06-12 19:05:34 9E34BF0784E087F7366DBD2BDA01C8EB 46376 ----a-w- C:\Windows\Sysnative\drivers\netfilter64.sys
2014-06-11 01:20:30 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-06-11 01:20:30 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-07-02 00:54:08 -------- d-----w- C:\PROGRA~2\VS Revo Group
2014-06-29 13:57:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-06-29 13:57:26 -------- d-----w- C:\PROGRA~2\Java
2014-06-26 19:24:27 -------- d-----w- C:\PROGRA~2\6E6B36EB-9156-411B-B951-C735F4747DCF
======= C: =====
====== C:\Users\Dad\AppData\Roaming ======
2014-07-02 01:08:22 -------- d-----w- C:\Users\Dad\AppData\Roaming\No Company Name
2014-06-28 21:59:05 -------- d-----w- C:\Users\Dad\AppData\Roaming\Yahoo!
2014-06-28 18:59:51 -------- d-----w- C:\Users\Dad\AppData\Local\Apps
2014-06-28 18:59:50 -------- d-----w- C:\Users\Dad\AppData\Local\Deployment
====== C:\Users\Dad ======
2014-07-03 00:53:18 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL(2).exe
2014-07-02 00:57:01 94E3A2D6251A35ED69DB3221329E8584 4181856 ----a-w- C:\Users\Dad\Downloads\tdsskiller.exe
2014-07-02 00:53:48 4F99CAE27FFD46712E65C21444AACDFC 2623656 ----a-w- C:\Users\Dad\Downloads\revosetup.exe
2014-07-02 00:30:13 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\Dad\Downloads\esetsmartinstaller_enu.exe
2014-06-29 13:57:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-29 02:07:47 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL(1).exe
2014-06-29 01:33:59 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL.exe
2014-06-28 23:31:36 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012(2).exe
2014-06-28 23:07:16 C882E29819596BB487E59B4ABD6C33B7 4812672 ----a-w- C:\Users\Dad\Downloads\ccsetup415.exe
2014-06-28 23:02:31 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012(1).exe
2014-06-28 22:56:31 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-28 21:57:28 7896EB0C34ECC3749530DA6767E0B71E 2473936 ----a-w- C:\Users\Dad\Downloads\HousecallLauncher64(1).exe
2014-06-28 21:56:37 7896EB0C34ECC3749530DA6767E0B71E 2473936 ----a-w- C:\Users\Dad\Downloads\HousecallLauncher64.exe
2014-06-28 21:40:04 -------- d-----w- C:\ProgramData\OEM Links
2014-06-12 08:48:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

====== C: exe-files ==
=== C: other files ==
2014-07-02 01:08:57 41A02C65BD138296B1DE9AA610104320 14539486 ----a-w- C:\Program Files\Common Files\Adobe\Adobe\AdobePatchFiles\{BDD8F2C8-6A88-4CC9-8707-195A0F9D23A3}.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo\PROGRA~2\Yahoo\MESSEN~1\YAHOOM~1.EXE -quiet"
"Akamai NetSession Interface"="C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
"perkda"="C:\Program Files (x86)\Perk Prize Panel\pdr.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BrowserSafeguard"="C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo\PROGRA~2\Yahoo\MESSEN~1\YAHOOM~1.EXE -quiet"
"Akamai NetSession Interface"="C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
"perkda"="C:\Program Files (x86)\Perk Prize Panel\pdr.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Startup Folders ======================

2012-10-30 23:20:56 1040 ----a-w- C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launch Jawbone Updater.lnk
2013-09-02 22:48:22 2099 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06/10/2014 06:47 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/20/2013 02:34 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/20/2013 02:34 PM]
C:\Windows\tasks\HP Photo Creations Communicator.job --a------ C:\ProgramData\HP Photo Creations\Communicator.exe [09/14/2013 10:55 PM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\0" [c:\program files (x86)\internet explorer\iexplore.exe]
"C:\Windows\SysNative\tasks\4446" [wscript.exe C:\Users\Dad\AppData\Local\Temp\launchie.vbs //B]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Dad-PC-Dad" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HP Photo Creations Communicator" [C:\ProgramData\HP Photo Creations\Communicator.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS DigiVRM Help" [C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe]
"C:\Windows\SysNative\tasks\ASUS\USB 3.0 Boost Service" [C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [09/02/2013 06:49 PM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files (x86)\Perk Prize Panel\FF" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default
- Flash Video Downloader - Full HD Download - %ProfilePath%\extensions\[email protected]
- Low Quality Flash - %ProfilePath%\extensions\[email protected]
- Yahoo Toolbar - %ProfilePath%\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
- Flash and Video Download - %ProfilePath%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
01A1DD6F121A8BBE9E9B2551EA5D2839 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll - RocketLife Secure Plug-In Layer


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eihhgekonheiliaidomffpplfhecmkag - No path found[]

Google Wallet - Dad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.yahoo.com/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE11SR"
{2AFFA7D6-8251-4FED-BCFE-2BF98A70BA48} Search Url="http://search.condui...={searchTerms}"
{34FFDBD8-2B3A-4564-A52D-FD496736E661} Conduit Search Url="http://search.condui...2-B991E2D3833A"
{DECA3892-BA8F-44b8-A993-A466AD694AE4} Yahoo! Search Url="https://search.yahoo...626,0,0,0,8178"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Thu 07/03/2014 at 20:11:39.75 ======================
  • 0

#4
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi :)


I need you to download the attached script:
Attached File  zoekscript.txt   921bytes   72 downloads

icon_idea.gif Disable your AntiVirus and AntiSpyware programs, so they do not interfere with the running of Zoek.exe. You can find instructions how to disable your security applications here.

Now, on your Desktop, drag and drop zoekscript.txt on Zoek.exe as shown below:

 

51dd31d8563a6-output_TD9fmK.gif


Please approve any UAC prompt to allow this action to proceed.

Answer Yes to the following prompt to allow the zoek script to run:





zoek-script-warning.jpg


This action causes Zoek.exe to start automatically. Please be patient while Zoek is scanning.

When the tool finishes, the zoek-results.log is opened in Notepad.
The log is also found on the systemdrive, normally C:\
If a reboot is needed, the log is opened after the reboot.

Please post the zoek-results.log in your reply.





After that


Download ADWCleaner by Xplode to your desktop.

  • Close all programs and right-click on the adwcleaner.png icon - select Run as Administrator.
    (Users of Windows XP please just double-click).
  • You will be presented with the console like the one below:

    adwcleaner-start.jpg

  • Click on Scan and follow the prompts.
  • Let it run unhindered.
  • When done, click on the Clean button, and follow the prompts.
  • Allow the system to reboot.

After that, you will then be presented with the report. Copy & Paste this report on your next reply.

icon_idea.gif The report will be saved in the C:\AdwCleaner folder, as AdwCleaner[S0].txt.



Cheers,
Naat :)


  • 0

#5
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
Hello Naat,
I don't understand where I can find the zoekscript.txt sorry for this post i got it running now thanks

Thanks
David

Edited by Tazdrh, 04 July 2014 - 08:08 AM.

  • 0

#6
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Hi David.

In my previous post it is attached for you to download, just after the line containing my request to download it. Save it in the same location ZOEK is present.

Let me know if still having issues with this.

Cheers,
Naat :)
  • 0

#7
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts

Naat,

I ran the zoek it said reboot required when i did the reboot it did a check disk scan and ran all day and was still running when i went to bed lastnight. looks as if the computer restarted after the check disk scan and is running it again. is this normal?

 

Thank you

David


  • 0

#8
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

No, shouldn't unless something is really conflicting there.

 

Tell me - are you able to get into your desktop?


  • 0

#9
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts

I don't know not had the chance yet cause the check disk scan is still running  I did not want to interupt it  unless told so


  • 0

#10
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

OK, let it finish and report here.

 

If ChkDsk runs automaticaly, it may be a sign of failing hard drive. Let's wait and see.


  • 0

Advertisements


#11
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
After multible trys and finally thought i would try to use my windows 7 cd and try to get to desk top that did not work eith i did finally get to the desk top here is the zoek report.

Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by Dad on Fri 07/04/2014 at 10:06:32.65.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dad\Desktop\zoek.exe
Script used: C:\Users\Dad\Desktop\zoekscript-1.txt

==== Older Logs ======================

C:\zoek-results2014-07-03-235905.log 48583 bytes
C:\zoek-results2014-07-04-001139.log 48673 bytes

==== System Restore Info ======================

7/4/2014 10:07:07 AM Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2AFFA7D6-8251-4FED-BCFE-2BF98A70BA48} deleted successfully
HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Internet Explorer\SearchScopes\{34FFDBD8-2B3A-4564-A52D-FD496736E661} deleted successfully
HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\Yahoo\SoftwareUpdate\YahooAUService.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Yahoo\Messenger\ymsgr_tray.exe
C:\Users\Dad\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Services (whitelist) ======================
Powered by E Dev

R2 - [AdobeActiveFileMonitor12.0] - Adobe Active File Monitor V12 - C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [asComSvc] - ASUS Com Service - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
R2 - [asHmComSvc] - ASUS HM Com Service - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
R2 - [Garmin Core Update Service] - Garmin Core Update Service - "C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
R2 - [MBAMService] - MBAMService - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
R2 - [NvNetworkService] - NVIDIA Network Service - "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
R2 - [NvStreamSvc] - NVIDIA Streamer Service - "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
R2 - [nvsvc] - NVIDIA Display Driver Service - "C:\Windows\system32\nvvsvc.exe"
R2 - [PMBDeviceInfoProvider] - PMBDeviceInfoProvider - "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
R2 - [SepMasterService] - Symantec Endpoint Protection - "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe" /s "Symantec Endpoint Protection" /m "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\sms.dll" /prefetch:1
R2 - [UMVPFSrv] - UMVPFSrv - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
R2 - [WSearch] - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
R2 - [YahooAUService] - Yahoo! Updater - "C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe"
R3 - [SmcService] - Symantec Management Client - "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\Smc.exe" /prefetch:1
R4 - [MBAMScheduler] - MBAMScheduler - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
S2 - [AsSysCtrlService] - ASUS System Control Service - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
S2 - [sppsvc] - Software Protection - C:\Windows\system32\sppsvc.exe
S2 - [Stereo Service] - NVIDIA Stereoscopic 3D Driver Service - "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 - [ALG] - Application Layer Gateway Service - C:\Windows\System32\alg.exe
S3 - [aspnet_state] - ASP.NET State Service - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S3 - [COMSysApp] - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [ehRecvr] - Windows Media Center Receiver Service - C:\Windows\ehome\ehRecvr.exe
S3 - [ehSched] - Windows Media Center Scheduler Service - C:\Windows\ehome\ehsched.exe
S3 - [Fax] - Fax - C:\Windows\system32\fxssvc.exe
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\Windows\system32\IEEtwCollector.exe /V
S3 - [LBTServ] - Logitech Bluetooth Service - C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe
S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - "C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE" /auditservice
S3 - [MozillaMaintenance] - Mozilla Maintenance Service - "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\Windows\system32\msiexec.exe /V
S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
S3 - [osppsvc] - Office Software Protection Platform - "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
S3 - [PerfHost] - Performance Counter DLL Host - C:\Windows\SysWow64\perfhost.exe
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
S3 - [SNAC] - Symantec Network Access Control - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\snac64.exe
S3 - [SNMPTRAP] - SNMP Trap - C:\Windows\System32\snmptrap.exe
S3 - [TrustedInstaller] - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - [vds] - Virtual Disk - C:\Windows\System32\vds.exe
S3 - [VSS] - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
S3 - [WatAdminSvc] - Windows Activation Technologies Service - C:\Windows\system32\Wat\WatAdminSvc.exe
S3 - [wbengine] - Block Level Backup Engine Service - "C:\Windows\system32\wbengine.exe"
S3 - [wmiApSrv] - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\YahooAUService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\YahooAUService deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default

---- Lines conduit removed from prefs.js ----
user_pref("Smartbar.ConduitHomepagesList", "");
user_pref("Smartbar.ConduitSearchEngineList", "WhiteSmoke New Customized Web Search");
user_pref("Smartbar.ConduitSearchUrlList", "http://search.condui...8022&UM=2&q=");
---- Lines Web Search removed from prefs.js ----
user_pref("browser.search.defaultthis.engineName", "WhiteSmoke New Customized Web Search");
---- Lines yontoo removed from prefs.js ----
user_pref("[email protected]", true);
---- Lines defaulttab removed from prefs.js ----
user_pref("[email protected]", true);
---- Lines smartbar removed from prefs.js ----
user_pref("Smartbar.keywordURLSelectedCTID", "CT3289847");
user_pref("smartbar.machineId", "KM7KE90OXM7PTJDGGQ3KETQTEPJVLQQHWIDUDUWXU2SUTRA6GGKBAPGSV3V1A3UEMV1D+VDEJYCJAEXW4JGFLA");
user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
---- FireFox user.js and prefs.js backups ----

user_20140704_1013_.backup
prefs_20140704_1013_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"perkda"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BrowserSafeguard"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"perkda"=-
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Browsersafeguard not found
"C:\Users\Dad\AppData\Local\Temp\launchie.vbs" not found
C:\PROGRA~2\6E6B36EB-9156-411B-B951-C735F4747DCF deleted
C:\Program Files (x86)\Perk Prize Panel deleted
C:\PROGRA~2\Coupons deleted
C:\PROGRA~2\Conduit deleted
C:\Users\Dad\AppData\Roaming\Yahoo! deleted
C:\Users\Dad\AppData\Roaming\Strongvault deleted
C:\Users\Dad\AppData\Roaming\ParetoLogic deleted
C:\Users\Dad\AppData\Roaming\DriverCure deleted
C:\PROGRA~3\Yahoo! deleted
C:\PROGRA~3\ParetoLogic deleted
C:\PROGRA~3\VisualBee deleted
C:\PROGRA~3\Strongvault Online Backup deleted
C:\PROGRA~3\Tarma Installer deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Dad\AppData\Local\Strongvault Online Backup deleted
C:\Users\Dad\AppData\Local\BrowserSafeguard deleted
C:\Users\Dad\AppData\Local\SwvUpdater deleted
C:\Users\Dad\AppData\Local\emaze deleted
C:\Users\Dad\AppData\Local\Conduit deleted
C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk deleted
C:\Users\Dad\Searches deleted
C:\Users\Dad\AppData\LocalLow\Yahoo! deleted
C:\Users\Dad\AppData\LocalLow\PriceGong deleted
C:\Users\Dad\AppData\LocalLow\Conduit deleted
C:\AI_RecycleBin deleted
C:\END deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
C:\Users\Dad\Documents\Optimizer Pro deleted
"C:\Windows\SysNative\tasks\4446" deleted
"C:\Windows\SysNative\tasks\0" deleted

==== Folders Found In C:\Users\Dad\AppData\Roaming\No Company Name ======================

2014-07-02 01:08:22 d-----w- C:\Users\Dad\AppData\Roaming\No Company Name\No Client Name

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Dad\AppData\Local\Temp ====
2014-06-28 21:58:05 BDE21EC1618633A32EE2ED984B3FEDD8 93008 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\BPMNT.dll
2014-06-28 21:58:05 2AEF7BCC88E8D8B088D961C727E71A30 2997808 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\tscdll64.dll
2014-06-28 21:58:05 28E6D2591EACB4BE4D1A5BB38360FDB1 2279960 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\vsapi64.dll
2014-06-28 21:57:55 F82469A1100DA72AB6071C45FA665E96 318464 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\plugin\downloader.plugin.dll
2014-06-28 21:57:47 09C2419DDBCEB3B3E964733AB2199350 3940200 ----a-w- C:\Users\Dad\AppData\Local\Temp\HCBackup\hcpackage64.exe
====== Java Cache =====
2014-06-23 00:27:18 5A93F13C9E8DB21D21F63AE0F60E0C44 1714 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\3cd11d40-7ae18482
2014-06-22 22:44:30 C88A8EF1BD3C1426A7696D3BCDF7D9DE 1845 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\7c84f6c1-32caaa91
2014-06-22 21:35:00 AFACDB5023B99A60973A7FBE6889634B 797 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\3299864a-7adecba1
2014-06-23 00:06:27 3CA7C8913CCBD4CB0E1C48B023B8AB7B 593 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\5468e8ca-3295456f
2014-06-22 21:34:59 D5DF9004886838E60A9008B995C850A6 1867 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\bc82dca-4dd6e9a4
2014-06-23 00:06:27 7D22BF850536BB1D41DDAC5DDA7B9741 723 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\59fc290c-3781552e
2014-06-22 11:20:26 4AB02D81627C0E878177DE7CF2307D9B 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\398daa4d-ad35e1e592020e304932a984d50ec921ff3a0ddd4f35b5493d5e09846b72f167-6.0.lap
2014-06-22 21:44:20 268325E5F0373C4069B4ACFFB7AAA991 1363 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\2dd7f50e-1e60ec6a
2014-06-22 21:56:21 47D5F3544A2EC3A38F7CA6AE3320CA4C 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\6782a4cf-3655fcaf
2014-06-22 21:35:00 F738AA64C2D1DB9FDFDD5D96A2BA012D 1664 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\743c9a8f-78677da5
2014-06-23 00:06:27 7474993079652BB703B373BE3DF20FD1 633 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\2d66f850-2d28c85a
2014-06-22 21:34:59 473F910779B129F2E55CFD6176F3A38F 542 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\2e446e92-17b9b55f
2014-06-23 00:26:27 AD2BB074330AAF1DF4F53CB3F24240A8 1788 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3612f52-628d21a3
2014-06-23 00:26:11 AEDD2A111185E8214831EE697407E939 1802 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\47c5d713-73519f4f
2014-06-23 00:23:27 B7116FD6679E1BF224FB44EBD9AAE2A4 4933 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\7955fd53-2438ba7c
2014-06-22 21:35:00 420FC7498300E2488B9DF36E35964AA0 613 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\37549ad4-2311886b
2014-06-23 00:23:55 FFB871AF44722C00B50D53C22B02C5E1 1351 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\557a3a14-6222f1ee
2014-06-22 21:40:15 5053AD7D5321D5C63BFB31BA4ABDDCC2 839 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\5f9f9f94-7ad86958
2014-06-23 00:06:28 4DA2B8ECC4F32930E51CC5E0E3A1CACF 611 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\241f1395-6833d792
2014-06-23 00:06:28 CE53BDAC896AB54A0D346D8824E094C8 1858 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\35034d15-61d25913
2014-06-23 00:06:38 BAD5F2701370EC8161ABEC1838F034DE 1679 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\5f0c9dd6-43c01135
2014-06-22 11:20:33 9D5CE6026C11FA3464A67561D1588A09 612 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\1cf80b57-154e3fc1
2014-06-22 21:52:30 723912C056810F2FA2DAB6ECFEC7F022 1768 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\212083d7-1b3ceba1
2014-06-22 11:20:54 9AC067E6B1D3F56915C7C7F5B822FE5A 2461 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\86e3497-2564de2b
2014-06-22 11:20:23 D10480AA73C4A7028D550F51B76D7ACA 1484146 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\3d897a18-185b702d
2014-06-22 11:20:33 3A8C3F5F3BCEAA005601CE9A9D2CEE1D 247641 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\7aca3158-16dc6871
2014-06-22 11:53:50 3ED63E45A044F7A4059C9ACD95064003 562 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\607e9d19-41b5553d
2014-06-23 00:06:28 313F5435CEC9B2BBD102DE559DF85111 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5bd9aa9a-18946474
2014-06-22 22:40:11 21C6F65D028A62CD5540AA3C510B2BEA 697 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\3828b5b-68637475
2014-06-22 22:36:23 7583AC860EC57349C83A4F2B618D3606 1213 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\d93559b-3f53084b
2014-06-23 00:06:28 5F02319780F8DFA465798DE60995F17E 1463 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\21358b5c-323ddeb8
2014-06-22 11:41:56 7AEE1B6B1630765B34E44A883CE2E1A9 699 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\33c2529c-6f2a34d2
2014-06-22 11:21:18 D353EDD533753FF0197C8ABC06361812 9638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\4bd3e99c-1b26cab7
2014-06-23 00:20:09 8A74B7B100CFA737AECC485785B12F67 1064 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\5c222f1c-4afcedc2
2014-06-22 21:47:10 79462078AC8230707D7D781626BE4D2D 722 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\7eb2039c-4ec2f518
2014-06-22 22:20:51 2807651D2C850F8983A41D3B14BEC82D 12514 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4e48d4dd-7d0fae3a
2014-06-22 22:06:56 F05E8897FF3FF53A8B2EB8A716E350D4 758 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4e9fd6dd-69afbcd6
2014-06-23 00:06:28 F22F97E663E61C765370ACA33072E72E 1388 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\b702bdd-34484109
2014-06-23 00:06:28 F8F06B3FBD669D7348D617AF51C323C5 43891 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\10794383-12c01586
2014-06-22 11:20:33 6B299F4061500B1C873CD77B3F69AD27 57126 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\20ad0483-624b42a7
2014-06-22 22:32:17 4787B11C19951DC203404358BA5AFAB4 1382 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\7addd503-461afab9
2014-06-22 21:34:59 26A59A7D0E8DFD40C865A94AA733B24B 638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\26c36a9e-7e6bb3ce
2014-06-23 00:06:28 C7F9C3445342891073F97B881536F415 525 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1077d7df-12e19957
2014-06-23 00:06:32 9E977301DE3BFCA86BA87C3BEF4FB334 15355 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1f5c4ddf-3a3f7192
2014-06-22 22:45:00 FD223F081F19145D87E691DF79D440A6 1818 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\391b9e1f-168ab8a8
2014-06-22 11:21:16 FAEE4C56A58B73AF7C07AA3A8D9D0D58 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\4e3bfa9f-77e6aa8af06ad5338ea053539562344ebe2c402334951c7428c16f7a53a088fa-6.0.lap
2014-06-23 00:06:27 D59ED9A08D731F5EE3E15F822CCA7B72 27000 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\6191a65f-1330cd71
2014-06-22 11:20:33 B42290CA48AD876E16F9FC8FF4AF55EE 13565 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\27abb5e1-327dca2e
2014-06-22 11:20:33 FF82F9A21EE5E3CAE439F611AC62D5C6 797 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5a77a661-13ea7f83
2014-06-22 21:35:00 3BFD263DE30686C32D6D13617298C857 648 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5b83b9a1-7c7a94d9
2014-06-22 11:20:17 D791A82ED9237EA5E4EA8790E16841D5 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\7b09dde1-6e9283f173ca04d2fe723afe7bcac7e0999e05feb5d8fe89eb6da6231de6caca-6.0.lap
2014-06-22 22:02:17 5AFA5C6D08FC8681EBBC8B34143F5555 632 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\206a6da2-1b3744c1
2014-06-22 22:40:22 8560B48183968D3E748FE2443562E831 587 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4e353a2-7805e7aa
2014-06-22 11:20:33 F1F06794773982D6A682B2201D3EA73F 4940 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\58dd4063-1ebbb298
2014-06-22 21:34:59 FE5E4B596E536F673A4A27E6EA5CBD32 869 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\4fda55e4-6d8f5d01
2014-06-22 22:13:57 E883CDE6201CCDBDFF7AD4F04DF60B86 1330 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\592e4e24-78970140
2014-06-22 21:35:00 5D9530A333FC2C70F5C704A24971ECCB 1320 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\75eb0864-5c1f8f19
2014-06-23 00:12:30 90CDEB5C7CBCA1B89A36195D7CB8E5AB 1671 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\7056d0e5-72c21092
2014-06-22 11:49:12 2BB740E899B0563CAB6B2E71B0BF13E6 1420 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2e5dae6-353773ee
2014-06-22 21:37:26 C5B62DA95AE86336197CCAA67F0A9477 1395 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\5f9c6626-63da878b
2014-06-22 21:35:00 D4061DFC735C1C32016BC0C1C0165659 21975 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\15fc4be7-568d1c2d
2014-06-22 22:26:42 6D6CC4C73C177393A7A87A52F4E55F64 687 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\20388ba7-40417628
2014-06-23 00:23:29 713D6B9F7DCE83DC2F12E091D7B0B2D1 1629 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\38edeca7-1a8860e5
2014-06-22 21:37:32 AE7F0DD62617DD50AF81C99F04D29D76 638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\3f30cca7-1ec64f8d
2014-06-22 11:55:00 D7834A4F4EFA724A1DF278642B29FF80 1616 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\6856ae67-73f8bf36
2014-06-22 11:20:33 9ECFAC9473CF24A388794C9B28614F9A 599 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\2152c5c4-355d849f
2014-06-22 21:41:28 E9773B74D165A0A732C68E1CFC659741 1262 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\23702bc4-35e5b62a
2014-06-22 21:34:59 6A29ACD2602F402492178C10C476239F 634 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\6c035404-7f486fab
2014-06-22 22:41:45 8692C1796ACF00AC366BA4D06489805E 766 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\16c4c228-5bdf6ca1
2014-06-22 21:35:00 0DFC1645BAF6937DC3111346D91A2182 13727 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\24184ca9-5fd2ef89
2014-06-22 12:03:25 A009A570787C0A679397D100A8099DC5 1393 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\4fa4cae9-48c168d0
2014-06-22 11:20:33 F2547AF69CF9B41BEAA95AE6567B506D 18468 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5e4e0a69-4e723b2f
2014-06-22 21:50:06 FF5FDBC72E4139A797044EF77CC15553 1875 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\2562a62b-57c69eab
2014-06-22 22:20:54 CAE05BE6DFCF73C31E9401BC8F1AB847 1562 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\4bb7566b-42657339
2014-06-22 11:20:33 1247A7DD36F817BA31092B1BF41F414E 599 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\5710296b-15d726ff
2014-06-22 21:42:43 F04E96149C8752C1ED75E35FB702A7AC 1606 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\727eb5eb-15fe6dc4
2014-06-22 21:34:59 5EC7EDAAA885263A6835A871B8F6F900 741 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7a83b8ab-2b9a010a
2014-06-22 21:56:03 9667B0CF2993AC5DEF4654DD16F06E3B 673 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7bf65eb-192da2e8
2014-06-22 21:35:00 0727BCFB85974C2E8C359106E64B10AB 1446 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\1d69b1ac-6d20724d
2014-06-22 22:43:15 74D5991E63DF846EED23E8806D3F9BF9 4785 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\dbe3fec-303ed65f
2014-06-22 11:20:33 138AA7B9898F51952B3006DC6F4B0ACE 652 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\474acbad-2aa1852d
2014-06-22 11:30:07 61277B6013E97F7F435DA8EE99022451 831 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\56eaf52d-1204e670
2014-06-29 13:58:44 338FF0BBCD96F62A21017FE78F474B4B 265357 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-4b0ed1f2
2014-06-22 22:40:11 B2488A5BAA59D5BBF0457504EBF9649E 771 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\bfa53ed-454c8ecb
2014-06-22 11:20:22 D791A82ED9237EA5E4EA8790E16841D5 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\2bf19f2e-a5a5a9a9784fc2f718e9a727efbfa6d7ed445044b8eee783d34b6803e23240b1-6.0.lap
2014-06-22 21:35:00 EFD42979D5A22894258219FD6FECF022 760 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\355e7f2e-5eb11e50
2014-06-23 00:15:09 E436F106B264532BB6F1F0783F2ED2AF 786 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\394bd3ae-5901f137
2014-06-22 11:36:36 F80A5A43CE76AF3E5E5A835B205FF5BE 12978 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\4b9eabee-14d3eb12
2014-06-22 21:34:59 42E7583B04D8869F417BA3AB50118235 902 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\10e5fcef-4c2d0660
2014-06-22 22:43:19 DC5F9E912C75DD7F8B427F92B89311A0 902 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1ae0f6af-6824670e
2014-06-22 21:57:39 A5D0AE39CEB7FDE0F8D25E6F850BF792 754 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1b686baf-7878612a
2014-06-22 11:29:39 10FCE55FE4F1C01419AC9C4EC52352EC 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\263fa6ef-2af1cad5
2014-06-22 11:37:04 EE6778D84B0F8399AB01F988EA9FD470 622 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\26b423f0-682f92a4
2014-06-22 21:46:35 4D67E9F73DC1BA5C47050A5575F8CFD4 744 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\37e08570-75a5a8c9
2014-06-22 11:33:06 467E94794411BCF09AA00982C2128164 2398 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\4dfb1cf0-2a538201
2014-06-22 12:02:30 BF15B01F08EEC334F5529B7FB6007C79 14295 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\59bb7430-3b10b44c
2014-06-22 22:12:40 C6C6839F38A3254A5F025123620B3E9A 749 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\366290f1-1a9819b8
2014-06-23 00:06:28 9F1F3DF0202F7AFDD624773F4AA711FE 670 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\783774f1-2aacda18
2014-06-22 22:43:54 C26C88DB36C23DE76A70A5C712E944F5 1699 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\79d37771-34a286d2
2014-06-23 00:06:27 886B5D31C69D17931602CD0F69064B35 591 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\13743d45-5cf956d4
2014-06-22 11:20:32 C148117D846277FFCA4FE532B90D2DDB 43769 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\45acef85-3c854d88
2014-06-22 22:36:35 FE30CDA98E3F45D4613B60381082126B 1865 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\2e294cb2-57eb4e35
2014-06-22 22:29:48 1EAA9C097E59226454E98A1AF71A5CE0 578 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5936d072-42e40834
2014-06-22 22:11:01 49D6676C495CE0E061719F373287BE4B 973 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5c2dc372-5d0d0f7a
2014-06-22 11:39:59 5A65A7C808D53A3E8E34E7FD378D4F0F 643 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6cbff572-420cb150
2014-06-22 21:35:00 0EB7C2B2C2AECFF47A365DCB26261221 720 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\1d2830b4-6ab8a5ce
2014-06-22 21:52:57 14BE486BD3762C6ECE4B4B1EBD8BAA43 663 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\c55a5b4-2823d8d8
2014-06-22 22:05:05 F09B08678A2772A9235E0D0C41AD2399 12239 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\741ac9b6-4a5da9c1
2014-06-22 21:35:00 F5A87E6691F7C8F02D4195E91A68E86A 18525 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\b61dc76-343bc2cc
2014-06-22 21:34:59 556E53FE102604F8130B3D75A64A4E40 1345 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3dc8a8f8-7d9b15b5
2014-06-23 00:06:27 785C1430D624F83250F3C5D460CC70E3 1752 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3ddd5b78-5e4a1f6c
2014-06-23 00:06:28 27EC573C5B4D0FB3399FDB023CAD4926 637 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\26925cf9-494a05fd
2014-06-22 22:40:14 419199ABEF6EAB5649D6DCE0E9F6F5A2 1855 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\49c3cf39-748b758c
2014-06-23 00:06:28 4D98D26076B2D752392454A4B7B9617A 1823 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4afc15b9-64dd84de
2014-06-22 22:42:21 4F9D339BAD99B6962484599D014132A4 1753 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\56f61a39-1689b430
2014-06-22 11:35:56 014DC63A789AAD325CE216C2709A08B7 723 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\760e25f9-59c4c364
2014-06-22 22:04:35 C14A05D6CA99CE808C2DDBBFB7BBBF8A 974 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\76c36179-68ce69a9
2014-06-29 13:58:43 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-65877b52
2014-06-23 00:21:50 2A07DECAD4225952B0859FD07AF00235 7118 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\61eb81ba-2c847b44
2014-06-23 00:06:28 D2B07379C2599892FCC791EA4CED6A7F 1735 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\58a49f3b-6da15aa2
2014-06-23 00:06:28 AFAFFACDDF61C3B582C779D4EFDF408D 755 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\630f8d7b-487585db
2014-06-22 11:20:33 0626A67C94CFF8DE5170686D1C434B98 1841 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\63bc7d7b-156bb677
2014-06-22 21:50:04 8AC6ADF6F2265525EEB93AFF8326A2D2 672 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\6b34c886-358909a1
2014-06-23 00:06:28 ED7C732B1263436513804B23F97AE5D4 564 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\7e47a4c6-7c47efca
2014-06-22 11:20:20 9748CBF37BE0B503D8B9FC65EB3DF4AF 7010 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\14729ffc-616c3dc4
2014-06-22 22:45:53 9015F7AAFE80D21C40457ED3A25409C3 23250 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\43a54afc-688eb87f
2014-06-22 22:07:40 45286165FEC0ED2BD1FDF8AF85E7D28E 1694 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\653c2ebc-41e74525
2014-06-22 21:45:53 A4BC71E08114198D5E681C759EFE0425 587 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\65e0f07c-604fba66
2014-06-22 11:20:33 64AFC1C4B948CD2516A77120D07A9D41 1647 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\7d8fbfbc-25ce0ea0
2014-06-22 12:04:22 2D613125429BBBC4DF12FAAE7DD92B2D 1753 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\32762f3d-31859b38
2014-06-22 21:34:59 C102CD2310B2D416360799E50EC0D04A 619 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\3ed3afbd-5148e3d6
2014-06-22 21:34:59 3DC7A4BE5E50ABD3B0EC96DE58B508C2 1727 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\a666a3d-18867bbb
2014-06-23 00:06:27 6AAD9D946E0E46B9FB29D3EF1178753A 1335 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\28c6f2fe-6795d42e
2014-06-22 21:36:32 F937C9EF6373B4BF758992B2EF52ECBA 672 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5527457e-3eadd24d
2014-06-23 00:06:27 8EAA0E0ABE5A59D59244DCAE863F0AC5 1507 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\88e39fe-24c942a2
2014-06-22 22:34:53 3FB99E24AB1FC41BA78D11C7E282E79A 1226 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\37337cbf-7293d6ae
2014-06-22 11:20:33 FBB1C48A00802119B0B317EFDC3AADEC 16145 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\55e03fff-7965b8ee
2014-06-22 21:50:22 5DA88213B9CC3637E829AFD2B70FB6CA 2054 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\67b951ff-64111337
2014-06-29 13:58:44 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-26b20cbe
2014-06-22 22:21:55 91C18A0D607E2439CD1188101CDE1C41 4775 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\6adb95c7-3b1a5cb7
2014-06-22 21:39:38 9AB4DDA7AD38AF4549E9CA4BA7411EB3 604 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\bd43647-7b2b996b
2014-06-23 00:23:24 40A928BA8822F4894E3B0EF48E086D39 663 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\5fa4de88-64f06feb
2014-06-22 21:52:42 34C901F5B47F6E3157DE302AB3ABB2B3 9102 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\418ed989-7af30226
====== C:\Windows\SysWOW64 =====
2014-06-29 13:57:41 CEE4C9E092168CEBD187491AF6FDA8FB 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe
2014-06-29 13:57:33 ECB3AB701D6E26F5E54C58957E34E719 175528 ----a-w- C:\Windows\SysWOW64\javaw.exe
2014-06-29 13:57:33 8C7C6D494D86307CDCF63E0478767C16 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-29 13:57:33 2251971694E17BAC4E344DC2B7CD7ADD 175528 ----a-w- C:\Windows\SysWOW64\java.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-06-28 22:23:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\MSVCR120.dll
2014-06-28 22:23:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\MSVCP120.dll
====== C:\Windows\Sysnative\drivers =====
2014-06-28 23:32:13 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-06-28 23:32:04 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-06-28 23:32:04 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-06-28 23:32:04 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-06-12 19:05:34 9E34BF0784E087F7366DBD2BDA01C8EB 46376 ----a-w- C:\Windows\Sysnative\drivers\netfilter64.sys
2014-06-11 01:20:30 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-06-11 01:20:30 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-07-02 00:54:08 -------- d-----w- C:\PROGRA~2\VS Revo Group
2014-06-29 13:57:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-06-29 13:57:26 -------- d-----w- C:\PROGRA~2\Java
======= C: =====
====== C:\Users\Dad\AppData\Roaming ======
2014-07-02 01:08:22 -------- d-----w- C:\Users\Dad\AppData\Roaming\No Company Name
2014-06-28 18:59:51 -------- d-----w- C:\Users\Dad\AppData\Local\Apps
2014-06-28 18:59:50 -------- d-----w- C:\Users\Dad\AppData\Local\Deployment
====== C:\Users\Dad ======
2014-07-03 00:53:18 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL(2).exe
2014-07-02 00:57:01 94E3A2D6251A35ED69DB3221329E8584 4181856 ----a-w- C:\Users\Dad\Downloads\tdsskiller.exe
2014-07-02 00:53:48 4F99CAE27FFD46712E65C21444AACDFC 2623656 ----a-w- C:\Users\Dad\Downloads\revosetup.exe
2014-07-02 00:30:13 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\Dad\Downloads\esetsmartinstaller_enu.exe
2014-06-29 13:57:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-29 02:07:47 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL(1).exe
2014-06-29 01:33:59 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL.exe
2014-06-28 23:31:36 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012(2).exe
2014-06-28 23:07:16 C882E29819596BB487E59B4ABD6C33B7 4812672 ----a-w- C:\Users\Dad\Downloads\ccsetup415.exe
2014-06-28 23:02:31 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012(1).exe
2014-06-28 22:56:31 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-28 21:57:28 7896EB0C34ECC3749530DA6767E0B71E 2473936 ----a-w- C:\Users\Dad\Downloads\HousecallLauncher64(1).exe
2014-06-28 21:56:37 7896EB0C34ECC3749530DA6767E0B71E 2473936 ----a-w- C:\Users\Dad\Downloads\HousecallLauncher64.exe
2014-06-28 21:40:04 -------- d-----w- C:\ProgramData\OEM Links
2014-06-12 08:48:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

====== C: exe-files ==
=== C: other files ==
2014-07-02 01:08:57 41A02C65BD138296B1DE9AA610104320 14539486 ----a-w- C:\Program Files\Common Files\Adobe\Adobe\AdobePatchFiles\{BDD8F2C8-6A88-4CC9-8707-195A0F9D23A3}.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo\PROGRA~2\Yahoo\MESSEN~1\YAHOOM~1.EXE -quiet"
"Akamai NetSession Interface"="C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo\PROGRA~2\Yahoo\MESSEN~1\YAHOOM~1.EXE -quiet"
"Akamai NetSession Interface"="C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Startup Folders ======================

2012-10-30 23:20:56 1040 ----a-w- C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launch Jawbone Updater.lnk
2013-09-02 22:48:22 2099 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06/10/2014 06:47 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/20/2013 02:34 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/20/2013 02:34 PM]
C:\Windows\tasks\HP Photo Creations Communicator.job --a------ C:\ProgramData\HP Photo Creations\Communicator.exe [09/14/2013 10:55 PM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Dad-PC-Dad" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HP Photo Creations Communicator" [C:\ProgramData\HP Photo Creations\Communicator.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS DigiVRM Help" [C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe]
"C:\Windows\SysNative\tasks\ASUS\USB 3.0 Boost Service" [C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [09/02/2013 06:49 PM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files (x86)\Perk Prize Panel\FF" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default
- Flash Video Downloader - Full HD Download - %ProfilePath%\extensions\[email protected]
- Low Quality Flash - %ProfilePath%\extensions\[email protected]
- Yahoo Toolbar - %ProfilePath%\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
- Flash and Video Download - %ProfilePath%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
01A1DD6F121A8BBE9E9B2551EA5D2839 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll - RocketLife Secure Plug-In Layer


==== Deleted Firefox Extensions ======================

C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eihhgekonheiliaidomffpplfhecmkag - No path found[]

Google Wallet - Dad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.yahoo.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.co...ge={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully
HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Mozilla\Firefox\Extensions\[email protected] deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eihhgekonheiliaidomffpplfhecmkag deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LU2Q1214 will be deleted at reboot
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NGSVAZ7P will be deleted at reboot
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P0ZTOC4A will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Dad\AppData\Local\Mozilla\Firefox\Profiles\00yeqlpc.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Dad\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=490 folders=105 109871093 bytes)

==== Empty Temp Folders ======================

C:\Users\Dad\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Dad\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LU2Q1214" not found
"C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NGSVAZ7P" not found
"C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P0ZTOC4A" not found

==== EOF on Sun 07/06/2014 at 8:30:29.27 ======================
  • 0

#12
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
I am tring to run the adwcleaner and it is telling me pending Please uncheck elements you don't want to remove.

Thanks
David
  • 0

#13
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
here is adwcleaner log

Zoek.exe v5.0.0.0 Updated 30-06-2014
Tool run by Dad on Fri 07/04/2014 at 10:06:32.65.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Dad\Desktop\zoek.exe
Script used: C:\Users\Dad\Desktop\zoekscript-1.txt

==== Older Logs ======================

C:\zoek-results2014-07-03-235905.log 48583 bytes
C:\zoek-results2014-07-04-001139.log 48673 bytes

==== System Restore Info ======================

7/4/2014 10:07:07 AM Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2AFFA7D6-8251-4FED-BCFE-2BF98A70BA48} deleted successfully
HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Internet Explorer\SearchScopes\{34FFDBD8-2B3A-4564-A52D-FD496736E661} deleted successfully
HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Running Processes ======================

C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\Yahoo\SoftwareUpdate\YahooAUService.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Yahoo\Messenger\ymsgr_tray.exe
C:\Users\Dad\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Services (whitelist) ======================
Powered by E Dev

R2 - [AdobeActiveFileMonitor12.0] - Adobe Active File Monitor V12 - C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [asComSvc] - ASUS Com Service - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
R2 - [asHmComSvc] - ASUS HM Com Service - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
R2 - [Garmin Core Update Service] - Garmin Core Update Service - "C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
R2 - [MBAMService] - MBAMService - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
R2 - [NvNetworkService] - NVIDIA Network Service - "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
R2 - [NvStreamSvc] - NVIDIA Streamer Service - "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
R2 - [nvsvc] - NVIDIA Display Driver Service - "C:\Windows\system32\nvvsvc.exe"
R2 - [PMBDeviceInfoProvider] - PMBDeviceInfoProvider - "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
R2 - [SepMasterService] - Symantec Endpoint Protection - "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\ccSvcHst.exe" /s "Symantec Endpoint Protection" /m "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin\sms.dll" /prefetch:1
R2 - [UMVPFSrv] - UMVPFSrv - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
R2 - [WSearch] - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
R2 - [YahooAUService] - Yahoo! Updater - "C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe"
R3 - [SmcService] - Symantec Management Client - "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\Smc.exe" /prefetch:1
R4 - [MBAMScheduler] - MBAMScheduler - "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
S2 - [AsSysCtrlService] - ASUS System Control Service - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
S2 - [sppsvc] - Software Protection - C:\Windows\system32\sppsvc.exe
S2 - [Stereo Service] - NVIDIA Stereoscopic 3D Driver Service - "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 - [ALG] - Application Layer Gateway Service - C:\Windows\System32\alg.exe
S3 - [aspnet_state] - ASP.NET State Service - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S3 - [COMSysApp] - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [ehRecvr] - Windows Media Center Receiver Service - C:\Windows\ehome\ehRecvr.exe
S3 - [ehSched] - Windows Media Center Scheduler Service - C:\Windows\ehome\ehsched.exe
S3 - [Fax] - Fax - C:\Windows\system32\fxssvc.exe
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\Windows\system32\IEEtwCollector.exe /V
S3 - [LBTServ] - Logitech Bluetooth Service - C:\Program Files\Common Files\logishrd\Bluetooth\LBTServ.exe
S3 - [Microsoft SharePoint Workspace Audit Service] - Microsoft SharePoint Workspace Audit Service - "C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE" /auditservice
S3 - [MozillaMaintenance] - Mozilla Maintenance Service - "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\Windows\system32\msiexec.exe /V
S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
S3 - [osppsvc] - Office Software Protection Platform - "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
S3 - [PerfHost] - Performance Counter DLL Host - C:\Windows\SysWow64\perfhost.exe
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
S3 - [SNAC] - Symantec Network Access Control - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1101.401.105\Bin64\snac64.exe
S3 - [SNMPTRAP] - SNMP Trap - C:\Windows\System32\snmptrap.exe
S3 - [TrustedInstaller] - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - [vds] - Virtual Disk - C:\Windows\System32\vds.exe
S3 - [VSS] - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
S3 - [WatAdminSvc] - Windows Activation Technologies Service - C:\Windows\system32\Wat\WatAdminSvc.exe
S3 - [wbengine] - Block Level Backup Engine Service - "C:\Windows\system32\wbengine.exe"
S3 - [wmiApSrv] - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\YahooAUService deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\YahooAUService deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default

---- Lines conduit removed from prefs.js ----
user_pref("Smartbar.ConduitHomepagesList", "");
user_pref("Smartbar.ConduitSearchEngineList", "WhiteSmoke New Customized Web Search");
user_pref("Smartbar.ConduitSearchUrlList", "http://search.condui...8022&UM=2&q=");
---- Lines Web Search removed from prefs.js ----
user_pref("browser.search.defaultthis.engineName", "WhiteSmoke New Customized Web Search");
---- Lines yontoo removed from prefs.js ----
user_pref("[email protected]", true);
---- Lines defaulttab removed from prefs.js ----
user_pref("[email protected]", true);
---- Lines smartbar removed from prefs.js ----
user_pref("Smartbar.keywordURLSelectedCTID", "CT3289847");
user_pref("smartbar.machineId", "KM7KE90OXM7PTJDGGQ3KETQTEPJVLQQHWIDUDUWXU2SUTRA6GGKBAPGSV3V1A3UEMV1D+VDEJYCJAEXW4JGFLA");
user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
---- FireFox user.js and prefs.js backups ----

user_20140704_1013_.backup
prefs_20140704_1013_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"perkda"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BrowserSafeguard"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"perkda"=-
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

==== Deleting Files \ Folders ======================

C:\Program Files (x86)\Browsersafeguard not found
"C:\Users\Dad\AppData\Local\Temp\launchie.vbs" not found
C:\PROGRA~2\6E6B36EB-9156-411B-B951-C735F4747DCF deleted
C:\Program Files (x86)\Perk Prize Panel deleted
C:\PROGRA~2\Coupons deleted
C:\PROGRA~2\Conduit deleted
C:\Users\Dad\AppData\Roaming\Yahoo! deleted
C:\Users\Dad\AppData\Roaming\Strongvault deleted
C:\Users\Dad\AppData\Roaming\ParetoLogic deleted
C:\Users\Dad\AppData\Roaming\DriverCure deleted
C:\PROGRA~3\Yahoo! deleted
C:\PROGRA~3\ParetoLogic deleted
C:\PROGRA~3\VisualBee deleted
C:\PROGRA~3\Strongvault Online Backup deleted
C:\PROGRA~3\Tarma Installer deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Dad\AppData\Local\Strongvault Online Backup deleted
C:\Users\Dad\AppData\Local\BrowserSafeguard deleted
C:\Users\Dad\AppData\Local\SwvUpdater deleted
C:\Users\Dad\AppData\Local\emaze deleted
C:\Users\Dad\AppData\Local\Conduit deleted
C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk deleted
C:\Users\Dad\Searches deleted
C:\Users\Dad\AppData\LocalLow\Yahoo! deleted
C:\Users\Dad\AppData\LocalLow\PriceGong deleted
C:\Users\Dad\AppData\LocalLow\Conduit deleted
C:\AI_RecycleBin deleted
C:\END deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Windows\SysWow64\AI_RecycleBin deleted
C:\Users\Dad\Documents\Optimizer Pro deleted
"C:\Windows\SysNative\tasks\4446" deleted
"C:\Windows\SysNative\tasks\0" deleted

==== Folders Found In C:\Users\Dad\AppData\Roaming\No Company Name ======================

2014-07-02 01:08:22 d-----w- C:\Users\Dad\AppData\Roaming\No Company Name\No Client Name

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\Dad\AppData\Local\Temp ====
2014-06-28 21:58:05 BDE21EC1618633A32EE2ED984B3FEDD8 93008 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\BPMNT.dll
2014-06-28 21:58:05 2AEF7BCC88E8D8B088D961C727E71A30 2997808 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\tscdll64.dll
2014-06-28 21:58:05 28E6D2591EACB4BE4D1A5BB38360FDB1 2279960 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\vsapi64.dll
2014-06-28 21:57:55 F82469A1100DA72AB6071C45FA665E96 318464 ----a-w- C:\Users\Dad\AppData\Local\Temp\HouseCall\plugin\downloader.plugin.dll
2014-06-28 21:57:47 09C2419DDBCEB3B3E964733AB2199350 3940200 ----a-w- C:\Users\Dad\AppData\Local\Temp\HCBackup\hcpackage64.exe
====== Java Cache =====
2014-06-23 00:27:18 5A93F13C9E8DB21D21F63AE0F60E0C44 1714 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\3cd11d40-7ae18482
2014-06-22 22:44:30 C88A8EF1BD3C1426A7696D3BCDF7D9DE 1845 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\7c84f6c1-32caaa91
2014-06-22 21:35:00 AFACDB5023B99A60973A7FBE6889634B 797 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\3299864a-7adecba1
2014-06-23 00:06:27 3CA7C8913CCBD4CB0E1C48B023B8AB7B 593 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\5468e8ca-3295456f
2014-06-22 21:34:59 D5DF9004886838E60A9008B995C850A6 1867 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\bc82dca-4dd6e9a4
2014-06-23 00:06:27 7D22BF850536BB1D41DDAC5DDA7B9741 723 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\59fc290c-3781552e
2014-06-22 11:20:26 4AB02D81627C0E878177DE7CF2307D9B 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\398daa4d-ad35e1e592020e304932a984d50ec921ff3a0ddd4f35b5493d5e09846b72f167-6.0.lap
2014-06-22 21:44:20 268325E5F0373C4069B4ACFFB7AAA991 1363 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\2dd7f50e-1e60ec6a
2014-06-22 21:56:21 47D5F3544A2EC3A38F7CA6AE3320CA4C 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\6782a4cf-3655fcaf
2014-06-22 21:35:00 F738AA64C2D1DB9FDFDD5D96A2BA012D 1664 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\743c9a8f-78677da5
2014-06-23 00:06:27 7474993079652BB703B373BE3DF20FD1 633 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\2d66f850-2d28c85a
2014-06-22 21:34:59 473F910779B129F2E55CFD6176F3A38F 542 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\2e446e92-17b9b55f
2014-06-23 00:26:27 AD2BB074330AAF1DF4F53CB3F24240A8 1788 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3612f52-628d21a3
2014-06-23 00:26:11 AEDD2A111185E8214831EE697407E939 1802 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\47c5d713-73519f4f
2014-06-23 00:23:27 B7116FD6679E1BF224FB44EBD9AAE2A4 4933 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\7955fd53-2438ba7c
2014-06-22 21:35:00 420FC7498300E2488B9DF36E35964AA0 613 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\37549ad4-2311886b
2014-06-23 00:23:55 FFB871AF44722C00B50D53C22B02C5E1 1351 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\557a3a14-6222f1ee
2014-06-22 21:40:15 5053AD7D5321D5C63BFB31BA4ABDDCC2 839 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\5f9f9f94-7ad86958
2014-06-23 00:06:28 4DA2B8ECC4F32930E51CC5E0E3A1CACF 611 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\241f1395-6833d792
2014-06-23 00:06:28 CE53BDAC896AB54A0D346D8824E094C8 1858 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\35034d15-61d25913
2014-06-23 00:06:38 BAD5F2701370EC8161ABEC1838F034DE 1679 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\5f0c9dd6-43c01135
2014-06-22 11:20:33 9D5CE6026C11FA3464A67561D1588A09 612 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\1cf80b57-154e3fc1
2014-06-22 21:52:30 723912C056810F2FA2DAB6ECFEC7F022 1768 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\212083d7-1b3ceba1
2014-06-22 11:20:54 9AC067E6B1D3F56915C7C7F5B822FE5A 2461 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\86e3497-2564de2b
2014-06-22 11:20:23 D10480AA73C4A7028D550F51B76D7ACA 1484146 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\3d897a18-185b702d
2014-06-22 11:20:33 3A8C3F5F3BCEAA005601CE9A9D2CEE1D 247641 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\7aca3158-16dc6871
2014-06-22 11:53:50 3ED63E45A044F7A4059C9ACD95064003 562 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\607e9d19-41b5553d
2014-06-23 00:06:28 313F5435CEC9B2BBD102DE559DF85111 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5bd9aa9a-18946474
2014-06-22 22:40:11 21C6F65D028A62CD5540AA3C510B2BEA 697 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\3828b5b-68637475
2014-06-22 22:36:23 7583AC860EC57349C83A4F2B618D3606 1213 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\d93559b-3f53084b
2014-06-23 00:06:28 5F02319780F8DFA465798DE60995F17E 1463 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\21358b5c-323ddeb8
2014-06-22 11:41:56 7AEE1B6B1630765B34E44A883CE2E1A9 699 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\33c2529c-6f2a34d2
2014-06-22 11:21:18 D353EDD533753FF0197C8ABC06361812 9638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\4bd3e99c-1b26cab7
2014-06-23 00:20:09 8A74B7B100CFA737AECC485785B12F67 1064 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\5c222f1c-4afcedc2
2014-06-22 21:47:10 79462078AC8230707D7D781626BE4D2D 722 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\7eb2039c-4ec2f518
2014-06-22 22:20:51 2807651D2C850F8983A41D3B14BEC82D 12514 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4e48d4dd-7d0fae3a
2014-06-22 22:06:56 F05E8897FF3FF53A8B2EB8A716E350D4 758 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4e9fd6dd-69afbcd6
2014-06-23 00:06:28 F22F97E663E61C765370ACA33072E72E 1388 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\b702bdd-34484109
2014-06-23 00:06:28 F8F06B3FBD669D7348D617AF51C323C5 43891 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\10794383-12c01586
2014-06-22 11:20:33 6B299F4061500B1C873CD77B3F69AD27 57126 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\20ad0483-624b42a7
2014-06-22 22:32:17 4787B11C19951DC203404358BA5AFAB4 1382 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\7addd503-461afab9
2014-06-22 21:34:59 26A59A7D0E8DFD40C865A94AA733B24B 638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\26c36a9e-7e6bb3ce
2014-06-23 00:06:28 C7F9C3445342891073F97B881536F415 525 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1077d7df-12e19957
2014-06-23 00:06:32 9E977301DE3BFCA86BA87C3BEF4FB334 15355 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1f5c4ddf-3a3f7192
2014-06-22 22:45:00 FD223F081F19145D87E691DF79D440A6 1818 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\391b9e1f-168ab8a8
2014-06-22 11:21:16 FAEE4C56A58B73AF7C07AA3A8D9D0D58 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\4e3bfa9f-77e6aa8af06ad5338ea053539562344ebe2c402334951c7428c16f7a53a088fa-6.0.lap
2014-06-23 00:06:27 D59ED9A08D731F5EE3E15F822CCA7B72 27000 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\6191a65f-1330cd71
2014-06-22 11:20:33 B42290CA48AD876E16F9FC8FF4AF55EE 13565 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\27abb5e1-327dca2e
2014-06-22 11:20:33 FF82F9A21EE5E3CAE439F611AC62D5C6 797 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5a77a661-13ea7f83
2014-06-22 21:35:00 3BFD263DE30686C32D6D13617298C857 648 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5b83b9a1-7c7a94d9
2014-06-22 11:20:17 D791A82ED9237EA5E4EA8790E16841D5 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\7b09dde1-6e9283f173ca04d2fe723afe7bcac7e0999e05feb5d8fe89eb6da6231de6caca-6.0.lap
2014-06-22 22:02:17 5AFA5C6D08FC8681EBBC8B34143F5555 632 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\206a6da2-1b3744c1
2014-06-22 22:40:22 8560B48183968D3E748FE2443562E831 587 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4e353a2-7805e7aa
2014-06-22 11:20:33 F1F06794773982D6A682B2201D3EA73F 4940 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\58dd4063-1ebbb298
2014-06-22 21:34:59 FE5E4B596E536F673A4A27E6EA5CBD32 869 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\4fda55e4-6d8f5d01
2014-06-22 22:13:57 E883CDE6201CCDBDFF7AD4F04DF60B86 1330 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\592e4e24-78970140
2014-06-22 21:35:00 5D9530A333FC2C70F5C704A24971ECCB 1320 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\75eb0864-5c1f8f19
2014-06-23 00:12:30 90CDEB5C7CBCA1B89A36195D7CB8E5AB 1671 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\7056d0e5-72c21092
2014-06-22 11:49:12 2BB740E899B0563CAB6B2E71B0BF13E6 1420 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2e5dae6-353773ee
2014-06-22 21:37:26 C5B62DA95AE86336197CCAA67F0A9477 1395 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\5f9c6626-63da878b
2014-06-22 21:35:00 D4061DFC735C1C32016BC0C1C0165659 21975 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\15fc4be7-568d1c2d
2014-06-22 22:26:42 6D6CC4C73C177393A7A87A52F4E55F64 687 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\20388ba7-40417628
2014-06-23 00:23:29 713D6B9F7DCE83DC2F12E091D7B0B2D1 1629 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\38edeca7-1a8860e5
2014-06-22 21:37:32 AE7F0DD62617DD50AF81C99F04D29D76 638 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\3f30cca7-1ec64f8d
2014-06-22 11:55:00 D7834A4F4EFA724A1DF278642B29FF80 1616 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\6856ae67-73f8bf36
2014-06-22 11:20:33 9ECFAC9473CF24A388794C9B28614F9A 599 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\2152c5c4-355d849f
2014-06-22 21:41:28 E9773B74D165A0A732C68E1CFC659741 1262 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\23702bc4-35e5b62a
2014-06-22 21:34:59 6A29ACD2602F402492178C10C476239F 634 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\6c035404-7f486fab
2014-06-22 22:41:45 8692C1796ACF00AC366BA4D06489805E 766 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\16c4c228-5bdf6ca1
2014-06-22 21:35:00 0DFC1645BAF6937DC3111346D91A2182 13727 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\24184ca9-5fd2ef89
2014-06-22 12:03:25 A009A570787C0A679397D100A8099DC5 1393 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\4fa4cae9-48c168d0
2014-06-22 11:20:33 F2547AF69CF9B41BEAA95AE6567B506D 18468 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5e4e0a69-4e723b2f
2014-06-22 21:50:06 FF5FDBC72E4139A797044EF77CC15553 1875 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\2562a62b-57c69eab
2014-06-22 22:20:54 CAE05BE6DFCF73C31E9401BC8F1AB847 1562 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\4bb7566b-42657339
2014-06-22 11:20:33 1247A7DD36F817BA31092B1BF41F414E 599 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\5710296b-15d726ff
2014-06-22 21:42:43 F04E96149C8752C1ED75E35FB702A7AC 1606 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\727eb5eb-15fe6dc4
2014-06-22 21:34:59 5EC7EDAAA885263A6835A871B8F6F900 741 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7a83b8ab-2b9a010a
2014-06-22 21:56:03 9667B0CF2993AC5DEF4654DD16F06E3B 673 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7bf65eb-192da2e8
2014-06-22 21:35:00 0727BCFB85974C2E8C359106E64B10AB 1446 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\1d69b1ac-6d20724d
2014-06-22 22:43:15 74D5991E63DF846EED23E8806D3F9BF9 4785 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\dbe3fec-303ed65f
2014-06-22 11:20:33 138AA7B9898F51952B3006DC6F4B0ACE 652 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\474acbad-2aa1852d
2014-06-22 11:30:07 61277B6013E97F7F435DA8EE99022451 831 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\56eaf52d-1204e670
2014-06-29 13:58:44 338FF0BBCD96F62A21017FE78F474B4B 265357 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-4b0ed1f2
2014-06-22 22:40:11 B2488A5BAA59D5BBF0457504EBF9649E 771 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\bfa53ed-454c8ecb
2014-06-22 11:20:22 D791A82ED9237EA5E4EA8790E16841D5 93 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\2bf19f2e-a5a5a9a9784fc2f718e9a727efbfa6d7ed445044b8eee783d34b6803e23240b1-6.0.lap
2014-06-22 21:35:00 EFD42979D5A22894258219FD6FECF022 760 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\355e7f2e-5eb11e50
2014-06-23 00:15:09 E436F106B264532BB6F1F0783F2ED2AF 786 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\394bd3ae-5901f137
2014-06-22 11:36:36 F80A5A43CE76AF3E5E5A835B205FF5BE 12978 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\4b9eabee-14d3eb12
2014-06-22 21:34:59 42E7583B04D8869F417BA3AB50118235 902 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\10e5fcef-4c2d0660
2014-06-22 22:43:19 DC5F9E912C75DD7F8B427F92B89311A0 902 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1ae0f6af-6824670e
2014-06-22 21:57:39 A5D0AE39CEB7FDE0F8D25E6F850BF792 754 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1b686baf-7878612a
2014-06-22 11:29:39 10FCE55FE4F1C01419AC9C4EC52352EC 674 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\263fa6ef-2af1cad5
2014-06-22 11:37:04 EE6778D84B0F8399AB01F988EA9FD470 622 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\26b423f0-682f92a4
2014-06-22 21:46:35 4D67E9F73DC1BA5C47050A5575F8CFD4 744 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\37e08570-75a5a8c9
2014-06-22 11:33:06 467E94794411BCF09AA00982C2128164 2398 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\4dfb1cf0-2a538201
2014-06-22 12:02:30 BF15B01F08EEC334F5529B7FB6007C79 14295 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\59bb7430-3b10b44c
2014-06-22 22:12:40 C6C6839F38A3254A5F025123620B3E9A 749 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\366290f1-1a9819b8
2014-06-23 00:06:28 9F1F3DF0202F7AFDD624773F4AA711FE 670 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\783774f1-2aacda18
2014-06-22 22:43:54 C26C88DB36C23DE76A70A5C712E944F5 1699 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\79d37771-34a286d2
2014-06-23 00:06:27 886B5D31C69D17931602CD0F69064B35 591 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\13743d45-5cf956d4
2014-06-22 11:20:32 C148117D846277FFCA4FE532B90D2DDB 43769 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\45acef85-3c854d88
2014-06-22 22:36:35 FE30CDA98E3F45D4613B60381082126B 1865 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\2e294cb2-57eb4e35
2014-06-22 22:29:48 1EAA9C097E59226454E98A1AF71A5CE0 578 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5936d072-42e40834
2014-06-22 22:11:01 49D6676C495CE0E061719F373287BE4B 973 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\5c2dc372-5d0d0f7a
2014-06-22 11:39:59 5A65A7C808D53A3E8E34E7FD378D4F0F 643 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\6cbff572-420cb150
2014-06-22 21:35:00 0EB7C2B2C2AECFF47A365DCB26261221 720 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\1d2830b4-6ab8a5ce
2014-06-22 21:52:57 14BE486BD3762C6ECE4B4B1EBD8BAA43 663 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\c55a5b4-2823d8d8
2014-06-22 22:05:05 F09B08678A2772A9235E0D0C41AD2399 12239 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\741ac9b6-4a5da9c1
2014-06-22 21:35:00 F5A87E6691F7C8F02D4195E91A68E86A 18525 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\b61dc76-343bc2cc
2014-06-22 21:34:59 556E53FE102604F8130B3D75A64A4E40 1345 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3dc8a8f8-7d9b15b5
2014-06-23 00:06:27 785C1430D624F83250F3C5D460CC70E3 1752 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3ddd5b78-5e4a1f6c
2014-06-23 00:06:28 27EC573C5B4D0FB3399FDB023CAD4926 637 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\26925cf9-494a05fd
2014-06-22 22:40:14 419199ABEF6EAB5649D6DCE0E9F6F5A2 1855 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\49c3cf39-748b758c
2014-06-23 00:06:28 4D98D26076B2D752392454A4B7B9617A 1823 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4afc15b9-64dd84de
2014-06-22 22:42:21 4F9D339BAD99B6962484599D014132A4 1753 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\56f61a39-1689b430
2014-06-22 11:35:56 014DC63A789AAD325CE216C2709A08B7 723 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\760e25f9-59c4c364
2014-06-22 22:04:35 C14A05D6CA99CE808C2DDBBFB7BBBF8A 974 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\76c36179-68ce69a9
2014-06-29 13:58:43 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-65877b52
2014-06-23 00:21:50 2A07DECAD4225952B0859FD07AF00235 7118 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\61eb81ba-2c847b44
2014-06-23 00:06:28 D2B07379C2599892FCC791EA4CED6A7F 1735 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\58a49f3b-6da15aa2
2014-06-23 00:06:28 AFAFFACDDF61C3B582C779D4EFDF408D 755 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\630f8d7b-487585db
2014-06-22 11:20:33 0626A67C94CFF8DE5170686D1C434B98 1841 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\63bc7d7b-156bb677
2014-06-22 21:50:04 8AC6ADF6F2265525EEB93AFF8326A2D2 672 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\6b34c886-358909a1
2014-06-23 00:06:28 ED7C732B1263436513804B23F97AE5D4 564 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\7e47a4c6-7c47efca
2014-06-22 11:20:20 9748CBF37BE0B503D8B9FC65EB3DF4AF 7010 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\14729ffc-616c3dc4
2014-06-22 22:45:53 9015F7AAFE80D21C40457ED3A25409C3 23250 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\43a54afc-688eb87f
2014-06-22 22:07:40 45286165FEC0ED2BD1FDF8AF85E7D28E 1694 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\653c2ebc-41e74525
2014-06-22 21:45:53 A4BC71E08114198D5E681C759EFE0425 587 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\65e0f07c-604fba66
2014-06-22 11:20:33 64AFC1C4B948CD2516A77120D07A9D41 1647 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\7d8fbfbc-25ce0ea0
2014-06-22 12:04:22 2D613125429BBBC4DF12FAAE7DD92B2D 1753 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\32762f3d-31859b38
2014-06-22 21:34:59 C102CD2310B2D416360799E50EC0D04A 619 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\3ed3afbd-5148e3d6
2014-06-22 21:34:59 3DC7A4BE5E50ABD3B0EC96DE58B508C2 1727 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\a666a3d-18867bbb
2014-06-23 00:06:27 6AAD9D946E0E46B9FB29D3EF1178753A 1335 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\28c6f2fe-6795d42e
2014-06-22 21:36:32 F937C9EF6373B4BF758992B2EF52ECBA 672 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5527457e-3eadd24d
2014-06-23 00:06:27 8EAA0E0ABE5A59D59244DCAE863F0AC5 1507 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\88e39fe-24c942a2
2014-06-22 22:34:53 3FB99E24AB1FC41BA78D11C7E282E79A 1226 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\37337cbf-7293d6ae
2014-06-22 11:20:33 FBB1C48A00802119B0B317EFDC3AADEC 16145 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\55e03fff-7965b8ee
2014-06-22 21:50:22 5DA88213B9CC3637E829AFD2B70FB6CA 2054 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\67b951ff-64111337
2014-06-29 13:58:44 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-26b20cbe
2014-06-22 22:21:55 91C18A0D607E2439CD1188101CDE1C41 4775 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\6adb95c7-3b1a5cb7
2014-06-22 21:39:38 9AB4DDA7AD38AF4549E9CA4BA7411EB3 604 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\bd43647-7b2b996b
2014-06-23 00:23:24 40A928BA8822F4894E3B0EF48E086D39 663 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\5fa4de88-64f06feb
2014-06-22 21:52:42 34C901F5B47F6E3157DE302AB3ABB2B3 9102 ----a-w- C:\Users\Dad\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\418ed989-7af30226
====== C:\Windows\SysWOW64 =====
2014-06-29 13:57:41 CEE4C9E092168CEBD187491AF6FDA8FB 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe
2014-06-29 13:57:33 ECB3AB701D6E26F5E54C58957E34E719 175528 ----a-w- C:\Windows\SysWOW64\javaw.exe
2014-06-29 13:57:33 8C7C6D494D86307CDCF63E0478767C16 98216 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-29 13:57:33 2251971694E17BAC4E344DC2B7CD7ADD 175528 ----a-w- C:\Windows\SysWOW64\java.exe
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-06-28 22:23:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\MSVCR120.dll
2014-06-28 22:23:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\Sysnative\MSVCP120.dll
====== C:\Windows\Sysnative\drivers =====
2014-06-28 23:32:13 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-06-28 23:32:04 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-06-28 23:32:04 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-06-28 23:32:04 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-06-12 19:05:34 9E34BF0784E087F7366DBD2BDA01C8EB 46376 ----a-w- C:\Windows\Sysnative\drivers\netfilter64.sys
2014-06-11 01:20:30 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-06-11 01:20:30 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-07-02 00:54:08 -------- d-----w- C:\PROGRA~2\VS Revo Group
2014-06-29 13:57:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Java
2014-06-29 13:57:26 -------- d-----w- C:\PROGRA~2\Java
======= C: =====
====== C:\Users\Dad\AppData\Roaming ======
2014-07-02 01:08:22 -------- d-----w- C:\Users\Dad\AppData\Roaming\No Company Name
2014-06-28 18:59:51 -------- d-----w- C:\Users\Dad\AppData\Local\Apps
2014-06-28 18:59:50 -------- d-----w- C:\Users\Dad\AppData\Local\Deployment
====== C:\Users\Dad ======
2014-07-03 00:53:18 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL(2).exe
2014-07-02 00:57:01 94E3A2D6251A35ED69DB3221329E8584 4181856 ----a-w- C:\Users\Dad\Downloads\tdsskiller.exe
2014-07-02 00:53:48 4F99CAE27FFD46712E65C21444AACDFC 2623656 ----a-w- C:\Users\Dad\Downloads\revosetup.exe
2014-07-02 00:30:13 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\Dad\Downloads\esetsmartinstaller_enu.exe
2014-06-29 13:57:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-29 02:07:47 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL(1).exe
2014-06-29 01:33:59 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Dad\Downloads\OTL.exe
2014-06-28 23:31:36 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012(2).exe
2014-06-28 23:07:16 C882E29819596BB487E59B4ABD6C33B7 4812672 ----a-w- C:\Users\Dad\Downloads\ccsetup415.exe
2014-06-28 23:02:31 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012(1).exe
2014-06-28 22:56:31 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Dad\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-28 21:57:28 7896EB0C34ECC3749530DA6767E0B71E 2473936 ----a-w- C:\Users\Dad\Downloads\HousecallLauncher64(1).exe
2014-06-28 21:56:37 7896EB0C34ECC3749530DA6767E0B71E 2473936 ----a-w- C:\Users\Dad\Downloads\HousecallLauncher64.exe
2014-06-28 21:40:04 -------- d-----w- C:\ProgramData\OEM Links
2014-06-12 08:48:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

====== C: exe-files ==
=== C: other files ==
2014-07-02 01:08:57 41A02C65BD138296B1DE9AA610104320 14539486 ----a-w- C:\Program Files\Common Files\Adobe\Adobe\AdobePatchFiles\{BDD8F2C8-6A88-4CC9-8707-195A0F9D23A3}.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo\PROGRA~2\Yahoo\MESSEN~1\YAHOOM~1.EXE -quiet"
"Akamai NetSession Interface"="C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo\PROGRA~2\Yahoo\MESSEN~1\YAHOOM~1.EXE -quiet"
"Akamai NetSession Interface"="C:\Users\Dad\AppData\Local\Akamai\netsession_win.exe"
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"
"GarminExpressTrayApp"="C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE"
"NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"ShadowPlay"="C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

==== Startup Folders ======================

2012-10-30 23:20:56 1040 ----a-w- C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launch Jawbone Updater.lnk
2013-09-02 22:48:22 2099 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06/10/2014 06:47 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/20/2013 02:34 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [07/20/2013 02:34 PM]
C:\Windows\tasks\HP Photo Creations Communicator.job --a------ C:\ProgramData\HP Photo Creations\Communicator.exe [09/14/2013 10:55 PM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-Dad-PC-Dad" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\GarminUpdaterTask" [C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HP Photo Creations Communicator" [C:\ProgramData\HP Photo Creations\Communicator.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe]
"C:\Windows\SysNative\tasks\ASUS\ASUS DigiVRM Help" [C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe]
"C:\Windows\SysNative\tasks\ASUS\USB 3.0 Boost Service" [C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [09/02/2013 06:49 PM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files (x86)\Perk Prize Panel\FF" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default
- Flash Video Downloader - Full HD Download - %ProfilePath%\extensions\[email protected]
- Low Quality Flash - %ProfilePath%\extensions\[email protected]
- Yahoo Toolbar - %ProfilePath%\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
- Flash and Video Download - %ProfilePath%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default
A58DE0A570148AF5FF3512B2A340D09F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll - Shockwave Flash
01A1DD6F121A8BBE9E9B2551EA5D2839 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll - RocketLife Secure Plug-In Layer


==== Deleted Firefox Extensions ======================

C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eihhgekonheiliaidomffpplfhecmkag - No path found[]

Google Wallet - Dad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.yahoo.com/"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/...ox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.co...ge={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully
HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully
HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-2996233513-1512372674-1134010183-1000\Software\Mozilla\Firefox\Extensions\[email protected] deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\eihhgekonheiliaidomffpplfhecmkag deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LU2Q1214 will be deleted at reboot
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NGSVAZ7P will be deleted at reboot
C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P0ZTOC4A will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\Dad\AppData\Local\Mozilla\Firefox\Profiles\00yeqlpc.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Dad\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=490 folders=105 109871093 bytes)

==== Empty Temp Folders ======================

C:\Users\Dad\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Dad\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LU2Q1214" not found
"C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NGSVAZ7P" not found
"C:\Users\Dad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P0ZTOC4A" not found

==== EOF on Sun 07/06/2014 at 8:30:29.27 ======================
  • 0

#14
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi David! :)
 
You have pasted me twice ZOEK report, could you please go to C:\AdwCleaner folder and search there for the AdwCleaner[S*] log?

 

Naat 


  • 0

#15
Tazdrh

Tazdrh

    Member

  • Topic Starter
  • Member
  • PipPip
  • 75 posts
# AdwCleaner v3.214 - Report created 06/07/2014 at 11:47:16
# Updated 29/06/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Dad - DAD-PC
# Running from : C:\Users\Dad\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\HiDefMedia
Folder Deleted : C:\Program Files\003
File Deleted : C:\Windows\System32\SecureAssist64.dll
File Deleted : C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\strongvaultapp_rasmancs
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289847
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9863E762-BACC-46E4-8CAA-2A6ADA06B65B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\visualbee
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\BrowserSafeGuard
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Lightspark Team
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\visualbee
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v30.0 (en-US)

[ File : C:\Users\Dad\AppData\Roaming\Mozilla\Firefox\Profiles\00yeqlpc.default\prefs.js ]

Line Deleted : user_pref("CT3289847_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1367371677796,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1394149858341");

-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Dad\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3317458&octid=EB_ORIGINAL_CTID&ISID=M00FA79CB-05DF-4E04-B413-3992E0B813E7&SearchSource=58&CUI=&UM=5&UP=SPD05FA595-3FAC-406A-BEE1-3E6F20CC734D&q={searchTerms}&SSPV=
Deleted [Extension] : cfaifkapfifnanhhiidacmhldddojchn

*************************

AdwCleaner[R0].txt - [4554 octets] - [06/07/2014 08:42:54]
AdwCleaner[R1].txt - [4612 octets] - [06/07/2014 08:50:22]
AdwCleaner[R2].txt - [4672 octets] - [06/07/2014 08:54:28]
AdwCleaner[S0].txt - [4437 octets] - [06/07/2014 11:47:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4497 octets] ##########
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP