still having issue

[hector]

high jacking still occur not as prevalent after running all steps but started just now again


i have done all but the last one on your web page

http://malwaretips.com/blogs/remove-google-redirect-virus/
step 5 hung and did not run
and step 7 b never downloaded

 

[kuttus]

Hi and welcome to the malwaretips.com forums!

I'm Kuttus and I am going to try to assist you with your problem. Please take note of the below:

• I will start working on your malware issues, this may or may not, solve other issues you have with your machine.
• The fixes are specific to your problem and should only be used for this issue on this machine!
• The process is not instant. Please continue to review my answers until I tell you your machine is clear. Absence of symptoms does not mean that everything is clear.
• If you don't know, stop and ask! Don't keep going on.
• Please reply to this thread. Do not start a new topic.
• Refrain from running self fixes as this will hinder the malware removal process.
• It may prove beneficial if you print of the following instructions or save them to notepad as I post them.

Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.


Before we start:
Please be aware that removing malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.
<hr />

STEP 1: Run a scan with OTL by OldTimer
<ol><li>Download the OTL utility using the below link :
<><a title="External link" href="http://oldtimer.geekstogo.com/OTL.exe" rel="nofollow external">OTL DOWNLOAD LINK</a> <em>(This link will automatically download OTL on your computer)</em></></li>
<li>Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
<img src="http://malwaretips.com/blogs/wp-content/uploads/2012/07/OTL-logo.png" alt="" title="OTL-logo" width="106" height="118" class="alignnone size-full wp-image-3946" /></li>
<li>When the window appears, <>underneath Output</> at the top change it to <>Minimal Output</>.</li>
<li>Check the boxes beside <>LOP Check</> and <>Purity Check</>.</li>
<li>Click the<> Run Scan</> button.
<img src="http://malwaretips.com/blogs/wp-content/uploads/2012/07/OTL.png" alt="" title="OTL" width="658" height="584" class="alignnone size-full wp-image-3945" /></li>
<li>When the scan completes, it will open two notepad windows. <>OTL.Txt</> and <>Extras.Txt</>. These are saved in the same location as OTL.
<>Please post this 2 logs in your first reply.</>.</li></ol>

Settings You need to Select in OTL

1. Click the Scan All Users checkbox.
2. Change Standard Registry to All.
3. Check the boxes beside LOP Check and Purity Check.

<em>Note: If OTL.exe will not run, it may be blocked by malware. Try these alternate versions: <a title="External link" href="http://www.itxassociates.com/OT-Tools/OTL.scr" rel="nofollow external">OTL.scr</a>, or <a title="External link" href="http://oldtimer.geekstogo.com/OTL.com" rel="nofollow external">OTL.com</a>.</em>

<hr />
STEP 2 : Run a scan with Kaspersky TDSSKiller
<ol>
<li>Download Kaspersky TDSKiller from the below link.
<><a title="External link" href="http://support.kaspersky.com/downloads/utils/tdsskiller.exe" rel="external">KASPERKSY TDSSKILLER DOWNLOAD LINK</a></> <em>(This link will automatically download Kaspersky TDSSKiller on your computer)</em>
</li>
<li>Double-click on <>TDSSKiller.exe</> to run the application.
<img src="http://img4.imageshack.us/img4/1907/tdss1.png" alt="Posted Image" /></li>
<li>Click <>Change parameters</>
<img src="http://img593.imageshack.us/img593/288/tdss2.png" alt="Posted Image" /></li>
<li>Check the boxes next to <>Verify Driver Digital Signature</> and <>Detect TDLFS file system</>, then click <>OK</>
<img src="http://img521.imageshack.us/img521/1456/tdss3.png" alt="Posted Image" /></li>
<li>Click on the <>Start Scan</> button to begin the scan and wait for it to finish.
<>NOTE:</> Do not use the computer during the scan!</li>
<li>During the scan it will look similar to the image below:
<img src="http://img6.imageshack.us/img6/9136/tdss4.jpg" alt="Posted Image" /></li>
<li>When it finishes, you will either see a report that no threats were found like below:
<img src="http://img696.imageshack.us/img696/9898/tdss5.jpg" alt="Posted Image" />
If no threats are found at this point, just click the <>Report</> selection on the top right of the form to generate a log. A log file report will pop which you can just close since the report file is already saved.</li>
<li>If any infection or suspected items are found, you will see a window similar to below:
<img src="http://img854.imageshack.us/img854/905/tdss7.jpg" alt="Posted Image" />
<ul>
<li>If you have files that are shown to fail <em>signature check</em> do not take any action on these. Make sure you select <>Skip</>. I will tell you what to do with these later. They may not be issues at all.</li>
<li>If <em>Suspicious objects</em> are detected, the default action will be Skip. Leave the default set to Skip.</li>
<li>If <em>Malicious objects</em> are detected, they will show in the Scan results. TDSSKiller automatically selects an action (Cure or Delete) for malicious objects
Make sure that <>Cure</> is selected. <>VERY IMPORTANT!</> - If <em>Cure</em> is not available, please choose <>Skip</> instead. DO NOT choose Delete unless instructed to do so.</li>
</ul>
</li>
<li>Click <>Continue</> to apply selected actions.</li>
<li>A reboot may be required to complete disinfection. A window like the below will appear:
<img src="http://img828.imageshack.us/img828/4812/tdss6.jpg" alt="Posted Image" />
Reboot immediately if TDSSKiller states that one is needed.</li>
<li>Whether an infection is found or not, a log file should have already been created on your C: drive (or whatever drive you boot from) in the root folder named something like <>TDSSKiller.2.1.1_2.12.2012_14.17.04_log.txt</> which is based on the program version # and date and time run.</li>
<li>Attach this log to your next reply.</li>
</ol>
<hr />

 

[hector]

here is the first report

OTL logfile created on: 5/8/2013 9:24:38 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\hortiz\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.95 Gb Total Physical Memory | 4.65 Gb Available Physical Memory | 58.54% Memory free
15.90 Gb Paging File | 12.23 Gb Available in Paging File | 76.92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 681.46 Gb Total Space | 610.55 Gb Free Space | 89.59% Space Free | Partition Type: NTFS
Drive D: | 16.88 Gb Total Space | 1.85 Gb Free Space | 10.95% Space Free | Partition Type: NTFS
Drive F: | 98.87 Mb Total Space | 80.64 Mb Free Space | 81.57% Space Free | Partition Type: FAT32

Computer Name: HORTIZ-HP | User Name: hortiz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\hortiz\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe (Adobe Systems, Inc.)
PRC - C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Sendori\SendoriUp.exe (Sendori, Inc.)
PRC - C:\Program Files (x86)\Sendori\SendoriSvc.exe (Sendori, Inc.)
PRC - C:\Program Files (x86)\Sendori\SendoriTray.exe (Sendori, Inc.)
PRC - C:\Program Files (x86)\Sendori\sndappv2.exe (Sendori)
PRC - C:\Program Files (x86)\Sendori\Sendori.Service.exe (sendori)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
PRC - C:\Program Files (x86)\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited)
PRC - C:\ProgramData\GameXN\GameXNGO.exe (GameXN AS)
PRC - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
PRC - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\agcp.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
PRC - C:\Program Files (x86)\eFax Messenger 4.4\J2GTray.exe (j2 Global Communications, Inc.)
PRC - C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe (j2 Global Communications, Inc.)
PRC - C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
PRC - C:\Program Files (x86)\Lexmark Pro710 Series\LMADImon.exe ()
PRC - C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.exe ()
PRC - C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (CyberLink)
PRC - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe (HP)
PRC - C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe (HP)
PRC - C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe (HP)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe (Roxio)
PRC - C:\ProgramData\DatacardService\DCService.exe ()
PRC - C:\ProgramData\DatacardService\DCSHelper.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\twunk_32.exe (Twain Working Group)


========== Modules (No Company Name) ==========

MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\626d0ac2f4ada682d7ca6c4ebf821469\CustomMarshalers.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\a501b7960f6c6e2e39162b83f3303aaa\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\e7cd67fc34ad0fc611c1e1244cfc6584\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\0018dd52b56988a833ee41699cf49325\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\2ec98ab0193d64e95b7d09d094deed97\Accessibility.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Yahoo!\Messenger\yui.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll ()
MOD - C:\Program Files (x86)\Lexmark Pro710 Series\LMADImon.exe ()
MOD - C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.exe ()
MOD - C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.dll ()
MOD - C:\Program Files (x86)\Lexmark Pro710 Series\LMabdrs.dll ()
MOD - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll ()


========== Services (SafeList) ==========

SRV:64bit: - (HitmanProScheduler) -- C:\Program Files\HitmanPro\hmpsched.exe (SurfRight B.V.)
SRV:64bit: - (STacSV) -- C:\Program Files\IDT\WDM\stacsv64.exe (IDT, Inc.)
SRV:64bit: - (AESTFilters) -- C:\Program Files\IDT\WDM\AESTSr64.exe (Andrea Electronics Corporation)
SRV:64bit: - (NitroDriverReadSpool2) -- C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe (Nitro PDF Software)
SRV:64bit: - (hpsrv) -- C:\Windows\SysNative\hpservice.exe (Hewlett-Packard Company)
SRV:64bit: - (NitroReaderDriverReadSpool2) -- C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe (Nitro PDF Software)
SRV:64bit: - (ZeroConfigService) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel® Corporation)
SRV:64bit: - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
SRV:64bit: - (BTHSSecurityMgr) -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel(R) Corporation)
SRV:64bit: - (AMPPALR3) -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel Corporation)
SRV:64bit: - (DMAgent) -- C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe (Red Bend Ltd.)
SRV:64bit: - (WiMAXAppSrv) -- C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe (Intel(R) Corporation)
SRV:64bit: - (HPClientSvc) -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Hewlett-Packard Company)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (Application Sendori) -- C:\Program Files (x86)\Sendori\SendoriSvc.exe (Sendori, Inc.)
SRV - (sndappv2) -- C:\Program Files (x86)\Sendori\sndappv2.exe (Sendori)
SRV - (Service Sendori) -- C:\Program Files (x86)\Sendori\Sendori.Service.exe (sendori)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Ad-Aware Service) -- C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (HP Support Assistant Service) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard Company)
SRV - (SBAMSvc) -- C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
SRV - (nlsX86cc) -- C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
SRV - (HPWMISVC) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (FPLService) -- C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe (HP)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (RoxioNow Service) -- C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe (Roxio)
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (DCService.exe) -- C:\ProgramData\DatacardService\DCService.exe ()
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (gfibto) -- C:\Windows\SysNative\drivers\gfibto.sys (GFI Software)
DRV:64bit: - (gfiark) -- C:\Windows\SysNative\drivers\gfiark.sys (GFI Software)
DRV:64bit: - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.)
DRV:64bit: - (sbapifs) -- C:\Windows\SysNative\drivers\sbapifs.sys (GFI Software)
DRV:64bit: - (Accelerometer) -- C:\Windows\SysNative\drivers\Accelerometer.sys (Hewlett-Packard Company)
DRV:64bit: - (hpdskflt) -- C:\Windows\SysNative\drivers\hpdskflt.sys (Hewlett-Packard Company)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (NETwNs64) -- C:\Windows\SysNative\drivers\Netwsw00.sys (Intel Corporation)
DRV:64bit: - (RSPCIESTOR) -- C:\Windows\SysNative\drivers\RtsPStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)
DRV:64bit: - (AMPPALP) -- C:\Windows\SysNative\drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (AMPPAL) -- C:\Windows\SysNative\drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (bpmp) -- C:\Windows\SysNative\drivers\bpmp.sys (Intel Corporation)
DRV:64bit: - (bpusb) -- C:\Windows\SysNative\drivers\bpusb.sys (Intel Corporation)
DRV:64bit: - (bpenum) -- C:\Windows\SysNative\drivers\bpenum.sys (Intel Corporation)
DRV:64bit: - (wdkmd) -- C:\Windows\SysNative\drivers\WDKMD.sys (Intel Corporation)
DRV:64bit: - (iwdbus) -- C:\Windows\SysNative\drivers\iwdbus.sys (Intel Corporation)
DRV:64bit: - (intaud_WaveExtensible) -- C:\Windows\SysNative\drivers\intelaud.sys (Intel Corporation)
DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)
DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation)
DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
DRV:64bit: - (androidusb) -- C:\Windows\SysNative\drivers\ssadadb.sys (Google Inc)
DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (clwvd) -- C:\Windows\SysNative\drivers\clwvd.sys (CyberLink Corporation)
DRV:64bit: - (huawei_enumerator) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ewusbnet) -- C:\Windows\SysNative\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ew_hwusbdev) -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\drivers\rootmdm.sys (Microsoft Corporation)
DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:64bit: - (SrvHsfV92) -- C:\Windows\SysNative\drivers\VSTDPV6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (SrvHsfWinac) -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (SrvHsfHDA) -- C:\Windows\SysNative\drivers\VSTAZL6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-30572-11896-2/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-30572-11896-2/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securesearch.lavasoft.com/?source=f439e2c0&tbp=homepage&toolbarid=adawaretb&v=2_5&u=4D2E5BF4BE93CC9F51D84B513856BCC4
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{187227DB-B253-4189-AD9A-DABE3E3923C0}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10266&src=kw&q={searchTerms}&locale=&apn_ptnrs=^AGX&apn_dtid=^YYYYYY^YY^US&apn_uid=4806bc45-d362-4454-a41b-7d700962a46c&apn_sauid=C6167DA7-06AB-4311-B129-6BE9B74E54F7
IE - HKCU\..\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE - HKCU\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKCU\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKCU\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-30572-11896-2/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaulturl: "http://securesearch.lavasoft.com/?source=f439e2c0&tbp=homepage&toolbarid=adawaretb&v=2_5&u=4D2E5BF4BE93CC9F51D84B513856BCC4"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledAddons: es-ve%40dictionaries.addons.mozilla.org:1.1.17
FF - prefs.js..extensions.enabledAddons: %7B87934c42-161d-45bc-8cef-ef18abe2a30c%7D:2.5
FF - prefs.js..extensions.enabledAddons: %7B82AF8DCA-6DE9-405D-BD5E-43525BDAD38A%7D:6.8.0.12323
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\{@alibaba.com/alisetup;version=1.0}: C:\Users\hortiz\AppData\Local\Alibaba\AliSetup\0.1.0.52\npAliSetupOneClick.dll (alibaba)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/04/12 06:07:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/04/12 06:07:47 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/04/12 06:07:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/04/12 06:07:47 | 000,000,000 | ---D | M]

[2012/12/09 05:33:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Extensions
[2013/05/04 19:49:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions
[2013/03/07 04:59:01 | 000,000,000 | ---D | M] (Ad-Aware Security Add-on) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions\{87934c42-161d-45bc-8cef-ef18abe2a30c}
[2012/08/29 06:47:49 | 000,000,000 | ---D | M] (Diccionario en Español para Venezuela) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions\es-ve@dictionaries.addons.mozilla.org
[2013/03/07 10:21:18 | 000,001,064 | ---- | M] () (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions\{6a704a65-d977-4ed6-84f2-d76c8911c670}.xpi
[2011/12/31 16:11:45 | 000,001,945 | ---- | M] () -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\searchplugins\bing-zugo.xml
[2013/02/17 17:19:05 | 000,001,068 | ---- | M] () -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\searchplugins\mixidj-customized-web-search.xml
[2013/04/12 06:07:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/05/01 16:32:07 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/04/12 06:07:46 | 000,000,000 | ---D | M] (TrueSuite Website Logon) -- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com
[2013/05/01 16:32:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/05/01 16:32:08 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/04/12 06:07:53 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/07/29 09:33:40 | 000,108,480 | ---- | M] ( ) -- C:\Program Files (x86)\mozilla firefox\plugins\npwangwang.dll
[2012/11/20 02:17:14 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011/12/21 00:30:41 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml.old
[2012/05/03 15:35:55 | 000,002,158 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\search.xml
[2013/02/20 20:10:03 | 000,002,086 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: SecureSearch (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AliWangWang Plug-In For Firefox and Netscape (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwangwang.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Nitro PDF Plug-In (Enabled) = C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: alibaba setup one click (Enabled) = C:\Users\hortiz\AppData\Local\Alibaba\AliSetup\0.1.0.52\npAliSetupOneClick.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - homepage:
CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AliWangWang Plug-In For Firefox and Netscape (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwangwang.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Nitro PDF Plug-In (Enabled) = C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10516.0\npctrl.dll
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\
CHR - Extension: Skype Click to Call = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.5.0.11422_0\
CHR - Extension: Skype Click to Call = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.8.0.12323_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/05/07 21:10:30 | 000,000,841 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (TrueSuite Website Log On) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (TrueSuite Website Log On) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SBRegRebootCleaner] C:\Program Files (x86)\Ad-Aware Antivirus\SBRC.exe (GFI Software)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited)
O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Sendori Tray] C:\Program Files (x86)\Sendori\SendoriTray.exe (Sendori, Inc.)
O4 - HKCU..\Run: [ABBYY Screenshot Reader Bonus] "C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe" -autorun File not found
O4 - HKCU..\Run: [Adobe CSx Manager] C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad\ebfaaaedad.exe ()
O4 - HKCU..\Run: [eFax 4.4] C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe (j2 Global Communications, Inc.)
O4 - HKCU..\Run: [GameXN GO] C:\ProgramData\GameXN\GameXNGO.exe (GameXN AS)
O4 - HKCU..\Run: [InstallIQUpdater] C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
O4 - HKCU..\Run: [LMab1err] C:\Program Files (x86)\Lexmark\ErrorApp\LMab1err.exe ()
O4 - HKCU..\Run: [LMADImon] C:\Program Files (x86)\Lexmark Pro710 Series\LMADImon.exe ()
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [SPMTray] "C:\Program Files (x86)\PC Speed Maximizer\SPMTray.exe" File not found
O4 - Startup: C:\Users\hortiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eFax 4.4.lnk = C:\Program Files (x86)\eFax Messenger 4.4\J2GTray.exe (j2 Global Communications, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 10.9.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1D2D6BD3-5F92-42E8-A4F4-C30B2FD3F7F4}: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24D99721-6BF7-4461-84DC-AF598FFDEF3D}: DhcpNameServer = 65.32.5.111 65.32.5.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AB8C2975-C169-42EE-8B64-7239C74D26CA}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AF331646-A9EB-4E08-8307-CA312B20035C}: DhcpNameServer = 192.168.42.129
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 0
O33 - MountPoints2\{2e0f0ef5-c954-11e1-ad40-4025c258a100}\Shell - "" = AutoRun
O33 - MountPoints2\{2e0f0ef5-c954-11e1-ad40-4025c258a100}\Shell\AutoRun\command - "" = F:\autorun.exe
O33 - MountPoints2\{53d7fa45-c9cc-11e1-b7a0-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{53d7fa45-c9cc-11e1-b7a0-2c41385d6107}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{53d7fa5a-c9cc-11e1-b7a0-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{53d7fa5a-c9cc-11e1-b7a0-2c41385d6107}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{53d7fa65-c9cc-11e1-b7a0-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{53d7fa65-c9cc-11e1-b7a0-2c41385d6107}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{e6716378-10cf-11e2-8bdc-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{e6716378-10cf-11e2-8bdc-2c41385d6107}\Shell\AutoRun\command - "" = F:\LiteAuto.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (SBBD.exe /d \Device\HarddiskVolume2\Program Files (x86)\Ad-Aware Antivirus\Definitions)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/07 22:13:14 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{95C11934-9C7A-486F-A50D-3B97A9A7FA5F}
[2013/05/07 21:40:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2013/05/07 20:48:59 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\Synaptics
[2013/05/07 20:48:52 | 000,198,742 | ---- | C] (Antlantis Ltd) -- C:\Users\hortiz\6200577.exe
[2013/05/07 10:12:49 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{58F8803D-5117-4447-9ADB-81B953637E22}
[2013/05/06 22:12:37 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{DBB6AD7C-0F32-4B97-A417-7F8CE369B002}
[2013/05/06 17:53:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
[2013/05/06 17:53:00 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2013/05/06 17:51:33 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2013/05/06 17:40:16 | 000,000,000 | ---D | C] -- C:\Users\hortiz\Desktop\RK_Quarantine
[2013/05/06 14:08:03 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2013/05/06 13:32:46 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\SpeedyPC Software
[2013/05/06 13:32:46 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\DriverCure
[2013/05/06 13:32:27 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2013/05/06 06:48:17 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{5F52976B-2115-456D-ACCE-634B5BC6AA43}
[2013/05/05 21:00:48 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad
[2013/05/05 18:48:05 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{B5134B3D-F396-4A54-888A-8F668DD40CCF}
[2013/05/05 06:47:54 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{99FD1A01-2287-43A8-8352-9A7A01A13736}
[2013/05/04 18:40:26 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{FE085E95-F759-42F2-BDDD-6ACE51151867}
[2013/05/04 06:23:01 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{DDA990FD-F6C6-402A-9456-5F981AEC4202}
[2013/05/03 18:22:50 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{1A4AFEC1-42FC-4FB3-833D-6FA38AE7F148}
[2013/05/03 18:13:05 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{2518E2C4-2B1D-42E0-B31F-D7340E5B5E63}
[2013/05/02 18:50:55 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/05/02 17:57:19 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{EAE28A3B-890B-48BF-A0DC-BBCF54DDB7E4}
[2013/05/02 17:53:46 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{12383C6A-F2AA-4641-8BA0-F1F4F697555C}
[2013/05/02 05:20:01 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{4C1326BD-089B-422D-8EAD-D6C6BCA71E65}
[2013/05/01 16:38:54 | 000,000,000 | ---D | C] -- C:\Users\hortiz\Desktop\pic
[2013/05/01 16:34:07 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{D25F462E-335C-414B-805E-1A02A1A826E2}
[2013/04/12 06:07:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/04/11 18:37:07 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{0BEF76AA-1BF4-4918-A5C3-EF9B99EA2328}
[2013/04/11 16:06:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/04/11 05:04:31 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{A6335311-7489-4332-8F3B-21B619FA1E56}
[2013/04/09 18:19:47 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{12DD84A7-7703-4041-8D8A-ED9BEC441D10}
[2013/04/09 05:30:40 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{2E7A84CF-C842-42EE-8282-809253C78A43}
[2013/04/08 09:52:10 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{02F099B4-6C15-47BC-9198-4338DD6B9A96}

========== Files - Modified Within 30 Days ==========

[2013/05/08 09:19:02 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/05/08 08:23:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/05/07 21:45:45 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/05/07 21:45:45 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/05/07 21:43:19 | 000,783,270 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/05/07 21:43:19 | 000,663,434 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/05/07 21:43:19 | 000,122,270 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/05/07 21:38:11 | 000,001,868 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
[2013/05/07 21:37:51 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/05/07 21:37:28 | 2106,478,591 | -HS- | M] () -- C:\hiberfil.sys
[2013/05/07 20:48:53 | 000,198,742 | ---- | M] (Antlantis Ltd) -- C:\Users\hortiz\6200577.exe
[2013/05/06 18:01:36 | 000,002,788 | ---- | M] () -- C:\Windows\SysNative\.crusader
[2013/05/06 17:53:00 | 000,001,897 | ---- | M] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013/05/06 13:24:47 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForhortiz.job
[2013/05/04 14:25:53 | 000,416,952 | ---- | M] () -- C:\Users\hortiz\Desktop\IMG_04052013_192506.png
[2013/05/04 13:40:10 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/05/04 13:40:10 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/05/04 12:35:05 | 000,198,054 | ---- | M] () -- C:\Users\hortiz\Desktop\IMG_04052013_173431.png
[2013/05/04 12:28:20 | 000,286,690 | ---- | M] () -- C:\Users\hortiz\Desktop\IMG_04052013_172740.png
[2013/05/02 07:56:39 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/04/23 18:13:32 | 000,325,920 | ---- | M] (Sendori) -- C:\Windows\SysWow64\Sendori.dll
[2013/04/11 05:05:19 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk

========== Files Created - No Company Name ==========

[2013/05/06 18:01:36 | 000,002,788 | ---- | C] () -- C:\Windows\SysNative\.crusader
[2013/05/06 17:53:00 | 000,001,897 | ---- | C] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013/05/04 14:25:20 | 000,416,952 | ---- | C] () -- C:\Users\hortiz\Desktop\IMG_04052013_192506.png
[2013/05/04 12:34:42 | 000,198,054 | ---- | C] () -- C:\Users\hortiz\Desktop\IMG_04052013_173431.png
[2013/05/04 12:27:51 | 000,286,690 | ---- | C] () -- C:\Users\hortiz\Desktop\IMG_04052013_172740.png
[2013/03/03 18:50:38 | 000,000,430 | ---- | C] () -- C:\Users\hortiz\AppData\Roaming\_
[2013/02/22 18:06:21 | 000,000,004 | ---- | C] () -- C:\Users\hortiz\AppData\Roaming\skype.ini
[2012/12/11 10:25:52 | 000,777,486 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/08/30 15:44:13 | 000,007,680 | ---- | C] () -- C:\Users\hortiz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/17 20:36:50 | 000,000,027 | ---- | C] () -- C:\Windows\BarCode.ini
[2012/04/18 21:19:19 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lexlog.dll
[2012/04/18 21:18:45 | 000,430,080 | ---- | C] ( ) -- C:\Windows\SysWow64\LMFX1N32comc.dll
[2012/02/03 11:36:38 | 000,004,096 | -H-- | C] () -- C:\Users\hortiz\AppData\Local\keyfile3.drm
[2011/12/31 16:24:05 | 000,000,135 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2011/09/15 12:44:30 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/09/15 12:40:30 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011/08/25 00:36:56 | 000,000,068 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
[2011/05/19 17:09:28 | 000,430,080 | ---- | C] ( ) -- C:\Windows\SysWow64\LMADIQ32comc.dll

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/01/04 06:44:25 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/01/04 04:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/03/07 05:12:48 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Ad-Aware Antivirus
[2012/01/02 12:58:40 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Blio
[2012/09/08 08:58:43 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Camfrog
[2012/06/13 21:15:49 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Downloaded Installations
[2013/05/06 13:32:46 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\DriverCure
[2013/05/05 21:00:48 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad
[2013/03/06 17:44:21 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\eFax Messenger
[2012/06/14 09:51:49 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\FileOpen
[2013/05/08 08:24:02 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\go
[2013/03/06 17:45:04 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\j2 Global
[2013/04/08 11:42:53 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Nitro PDF
[2013/03/05 20:00:04 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\player
[2012/01/22 20:42:49 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Qualcomm
[2012/12/08 15:55:33 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Rovio
[2012/02/23 20:31:29 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\SBG-SVG
[2013/05/06 13:32:46 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\SpeedyPC Software
[2011/12/31 07:59:20 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Synaptics
[2012/12/08 23:34:17 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\TFP
[2012/11/30 04:45:46 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\WildTangent
[2012/04/23 10:48:26 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Windows Live Writer
[2013/02/22 19:41:19 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\WindowsDatabase

========== Purity Check ==========



< End of report >

 

[hector]

here is the first report

OTL logfile created on: 5/8/2013 9:24:38 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\hortiz\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.95 Gb Total Physical Memory | 4.65 Gb Available Physical Memory | 58.54% Memory free
15.90 Gb Paging File | 12.23 Gb Available in Paging File | 76.92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 681.46 Gb Total Space | 610.55 Gb Free Space | 89.59% Space Free | Partition Type: NTFS
Drive D: | 16.88 Gb Total Space | 1.85 Gb Free Space | 10.95% Space Free | Partition Type: NTFS
Drive F: | 98.87 Mb Total Space | 80.64 Mb Free Space | 81.57% Space Free | Partition Type: FAT32

Computer Name: HORTIZ-HP | User Name: hortiz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\hortiz\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe (Adobe Systems, Inc.)
PRC - C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Sendori\SendoriUp.exe (Sendori, Inc.)
PRC - C:\Program Files (x86)\Sendori\SendoriSvc.exe (Sendori, Inc.)
PRC - C:\Program Files (x86)\Sendori\SendoriTray.exe (Sendori, Inc.)
PRC - C:\Program Files (x86)\Sendori\sndappv2.exe (Sendori)
PRC - C:\Program Files (x86)\Sendori\Sendori.Service.exe (sendori)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
PRC - C:\Program Files (x86)\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited)
PRC - C:\ProgramData\GameXN\GameXNGO.exe (GameXN AS)
PRC - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
PRC - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\agcp.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
PRC - C:\Program Files (x86)\eFax Messenger 4.4\J2GTray.exe (j2 Global Communications, Inc.)
PRC - C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe (j2 Global Communications, Inc.)
PRC - C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
PRC - C:\Program Files (x86)\Lexmark Pro710 Series\LMADImon.exe ()
PRC - C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.exe ()
PRC - C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (CyberLink)
PRC - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe (HP)
PRC - C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe (HP)
PRC - C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe (HP)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe (Roxio)
PRC - C:\ProgramData\DatacardService\DCService.exe ()
PRC - C:\ProgramData\DatacardService\DCSHelper.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
PRC - C:\Windows\twunk_32.exe (Twain Working Group)


========== Modules (No Company Name) ==========

MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\626d0ac2f4ada682d7ca6c4ebf821469\CustomMarshalers.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\a501b7960f6c6e2e39162b83f3303aaa\System.Web.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\e7cd67fc34ad0fc611c1e1244cfc6584\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\0018dd52b56988a833ee41699cf49325\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\2ec98ab0193d64e95b7d09d094deed97\Accessibility.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Yahoo!\Messenger\yui.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll ()
MOD - C:\Program Files (x86)\Lexmark Pro710 Series\LMADImon.exe ()
MOD - C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.exe ()
MOD - C:\Program Files (x86)\Lexmark\ErrorApp\lmab1err.dll ()
MOD - C:\Program Files (x86)\Lexmark Pro710 Series\LMabdrs.dll ()
MOD - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll ()


========== Services (SafeList) ==========

SRV:64bit: - (HitmanProScheduler) -- C:\Program Files\HitmanPro\hmpsched.exe (SurfRight B.V.)
SRV:64bit: - (STacSV) -- C:\Program Files\IDT\WDM\stacsv64.exe (IDT, Inc.)
SRV:64bit: - (AESTFilters) -- C:\Program Files\IDT\WDM\AESTSr64.exe (Andrea Electronics Corporation)
SRV:64bit: - (NitroDriverReadSpool2) -- C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe (Nitro PDF Software)
SRV:64bit: - (hpsrv) -- C:\Windows\SysNative\hpservice.exe (Hewlett-Packard Company)
SRV:64bit: - (NitroReaderDriverReadSpool2) -- C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe (Nitro PDF Software)
SRV:64bit: - (ZeroConfigService) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel® Corporation)
SRV:64bit: - (MyWiFiDHCPDNS) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ()
SRV:64bit: - (BTHSSecurityMgr) -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel(R) Corporation)
SRV:64bit: - (AMPPALR3) -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel Corporation)
SRV:64bit: - (DMAgent) -- C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe (Red Bend Ltd.)
SRV:64bit: - (WiMAXAppSrv) -- C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe (Intel(R) Corporation)
SRV:64bit: - (HPClientSvc) -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Hewlett-Packard Company)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (Application Sendori) -- C:\Program Files (x86)\Sendori\SendoriSvc.exe (Sendori, Inc.)
SRV - (sndappv2) -- C:\Program Files (x86)\Sendori\sndappv2.exe (Sendori)
SRV - (Service Sendori) -- C:\Program Files (x86)\Sendori\Sendori.Service.exe (sendori)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Ad-Aware Service) -- C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (HP Support Assistant Service) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard Company)
SRV - (SBAMSvc) -- C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
SRV - (nlsX86cc) -- C:\Windows\SysWOW64\NLSSRV32.EXE (Nalpeiron Ltd.)
SRV - (HPWMISVC) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Development Company, L.P.)
SRV - (IconMan_R) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Realsil Microelectronics Inc.)
SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (FPLService) -- C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe (HP)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (RoxioNow Service) -- C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe (Roxio)
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (DCService.exe) -- C:\ProgramData\DatacardService\DCService.exe ()
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (gfibto) -- C:\Windows\SysNative\drivers\gfibto.sys (GFI Software)
DRV:64bit: - (gfiark) -- C:\Windows\SysNative\drivers\gfiark.sys (GFI Software)
DRV:64bit: - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.)
DRV:64bit: - (sbapifs) -- C:\Windows\SysNative\drivers\sbapifs.sys (GFI Software)
DRV:64bit: - (Accelerometer) -- C:\Windows\SysNative\drivers\Accelerometer.sys (Hewlett-Packard Company)
DRV:64bit: - (hpdskflt) -- C:\Windows\SysNative\drivers\hpdskflt.sys (Hewlett-Packard Company)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (NETwNs64) -- C:\Windows\SysNative\drivers\Netwsw00.sys (Intel Corporation)
DRV:64bit: - (RSPCIESTOR) -- C:\Windows\SysNative\drivers\RtsPStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (nusb3xhc) -- C:\Windows\SysNative\drivers\nusb3xhc.sys (Renesas Electronics Corporation)
DRV:64bit: - (nusb3hub) -- C:\Windows\SysNative\drivers\nusb3hub.sys (Renesas Electronics Corporation)
DRV:64bit: - (AMPPALP) -- C:\Windows\SysNative\drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (AMPPAL) -- C:\Windows\SysNative\drivers\AmpPal.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (RimVSerPort) -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys (Research in Motion Ltd)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (bpmp) -- C:\Windows\SysNative\drivers\bpmp.sys (Intel Corporation)
DRV:64bit: - (bpusb) -- C:\Windows\SysNative\drivers\bpusb.sys (Intel Corporation)
DRV:64bit: - (bpenum) -- C:\Windows\SysNative\drivers\bpenum.sys (Intel Corporation)
DRV:64bit: - (wdkmd) -- C:\Windows\SysNative\drivers\WDKMD.sys (Intel Corporation)
DRV:64bit: - (iwdbus) -- C:\Windows\SysNative\drivers\iwdbus.sys (Intel Corporation)
DRV:64bit: - (intaud_WaveExtensible) -- C:\Windows\SysNative\drivers\intelaud.sys (Intel Corporation)
DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)
DRV:64bit: - (ssadserd) -- C:\Windows\SysNative\drivers\ssadserd.sys (MCCI Corporation)
DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
DRV:64bit: - (androidusb) -- C:\Windows\SysNative\drivers\ssadadb.sys (Google Inc)
DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (clwvd) -- C:\Windows\SysNative\drivers\clwvd.sys (CyberLink Corporation)
DRV:64bit: - (huawei_enumerator) -- C:\Windows\SysNative\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ewusbnet) -- C:\Windows\SysNative\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ew_hwusbdev) -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ROOTMODEM) -- C:\Windows\SysNative\drivers\rootmdm.sys (Microsoft Corporation)
DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation)
DRV:64bit: - (SrvHsfV92) -- C:\Windows\SysNative\drivers\VSTDPV6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (SrvHsfWinac) -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (SrvHsfHDA) -- C:\Windows\SysNative\drivers\VSTAZL6.SYS (Conexant Systems, Inc.)
DRV:64bit: - (NVENETFD) -- C:\Windows\SysNative\drivers\nvm62x64.sys (NVIDIA Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE:64bit: - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-30572-11896-2/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKLM\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKLM\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-30572-11896-2/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securesearch.lavasoft.com/?source=f439e2c0&tbp=homepage&toolbarid=adawaretb&v=2_5&u=4D2E5BF4BE93CC9F51D84B513856BCC4
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{187227DB-B253-4189-AD9A-DABE3E3923C0}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10266&src=kw&q={searchTerms}&locale=&apn_ptnrs=^AGX&apn_dtid=^YYYYYY^YY^US&apn_uid=4806bc45-d362-4454-a41b-7d700962a46c&apn_sauid=C6167DA7-06AB-4311-B129-6BE9B74E54F7
IE - HKCU\..\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}: "URL" = http://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
IE - HKCU\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
IE - HKCU\..\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}: "URL" = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
IE - HKCU\..\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC}: "URL" = http://rover.ebay.com/rover/1/711-30572-11896-2/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaulturl: "http://securesearch.lavasoft.com/?source=f439e2c0&tbp=homepage&toolbarid=adawaretb&v=2_5&u=4D2E5BF4BE93CC9F51D84B513856BCC4"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledAddons: es-ve%40dictionaries.addons.mozilla.org:1.1.17
FF - prefs.js..extensions.enabledAddons: %7B87934c42-161d-45bc-8cef-ef18abe2a30c%7D:2.5
FF - prefs.js..extensions.enabledAddons: %7B82AF8DCA-6DE9-405D-BD5E-43525BDAD38A%7D:6.8.0.12323
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_169.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\{@alibaba.com/alisetup;version=1.0}: C:\Users\hortiz\AppData\Local\Alibaba\AliSetup\0.1.0.52\npAliSetupOneClick.dll (alibaba)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/04/12 06:07:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/04/12 06:07:47 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/04/12 06:07:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/04/12 06:07:47 | 000,000,000 | ---D | M]

[2012/12/09 05:33:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Extensions
[2013/05/04 19:49:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions
[2013/03/07 04:59:01 | 000,000,000 | ---D | M] (Ad-Aware Security Add-on) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions\{87934c42-161d-45bc-8cef-ef18abe2a30c}
[2012/08/29 06:47:49 | 000,000,000 | ---D | M] (Diccionario en Español para Venezuela) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions\es-ve@dictionaries.addons.mozilla.org
[2013/03/07 10:21:18 | 000,001,064 | ---- | M] () (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extensions\{6a704a65-d977-4ed6-84f2-d76c8911c670}.xpi
[2011/12/31 16:11:45 | 000,001,945 | ---- | M] () -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\searchplugins\bing-zugo.xml
[2013/02/17 17:19:05 | 000,001,068 | ---- | M] () -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\searchplugins\mixidj-customized-web-search.xml
[2013/04/12 06:07:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/05/01 16:32:07 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/04/12 06:07:46 | 000,000,000 | ---D | M] (TrueSuite Website Logon) -- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com
[2013/05/01 16:32:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/05/01 16:32:08 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/04/12 06:07:53 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/07/29 09:33:40 | 000,108,480 | ---- | M] ( ) -- C:\Program Files (x86)\mozilla firefox\plugins\npwangwang.dll
[2012/11/20 02:17:14 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2011/12/21 00:30:41 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml.old
[2012/05/03 15:35:55 | 000,002,158 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\search.xml
[2013/02/20 20:10:03 | 000,002,086 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: SecureSearch (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AliWangWang Plug-In For Firefox and Netscape (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwangwang.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Nitro PDF Plug-In (Enabled) = C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: alibaba setup one click (Enabled) = C:\Users\hortiz\AppData\Local\Alibaba\AliSetup\0.1.0.52\npAliSetupOneClick.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - homepage:
CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AliWangWang Plug-In For Firefox and Netscape (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwangwang.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Nitro PDF Plug-In (Enabled) = C:\Program Files (x86)\Nitro PDF\Professional 7\npnitromozilla.dll
CHR - plugin: WildTangent Games App V2 Presence Detector (Enabled) = C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10516.0\npctrl.dll
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\
CHR - Extension: Skype Click to Call = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.5.0.11422_0\
CHR - Extension: Skype Click to Call = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.8.0.12323_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/05/07 21:10:30 | 000,000,841 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (TrueSuite Website Log On) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (TrueSuite Website Log On) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SBRegRebootCleaner] C:\Program Files (x86)\Ad-Aware Antivirus\SBRC.exe (GFI Software)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited)
O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Sendori Tray] C:\Program Files (x86)\Sendori\SendoriTray.exe (Sendori, Inc.)
O4 - HKCU..\Run: [ABBYY Screenshot Reader Bonus] "C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint\Bonus.ScreenshotReader.exe" -autorun File not found
O4 - HKCU..\Run: [Adobe CSx Manager] C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad\ebfaaaedad.exe ()
O4 - HKCU..\Run: [eFax 4.4] C:\Program Files (x86)\eFax Messenger 4.4\J2GDllCmd.exe (j2 Global Communications, Inc.)
O4 - HKCU..\Run: [GameXN GO] C:\ProgramData\GameXN\GameXNGO.exe (GameXN AS)
O4 - HKCU..\Run: [InstallIQUpdater] C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe (W3i, LLC)
O4 - HKCU..\Run: [LMab1err] C:\Program Files (x86)\Lexmark\ErrorApp\LMab1err.exe ()
O4 - HKCU..\Run: [LMADImon] C:\Program Files (x86)\Lexmark Pro710 Series\LMADImon.exe ()
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [SPMTray] "C:\Program Files (x86)\PC Speed Maximizer\SPMTray.exe" File not found
O4 - Startup: C:\Users\hortiz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eFax 4.4.lnk = C:\Program Files (x86)\eFax Messenger 4.4\J2GTray.exe (j2 Global Communications, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\SysWow64\Sendori.dll (Sendori)
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 10.9.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1D2D6BD3-5F92-42E8-A4F4-C30B2FD3F7F4}: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24D99721-6BF7-4461-84DC-AF598FFDEF3D}: DhcpNameServer = 65.32.5.111 65.32.5.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AB8C2975-C169-42EE-8B64-7239C74D26CA}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AF331646-A9EB-4E08-8307-CA312B20035C}: DhcpNameServer = 192.168.42.129
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\syswow64\userinit.exe) - c:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 0
O33 - MountPoints2\{2e0f0ef5-c954-11e1-ad40-4025c258a100}\Shell - "" = AutoRun
O33 - MountPoints2\{2e0f0ef5-c954-11e1-ad40-4025c258a100}\Shell\AutoRun\command - "" = F:\autorun.exe
O33 - MountPoints2\{53d7fa45-c9cc-11e1-b7a0-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{53d7fa45-c9cc-11e1-b7a0-2c41385d6107}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{53d7fa5a-c9cc-11e1-b7a0-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{53d7fa5a-c9cc-11e1-b7a0-2c41385d6107}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{53d7fa65-c9cc-11e1-b7a0-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{53d7fa65-c9cc-11e1-b7a0-2c41385d6107}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{e6716378-10cf-11e2-8bdc-2c41385d6107}\Shell - "" = AutoRun
O33 - MountPoints2\{e6716378-10cf-11e2-8bdc-2c41385d6107}\Shell\AutoRun\command - "" = F:\LiteAuto.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (SBBD.exe /d \Device\HarddiskVolume2\Program Files (x86)\Ad-Aware Antivirus\Definitions)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = exefile] -- Reg Error: Key error. File not found
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/07 22:13:14 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{95C11934-9C7A-486F-A50D-3B97A9A7FA5F}
[2013/05/07 21:40:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2013/05/07 20:48:59 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\Synaptics
[2013/05/07 20:48:52 | 000,198,742 | ---- | C] (Antlantis Ltd) -- C:\Users\hortiz\6200577.exe
[2013/05/07 10:12:49 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{58F8803D-5117-4447-9ADB-81B953637E22}
[2013/05/06 22:12:37 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{DBB6AD7C-0F32-4B97-A417-7F8CE369B002}
[2013/05/06 17:53:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
[2013/05/06 17:53:00 | 000,000,000 | ---D | C] -- C:\Program Files\HitmanPro
[2013/05/06 17:51:33 | 000,000,000 | ---D | C] -- C:\ProgramData\HitmanPro
[2013/05/06 17:40:16 | 000,000,000 | ---D | C] -- C:\Users\hortiz\Desktop\RK_Quarantine
[2013/05/06 14:08:03 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2013/05/06 13:32:46 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\SpeedyPC Software
[2013/05/06 13:32:46 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\DriverCure
[2013/05/06 13:32:27 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2013/05/06 06:48:17 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{5F52976B-2115-456D-ACCE-634B5BC6AA43}
[2013/05/05 21:00:48 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad
[2013/05/05 18:48:05 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{B5134B3D-F396-4A54-888A-8F668DD40CCF}
[2013/05/05 06:47:54 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{99FD1A01-2287-43A8-8352-9A7A01A13736}
[2013/05/04 18:40:26 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{FE085E95-F759-42F2-BDDD-6ACE51151867}
[2013/05/04 06:23:01 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{DDA990FD-F6C6-402A-9456-5F981AEC4202}
[2013/05/03 18:22:50 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{1A4AFEC1-42FC-4FB3-833D-6FA38AE7F148}
[2013/05/03 18:13:05 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{2518E2C4-2B1D-42E0-B31F-D7340E5B5E63}
[2013/05/02 18:50:55 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/05/02 17:57:19 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{EAE28A3B-890B-48BF-A0DC-BBCF54DDB7E4}
[2013/05/02 17:53:46 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{12383C6A-F2AA-4641-8BA0-F1F4F697555C}
[2013/05/02 05:20:01 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{4C1326BD-089B-422D-8EAD-D6C6BCA71E65}
[2013/05/01 16:38:54 | 000,000,000 | ---D | C] -- C:\Users\hortiz\Desktop\pic
[2013/05/01 16:34:07 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{D25F462E-335C-414B-805E-1A02A1A826E2}
[2013/04/12 06:07:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/04/11 18:37:07 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{0BEF76AA-1BF4-4918-A5C3-EF9B99EA2328}
[2013/04/11 16:06:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/04/11 05:04:31 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{A6335311-7489-4332-8F3B-21B619FA1E56}
[2013/04/09 18:19:47 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{12DD84A7-7703-4041-8D8A-ED9BEC441D10}
[2013/04/09 05:30:40 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{2E7A84CF-C842-42EE-8282-809253C78A43}
[2013/04/08 09:52:10 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{02F099B4-6C15-47BC-9198-4338DD6B9A96}

========== Files - Modified Within 30 Days ==========

[2013/05/08 09:19:02 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/05/08 08:23:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/05/07 21:45:45 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/05/07 21:45:45 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/05/07 21:43:19 | 000,783,270 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/05/07 21:43:19 | 000,663,434 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/05/07 21:43:19 | 000,122,270 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/05/07 21:38:11 | 000,001,868 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
[2013/05/07 21:37:51 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/05/07 21:37:28 | 2106,478,591 | -HS- | M] () -- C:\hiberfil.sys
[2013/05/07 20:48:53 | 000,198,742 | ---- | M] (Antlantis Ltd) -- C:\Users\hortiz\6200577.exe
[2013/05/06 18:01:36 | 000,002,788 | ---- | M] () -- C:\Windows\SysNative\.crusader
[2013/05/06 17:53:00 | 000,001,897 | ---- | M] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013/05/06 13:24:47 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForhortiz.job
[2013/05/04 14:25:53 | 000,416,952 | ---- | M] () -- C:\Users\hortiz\Desktop\IMG_04052013_192506.png
[2013/05/04 13:40:10 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/05/04 13:40:10 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/05/04 12:35:05 | 000,198,054 | ---- | M] () -- C:\Users\hortiz\Desktop\IMG_04052013_173431.png
[2013/05/04 12:28:20 | 000,286,690 | ---- | M] () -- C:\Users\hortiz\Desktop\IMG_04052013_172740.png
[2013/05/02 07:56:39 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013/04/23 18:13:32 | 000,325,920 | ---- | M] (Sendori) -- C:\Windows\SysWow64\Sendori.dll
[2013/04/11 05:05:19 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk

========== Files Created - No Company Name ==========

[2013/05/06 18:01:36 | 000,002,788 | ---- | C] () -- C:\Windows\SysNative\.crusader
[2013/05/06 17:53:00 | 000,001,897 | ---- | C] () -- C:\Users\Public\Desktop\HitmanPro.lnk
[2013/05/04 14:25:20 | 000,416,952 | ---- | C] () -- C:\Users\hortiz\Desktop\IMG_04052013_192506.png
[2013/05/04 12:34:42 | 000,198,054 | ---- | C] () -- C:\Users\hortiz\Desktop\IMG_04052013_173431.png
[2013/05/04 12:27:51 | 000,286,690 | ---- | C] () -- C:\Users\hortiz\Desktop\IMG_04052013_172740.png
[2013/03/03 18:50:38 | 000,000,430 | ---- | C] () -- C:\Users\hortiz\AppData\Roaming\_
[2013/02/22 18:06:21 | 000,000,004 | ---- | C] () -- C:\Users\hortiz\AppData\Roaming\skype.ini
[2012/12/11 10:25:52 | 000,777,486 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/08/30 15:44:13 | 000,007,680 | ---- | C] () -- C:\Users\hortiz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/17 20:36:50 | 000,000,027 | ---- | C] () -- C:\Windows\BarCode.ini
[2012/04/18 21:19:19 | 000,421,888 | ---- | C] ( ) -- C:\Windows\SysWow64\lexlog.dll
[2012/04/18 21:18:45 | 000,430,080 | ---- | C] ( ) -- C:\Windows\SysWow64\LMFX1N32comc.dll
[2012/02/03 11:36:38 | 000,004,096 | -H-- | C] () -- C:\Users\hortiz\AppData\Local\keyfile3.drm
[2011/12/31 16:24:05 | 000,000,135 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2011/09/15 12:44:30 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/09/15 12:40:30 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011/08/25 00:36:56 | 000,000,068 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
[2011/05/19 17:09:28 | 000,430,080 | ---- | C] ( ) -- C:\Windows\SysWow64\LMADIQ32comc.dll

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/01/04 06:44:25 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/01/04 04:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/03/07 05:12:48 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Ad-Aware Antivirus
[2012/01/02 12:58:40 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Blio
[2012/09/08 08:58:43 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Camfrog
[2012/06/13 21:15:49 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Downloaded Installations
[2013/05/06 13:32:46 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\DriverCure
[2013/05/05 21:00:48 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad
[2013/03/06 17:44:21 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\eFax Messenger
[2012/06/14 09:51:49 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\FileOpen
[2013/05/08 08:24:02 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\go
[2013/03/06 17:45:04 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\j2 Global
[2013/04/08 11:42:53 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Nitro PDF
[2013/03/05 20:00:04 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\player
[2012/01/22 20:42:49 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Qualcomm
[2012/12/08 15:55:33 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Rovio
[2012/02/23 20:31:29 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\SBG-SVG
[2013/05/06 13:32:46 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\SpeedyPC Software
[2011/12/31 07:59:20 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Synaptics
[2012/12/08 23:34:17 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\TFP
[2012/11/30 04:45:46 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\WildTangent
[2012/04/23 10:48:26 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\Windows Live Writer
[2013/02/22 19:41:19 | 000,000,000 | ---D | M] -- C:\Users\hortiz\AppData\Roaming\WindowsDatabase

========== Purity Check ==========



< End of report >

 

[hector]

[attachment=4375]

Hi and welcome to the malwaretips.com forums!

I'm Kuttus and I am going to try to assist you with your problem. Please take note of the below:

• I will start working on your malware issues, this may or may not, solve other issues you have with your machine.
• The fixes are specific to your problem and should only be used for this issue on this machine!
• The process is not instant. Please continue to review my answers until I tell you your machine is clear. Absence of symptoms does not mean that everything is clear.
• If you don't know, stop and ask! Don't keep going on.
• Please reply to this thread. Do not start a new topic.
• Refrain from running self fixes as this will hinder the malware removal process.
• It may prove beneficial if you print of the following instructions or save them to notepad as I post them.

Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.


Before we start:
Please be aware that removing malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start.
<hr />

STEP 1: Run a scan with OTL by OldTimer
<ol><li>Download the OTL utility using the below link :
<><a title="External link" href="http://oldtimer.geekstogo.com/OTL.exe" rel="nofollow external">OTL DOWNLOAD LINK</a> <em>(This link will automatically download OTL on your computer)</em></></li>
<li>Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
<img src="http://malwaretips.com/blogs/wp-content/uploads/2012/07/OTL-logo.png" alt="" title="OTL-logo" width="106" height="118" class="alignnone size-full wp-image-3946" /></li>
<li>When the window appears, <>underneath Output</> at the top change it to <>Minimal Output</>.</li>
<li>Check the boxes beside <>LOP Check</> and <>Purity Check</>.</li>
<li>Click the<> Run Scan</> button.
<img src="http://malwaretips.com/blogs/wp-content/uploads/2012/07/OTL.png" alt="" title="OTL" width="658" height="584" class="alignnone size-full wp-image-3945" /></li>
<li>When the scan completes, it will open two notepad windows. <>OTL.Txt</> and <>Extras.Txt</>. These are saved in the same location as OTL.
<>Please post this 2 logs in your first reply.</>.</li></ol>

Settings You need to Select in OTL

1. Click the Scan All Users checkbox.
2. Change Standard Registry to All.
3. Check the boxes beside LOP Check and Purity Check.

<em>Note: If OTL.exe will not run, it may be blocked by malware. Try these alternate versions: <a title="External link" href="http://www.itxassociates.com/OT-Tools/OTL.scr" rel="nofollow external">OTL.scr</a>, or <a title="External link" href="http://oldtimer.geekstogo.com/OTL.com" rel="nofollow external">OTL.com</a>.</em>

<hr />
STEP 2 : Run a scan with Kaspersky TDSSKiller
<ol>
<li>Download Kaspersky TDSKiller from the below link.
<><a title="External link" href="http://support.kaspersky.com/downloads/utils/tdsskiller.exe" rel="external">KASPERKSY TDSSKILLER DOWNLOAD LINK</a></> <em>(This link will automatically download Kaspersky TDSSKiller on your computer)</em>
</li>
<li>Double-click on <>TDSSKiller.exe</> to run the application.
<img src="http://img4.imageshack.us/img4/1907/tdss1.png" alt="Posted Image" /></li>
<li>Click <>Change parameters</>
<img src="http://img593.imageshack.us/img593/288/tdss2.png" alt="Posted Image" /></li>
<li>Check the boxes next to <>Verify Driver Digital Signature</> and <>Detect TDLFS file system</>, then click <>OK</>
<img src="http://img521.imageshack.us/img521/1456/tdss3.png" alt="Posted Image" /></li>
<li>Click on the <>Start Scan</> button to begin the scan and wait for it to finish.
<>NOTE:</> Do not use the computer during the scan!</li>
<li>During the scan it will look similar to the image below:
<img src="http://img6.imageshack.us/img6/9136/tdss4.jpg" alt="Posted Image" /></li>
<li>When it finishes, you will either see a report that no threats were found like below:
<img src="http://img696.imageshack.us/img696/9898/tdss5.jpg" alt="Posted Image" />
If no threats are found at this point, just click the <>Report</> selection on the top right of the form to generate a log. A log file report will pop which you can just close since the report file is already saved.</li>
<li>If any infection or suspected items are found, you will see a window similar to below:
<img src="http://img854.imageshack.us/img854/905/tdss7.jpg" alt="Posted Image" />
<ul>
<li>If you have files that are shown to fail <em>signature check</em> do not take any action on these. Make sure you select <>Skip</>. I will tell you what to do with these later. They may not be issues at all.</li>
<li>If <em>Suspicious objects</em> are detected, the default action will be Skip. Leave the default set to Skip.</li>
<li>If <em>Malicious objects</em> are detected, they will show in the Scan results. TDSSKiller automatically selects an action (Cure or Delete) for malicious objects
Make sure that <>Cure</> is selected. <>VERY IMPORTANT!</> - If <em>Cure</em> is not available, please choose <>Skip</> instead. DO NOT choose Delete unless instructed to do so.</li>
</ul>
</li>
<li>Click <>Continue</> to apply selected actions.</li>
<li>A reboot may be required to complete disinfection. A window like the below will appear:
<img src="http://img828.imageshack.us/img828/4812/tdss6.jpg" alt="Posted Image" />
Reboot immediately if TDSSKiller states that one is needed.</li>
<li>Whether an infection is found or not, a log file should have already been created on your C: drive (or whatever drive you boot from) in the root folder named something like <>TDSSKiller.2.1.1_2.12.2012_14.17.04_log.txt</> which is based on the program version # and date and time run.</li>
<li>Attach this log to your next reply.</li>
</ol>
<hr />

 

[hector]

okm i have attached the report of the tdss

 

[hector]

ok report has been attached

 

[Ink]

Kuttus, approved posts may be duplicates due to multiple posts by OP.

 

[hector]

i forgot to mention i also ran the second to last step and got this report

from eset as described keep getting this report and it does not clean it.



Operating memory probably a variant of Win32/Redyms.AA trojan

 

[kuttus]

Hi,

Sorry for the late replay.....

STEP 1:

There is some potentially unwanted software's on your computer. Please click on Start -->> Control Panel --> Programs and Features.
Over there you can see all the installed programs on your computer. Remove the following programs..

PC Speed Maximizer
SpeedyPC Software
DriverCure


STEP 2: Run the below OTL fix
<ol><li>Start <>OTL.exe</></li>
<li>Copy/paste the following text written <>inside of the code box</> into the <>Custom Scans/Fixes</> box located at the bottom of OTL

:OTL
[2013/03/07 10:21:18 | 000,001,064 | ---- | M] () (No name found) -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extens​ions\{6a704a65-d977-4ed6-84f2-d76c8911c670}.xpi
[2011/12/31 16:11:45 | 000,001,945 | ---- | M] () -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\search​plugins\bing-zugo.xml
[2013/02/17 17:19:05 | 000,001,068 | ---- | M] () -- C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\search​plugins\mixidj-customized-web-search.xml
[2011/07/29 09:33:40 | 000,108,480 | ---- | M] ( ) -- C:\Program Files (x86)\mozilla firefox\plugins\npwangwang.dll
[2011/12/21 00:30:41 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml.old
[2012/05/03 15:35:55 | 000,002,158 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\search.xml
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\
CHR - Extension: Website Logon = C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24D99721-6BF7-4461-84DC-AF598FFDEF3D}: DhcpNameServer = 65.32.5.111 65.32.5.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1D2D6BD3-5F92-42E8-A4F4-C30B2FD3F7F4}: DhcpNameServer = 192.168.88.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{24D99721-6BF7-4461-84DC-AF598FFDEF3D}: DhcpNameServer = 65.32.5.111 65.32.5.112
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AB8C2975-C169-42EE-8B64-7239C74D26CA}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AF331646-A9EB-4E08-8307-CA312B20035C}: DhcpNameServer = 192.168.42.129
[2013/05/07 22:13:14 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Local\{95C11934-9C7A-486F-A50D-3B97A9A7FA5F}
[2013/05/05 21:00:48 | 000,000,000 | ---D | C] -- C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad
[2013/05/07 20:48:53 | 000,198,742 | ---- | M] (Antlantis Ltd) -- C:\Users\hortiz\6200577.exe
[2013/02/22 18:06:21 | 000,000,004 | ---- | C] () -- C:\Users\hortiz\AppData\Roaming\skype.ini
[2012/08/30 15:44:13 | 000,007,680 | ---- | C] () -- C:\Users\hortiz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/03 11:36:38 | 000,004,096 | -H-- | C] () -- C:\Users\hortiz\AppData\Local\keyfile3.drm


:commands
[emptytemp]
[reboot]

<>NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system</></li>
<li>Then click the <>Run Fix</> button at the top</li>
<li>Let the program run unhindered, reboot when it is done</li>
<li>Attach the new log produced by OTL (C:\_OTL)</li>
</ol>

<hr />

 

[hector]

ok i found only one of these 3 programs PC Speed Maximizer SpeedyPC Software DriverCure

speedy was removed

and here is the log after running the fix


All processes killed
========== OTL ==========
File C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\extens​​ions\{6a704a65-d977-4ed6-84f2-d76c8911c670}.xpi not found.
File C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\search​​plugins\bing-zugo.xml not found.
File C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\search​​plugins\mixidj-customized-web-search.xml not found.
C:\Program Files (x86)\Mozilla Firefox\plugins\npwangwang.dll moved successfully.
C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml.old moved successfully.
C:\Program Files (x86)\Mozilla Firefox\searchplugins\search.xml moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_0 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_1 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\zh_TW folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\zh_CN folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\vi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\uk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\tr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\th folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\sv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\sr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\sl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\sk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\ru folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\ro folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\pt_PT folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\pt_BR folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\pl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\no folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\nl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\lv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\lt folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\ko folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\ja folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\it folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\id folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\hu folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\hr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\hi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\he folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\fr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\fil folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\fi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\es folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\el folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\de folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\da folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\cs folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\ca folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\bg folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales\ar folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\__MACOSX folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\zh_TW folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\zh_CN folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\vi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\uk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\tr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\th folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\sv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\sr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\sl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\sk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\ru folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\ro folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\pt_PT folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\pt_BR folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\pl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\no folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\nl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\lv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\lt folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\ko folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\ja folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\it folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\id folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\hu folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\hr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\hi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\he folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\fr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\fil folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\fi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\es folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\el folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\de folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\da folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\cs folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\ca folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\bg folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales\ar folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\zh_TW folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\zh_CN folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\vi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\uk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\tr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\th folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\sv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\sr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\sl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\sk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\ru folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\ro folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\pt_PT folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\pt_BR folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\pl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\no folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\nl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\lv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\lt folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\ko folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\ja folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\it folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\id folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\hu folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\hr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\hi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\he folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\fr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\fil folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\fi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\et folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\es_419 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\es folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\en_US folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\en_GB folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\el folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\de folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\da folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\cs folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\ca folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\bg folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales\ar folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\plugin folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\images folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\content_scripts folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\background folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\plugin folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\images folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\content_scripts folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\background folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\plugin folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\images folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\content_scripts folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\background folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0 folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\__MACOSX\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\__MACOSX folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\zh_TW folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\zh_CN folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\vi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\uk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\tr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\th folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\sr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\sl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\sk folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\se folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\ru folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\ro folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\pt_PT folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\pt_BR folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\pl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\no folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\nl folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\lv folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\lt folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\ko folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\ja folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\it folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\id folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\hu folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\hr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\hi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\fr folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\fil folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\fi folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\es folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\en folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\el folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\de folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\da folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\cs folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\ca folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\bg folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales\ar folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\_locales folder moved successfully.
C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 folder moved successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{24D99721-6BF7-4461-84DC-AF598FFDEF3D}\\DhcpNameServer| /E : value set successfully!
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer| /E : value set successfully!
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{1D2D6BD3-5F92-42E8-A4F4-C30B2FD3F7F4}\\DhcpNameServer| /E : value set successfully!
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{24D99721-6BF7-4461-84DC-AF598FFDEF3D}\\DhcpNameServer| /E : value set successfully!
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{AB8C2975-C169-42EE-8B64-7239C74D26CA}\\DhcpNameServer| /E : value set successfully!
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{AF331646-A9EB-4E08-8307-CA312B20035C}\\DhcpNameServer| /E : value set successfully!
C:\Users\hortiz\AppData\Local\{95C11934-9C7A-486F-A50D-3B97A9A7FA5F} folder moved successfully.
Folder move failed. C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad scheduled to be moved on reboot.
C:\Users\hortiz\6200577.exe moved successfully.
C:\Users\hortiz\AppData\Roaming\skype.ini moved successfully.
C:\Users\hortiz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Users\hortiz\AppData\Local\keyfile3.drm moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56475 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: enid
->Temp folder emptied: 4452775 bytes
->Temporary Internet Files folder emptied: 157777152 bytes
->Java cache emptied: 984151 bytes
->FireFox cache emptied: 9860881 bytes
->Google Chrome cache emptied: 5050736 bytes
->Flash cache emptied: 58114 bytes

User: hortiz
->Temp folder emptied: 2489375199 bytes
->Temporary Internet Files folder emptied: 457728346 bytes
->Java cache emptied: 3049325 bytes
->FireFox cache emptied: 111206453 bytes
->Google Chrome cache emptied: 430005671 bytes
->Flash cache emptied: 192715 bytes

User: Jedi
->Temp folder emptied: 911429 bytes
->Temporary Internet Files folder emptied: 1741147 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 20394380 bytes
->Google Chrome cache emptied: 410428457 bytes
->Flash cache emptied: 57951 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 799340354 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67496 bytes
RecycleBin emptied: 216467401 bytes

Total Files Cleaned = 4,882.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 05082013_170413

Files\Folders moved on Reboot...
C:\Users\hortiz\AppData\Roaming\eb755f71-4a7a-4736-a248-e8646d404628ad folder moved successfully.
C:\Users\hortiz\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\hortiz\AppData\Local\Temp\~DF30D3B8EB824B594D.TMP not found!
File\Folder C:\Users\hortiz\AppData\Local\Temp\~DF9AEF33642596AAF6.TMP not found!
File\Folder C:\Users\hortiz\AppData\Local\Temp\~DFB570441AA49AB25B.TMP not found!
File\Folder C:\Users\hortiz\AppData\Local\Temp\~DFBC102137A8875CC5.TMP not found!
C:\Users\hortiz\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H4XY383X\filtered[1].htm moved successfully.
File move failed. C:\Windows\temp\sndappv2.log scheduled to be moved on reboot.
C:\Windows\temp\~DFC0ABF4B808EA3719.TMP moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

 

[kuttus]

STEP 1: Run a scan with AdwCleaner

<ol><li>Download AdwCleaner from the below link.
<><a href="http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner" target="_blank">ADWCLEANER DOWNLAOD LINK</a></> (This link will automatically download Security Check on your computer)</li>

<li>Close all open programs and internet browsers.</li>
<li>Double click on <>adwcleaner.exe</> to run the tool.</li>
<li>Click on <>Delete</>,then confirm each time with <>Ok</>.</li>
<li>Your computer will be rebooted automatically. A text file will open after the restart.</li>
<li>Please post the contents of that logfile with your next reply.</li>
<li>You can find the logfile at <>C:\AdwCleaner[S1].txt</> as well.</li>
</ol>
<hr/>
STEP 2: Run a scan with Junkware Removal Tool

Please download Junkware Removal Tool to your desktop from here

• Turn off your antivirus software now to avoid potential conflicts
• Double-click to run the tool. For Windows Vista or 7 users, right-click the file and select Run as Administrator
• The tool will open and start scanning your system
• Please be patient as this can take a while to complete depending on your system's specifications
• On completion, a log (JRT.txt) will be saved to your desktop and will automatically open
• Post the contents of JRT.txt into your next reply

---

STEP 3 : Run a scan with Kaspersky TDSSKiller
<ol>
<li>Download Kaspersky TDSKiller from the below link.
<><a title="External link" href="http://support.kaspersky.com/downloads/utils/tdsskiller.exe" rel="external">KASPERKSY TDSSKILLER DOWNLOAD LINK</a></> <em>(This link will automatically download Kaspersky TDSSKiller on your computer)</em>
</li>
<li>Double-click on <>TDSSKiller.exe</> to run the application.
<img src="http://img4.imageshack.us/img4/1907/tdss1.png" alt="Posted Image" /></li>
<li>Click <>Change parameters</>
<img src="http://img593.imageshack.us/img593/288/tdss2.png" alt="Posted Image" /></li>
<li>Check the boxes next to <>Verify Driver Digital Signature</> and <>Detect TDLFS file system</>, then click <>OK</>
<img src="http://img521.imageshack.us/img521/1456/tdss3.png" alt="Posted Image" /></li>
<li>Click on the <>Start Scan</> button to begin the scan and wait for it to finish.
<>NOTE:</> Do not use the computer during the scan!</li>
<li>During the scan it will look similar to the image below:
<img src="http://img6.imageshack.us/img6/9136/tdss4.jpg" alt="Posted Image" /></li>
<li>When it finishes, you will either see a report that no threats were found like below:
<img src="http://img696.imageshack.us/img696/9898/tdss5.jpg" alt="Posted Image" />
If no threats are found at this point, just click the <>Report</> selection on the top right of the form to generate a log. A log file report will pop which you can just close since the report file is already saved.</li>
<li>If any infection or suspected items are found, you will see a window similar to below:
<img src="http://img854.imageshack.us/img854/905/tdss7.jpg" alt="Posted Image" />
<ul>
<li>If you have files that are shown to fail <em>signature check</em> do not take any action on these. Make sure you select <>Skip</>. I will tell you what to do with these later. They may not be issues at all.</li>
<li>If <em>Suspicious objects</em> are detected, the default action will be Skip. Leave the default set to Skip.</li>
<li>If <em>Malicious objects</em> are detected, they will show in the Scan results. TDSSKiller automatically selects an action (Cure or Delete) for malicious objects
Make sure that <>Cure</> is selected. <>VERY IMPORTANT!</> - If <em>Cure</em> is not available, please choose <>Skip</> instead. DO NOT choose Delete unless instructed to do so.</li>
</ul>
</li>
<li>Click <>Continue</> to apply selected actions.</li>
<li>A reboot may be required to complete disinfection. A window like the below will appear:
<img src="http://img828.imageshack.us/img828/4812/tdss6.jpg" alt="Posted Image" />
Reboot immediately if TDSSKiller states that one is needed.</li>
<li>Whether an infection is found or not, a log file should have already been created on your C: drive (or whatever drive you boot from) in the root folder named something like <>TDSSKiller.2.1.1_2.12.2012_14.17.04_log.txt</> which is based on the program version # and date and time run.</li>
<li>Attach this log to your next reply.</li>
</ol>
<hr />

 

[hector]

here are the 3 reports

adw report
# AdwCleaner v2.300 - Logfile created 05/09/2013 at 08:41:30
# Updated 28/04/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : hortiz - HORTIZ-HP
# Boot Mode : Normal
# Running from : C:\Users\hortiz\Downloads\adwcleaner(1).exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\adawaretb

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16446

[OK] Registry is clean.

-\\ Mozilla Firefox v20.0.1 (en-US)

File : C:\Users\hortiz\AppData\Roaming\Mozilla\Firefox\Profiles\okvwsq57.default\prefs.js

[OK] File is clean.

File : C:\Users\enid\AppData\Roaming\Mozilla\Firefox\Profiles\wr18f0gt.default\prefs.js

[OK] File is clean.

File : C:\Users\Jedi\AppData\Roaming\Mozilla\Firefox\Profiles\trotabo4.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v26.0.1410.64

File : C:\Users\hortiz\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Users\enid\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Users\Jedi\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2202 octets] - [07/05/2013 21:27:03]
AdwCleaner[S2].txt - [1420 octets] - [09/05/2013 08:41:30]

########## EOF - C:\AdwCleaner[S2].txt - [1480 octets] ##########

JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by hortiz on Thu 05/09/2013 at 9:06:19.76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\installiqupdater
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-3792232486-2099185062-1239179529-1000\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\torch
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\torch
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{187227DB-B253-4189-AD9A-DABE3E3923C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{5DDDAB64-B53C-45C9-AB69-D0489D7AEC4A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\speedypc software"
Successfully deleted: [Folder] "C:\ProgramData\w3i"
Successfully deleted: [Folder] "C:\Users\hortiz\AppData\Roaming\drivercure"
Successfully deleted: [Folder] "C:\Users\hortiz\AppData\Roaming\speedypc software"
Successfully deleted: [Folder] "C:\Users\hortiz\appdata\local\adawarebp"
Successfully deleted: [Folder] "C:\Users\hortiz\appdata\local\torch"
Successfully deleted: [Folder] "C:\Program Files (x86)\pc speed maximizer"
Successfully deleted: [Folder] "C:\Program Files (x86)\w3i"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0013C646-BDCF-4206-8DF6-75A378131794}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0075E448-A86F-4C04-A110-82003403FC99}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0087F8DD-6FA6-47EA-BA05-99B9CFA861F3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{00988A36-99F9-4A37-8E1E-D3064AADA392}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{009C5353-FD82-4AD2-BAC6-932AC7592F43}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{00BFC0F3-2EEA-4FFF-934D-5F98D60D7A7F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{016F23EE-4661-4176-8712-FC57CD5D52BA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{01847F43-0140-4807-BD56-FF39D8054973}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{01EAED6D-7D68-4CFA-A763-85D34B351AB9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{02352E49-0E81-4D64-B639-F33DF79689B5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{026622F9-2699-49D7-B13D-72CD5D468AED}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{02F099B4-6C15-47BC-9198-4338DD6B9A96}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{03ED84AF-F340-44E1-A69A-05F337660827}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{045C5DBB-F611-4526-B9C3-75653459CD2A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{04B76795-6FC2-4527-BF2F-829EED6BF416}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0501ADBA-EEF4-4097-B553-56E41C22DFE3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0577121E-0622-4823-BD29-CAD3DEFAE539}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{05A1682E-9A4E-4768-9002-E3E5AF673370}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{06160EC3-21AE-48A5-8CBC-6375AF8B80D7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0621D61C-E368-4362-BBFA-1B1129F889B4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0640C916-DBA3-4DB2-B922-E56634333329}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0645DC65-701C-4F49-ADE6-22240E6FD7B1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0653D032-6694-4404-9BDD-E1FF847C0E47}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0686B7A8-3548-4FF9-8F8E-04FCEAB91D62}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{06B9CF22-0E51-4049-938D-2436B7D0EB40}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{06CB52B5-54D1-4573-9E8B-B552DD808A95}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{06E09EE5-B888-49C9-873D-AF0FFF0ADEF5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{071B2A51-97C0-4C36-B5C6-C3BADB714E4D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{073785D1-6B54-44C6-845B-D0AC8E69DB50}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0748D7B3-ED53-46CE-83D8-639DFA778533}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{07B8F895-A252-4019-B5BD-C57A1D524FC3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{09215F3A-2DB5-438F-A4E0-B7336285C220}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{09632553-BA99-4D09-B8C6-6B2DBC254B00}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{09AB150A-00E3-4B2B-84E0-343F8B4B0009}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0A638853-1CDC-4302-8395-5C869C50066F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0AFEFF10-02AA-458D-8A46-489FFB6B608B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0B38A1C5-0A73-42D9-A40C-2B0EAC121633}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0B608BDE-3A12-47FC-8290-06AFE4E916F9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0B7F5298-E3BF-4848-8F26-BEE2B3E2B49B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0BA892E4-E8EF-4B26-A54B-8397198B87EC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0BEF76AA-1BF4-4918-A5C3-EF9B99EA2328}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0C22B1F3-5872-47F3-9BA5-F1E2B4A858F1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0C3BEAC1-40E6-40AA-947D-05ED72BA65A8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0C578E7A-F412-46F9-9252-5110FD42A453}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0C67179A-03A9-46A1-850E-A5D382D230AB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0C6965D1-714C-42E0-B1D3-6274C36C7C62}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0C8EFE42-1086-4CB0-B2CC-16CD4EE40D75}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0E04B990-3835-416E-ABA1-F4AF3A28FE55}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0E15FC9C-1ACC-4EC4-85D1-EBAF1CACA767}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0E2813CD-B6F3-41B2-B2DE-BF1E4F8848DC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0EB13C58-1DD4-4DAF-89EB-E9BE8E82C2AF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0F9B4E84-3A75-4AC1-A02F-19B1FAD7194A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0FA4BA33-30AA-4C34-A9D6-80D354356527}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{0FB5FC78-1072-482C-A4E4-ECAC4CE7AF30}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1032AE55-2511-427C-B9D6-633E8A8EECE3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{105FADC2-C56F-41B1-A89B-865629C6DFFB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1087A8A7-AFEE-41DF-AF3A-735013696E79}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{10F223C0-D8C8-4A1E-A3B1-AEE9B5923A95}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1162D252-E24F-4ACB-BBE7-DAAC7A830B5A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{11759258-D3F6-4A47-A12A-56B09BC3031E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{117853D5-DB3E-4981-9259-45F5B84E088C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{11E22399-81A7-446D-9421-55E2E21C575D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12331894-2165-41CE-9414-D11286EA2C35}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12383C6A-F2AA-4641-8BA0-F1F4F697555C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12462B1C-7F59-44D6-B40D-8EC4F54FC717}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12A8DE42-F26B-4DA2-976F-455EDCD284AE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12C8508D-AC7E-412A-A2F6-D69BF04AF2FC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12CA8F96-8192-4FEA-ADC4-33425EE683DA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12DD84A7-7703-4041-8D8A-ED9BEC441D10}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{12EE0145-7DA1-43D2-BA7B-6B34506FD2AF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{131467E5-413F-4220-AB90-40E83D87071D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1340D9BC-C884-4457-B8D5-814B73960683}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{13C3C3B6-D5A2-4B9B-ADDB-A9B8068047F0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1407788D-7B57-45E4-95CE-F6E382A3C820}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{144ACB4E-8C05-408A-8735-CDEB1BBB775F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{14732FCB-A698-412A-8689-FE44E77B3460}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{14827F94-8C24-4EC0-87CD-FCD003F3AB0B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{14ECC9EB-FBE8-4F7D-97D9-85535A7268C9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1512258B-0B0A-47B0-9C14-FAD08A982784}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{15792759-C53F-4717-B62E-6ADC04C15EFB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{158C3283-F629-4897-B9CE-FF36F9A5E41E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{15A4D630-0993-4957-87C5-40F840441423}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1702393C-6B49-4D12-A4AD-4BEE4C94EA40}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{170E8C91-DE3C-4E68-8FF7-B5567CDDBE3B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{177BEA11-B74E-4B96-A190-492C568A6603}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{178FE3E6-890A-4DD7-83C9-1AD0AB3B4961}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{179A6B30-9153-4439-B4CB-DB65C565FD6E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{18013FEF-BA02-4C3B-85A0-87B74B09CD33}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{18E61691-B1E0-4EC8-96D5-0BBDFBEF1642}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{19237D6F-CBE5-4158-B7AB-3B27F3D618E6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{193CB026-0634-4928-B528-AA931B098932}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{19831283-6168-46AA-854A-5D20F6FB1D34}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{19A4486C-58BF-4943-9A99-3EA624AC690C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{19B73625-2FF7-4F24-A9D0-9ACC2B619435}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{19BF6052-5F3C-4F06-BB5D-5ABE4EE63144}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{19ED7144-9B61-4C4F-9B17-B8E18A1A996D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1A2BE0AD-F05B-4BAE-BF7E-7A2133C3DA30}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1A4AFEC1-42FC-4FB3-833D-6FA38AE7F148}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1A522911-FFB9-494F-B065-BE23CF97B69C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1AEAA491-EE1D-4789-B970-966749B3592E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1B4E05F4-1344-47B7-BE6C-0B1C5914201B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1B4FDA10-8B8D-4AEC-B055-C6CE4110E286}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1B6CDDC2-1737-43B9-8C2A-467673DAF86A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1C33974C-05DB-4FC5-9757-BE0AD2DAF324}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1C49E926-8E6D-4A79-8055-6AC150A5702E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1C4B8FB0-1742-4DAF-A821-DEBAB371357B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1CD585AC-E891-4557-942F-801CE30AFC25}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1D38A928-D0A4-46AB-926A-C68B6A5943F9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1D83A0EC-132A-4358-9C06-A6D789939522}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1E871591-D871-4FFD-BAE9-E3E7E06A52EE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1E893E8D-F6E3-4125-ADBA-E1372678671B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1EDB9075-7982-4CE2-9DAF-2F25432EE86F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1F6908C8-C1BF-4E64-861F-EDCEDD048168}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1F92370F-325E-42BB-86F0-95E360EA254F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{1FCE8DB1-D46B-4E9E-B0D2-EFB48BC421BE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{204BAEE3-8ED0-459C-9033-AC4D1D38702E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{20674CCE-C6A7-4FED-9AF9-83F202FE1563}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{217BA9EF-5C7B-439B-84A6-69F045062B56}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{21EC1241-8487-46E8-81A3-B114E4ACE30F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{220FFD0D-400C-4D56-8F4B-75AD015D790F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2214BB0B-1E19-4DE0-A634-B0118887B0A0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{23645E35-34E5-49B3-89D2-96A27F0F83BE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2375A900-77A0-43BC-A8E7-D86126F550A1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{23852CEE-27A1-4B6B-87A5-945F419BADAD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2488688C-7402-47C1-A0C2-146FD31F42D8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2501D1FC-64F0-4612-BCFC-D61FFF45FC56}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2518E2C4-2B1D-42E0-B31F-D7340E5B5E63}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{25567EB7-A80B-4506-9F34-FAB685A2BA94}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{25A6A0DB-113E-4090-BFF6-B42A7C159F5A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{264462C4-7B1D-4A5C-8BE4-2EDFD0BA9BDA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{267D7B67-5D4E-4517-96F5-293742A927E6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{26BB9236-DC1B-418A-8730-741F708AE07C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{26D8E02F-0839-49CC-AF8B-659914FB9F1F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{274B7EF4-18A1-499B-BC49-0A09E8062520}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{274FDCD0-A263-4259-A985-7E1AC98A319C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{28C88E9D-2A0F-4673-997E-3CFD9A03797E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{293BC524-3173-49BE-A50F-62056D4BFB2A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{294DFDA9-F97B-48C4-AEA0-54CCEF9E0247}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{29F4E31B-F53F-4552-BBE9-B285307ED7E9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2A9CC943-1277-43CA-BBA4-1B4AB34B213B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2B84E897-868F-49D2-9A68-458F0324C14C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2BD92129-33CB-499D-ABE9-5E8A01DCF438}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2BFF3718-1E57-423E-8B46-975FA03F369D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2D256379-C794-4492-B475-CED09908DFB1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2D35BD4B-386D-44DC-B936-CE59B81CFD94}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2D78C357-AFBE-4BA7-9455-F1664771A521}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2D9CC057-3B68-40B3-B042-6153B567605C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2DD56C37-4315-40FE-A388-5DECD3FB72A5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2DE2A813-E51E-46AD-B6ED-3F86DAA6C7D1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2E31BF05-FD7D-4BC4-B4AE-0704BD82997C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{2E7A84CF-C842-42EE-8282-809253C78A43}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3055E66A-B991-4DB3-8459-7EF857389B3F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{30EC3809-1CD9-4F33-8D0A-F9D2D271A3A0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{32096974-C243-4108-A763-1DF705C5E84E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3285B9E7-90D0-412A-A7CC-5731A364305C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{32A1AA9F-112F-4221-902C-DA3D57CAD340}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{32C0C1D8-96F4-4813-A4F0-76A74E804746}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{341FC9CA-8E6F-4B66-9C4E-EE621A01F31C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3472485A-8B07-4A60-8F75-913CEC48E9FA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{34C7CD27-7A2B-4975-BBC7-DA8B5B64B225}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{34F7101A-9925-477F-805D-C78FDCF658E0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{35A84675-81EF-408E-BAD8-110CAFD06B2C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{35DBAEBD-7853-4211-BAEB-521935E1BCB1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{360EA22F-3EA6-4179-A608-754D901C04A3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{36144E5E-5D02-49DC-990E-7E64C4098551}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3654D0A8-EFDD-45A3-A653-79057141594C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{36C90347-9816-48C0-B177-FA0A3AF50117}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{37503203-B194-4993-8E30-836DF582A27F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{37CD3044-373A-466D-AB52-A2D45D6C4B48}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{37CE50EA-3FC1-4A9D-B468-ADD58D8373AB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{38123574-9DB7-4864-AC5A-ED9437A0BC90}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{38161EEF-37E0-44A7-8746-FCE5E24BDB3F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{381EEB71-184F-43D4-9EA3-4CC57ADFA3BC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{38C8CB46-9840-4CB3-93A3-0DFD0E8B3FB4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{39333109-5EFD-4AD8-93DF-005745B432E0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{39562D9D-F85A-4942-B46B-07A11EA53436}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{395C5BA0-1B23-4EB6-9DA9-741019336953}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{39D0F0E3-2F0C-4488-A961-0B2632085361}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{39D42AA3-5686-4C6F-AB70-2363AD35CE39}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{39F8F5A8-436A-47D2-A740-25153E1C6658}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{39FDCA15-0625-416A-A1C2-8DA7FAD0E4F3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3A8A4672-7A3C-43E9-83F1-29EF63C8E103}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3ACB5A94-D3E9-42BD-9766-19537818E420}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3B57EE53-5684-46BB-91C5-0D135CC1482F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3B7B2B18-15F0-4F82-A9D4-1DC6D6223CFB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3B8C234D-4D6B-4EAB-AA12-8EFBF23AE6BD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3BFBA8A5-2D84-4EA4-9322-1D76DCC2B3A4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3C1D221D-1F30-4B9E-BF9B-AE3A78A56D09}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3D18D98D-4B81-441B-8F6B-DC055B130BF2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3D8A0E63-540A-4912-B936-E1B887F105ED}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3DC65A06-52F0-4458-A7F9-3AD44BD3B995}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3DE8A2BA-D470-47A8-BD8B-37CB0D53C915}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3E88B485-3862-4C70-A8A0-73BA65492418}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3EB10471-FFA5-4608-841C-8CD1C7081D64}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3EDB3B7F-67EC-414C-94F8-E3BC800AEF4F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3EF36312-EED2-4C48-AD89-C4BC0CDCA8A8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{3F9717A8-DC76-4BE6-8659-34D705803A9C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4010D65E-2381-43F2-A55B-ED0260AE5F9D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4014F8A7-8D0E-4C2E-8547-06247BEA4B8D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{407498B7-A7A3-4451-871A-2E0E7725308F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{414C8EE4-9E84-41EF-8138-48D11357F460}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{415739B1-598B-43E2-871A-5BE545E317CD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{41B41EA2-9886-416D-BC26-BAC435B60921}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{424E28C0-317D-423B-9CE3-6AB9AF468CAF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4260B2D1-6AD8-4812-A2EC-9D37731329B8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{42D02CE2-289E-4F2F-A60D-D72655A3F6D7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{42E706E7-3D1B-4FFC-8FF6-F881A0EA4287}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{439FB0EF-4908-403C-914A-0AAF7E775FA8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{43C0B904-1E3F-4D49-8F6D-FBCF18187140}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{443DF168-5BF4-4F54-B163-A3E26E0F20DF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{44446ADA-6F29-417A-A5F8-AE9381D96E14}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{445930C5-E095-45ED-BD62-0CCDAD07EA5B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{45008C6F-6A37-4776-B48A-5A4CBC019467}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{45FD786B-F4A5-4B24-A31D-BE8E51B9C5D1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4607606A-9EC1-4DB2-BEB7-E37FDD0B6349}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4661D290-280E-4311-95E4-C00C3D681D03}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{469768AA-1F6E-4C2C-A841-A5FEAF874B63}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{46BCFECB-912E-4D13-9ABF-18FE289384BA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4739D9C4-078A-4060-A952-DAFCB37076F8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{479363BF-4AA2-4F13-B8A8-8297263D97AC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4795F36E-FC0C-4A28-AE68-267841618FF9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{47A80009-10C2-4FF6-B235-6962089019A6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4858FCD6-F06E-4EC3-B7FC-4628F3CE00B3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{49E8593D-D5CC-46B4-B190-F621B9F32D75}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{49EEDA64-CDE9-4937-B824-FA173FC81BDE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4A39263D-73AF-4044-A15F-BFC3FF732286}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4AE096D4-D269-486D-9BCA-9B418B72AA69}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4B46BCB0-1839-4249-90CC-ABA29901A05D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4C0D0CBF-5BB5-46D9-AFF1-7AFA7DC5EAE6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4C1326BD-089B-422D-8EAD-D6C6BCA71E65}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4C69ECBE-7CF3-4D6D-9C08-E44D973CAD63}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4C8C903A-39A5-4BCB-A185-65FA2A99CD7D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4CB526D5-76E6-41DE-B2AF-6A8EA78FFAB8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4CCB5DD0-310C-411C-AFB1-5A31F3D975CA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4E0A25AB-071F-4418-B8AB-C16C14E9B5D8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4E55F2D7-2D10-4CAC-A203-F7D14E5C49FD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4E7C6278-A529-4593-BFBD-F50A4C6FDEF2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4E89774A-C5BC-4C3F-AF1D-BF1634172E65}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4EB88B21-8F0C-4E5A-8C54-A992C2E7EAE8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4EDE08C3-662B-47F0-826D-BCB00E5798B7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4F11E907-7917-4F87-94B9-2A084A56C4EA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4F4C212E-7921-4BFA-8080-ABA970962704}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4F6DB350-30B4-433D-B560-A0CB3130D77C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{4FB665D0-C802-4BBD-939D-4A56D43DAC7A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{501EA750-C7E2-46E5-9700-C625A58D468D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{504B9BE5-5B63-44D8-ACAC-7B4A9A497AFB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{505217A6-285D-4EA7-942E-A6E480FCAEE6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{50C6A8F5-79BA-48A9-B318-6C11CA6CA993}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5143732C-7283-419F-8564-EE1A5DE41C25}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{51A6504C-A7A4-4D44-B064-FB6B2F376095}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{51CF915F-2D26-4B5E-9985-B82C64ACE9BB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{51E58C50-B623-4E7B-89FE-E37B5E02B93B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5208EF0E-F4E9-40A5-B455-5A718E8D5AA7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5210EA20-23E4-4A80-9DF9-F5B6E4A6EC71}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{52528F56-172B-416D-A024-D5FE3A74B36F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{526C6BF1-3848-4B1A-B420-C3FA9F9EC333}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{52B231AD-1507-4A3C-945F-71141069435F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{52E41A1B-9B29-4A1B-BD77-4F862A6F6100}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{54659353-A620-4F4B-BCA4-9D9192E1CD69}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{54A499FB-7D8F-4B19-A8FA-4D933749194C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{54C22F2B-9024-497E-ABB0-3D49B7A99C31}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5507CD04-7BE3-42F2-A361-2A602EADF407}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{55C2F733-4CE8-4D59-B946-F2394A355949}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5631D472-DE23-419F-9F75-6C8A9462535B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{568A53E6-176D-4362-94EA-ED69C049FAD5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{56A48EB9-9E1C-4672-9E33-FFFFDD90C8F5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{57351A60-87B5-47CE-96D1-E954DF83DAEB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{575F093B-7B75-473E-B244-41E5A096B991}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{57CA2ACF-2641-4F9B-91DE-266B23DAF02E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5809287D-9B3C-42BD-87DE-5CA60415FE2E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{58A427B0-F6DB-44BB-8EAE-BA161833F1FE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{58F8803D-5117-4447-9ADB-81B953637E22}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{58FEE676-27A4-481E-9D1F-848935F56438}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{590F9F54-1641-41FC-8F1D-E1F8859CDDBF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{593B156C-1F26-4D3E-A43B-B5FBACF9D7FD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{596859C1-2710-4ADA-A1B9-A706DD8AC8A4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{59731E93-9FFD-45C4-A6E5-169B15A344F4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{59B98EDC-7064-417F-B450-F3EA878EEE25}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{59C4C865-0F97-413B-908A-928D71DF29F2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5A634B6C-F73F-431B-868C-D58D7E43E964}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5A7A7DEC-2E76-4315-9955-2F55EEE7326C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5AC39E18-30E1-4021-B964-7F2FABAC757B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5B6B9B99-12CD-4902-9843-FDB66F3235E4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5BCD503B-9F6C-49AD-9615-00AC2C0984C5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5C2F161A-A01A-4F2E-81F7-F838430605B2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5C908B7B-D57D-4D7B-A334-8CF6EA448CBC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5CF8EC41-938B-4201-B0E2-99FC7C8E460C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5D02A4F2-10A0-4330-9F40-AC0EC724B015}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5D49E370-E295-4C94-A90D-5871CBB66EBD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5DA10DC4-195D-458D-9463-67E29301F2C8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5DEB8D06-816A-4709-88B8-987BB3904486}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5E032230-0A10-46B2-98DC-A94C34BAD1EB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5E0E48FD-8B1A-42F6-A1A1-CA55F3E11B90}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5E1F1231-A527-4E6C-B086-184E536B8973}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5E8B5E0A-DE36-460B-AA0F-7FEBA6CE1F44}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5E8FDFEA-5762-499C-AA86-DB2297FA0C4E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5F52976B-2115-456D-ACCE-634B5BC6AA43}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{5FE6EF38-BBAB-4C4F-BD94-418210D2F51E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{601C24F5-B54C-4E8B-8AE5-D53B26466364}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{603A324B-7BF9-4487-B0A6-C8109F549082}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{60480EBC-3B40-4141-B98F-4A26968BC33C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{60564AA3-3587-4D7E-A648-8E0C5A97C233}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{60D125D1-DFFE-4728-91DA-4B1ABD0CF46F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6230BFE2-F7AF-439B-8BAD-1BFC7AA3CC99}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6254072D-33D8-4C83-A8E5-08FFD8C6D53F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{635C7EA4-DBA2-4EF2-B6CF-D38DD88601E4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6434E53D-DEDF-44E4-B1A2-9439664696BC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{643EAA24-8A18-41D8-9278-87781CCD8127}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{646FCB07-ECA0-4DF6-A053-EBB97867A9AF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{64E6767D-99F5-408C-88B4-F5A05A7F7A67}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{651BCC94-57E9-4543-88ED-28E1A1FAAAA4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{65B81BFB-B7C0-4E5A-A0D6-9EFC4F5A4680}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{65F0FBEA-25ED-4D7F-B9DA-EFF4749355C1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{660F3CC7-12DA-4CD2-8C2D-C8ED323ED8AF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{668540A4-778F-4A7A-B860-383D3E788742}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{66999268-9DD9-4756-AC88-3053E454C9E1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{669DB24E-CB20-48CA-A728-882D27DBD3C5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{66E913C8-2E02-43D7-96A4-862E52718B64}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6735F09E-EBA3-478E-850F-50391046D78A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{67B5FE2D-F61F-4645-87B3-1DB55F3C7175}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{68F31004-AB52-409C-BE58-D75AA4281F98}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6985B6A7-DBD7-408F-A59C-6DBC199D2DBB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{69956625-5C4F-4242-82FD-ADC40F63786A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{69973337-3390-434D-BC16-50DE7780F3FA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{69FA6CBF-9FCD-4F67-A3A7-7386E20B43A4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6A82B9DD-AA6C-4A70-BDBA-32126DEDDF68}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6B136590-DFC9-4315-A569-7EEBBADDE09C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6B3D0E82-FFE6-4DBC-9291-F0483E5B6CD8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6BD893E9-D433-42CE-9762-C4D5629C2B21}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6BDFDDF0-0EED-4D67-AAF7-E851F3D226BE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6C07C12A-5371-4692-BF3C-46D3BA58E20B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6C410F05-3F7D-47C9-AC10-3A141277B157}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6C618B87-8436-4073-A3A1-1D6F3ADEC861}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6C65BA55-8449-4352-A74A-72D6EC20DF92}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6CB92698-5F50-4B3B-9C3D-ABA957D1CDAF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6CED7569-C980-469C-B07F-0AC079DA084C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6CFA9A15-6190-4DCE-8C60-4822A205488E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6D2EFEE2-FB6F-4157-AB41-0A261F77BE32}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6D811454-B149-4CE4-A8AB-B6546F283EAA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6DA88791-67F8-4F05-A35F-B63C8813560D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6DFDED58-38F4-490C-A197-C67877333D14}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6EBD72D6-9BB3-4E27-9E30-D89DF0079487}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6F3CA8DC-9AF5-4CA8-B023-9BBBAD7431C3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6FBA0C48-7E0F-4026-B3ED-1DD13AB0DF24}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{6FDA5DC0-E5AE-4256-93F6-FACE2ACE582C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7018BF54-B91F-4165-95E9-D6E689ADF4EA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{702E66BF-9B22-4F11-BC12-F19FAE9C32FC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{706C0C0E-868C-47D9-86E2-0885A706506F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7076278C-F0FC-40E9-85AB-7FE403941F47}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{711B1163-5214-4FF8-AA94-BEF9F4EEE93F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7246D919-1E9A-43E8-98BA-D2DFA4ADA7C9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{727971DD-BFAC-40B8-AD26-55100CF4C9C7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{72BB7EB4-7129-4520-A513-E622E83BB85F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{72D104AE-F7E0-4787-8916-A420DB951340}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{72E15B4B-A220-4E95-96AF-1DF746DA634D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{73A343B8-63C7-49C0-A50E-3D2D98A964B8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{743547BB-2DAC-4468-8CAE-4C60F3718CE2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{74AB20ED-66B6-4891-B06C-CF3DB7DAF8B8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{74B24E11-E845-4A74-A46F-B00CB4E66FDA}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{752B1448-61EF-4F33-AFCE-76496BC984E4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{75665C36-2165-4BDD-9255-CF01BECBF8EC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{75D29F95-5A75-4A05-BA0A-8DD161A7CA9C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{75F2649C-7EA4-47D0-935F-791A798B2F89}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{760DCA23-72DC-46BD-9474-16ABA2DBBEAD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{76158E8A-B761-46E4-AD90-FC8FF266AD7E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{770178BA-86FF-4D29-ABEB-3C03E7E6D5E3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{778300CF-24E5-4FFA-AEA5-FB88FD24DADB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{787FCBC9-A5E4-4195-BB55-713BAC43D2E8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{78CD20A6-5AE9-48D4-BE9C-33882B736CA7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7B05C174-D1E8-4FF4-AABB-D864BCC8037B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7B094BF1-2DED-4A85-826F-28F0E55DE9CE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7B0DC781-DDDC-4944-A9ED-E43497CE2B90}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7B5407DA-63D2-4181-B19E-45A844531858}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7BC8D09F-5788-43C1-8A73-B17CB2359D11}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7C49AC9D-E4CD-4E63-A0C0-3C24C4F48E8A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7C975E7B-C8E1-4574-8C40-9517ECA2C942}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7CE24425-9AFA-4891-B8B6-98FC3C5DB263}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7CF37B57-14A7-4A42-9B59-4548C1D17055}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7D3912A8-5B04-4A7B-8B36-57725256170E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7ECEF917-06FE-44C6-BB35-A71853B099DC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7ED37C95-1CEA-4D3A-981D-8B91A12F600F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7EE13D11-3C28-4F5C-82E2-6E20ACD88D65}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7EF6B303-1345-4E96-82B0-7B8F6C314A42}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7F2EC476-42A7-4B4D-8408-7AACD528C640}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7F4F143A-BDBC-4DD2-8F30-3ECD32AA113C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7F4F52E3-E5FE-4F86-9B7F-504F1F7B2458}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7F53E3CD-8058-416E-89F7-2D4E48D28326}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7FB3E769-837F-43D3-8BD5-0DBDF2C3A8A3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{7FF9D77C-6560-496A-B912-3021F38253A2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{80339713-7C1A-4202-B093-8ACA6B43050B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{80412457-C056-46B9-B1EA-B2B169E07552}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{80E7C308-6EB1-4C9D-97BF-0E252CD48D22}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{81161603-0C47-4D44-ABC1-D5CB339DFA7D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{81D1B268-15D0-4928-9C0A-0FAC0A1D0E47}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{81E1FBF8-82BD-429F-AAC7-66F1560CF312}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{825DA698-1DB6-41F9-BEEE-4CE02D5CD3FD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{83BF3B19-470C-4954-883C-A5963556D6B9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{83E4F0AE-5F4F-40BE-BC0E-4690FE8F1084}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{84395C6E-180B-441C-AF54-D3F7B7DC78F3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{851A8955-08C2-4198-9499-52639BBE6832}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8651EF52-3AD5-4E66-926C-C7E400FFFF02}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8680A15D-6E80-47E5-83DB-DD218C259C82}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{878969DA-0332-4344-9C3D-CA870B0EFC87}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{87B33408-917D-4B75-8538-A2327D294DF3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{88140E6C-B6C1-4C4D-97F6-02C4DBBFA7C0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8855D21B-6681-4E5F-8CA5-413947674C35}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{886E8C30-9305-4391-BB1B-CD2E037B7B64}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{888C526F-8F23-479B-A414-6DB3B647FB80}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{89284978-6CF5-4724-AA58-C3B30BE2AC33}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8969F6C1-8958-4BA7-963C-9DAD279F1EC1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{89B00E33-BAF5-4038-BB70-3763BD415C66}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8ACCDF04-DE61-4DB0-A999-7665ACE5BA4B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8ACEDB22-4ACE-441D-9336-9D477F813564}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8BCBCD2E-44F5-4627-B187-95C86CC24F79}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8BE0BE68-3CDE-4813-9942-BE36DEEA0EEE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8C733545-49C1-41F7-B743-A3A9E626A160}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8CDC03FB-895D-4E7A-A646-13F557ABBAA2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8D57879C-4526-4F41-B2AF-71CF737BA77C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8DAAD29F-34BE-41D5-BB0C-0CB005AC730E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8DBFC90C-B9B6-4B19-92BB-418181A1B892}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8DEE7E8F-BF69-4653-AF77-1CD7A638C449}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8DF5025B-1365-4B34-8478-8B74A604BB2E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8E114819-894F-4DFF-B53B-752F536B70C6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8EBA87AB-48D3-4210-844F-AD93612AF5E7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8F4AE5E0-68A0-418B-B1A0-5462C695F94E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8FACF45F-D46A-4A42-AB96-2C58A7950AB4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8FC90987-9C5C-488B-B6EA-02BD8AF0A6C7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{8FF94B6D-A45A-45F3-A679-ABEB6B893558}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{901CA01F-E745-4417-8A43-93030FA5A57A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9045381E-7945-4C0A-ABBD-0CBC63E14F08}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9048B1D5-B3C1-4AF0-B978-EE828ACE99FC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9073EB5D-DE4A-45B2-AA77-6939D08FA3C5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{908EB9DD-929B-4079-9ECA-0312E5786748}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{90C228AD-BFE3-41D2-9FAE-E644239BC7F5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{911DCB3A-2478-43B6-AA76-AAAE0F48F2FF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{91E5BF12-D83D-4583-9C00-E92B6C71D7C6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{926FDB79-4674-4502-A438-9947D3592DA2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{94FA343A-29ED-4629-A9DC-5B3A56E12E1F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9507148C-C94C-4FF7-8A59-AFC075922E86}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{95DDE539-B278-48DE-9934-27D062EBEF8E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{95E8DBA5-B532-4EC1-BB37-C22BA86F1683}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9621C28C-A68E-4A2A-B08F-D9790BC49552}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9639520E-0323-4B01-93F0-5D6AC0214BB4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9644607E-268E-4149-A134-FE46C07E175D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{96B6B974-E36E-49CE-B55B-333F073330A8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{96B8F8D7-7519-46A3-9EF7-55790123A112}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9701D2C2-2B07-4BDA-9863-18AA2EC4CF06}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9766B6E6-CBC6-4A2D-9728-61DBD96CD8EE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{979BE871-8E5D-44A3-ABD2-06378B94C96E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{983D7A0A-21E3-46A6-BFF0-C17A0F8C8120}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{989DD0D9-BE62-4042-A5AA-80E7B60484CC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{98B8942D-21AA-4B7C-B5D7-D8D851022EF3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{98FE7AD4-5723-4D07-923D-CD88E890A050}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{992D8D75-2BEC-4192-9FC0-2E63ACE51BCE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{99FD1A01-2287-43A8-8352-9A7A01A13736}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9AF1F6BD-E670-4E7D-9D1E-37F82B33EACC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9AF3604A-EF2F-4943-BF91-042560E6C158}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9B443256-6D49-4DB0-AE09-5B7550A2A388}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9C26B0A5-1F2A-45B4-8961-5FE46B94E943}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9C301493-0A01-42A7-A39C-5DEDE8ED9FAC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9C41F344-EEF7-40C4-B4A9-0DFCEB5E34E7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9C786A8E-B91D-468A-A9C8-2B2B98D1D740}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9D4F5B3D-05FB-460C-B171-37CFB161A796}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9E2F1A57-CC3E-4A33-A426-EAE0E4DAB835}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9E4F6265-87C4-4702-AF9B-4C961C5346B2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9F31855A-B2C3-44BD-AF6A-494553CE90C7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9F7CB784-1FA7-42D9-844F-3792232C492F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9F7DC363-1C57-4929-AAFF-370D85D950DD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9F7E32E8-B579-45C7-A0D9-D7E016B5C08A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9F7F382A-95EF-4DFA-B0FB-B45469590909}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9FBA76DE-46BE-4E11-8AF2-8FFF0213A80C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9FF35702-8885-41B2-9D50-B301EB5C41A7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{9FFA3103-59D1-4338-B191-DE7F54018FA6}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A09E5557-51A3-4CC3-99D2-10E8E8625DBD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A1411A3A-199E-443D-85A9-D63131743901}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A1C7D26C-8BEB-4B6A-8C98-DBFC16771327}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A1CD192B-3EEE-41E3-A8F2-C405D186E03A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A1CDE01A-BFC3-4FA4-8EB8-F009BF7C38D7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A22CFA86-7A42-4B17-8F17-B79907919CAF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A3D90916-3324-4237-AB7B-2B22CF487662}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A42FE8D9-C162-4D13-B901-4930C31263B1}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A4A5D37D-0179-4C68-8314-C4C8674DD13F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A53CF8DE-21D0-4CA8-B592-34D3BA81FD11}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A60B2FAB-0F61-41E8-874C-E7B176903F20}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A60C5155-2A4E-4D1A-87FB-680E5F6D7F48}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A6335311-7489-4332-8F3B-21B619FA1E56}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A6449CC7-25C9-4067-828A-60BE50823901}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A64679ED-86C3-4347-90E5-217D670A8AF0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A6CF8BD6-524E-47EB-8E11-91316356A979}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A6D15FDA-35D5-4B09-A2B6-BFAAAA2038A4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A6D870E5-6086-49DE-9D9C-88FC944E1265}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A7010556-5569-460A-BFB2-610775C3C3FF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A72BAE85-FF11-4474-B2C7-5206B4E6D8D9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A7AB7A78-A19F-4335-9815-AEF456A9384D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A7C503C2-519A-43F2-B3E1-5500494E1F95}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A80687D1-6AA6-412E-B439-C202EA26D488}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A8BA05DF-F59C-47DE-AFB4-6A04E7EAE25B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A8E65D96-142E-4139-96A1-20F6DCA94E71}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{A9872BD6-522B-4CF8-B857-DC34DAD7B149}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AA098C8D-AA5E-4D1A-A244-8189BC8A8B1D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AA940664-D174-4B31-BFA7-8E24B7198192}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AADBC316-8F57-4AC4-85D6-835C6AF92C59}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AB41F3F0-59DC-44BA-AC55-BA49E9B45965}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AB69F117-B0D6-4699-A6A3-E6ADB4E0B204}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{ABB3DA9E-3D59-437D-8C8C-4DCBB20DB933}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{ABDA7F31-7E68-481C-89E8-11802A13711F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AC05C863-CCB5-4E66-B037-597D15E4DE7B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AC473960-AD31-4961-BD56-97B4CC2B1FF0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AC846FE5-ABDF-4781-A52E-C48CE7EA37C4}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AD60ED20-023E-4866-8DE7-3BA82CFBEECC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AD8AB02D-2AF9-4007-9F51-DC4000F537BE}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{ADF35EAF-19AC-472C-9962-F6E4A36F4E62}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AE96F679-CE17-467D-B1BE-56DB9C7B7151}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AF191C97-ACDB-4870-9EE0-36014C89AA8E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AF8CF07C-4A0B-45E5-BF54-AA0EF052D66D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AFACC996-1263-489B-887F-F24BFA6ECEA7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{AFB90BB4-DE6D-41AB-8749-3855D918A04B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B065B135-067F-4BDE-AA01-8E31D5D73050}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B0B73D55-B2FA-410B-991A-CA7AB78E80FD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B0DC8B04-D035-4C9A-A837-F743080B590F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B0EFC0CD-8A32-47B3-9749-06862E5EB8AC}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B2A2DCA2-D505-4BA2-9E30-EAA7D674BB7A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B2C1DA08-A06E-4723-8453-9D4F296CAEA0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B2FA4FD2-993A-4014-BB44-8D90422EB6F9}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B3478A77-B272-401F-A5E4-924678A3B572}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B36A139B-3EC7-430F-A82F-F5D1751899B3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B37E6160-6289-41A0-863C-53C6ED542367}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B42E6002-3115-4AE9-AF1E-3D7A0A5C3151}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B4AAE2D8-F4BD-405F-92BC-CC4B1716C572}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B4D26045-22FD-4925-B033-1818F5D1891B}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B4D613B7-DCA3-43B8-9C2A-4477363F8951}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B4DA2B4F-8C09-4ABC-BDA1-4EAD33E8CAA5}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B4E4A75F-C993-451B-A1FA-42EC8DDC4A0E}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B5089508-5E52-4261-A2A2-C1CD6CEB63D3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B5134B3D-F396-4A54-888A-8F668DD40CCF}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B5343525-EE5C-4161-8611-4D7A5715DFCB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B571240A-93EF-4334-BF1F-DEDE22221294}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B61F3884-7830-4C6F-B98C-098F1864A9FD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B666B258-DB89-4ADE-B143-AB79EAA7773D}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B6DCBD01-1C2D-4373-81D8-703E4D8ABAAD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B70C94F1-1D30-4B56-9F5A-E9883E3898E3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B79B2BA1-3228-4B59-8CF5-DABEEF8C7296}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B7BAE836-B2FE-4C62-91BE-F78E5BBB0ED2}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B7FD09A8-497D-496F-A27F-0C4FC324E55C}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B87EB689-2F9A-40B5-98F6-2E61440245F8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{B94DE28A-F225-46C9-8F68-895D21CAF684}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BA561D48-26DA-4EC9-B256-F5C5F0E00DB7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BA6FB09C-748F-4B63-8895-10BDA705A5DD}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BBD1BD36-2B5E-4EA1-8D01-55C8D45EAEB8}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BC54EC1E-2E59-47ED-AD7C-BF3E50B5C6E3}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BC59C35C-12EE-4CFB-86F4-838A7A4E985F}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BC642A50-1988-4486-993B-90A95819FE79}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BC7DBF79-9E5C-440D-98DD-004B37BE22E7}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BC94C52F-5AA2-4401-A4D0-3B45E56E8126}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BD09B276-A6AE-4720-987B-6D700ED94B10}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BD6AE06F-27AD-4294-B21D-D5ACE82FE92A}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BD8CC0E2-7601-49C7-968F-D839C39869A0}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appdata\local\{BDA555C7-651F-4E8B-A26D-D0E6471127FB}
Successfully deleted: [Empty Folder] C:\Users\hortiz\appda

 

[kuttus]

Hi,
It seems log files are not fully added. Please save the logs in a file ad attach the log files.......

 

[hector]

[attachment=4389][attachment=4390][attachment=4388]attached 3 logs

 

[kuttus]

Download Malwarebytes Anti-Rootkit from here to your Desktop

• Unzip the contents to a folder on your Desktop.
• Open the folder where the contents were unzipped and run mbar.exe
• Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
• Make sure there is a check next to Create Restore Point and click the Cleanup button to remove any threats. Reboot if prompted to do so.
• After the reboot, perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If there are threats, click Cleanup once more and reboot.
• When done, please post the two logs in the MBAR folder(mbar-log.txt and system-log.txt)

---

Please download Malwarebytes' Anti-Malware to your desktop.

• Double-click mbam-setup.exe and follow the prompts to install the program.
• At the end, be sure a checkmark is placed next to
  • Update Malwarebytes' Anti-Malware
  • and Launch Malwarebytes' Anti-Malware
• then click Finish.
• If an update is found, it will download and install the latest version.
• When it prompts you to try their 30-day trail, click decline
• Once the program has loaded, select Perform quick scan, then click Scan.
• When the scan is complete, click OK, then Show Results to view the results.
• Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
• When completed, a log will open in Notepad. please copy and paste the log into your next reply
  • If you accidently close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

---

 

[hector]

here are the 3 reports all clean


[attachment=4392][attachment=4393][attachment=4394]

 

[kuttus]

How's everything working now?