Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93084 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Entire PC slows down, keep seeing pop up saying I'm infected? [Sol

Started by cobycoban , Dec 04 2013 05:41 PM

  • This topic is locked This topic is locked
20 replies to this topic

#16 Tomk

Tomk

    Beguilement Monitor

  • Global Moderator
  • 20,451 posts

Posted 17 December 2013 - 10:46 PM

You got some old, lingering, java exploits there. Please completely uninstall all versions of Java.

Then:

COMBOFIX-Script

  • Please open Notepad (Start -> Run -> type notepad in the Open field -> OK) and copy and paste the text present inside the code box below:

    File::
C:\Users\tamlaz1986\AppData\Roaming\1O1L1I1PtF1F1C1N\Adobe AIR Free Download Packages\uninstaller.exe
C:\Users\tamlaz1986\AppData\Roaming\1O1L1I1PtF1F1C1N\Skype Free Download Packages\uninstaller.exe
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon\1.0.0_0\background.js
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon\1.0.0_0\content.js
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PPEX2OFR\SkywalkerSetup[1].exe
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PPEX2OFR\WSSetup[1].exe

Folder::
C:\Users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0
  • Save this as CFScript.txt and change the "Save as type" to "All Files" and place it on your desktop.

    CFScriptB-4.gif
  • Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before following the steps below. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
  • Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
  • ComboFix will now run a scan on your system. It may reboot your system when it finishes. This is normal.
  • When finished, it shall produce a log for you. Copy and paste the contents of the log in your next reply.

CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.

Next:

Java is a "dangerous" program to run anymore. There are a multitude of exploits. I've been running Java free for nearly two years and most users find the don't actually need it. I suggest you try without java for a while. If you find you do need it... then install the current version by going here.   You want to scroll down to where you can download JRE.  This will give you Java 7 update 45.


Tomk
------------------------------------------------------------
Microsoft MVP 2010-2014
 

    Advertisements

Register to Remove

#17 cobycoban

cobycoban

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 18 December 2013 - 12:36 PM

Hello the Java was completely uninstalled and new version installed.  Antivirus also disabled.

Here are the results -

 

 

ComboFix 13-12-16.01 - tamlaz1986 12/18/2013   0:43.3.4 - x86

Microsoft® Windows Vista™ Ultimate   6.0.6002.2.1252.1.1033.18.3070.1729 [GMT -5:00]

Running from: c:\users\tamlaz1986\Desktop\ComboFix.exe

Command switches used :: c:\users\tamlaz1986\Desktop\CFScript.txt

AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}

FW: COMODO Firewall *Disabled* {7DB03214-694B-060B-1600-BD4715C36DBB}

SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

SP: COMODO Defense+ *Disabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

FILE ::

"c:\users\tamlaz1986\AppData\Roaming\1O1L1I1PtF1F1C1N\Adobe AIR Free Download Packages\uninstaller.exe"

"c:\users\tamlaz1986\AppData\Roaming\1O1L1I1PtF1F1C1N\Skype Free Download"

"c:\windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon\1.0.0_0\background.js"

"c:\windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieakfmpjhljbpbfpldjkddkjmmgjmgon\1.0.0_0\content.js"

"c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PPEX2OFR\SkywalkerSetup[1].exe"

"c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PPEX2OFR\WSSetup[1].exe"

.

.

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\4a501fc0-1455eb4a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\4a501fc0-1455eb4a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\70e72ac0-43e1862d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\70e72ac0-43e1862d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\e8ba240-3fe6e93c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0\e8ba240-3fe6e93c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\33742a41-65e1aff4

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\33742a41-65e1aff4.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\36e73141-7148158a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\36e73141-7148158a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\50d45681-1f6df32a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\50d45681-1f6df32a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\29b8a20b-14ba51a3.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\29b8a20b-1e03f192.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\4003438c-3197959a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\4003438c-3197959a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\6f3757cc-43d84283

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\6f3757cc-43d84283.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-17ca899b

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-17ca899b.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\23862ccd-322f17a6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\23862ccd-322f17a6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\31a1b54e-680c4584

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\31a1b54e-680c4584.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\40a7e98e-2a1d7acc

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\40a7e98e-2a1d7acc.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\6c27dfcf-1c040f33

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\6c27dfcf-1c040f33.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\7b2cddcf-7a01eb0e

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15\7b2cddcf-7a01eb0e.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\13afc450-458e963e

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\13afc450-458e963e.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\3f4263d0-47136b9e

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\3f4263d0-47136b9e.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\628f2a90-38537b0a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\628f2a90-38537b0a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-221c0d4a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-221c0d4a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\916fbd1-220d9ad4

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\916fbd1-220d9ad4.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\16b42a13-5b753e36

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\16b42a13-5b753e36.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\3ca5ef13-12a2c240

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\3ca5ef13-12a2c240.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\3d7894d3-5785dfd7

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\3d7894d3-5785dfd7.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\28302882-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\76f616c2-27715a91

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\76f616c2-27715a91.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\2b24f794-4d2dcd13

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\2b24f794-4d2dcd13.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\33746a94-61180161

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\33746a94-61180161.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\3668c894-7d23fb13

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\3668c894-7d23fb13.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\5298715-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\76eeae15-2830b310

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\76eeae15-2830b310.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\13aaa9d6-3df2e0af

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\13aaa9d6-3df2e0af.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\22e17456-75c131bc

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\22e17456-75c131bc.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\596c1856-1fa59b0c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\596c1856-1fa59b0c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\6038596-33665c34

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\6038596-33665c34.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\8b2a696-19dd0041

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\8b2a696-19dd0041.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\1d9fdad7-61f01c90

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\1d9fdad7-61f01c90.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\20944ad8-60ddd1ba

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\20944ad8-60ddd1ba.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\4c3a8298-793b5da8

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\4c3a8298-793b5da8.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\2f0b7199-14e4fa30

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\2f0b7199-14e4fa30.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\41c97319-66b02ac6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\41c97319-66b02ac6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\6ff7919-4baacd5b

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\6ff7919-4baacd5b.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\34236c1a-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\53dea4da-17040028

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\53dea4da-17040028.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5425121a-7f2080c7

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5425121a-7f2080c7.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\68b085a-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\2d2a091b-2150aace

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\2d2a091b-2150aace.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\55510e5b-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\5edf731b-3f2e1cfb

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\5edf731b-3f2e1cfb.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\7682011b-66156de8

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\7682011b-66156de8.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\30c31a9c-1bc7ddea

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\30c31a9c-1bc7ddea.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\745b4e9c-5275b689

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\745b4e9c-5275b689.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4947139d-18f54826

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\4947139d-18f54826.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\6dcdf89d-64a1897d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\6dcdf89d-64a1897d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\91f51dd-74121ed6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\91f51dd-74121ed6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\54e25543-4a55ec49

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\54e25543-4a55ec49.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\6386bf83-4d4f15d1

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\6386bf83-4d4f15d1.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\76564303-72ad4538

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\76564303-72ad4538.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\53b5a89f-62639d6a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\53b5a89f-62639d6a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\bee649f-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\1d557861-38d76994

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\1d557861-38d76994.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5a53ee21-4cd0b232

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\5a53ee21-4cd0b232.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\23464aa2-3821916a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\23464aa2-3821916a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\31090ee2-1e7e6122

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\31090ee2-1e7e6122.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4686f1e2-3f2c0f63

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4686f1e2-3f2c0f63.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4e705aa2-587867ca

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4e705aa2-587867ca.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\4e9733e2-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\575d1a22-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\7b3d70e2-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\31bd33a3-661c1d87

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\31bd33a3-661c1d87.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\436da363-6a8908aa

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\436da363-6a8908aa.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\2ed0fee4-410c346d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\2ed0fee4-410c346d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\3139b164-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\44998064-70b19120

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\44998064-70b19120.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\1768c965-35fac980

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\1768c965-35fac980.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\4811b465-19722077

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\4811b465-19722077.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\65050e5-248bc260

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\65050e5-248bc260.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\f092ce5-5da341e6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\f092ce5-5da341e6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\4cd90426-560f2d0d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\4cd90426-560f2d0d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\5892e5a7-26ccb168

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\5892e5a7-26ccb168.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\1cf13c44-7ed0c90b

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\1cf13c44-7ed0c90b.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\31b20ec4-4790008e

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\31b20ec4-4790008e.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\36424104-65f09cc3

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\36424104-65f09cc3.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\4281ed04-4e944de8

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\4281ed04-4e944de8.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\43deb9c4-58f20dd3

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\43deb9c4-58f20dd3.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\454d0f44-3a17ddb5

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\454d0f44-3a17ddb5.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\636d2404-1ab3c5bb

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\636d2404-1ab3c5bb.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\14cdba68-6de0d2ff

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\14cdba68-6de0d2ff.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\1f5f9a8-79aac8d6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\1f5f9a8-79aac8d6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\35505a28-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\367908e8-28d9fb1b

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\367908e8-28d9fb1b.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\7ba88368-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\3b5d04a9-214c7c17

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\3b5d04a9-214c7c17.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\4393629-391b8cff

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\4393629-391b8cff.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\646d4369-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\13b4552a-35df8c26

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\13b4552a-35df8c26.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\48b748ea-5b81620a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\48b748ea-5b81620a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\61cd7aaa-1af9f5ae

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\61cd7aaa-1af9f5ae.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\67ac68aa-2e05dd91

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\67ac68aa-2e05dd91.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-1fed2bfd

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-1fed2bfd.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\479b47ab-15999848

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\479b47ab-15999848.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\4c84e3eb-30c11ec3

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\4c84e3eb-30c11ec3.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\52655e2b-1c129f72

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\52655e2b-1c129f72.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\5560b6b-3b3b3982

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\5560b6b-3b3b3982.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\55c1feb-371c1074

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\55c1feb-371c1074.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7d27bf2b-240b2513

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7d27bf2b-240b2513.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7fc28beb-39adee75

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\7fc28beb-39adee75.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\1d5316ac-5029a01d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\1d5316ac-5029a01d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\39ceeaac-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\7311302c-7b74a969

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\7311302c-7b74a969.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\781d17ad-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\34aa442e-24c31b8e

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\34aa442e-24c31b8e.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\15572e2f-29fb9ada

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\15572e2f-29fb9ada.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\32ef422f-2dec244d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\32ef422f-2dec244d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\4e7d49f0-2de09b48

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\4e7d49f0-2de09b48.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\5e7a730-40911795

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\5e7a730-40911795.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\45c9d5b1-2b275f51

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\45c9d5b1-2b275f51.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\12c4e4c5-6bdee27b

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\12c4e4c5-6bdee27b.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\3ba11a05-62d48884

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\3ba11a05-62d48884.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\4c3df2c5-74eda901

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\4c3df2c5-74eda901.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\735eb6c5-598489a7

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\735eb6c5-598489a7.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\1a43f133-1e8d5cb6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\1a43f133-1e8d5cb6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\30b80673-5e8db35c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\30b80673-5e8db35c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\3b1cd333-388dd6a2

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\3b1cd333-388dd6a2.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\742f67f3-3fe47ac6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\742f67f3-3fe47ac6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\1b4062b4-233bc6e6

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\1b4062b4-233bc6e6.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\15ecaab5-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\1e38e9b5-1d94fdbc

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\1e38e9b5-1d94fdbc.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\7a0dbeb5-715d5e83

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\7a0dbeb5-715d5e83.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\15767576-6ba2553f

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\15767576-6ba2553f.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\2abdf7b6-39d2235a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\2abdf7b6-39d2235a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\348d8037-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\317e5738-22186a91

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\317e5738-22186a91.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\340dde78-6.0.lap

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3425c9b8-5d9b0655

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\3425c9b8-5d9b0655.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\50acef8-100ff33c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\50acef8-100ff33c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4344b1b9-70a5de03

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4344b1b9-70a5de03.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\46bae1b9-7d6814e3

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\46bae1b9-7d6814e3.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\6b51e0f9-1bb7793c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\6b51e0f9-1bb7793c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\74b878f9-3283e93a

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\74b878f9-3283e93a.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-342be800

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-342be800.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\35fa63a-3db43ee9

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\35fa63a-3db43ee9.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\7998b2fa-1fea9fc8

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\7998b2fa-1fea9fc8.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\9f73efb-7e3d1457

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\9f73efb-7e3d1457.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\14588346-21a0367d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\14588346-21a0367d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\68009c6-5efd1815

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\68009c6-5efd1815.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\1e13903c-5a726336

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\1e13903c-5a726336.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\6c20a77c-70558dc3

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60\6c20a77c-70558dc3.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\2ffc933d-25f17833

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\2ffc933d-25f17833.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\583998bd-4f8d3e23

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\583998bd-4f8d3e23.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\78f4043d-51999446

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\78f4043d-51999446.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\2bc3143e-138ebc63.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\2bc3143e-55ab71dc.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\589db33e-6298e713

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\589db33e-6298e713.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\4c1730ff-3da37ebd

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\4c1730ff-3da37ebd.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\7294613f-70f7644d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\7294613f-70f7644d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\1231f0c7-11427465

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\1231f0c7-11427465.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\417824c7-6f44472c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\417824c7-6f44472c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\4a405908-6296a3a9

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\4a405908-6296a3a9.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\4c66b48-312510ec

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\4c66b48-312510ec.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\55d73088-2d6ab18c

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\55d73088-2d6ab18c.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\579c4408-37686a6d

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\579c4408-37686a6d.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\7e052f88-3013cf9e

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\7e052f88-3013cf9e.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\6b8c9e09-1b6a42df

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\6b8c9e09-1b6a42df.idx

c:\users\tamlaz1986\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\lastAccessed

.

.

(((((((((((((((((((((((((   Files Created from 2013-11-18 to 2013-12-18  )))))))))))))))))))))))))))))))

.

.

2013-12-18 05:50 . 2013-12-18 05:50            --------  d-----w-            c:\windows\system32\config\systemprofile\AppData\Local\temp

2013-12-18 05:50 . 2013-12-18 05:50            --------  d-----w-           c:\users\Default\AppData\Local\temp

2013-12-17 23:28 . 2013-12-17 23:28            --------  d-----w-           c:\program files\ESET

2013-12-17 11:52 . 2013-12-04 02:57            7760024          ----a-w-            c:\programdata\Microsoft\Windows Defender\Definition Updates\{AFF4E6D9-AA48-4F61-8F27-A4ED1309EBD4}\mpengine.dll

2013-12-10 21:06 . 2013-12-10 21:06            --------  d-----w-           C:\rei

2013-12-10 02:18 . 2013-12-10 02:18            --------  d-----w-            c:\users\tamlaz1986\AppData\Roaming\AVAST Software

2013-12-10 01:36 . 2013-12-10 01:36            --------  d-----w-            c:\users\tamlaz1986\AppData\Roaming\Malwarebytes

2013-12-10 01:35 . 2013-12-10 01:35            --------  d-----w-           c:\programdata\Malwarebytes

2013-12-10 01:35 . 2013-12-10 01:35            --------  d-----w-           c:\program files\Malwarebytes' Anti-Malware

2013-12-10 01:35 . 2013-04-04 19:50            22856  ----a-w-            c:\windows\system32\drivers\mbam.sys

2013-12-07 21:46 . 2013-12-08 04:14            --------  d-----w-            c:\users\tamlaz1986\AppData\Local\FileTypeAssistant

2013-11-19 08:33 . 2009-10-03 02:29            230048            ------w-            c:\windows\system32\MpSigStub.exe

2013-11-14 10:47 . 2013-08-03 15:45            13464  ----a-w-            c:\windows\system32\drivers\SWDUMon.sys

2013-10-11 02:08 . 2013-11-14 04:58            444928            ----a-w-            c:\windows\system32\IKEEXT.DLL

"AvastUI.exe"="c:\program files\Alwil Software\Avast5\AvastUI.exe" [2013-12-10 3568312]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=c:\windows\System32\guard32.dll

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

@="Service"

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalServiceAndNoImpersonation REG_MULTI_SZ     FontCache

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-12-04 22:52       1210320          ----a-w-            c:\program files\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe

.

Contents of the 'Scheduled Tasks' folder

.

2013-12-18 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 02:55]

.

2013-12-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2012-07-10 03:59]

.

2013-12-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2012-07-10 03:59]

.

2013-12-18 c:\windows\Tasks\RtlNICDiagVistaStart.job

- c:\program files\Realtek\RTNICDiag\RTNICDiag.exe [2009-05-20 07:02]

.

2013-12-18 c:\windows\Tasks\User_Feed_Synchronization-{18AF2BE7-45AA-4466-9A03-7B8A54458C93}.job

- c:\windows\system32\msfeedssync.exe [2013-12-10 04:53]

.

.

------- Supplementary Scan -------

.

uStart Page = hxxp://www.google.com

mStart Page = hxxp://www.google.com

IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 209.18.47.61 209.18.47.62

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB

DPF: {551DDFC0-51FC-11D6-A169-000347A1932F} - hxxp://192.168.16.16/webris/powerscribeSDK/Vianix.cab

DPF: {7F017F97-9257-11D5-87EA-00B0D0BE6479} - hxxp://192.168.16.16/webris/powerscribeSDK/MSSOAP.cab

DPF: {98EB948F-D2AF-4E43-8EDF-6B288E467EAA} - hxxp://192.168.16.16/webris/powerscribeSDK/Speech.cab

DPF: {9C50CC4C-11D3-4C96-A5CE-0259C15A2107} - hxxp://192.168.16.16/webris/powerscribeSDK/PowerscribeSDK.cab

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2013-12-18 00:50

Windows 6.0.6002 Service Pack 2 NTFS

.

detected NTDLL code modification:

ZwClose

.

scanning hidden processes ... 

.

scanning hidden autostart entries ...

.

scanning hidden files ... 

- - - - - - - > 'lsass.exe'(792)

c:\windows\system32\guard32.dll

.

Completion time: 2013-12-18  00:52:21

ComboFix-quarantined-files.txt  2013-12-18 05:52

ComboFix2.txt  2013-12-17 02:23

.

Pre-Run: 216,132,702,208 bytes free

Post-Run: 216,087,343,104 bytes free

.

- - End Of File - - A4AAD8E35D6C10EE662506D4198BEDF4

5C616939100B85E558DA92B899A0FC36


#18 Tomk

Tomk

    Beguilement Monitor

  • Global Moderator
  • 20,451 posts

Posted 18 December 2013 - 04:16 PM

Looks good.  Unless you are having other issues... we can clean up and you can get back to Christmas Shopping.

 

Time for some housekeeping

  • Click START then RUN
  •  
  • Now type ComboFix /Uninstall in the runbox  and click OK.
  • Note the space between the X and the U, it needs to be there.
  • Combofix_uninstall_image.jpg

The above procedure will:

  • Implement some cleanup procedures.
  • Reset System Restore.

 

You can delete any of our tools left lying around on your desktop.

Please re-enable any security that was disabled.

 

The following is my standard advice for the future.  Use what you can and pat yourself on the back for what you're already doing.

Please take time to read Preventing Malware - Tools and Practices for Safe Computing.  Very important information for your consideration is contained therein.

I would also suggest you read this:
So how did I get infected in the first place?
by Tony Klein


Also: "How to prevent malware" 
by miekiemoes

Please respond back that you understand the above and let me know if you have any questions.  Otherwise, this thread will be closed Resolved.  :thumbup:
 


Tomk
------------------------------------------------------------
Microsoft MVP 2010-2014
 

#19 cobycoban

cobycoban

    New Member

  • Authentic Member
  • Pip
  • 10 posts

Posted 18 December 2013 - 04:29 PM

I'm all done with my shopping :clap: but yes, that sounds like a plan.

Thank you once again for your help and Happy Holidays!


Edited by cobycoban, 18 December 2013 - 04:29 PM.

#20 Tomk

Tomk

    Beguilement Monitor

  • Global Moderator
  • 20,451 posts

Posted 18 December 2013 - 07:10 PM

You are very welcome.

 

Merry Christmas to you and yours.

 

Good luck and be well! :adios:


Tomk
------------------------------------------------------------
Microsoft MVP 2010-2014
 

#21 Tomk

Tomk

    Beguilement Monitor

  • Global Moderator
  • 20,451 posts

Posted 18 December 2013 - 07:11 PM

Since this issue appears to be resolved ... this Topic has been closed. Glad we could be of assistance.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please follow the instructions here http://forums.whatth...ed_t106388.html
and start a New Topic.
Tomk
------------------------------------------------------------
Microsoft MVP 2010-2014
 

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·