NewBlue TotalFX 30 Build 130725 2013 Keygen __EXCLUSIVE__ LINK XForce By ChingLiu
Download --->>> https://ssurll.com/2t8dWS
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-03-2014 03Ran by J (administrator) on J-PC on 03-03-2014 00:04:01Running from D:\DownloadsWindows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)Internet Explorer Version 11Boot Mode: NormalThe only official download link for FRST:Download link for 32-Bit version: -recovery-scan-tool/dl/81/Download link for 64-Bit Version: -recovery-scan-tool/dl/82/Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: -frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(AMD) C:\Windows\system32\atiesrxx.exe(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe(AMD) C:\Windows\system32\atieclxx.exe(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe(Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe() C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe(MKS Software Inc.) C:\Windows\system32\nutsrv4.exe(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe(PTC Inc.) C:\Program Files\PTC\PTC Portmapper\i486_nt\obj\portmap.exe(arvato digital services llc) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\dispatcher.exe(SolidWorks) C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe() C:\Users\J\Local Settings\Apps\F.lux\flux.exe(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe(Dropbox, Inc.) C:\Users\J\AppData\Roaming\Dropbox\bin\Dropbox.exe(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe(Logitech Inc.) D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe() D:\Downloads\Adobe Creative Cloud Collection (2014)\ACCC_FULL\[ALL CRACKS]\ADOBE_CC_KEYGEN_WIN_MACOSX-XFORCE\Crack-Windows\xf-adobecc.exe(Flexera Software, Inc.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe(Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe(SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe(SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe(SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe(Postbox, Inc.) D:\Program Files (x86)\Postbox\postbox.exe(Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe(Microsoft Corporation) C:\Windows\system32\taskmgr.exe(BitTorrent Inc.) C:\Users\J\AppData\Roaming\uTorrent\uTorrent.exe(Microsoft Corporation) C:\Windows\system32\msiexec.exe() D:\Downloads\NewBlue TotalFX 3.0 build 130725 2013 (keygen XForce) [ChingLiu]\Keygen - XForce\Keygen.exe(Farbar) D:\Downloads\FRST64(1).exe==================== Registry (Whitelisted) ==================HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6827664 2013-03-21] (Realtek Semiconductor)HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642816 2013-05-30] (Advanced Micro Devices, Inc.)HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)HKLM-x32\...\Run: [CanonQuickMenu] - C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282632 2013-07-23] (CANON INC.)HKLM-x32\...\Run: [LWS] - D:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)HKLM-x32\...\Run: [AdobeCEPServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)HKU\.DEFAULT\...\Run: [Autodesk Sync] - C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)HKU\S-1-5-21-3208368526-2848764839-2880309411-1000\...\Run: [F.lux] - C:\Users\J\Local Settings\Apps\F.lux\flux.exe [966656 2009-08-29] ()HKU\S-1-5-21-3208368526-2848764839-2880309411-1000\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-05-30] (AMD)HKU\S-1-5-21-3208368526-2848764839-2880309411-1000\...\Run: [AdobeBridge] - [X]HKU\S-1-5-21-3208368526-2848764839-2880309411-1000\...\Policies\Explorer: []Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnkShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)Startup: C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnkShortcutTarget: Dropbox.lnk -> C:\Users\J\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)==================== Internet (Whitelisted) ====================HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = =ie&ar=iesearchHKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xCB91590CA534CF01HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GBStartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exeSearchScopes: HKLM - DefaultScope value is missing.BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No FileBHO-x32: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - No FileBHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)BHO-x32: WebCGMHlprObj Class - {56B38F40-4E70-11d4-A076-0080AD86BA2F} - C:\Windows\SysWOW64\cgmopenbho.dll (CGM Open Consortium, Inc.)BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)Winsock: Catalog9 12 C:\Windows\SysWOW64\nutafun4.dll [164232] (MKS Software Inc.)Winsock: Catalog9 13 C:\Windows\SysWOW64\nutafun4.dll [164232] (MKS Software Inc.)Winsock: Catalog9-x64 12 %SystemRoot%\system32\nutafun4.dll [205624] (MKS Software Inc.)Winsock: Catalog9-x64 13 %SystemRoot%\system32\nutafun4.dll [205624] (MKS Software Inc.)Tcpip\Parameters: [DhcpNameServer] 192.168.1.1FireFox:========FF ProfilePath: C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.defaultFF user.js: detected! => C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\user.jsFF NewTab: user_pref("browser.newtab.url", "");FF Homepage: hxxp://www.google.com/calendarFF NetworkProxy: "type", 0FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll No FileFF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()FF Plugin-x32: @Apple.com/iTunes,version=1.0 - D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @ptc.com/ProductViewLite - C:\Program Files (x86)\Common Files\PTC\np6_pvapplite9.dll (PTC)FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll No FileFF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll No FileFF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\J\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\J\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\J\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\J\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\J\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\J\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: adobe.com/AdobeExManCCDetect32 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect32.dll (Adobe Systems)FF Plugin HKCU: adobe.com/AdobeExManCCDetect64 - C:\Program Files (x86)\Adobe\Adobe Extension Manager CC\npAdobeExManCCDetect64.dll (Adobe Systems)FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)FF Plugin ProgramFiles/Appdata: C:\Users\J\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)FF Plugin ProgramFiles/Appdata: C:\Users\J\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()FF Plugin ProgramFiles/Appdata: C:\Users\J\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)FF SearchPlugin: C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\searchplugins\askcom-search.xmlFF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\donottrackplus@abine.com [2014-01-05]FF Extension: LastPass - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\support@lastpass.com [2014-02-27]FF Extension: FireShot - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2014-01-28]FF Extension: SeoQuake - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74} [2013-10-10]FF Extension: Firebug - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\firebug@software.joehewitt.com.xpi [2013-03-20]FF Extension: StartAid Online Bookmarks - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\startaid@startaid.com.xpi [2013-06-02]FF Extension: Test Pilot - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\testpilot@labs.mozilla.com.xpi [2013-06-12]FF Extension: Adblock Plus - C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\bti1tdln.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-20]FF HKCU\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\J\AppData\Roaming\IDM\idmmzcc3FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\J\AppData\Roaming\IDM\idmmzcc3FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exeChrome:=======CHR DefaultSearchKeyword: google.co.ukCHR Extension: (Google Docs) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-27]CHR Extension: (Google Drive) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-27]CHR Extension: (YouTube) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-27]CHR Extension: (Google Search) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-27]CHR Extension: (Window Resizer) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkelicaakdanhinjdeammmilcgefonfh [2014-03-01]CHR Extension: (Google Wallet) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-27]CHR Extension: (Gmail) - C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-27]CHR HKLM-x32\...\Chrome\Extension: [bebnnlollpcjnfpkafhoclljaojgnfok] - C:\Program Files (x86)\FTDownloader.com\FTDownloader10.crx [2013-10-27]CHR HKLM-x32\...\Chrome\Extension: [phegaokedjdajgnfphbnpkcfdgjbidko] - C:\ProgramData\adawaretb\toolbar\chrome\toolbar.crx [2013-10-27]==================== Services (Whitelisted) =================S2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2013-04-27] ()S3 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.)S3 BoostService; C:\Program Files\Bunkspeed\New folder\Drive\Bunkspeed Boost.exe [444928 2013-12-01] (Bunkspeed)R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123392 2013-12-28] (Dassault Systèmes)R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [920872 2013-12-18] (AnchorFree Inc.)S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [78512 2013-12-17] ()R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [555304 2013-12-18] ()R2 mi-raysat_3dsmax2014_64; C:\Program Files\Autodesk\3ds Max Design 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] ()R2 NuTCRACKERService; C:\Windows\system32\nutsrv4.exe [574776 2012-10-12] (MKS Software Inc.)R2 PortmapperService; C:\Program Files\PTC/PTC Portmapper/i486_nt/obj/portmap.exe [680960 2013-09-01] (PTC Inc.)R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)S3 QueueServer; C:\Program Files\Bunkspeed\New folder\Drive\Bunkspeed.Queue.Server.exe [17920 2013-12-01] (Bunkspeed)R2 RemoteSolverDispatcher; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe [235656 2013-11-14] (Mentor Graphics Corporation)R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [374304 2011-05-27] (SafeNet, Inc.)R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1250848 2011-05-27] (SafeNet, Inc)R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [292384 2011-05-27] (SafeNet, Inc.)S3 wampmysqld; c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe [9693696 2012-04-19] ()R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [621336 2013-12-04] (Wacom Technology, Corp.)==================== Drivers (Whitelisted) ====================R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2013-04-27] ()R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-20] (DT Soft Ltd)S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14920 2013-03-07] ()S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-06-02] (GFI Software)R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [44744 2013-11-13] (AnchorFree Inc.)R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)R3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [63528 2011-05-27] (SafeNet, Inc.)R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)R3 vusbbus; C:\Windows\System32\DRIVERS\vusbbus.sys [303104 2012-05-16] ()S3 ALSysIO; \??\C:\Users\J\AppData\Local\Temp\ALSysIO64.sys [X]S3 catchme; \??\C:\ComboFix\catchme.sys [X]S3 dgderdrv; System32\drivers\dgderdrv.sys [X]S3 VGPU; System32\drivers\rdvgkmd.sys [X]S3 WinRing0_1_2_0; \??\D:\Downloads\RealTemp_3.00-[Guru3D.com]\WinRing0x64.sys [X]==================== NetSvcs (Whitelisted) ======================================= One Month Created Files and Folders ========2014-03-02 23:17 - 2014-03-02 23:17 - 38103832 _____ (Amazon.com) C:\Users\J\Downloads\KindleForPC-installer.exe2014-03-02 19:53 - 2014-03-02 19:53 - 00280630 _____ () C:\Users\J\Desktop\Poke the Box - Seth Godin.rar2014-03-02 19:53 - 2013-05-23 09:07 - 00000000 ____D () C:\Users\J\Desktop\Poke the Box - Seth Godin2014-03-02 11:44 - 2014-03-03 00:01 - 00000000 ____D () C:\AdwCleaner2014-03-01 22:26 - 2014-03-01 22:26 - 00043201 _____ () C:\ComboFix.txt2014-03-01 22:04 - 2014-03-01 22:26 - 00000000 ____D () C:\ComboFix2014-03-01 21:25 - 2014-03-01 21:25 - 00000000 ____D () C:\Users\J\Desktop\Crowd Fund Code2014-03-01 20:58 - 2014-03-03 00:04 - 00000000 ____D () C:\FRST2014-03-01 20:40 - 2014-03-01 20:36 - 00409600 _____ (Farbar) C:\Users\J\Desktop\FSS.exe2014-03-01 15:10 - 2014-03-01 15:10 - 00000000 ____D () C:\Users\J\Desktop\HardySidhuNew2014-03-01 13:10 - 2014-03-01 13:10 - 00000000 ____D () C:\ProgramData\goodasnew2014-03-01 13:10 - 2014-03-01 13:10 - 00000000 _____ () C:\Users\J\updater_output.txt2014-02-28 18:34 - 2014-02-28 18:34 - 00000000 ____D () C:\Users\J\AppData\Roaming\teknikforce2014-02-28 15:48 - 2014-02-28 15:48 - 00000000 ____D () C:\Users\J\Desktop\[Rp] Manni Sandhu & Manjit Pappu - Friday - 320 VBR [By Dhillon] [iTunes Rip]2014-02-27 23:43 - 2014-03-01 14:19 - 00000000 ____D () C:\Users\J\Desktop\Jatinder2014-02-26 23:18 - 2014-02-26 23:18 - 00000000 ____D () C:\Users\J\Desktop\optimizePressTheme2014-02-26 23:15 - 2014-02-16 20:08 - 38437738 _____ () C:\Users\J\Desktop\optimizePress_v2.1.7.11.zip2014-02-25 15:21 - 2014-03-02 23:38 - 00000000 ____D () C:\Program Files (x86)\Adobe2014-02-25 15:11 - 2014-02-25 15:11 - 00003486 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-J-PC-J2014-02-25 15:10 - 2014-03-02 23:39 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe2014-02-25 15:08 - 2014-03-02 23:31 - 00000000 ____D () C:\ProgramData\Adobe2014-02-25 12:55 - 2014-03-02 23:53 - 00000000 ____D () C:\Users\J\AppData\Local\Adobe2014-02-25 12:55 - 2014-03-02 23:40 - 00000000 ____D () C:\Users\J\AppData\Roaming\Adobe2014-02-25 12:55 - 2014-03-02 23:29 - 00000560 _____ () C:\Windows\setupact.log2014-02-25 12:55 - 2014-03-01 22:20 - 00001284 _____ () C:\Windows\PFRO.log2014-02-25 12:55 - 2014-02-25 12:55 - 00000000 _____ () C:\Windows\setuperr.log2014-02-25 12:23 - 2014-02-25 12:23 - 02152168 _____ () C:\Users\J\Downloads\CodecPerformerSetup.exe2014-02-25 12:20 - 2014-02-25 12:20 - 00000000 ____D () C:\Users\J\Desktop\New folder (3)2014-02-25 12:18 - 2014-02-25 12:18 - 10186323 _____ () C:\Users\J\Downloads\Revo.Uninstaller.Pro.3.0.7.rar2014-02-25 11:34 - 2009-12-30 11:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys2014-02-24 23:34 - 2014-01-31 21:39 - 09307863 _____ () C:\Users\J\Desktop\Jatinder.zip2014-02-24 22:47 - 2014-02-24 22:47 - 00000000 ____D () C:\Users\J\Desktop\PremierePro_CC_7_2_upd2014-02-24 22:32 - 2014-02-24 22:21 - 311668797 _____ () C:\Users\J\Desktop\PremierePro_CC_7_2_upd.zip2014-02-24 22:31 - 2013-10-13 22:54 - 34442960 _____ (PainteR ) C:\Users\J\Desktop\umt-7.0-setup.exe2014-02-24 21:44 - 2014-02-24 21:45 - 00000000 ____D () C:\Users\J\Desktop\Adobe Premiere Pro CS62014-02-23 23:16 - 2014-02-22 18:19 - 13424092 _____ () C:\Users\J\Desktop\Jatinder(1).zip2014-02-23 21:01 - 2013-12-13 19:48 - 04890624 _____ () C:\Windows\SysWOW64\LS3Renderer_x64.dll2014-02-23 21:01 - 2013-12-13 19:48 - 04165632 _____ () C:\Windows\SysWOW64\LS3Renderer.dll2014-02-23 21:01 - 2013-12-13 15:41 - 04769280 _____ () C:\Windows\SysWOW64\ColoristaRenderer_x64.dll2014-02-23 21:01 - 2013-12-13 15:41 - 04078080 _____ () C:\Windows\SysWOW64\ColoristaRenderer.dll2014-02-23 21:01 - 2013-11-19 17:10 - 04228096 _____ () C:\Windows\SysWOW64\CosmoRenderer_x64.dll2014-02-23 21:01 - 2013-11-19 17:10 - 03658752 _____ () C:\Windows\SysWOW64\CosmoRenderer.dll2014-02-23 19:45 - 2014-03-01 22:20 - 00000000 ____D () C:\Users\J\AppData\Roaming\newnext.me2014-02-23 19:45 - 2014-02-23 19:46 - 00000000 ____D () C:\Users\J\AppData\Local\SwvUpdater2014-02-23 19:45 - 2014-02-23 19:45 - 00000000 ____D () C:\Users\J\AppData\Local\genienext2014-02-23 19:45 - 2014-02-23 19:45 - 00000000 _____ () C:\Users\J\daemonprocess.txt2014-02-23 19:33 - 2014-02-25 15:37 - 00000000 ____D () C:\Users\J\Desktop\New folder (2)2014-02-22 17:28 - 2014-02-22 17:28 - 00000322 _____ () C:\Users\J\Desktop\loader.log2014-02-22 17:27 - 2014-02-22 17:27 - 01487872 _____ (crackedseotools.com) C:\Users\J\Desktop\IMSLoader.exe2014-02-22 16:45 - 2014-02-22 16:45 - 00001991 _____ () C:\Users\J\Desktop\SEnukeXCr.lnk2014-02-22 16:43 - 2014-03-01 22:32 - 00000000 ____D () C:\Users\J\AppData\Local\Apps\2.02014-02-22 16:43 - 2014-02-23 01:30 - 00000000 ____D () C:\Users\J\AppData\Local\SENukeX2014-02-22 16:43 - 2014-02-22 16:43 - 00000000 ____D () C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SENukeX2014-02-22 16:43 - 2014-02-22 16:43 - 00000000 ____D () C:\Users\J\AppData\Local\Deployment2014-02-22 14:01 - 2014-02-22 16:47 - 00000287 _____ () C:\Users\J\Desktop\top 20 insuitrial design poortfolio emails.txt2014-02-21 14:18 - 2014-02-21 14:24 - 00000000 ____D () C:\Users\J\Desktop\Web2014-02-21 14:18 - 2014-02-20 20:28 - 03620919 _____ () C:\Users\J\Desktop\Web.zip2014-02-20 21:41 - 2014-02-20 21:41 - 00058085 _____ () C:\Users\J\Downloads\estilo.rar2014-02-20 20:24 - 2014-02-20 20:24 - 00000112 _____ () C:\Users\J\AppData\Roaming\JP2K CS6 Prefs2014-02-19 17:40 - 2014-02-19 17:40 - 32499558 _____ () C:\Users\J\Desktop\NEWBLUE_STABILIZER_V1.4-XFORCE.rar2014-02-19 15:27 - 2014-02-19 15:27 - 00000000 ____D () C:\Program Files\CyberLink2014-02-19 14:31 - 2014-02-19 14:31 - 00005250 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log2014-02-19 14:30 - 2014-02-19 14:30 - 00921000 _____ (Oracle Corporation) C:\Users\J\Downloads\chromeinstall-7u51.exe2014-02-19 12:40 - 2014-02-19 17:43 - 00000000 ____D () C:\Users\J\Desktop\Adobe.CC.Keymaker.Win.MacOSX.X-FORCE2014-02-19 12:21 - 2014-02-19 12:23 - 00000000 ____D () C:\ProgramData\eSellerate2014-02-19 12:20 - 2014-02-19 17:43 - 00000000 ____D () C:\Program Files\NewBlue2014-02-19 12:20 - 2014-02-19 17:43 - 00000000 ____D () C:\Program Files (x86)\NewBlue2014-02-19 12:20 - 2014-02-19 12:20 - 00000000 ____D () C:\Program Files\Common Files\OFX2014-02-18 22:29 - 2014-02-18 22:29 - 73847347 _____ () C:\Users\J\Desktop\MVI_0335.MOV.mp42014-02-18 16:31 - 2014-02-18 16:31 - 00016619 _____ () C:\Users\J\Desktop\hijackthis.log2014-02-18 16:24 - 2013-12-21 09:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2014-02-18 16:24 - 2013-12-21 08:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2014-02-18 16:23 - 2014-02-06 12:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-02-18 16:23 - 2014-02-06 11:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-02-18 16:23 - 2014-02-06 11:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-02-18 16:23 - 2014-02-06 11:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-02-18 16:23 - 2014-02-06 11:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-02-18 16:23 - 2014-02-06 11:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-02-18 16:23 - 2014-02-06 10:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-02-18 16:23 - 2014-02-06 10:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-02-18 16:23 - 2014-02-06 10:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-02-18 16:23 - 2014-02-06 10:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-02-18 16:23 - 2014-02-06 10:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-02-18 16:23 - 2014-02-06 10:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-02-18 16:23 - 2014-02-06 10:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-02-18 16:23 - 2014-02-06 10:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-02-18 16:23 - 2014-02-06 10:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-02-18 16:23 - 2014-02-06 10:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-02-18 16:23 - 2014-02-06 10:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-02-18 16:23 - 2014-02-06 10:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-02-18 16:23 - 2014-02-06 10:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-02-18 16:23 - 2014-02-06 09:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-02-18 16:23 - 2014-02-06 09:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-02-18 16:23 - 2014-02-06 09:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-02-18 16:23 - 2014-02-06 09:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-02-18 16:23 - 2014-02-06 09:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-02-18 16:23 - 2014-02-06 09:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-02-18 16:23 - 2014-02-06 09:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-02-18 16:23 - 2014-02-06 09:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-02-18 16:23 - 2014-02-06 09:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-02-18 16:23 - 2014-02-06 09:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-02-18 16:23 - 2014-02-06 09:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-02-18 16:23 - 2014-02-06 09:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-02-18 16:23 - 2014-02-06 09:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-02-18 16:23 - 2014-02-06 09:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-02-18 16:23 - 2014-02-06 09:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-02-18 16:23 - 2014-02-06 08:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-02-18 16:23 - 2014-02-06 08:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-02-18 16:23 - 2014-02-06 08:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-02-18 16:23 - 2014-02-06 08:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-02-18 16:23 - 2014-02-06 08:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-02-18 16:23 - 2013-12-31 23:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls2014-02-18 16:23 - 2013-12-31 23:04 - 00420008 _____ () C:\Windows\system32\locale.nls2014-02-18 16:23 - 2013-12-24 23:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll2014-02-18 16:23 - 2013-12-24 22:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll2014-02-18 16:23 - 2013-12-06 02:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll2014-02-18 16:23 - 2013-12-06 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll2014-02-18 16:23 - 2013-12-06 02:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll2014-02-18 16:23 - 2013-12-06 02:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll2014-02-18 16:23 - 2013-12-04 02:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll2014-02-18 16:23 - 2013-12-04 02:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll2014-02-18 16:23 - 2013-12-04 02:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll2014-02-18 16:23 - 2013-12-04 02:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll2014-02-18 16:23 - 2013-12-04 02:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll2014-02-18 16:23 - 2013-12-04 02:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe2014-02-18 16:23 - 2013-12-04 02:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe2014-02-18 16:23 - 2013-12-04 02:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe2014-02-18 16:23 - 2013-12-04 02:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe2014-02-18 16:23 - 2013-12-04 02:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll2014-02-18 16:23 - 2013-12-04 02:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll2014-02-18 16:23 - 2013-12-04 02:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll2014-02-18 16:23 - 2013-12-04 02:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll2014-02-18 16:23 - 2013-12-04 02:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll2014-02-18 16:23 - 2013-12-04 01:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe2014-02-18 16:23 - 2013-12-04 01:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe2014-02-18 16:23 - 2013-12-04 01:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe2014-02-18 16:23 - 2013-12-04 01:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe2014-02-18 16:23 - 2013-11-27 01:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys2014-02-18 16:23 - 2013-11-27 01:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys2014-02-18 16:23 - 2013-11-27 01:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys2014-02-18 16:23 - 2013-11-27 01:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys2014-02-18 16:23 - 2013-11-27 01:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys2014-02-18 16:23 - 2013-11-27 01:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys2014-02-18 16:23 - 2013-11-27 01:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys2014-02-18 16:23 - 2013-11-26 11:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2014-02-18 16:23 - 2013-11-26 10:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-02-18 16:23 - 2013-11-26 08:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll2014-02-18 16:23 - 2013-11-22 22:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll2014-02-18 14:27 - 2014-02-18 14:27 - 00002764 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC2014-02-17 16:03 - 2014-02-17 16:08 - 00028767 _____ () C:\Users\J\Desktop\plugin.php2014-02-17 15:56 - 2014-02-17 15:56 - 00101068 _____ () C:\Users\J\Desktop\style.css2014-02-15 22:23 - 2014-03-02 19:53 - 00000000 ____D () C:\Users\J\Documents\My Kindle Content2014-02-15 22:23 - 2014-02-15 22:23 - 00002010 _____ () C:\Users\J\Desktop\Kindle.lnk2014-02-15 22:23 - 2014-02-15 22:23 - 00000000 ____D () C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon2014-02-15 22:23 - 2014-02-15 22:23 - 00000000 ____D () C:\Users\J\AppData\Local\Amazon2014-02-15 22:23 - 2014-02-15 22:23 - 00000000 ____D () C:\Program Files (x86)\Amazon2014-02-14 23:18 - 2014-02-14 23:18 - 00000000 ____D () C:\Program Files (x86)\GUME67.tmp2014-02-14 17:49 - 2014-02-14 17:49 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer2014-02-13 16:59 - 2014-02-13 17:38 - 00055236 _____ () C:\Users\J\Documents\Miproto.vsdx2014-02-13 01:27 - 2014-02-13 01:27 - 00000000 ____D () C:\Program Files (x86)\GUM125F.tmp2014-02-12 18:01 - 2014-02-12 18:01 - 00000714 _____ () C:\Users\J\Desktop\KeyShot 4 Resources.lnk2014-02-12 17:57 - 2014-03-01 17:29 - 00000000 ____D () C:\ProgramData\Reprise2014-02-12 17:26 - 2014-02-12 17:26 - 00000000 ____D () C:\ProgramData\Package Cache2014-02-10 19:41 - 2014-02-10 19:41 - 00001636 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk2014-02-10 19:28 - 2014-02-10 19:28 - 00000498 _____ () C:\Users\J\Desktop\Program Files (Only) (D) - Shortcut (2).lnk2014-02-09 20:24 - 2014-02-09 20:24 - 00001598 _____ () C:\Users\Public\Desktop\iTunes.lnk2014-02-09 20:24 - 2014-02-09 20:24 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF692014-02-09 20:24 - 2014-02-09 20:24 - 00000000 ____D () C:\Program Files\iTunes2014-02-09 20:24 - 2014-02-09 20:24 - 00000000 ____D () C:\Program Files\iPod2014-02-08 02:37 - 2014-02-08 02:37 - 18130837 _____ () C:\Users\J\Desktop\optimizePressTheme.zip2014-02-04 11:42 - 2014-02-04 11:42 - 00000000 ____D () C:\Windows\AutoKMS2014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\Users\J\AppData\Roaming\Canon2014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\ProgramData\Quick Menu_12014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\ProgramData\CanonIJWSpt2014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\Program Files (x86)\Canon2014-02-03 15:11 - 2014-02-03 15:11 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information2014-02-03 15:11 - 2010-12-17 14:49 - 00515072 _____ (CANON INC.) C:\Windows\system32\CNQ2414L.dll2014-02-03 15:11 - 2010-12-17 14:49 - 00438272 _____ (CANON INC.) C:\Windows\SysWOW64\CNQ2414L.dll2014-02-03 15:11 - 2010-03-19 10:04 - 00393256 _____ () C:\Windows\SysWOW64\CNQ2414N.DAT2014-02-03 15:11 - 2010-03-19 10:04 - 00393256 _____ () C:\Windows\system32\CNQ2414N.DAT2014-02-03 15:11 - 2010-03-18 17:13 - 01354240 _____ (CANON INC.) C:\Windows\system32\CNQ2414C.dll2014-02-03 15:11 - 2010-03-18 17:13 - 00112128 _____ (CANON INC.) C:\Windows\system32\CNQ2414I.dll2014-02-03 15:11 - 2010-03-18 17:11 - 00106496 _____ (CANON INC.) C:\Windows\SysWOW64\CNQ2414U.dll2014-02-03 15:11 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll2014-02-03 15:11 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll2014-02-02 13:52 - 2014-02-02 14:32 - 00000000 ____D () C:\Users\J\Desktop\Logo Design2014-02-01 19:58 - 2014-02-01 19:58 - 00000000 ____D () C:\Users\J\AppData\Roaming\Red Giant2014-02-01 18:59 - 2014-02-01 19:11 - 00000000 ____D () C:\Users\J\Desktop\Barber Vinny==================== One Month Modified Files and Folders =======2014-03-03 00:04 - 2014-03-01 20:58 - 00000000 ____D () C:\FRST2014-03-03 00:03 - 2013-03-20 01:32 - 00000000 ____D () C:\Users\J\AppData\Roaming\uTorrent2014-03-03 00:01 - 2014-03-02 11:44 - 00000000 ____D () C:\AdwCleaner2014-03-02 23:58 - 2013-04-02 22:53 - 00004176 _____ () C:\Windows\System32\Tasks\Red Giant Link2014-03-02 23:57 - 2013-06-22 13:41 - 00000000 ____D () C:\Users\J\AppData\Roaming\vlc2014-03-02 23:55 - 2013-03-25 21:10 - 00000000 ____D () C:\Users\J\AppData\Local\CrashDumps2014-03-02 23:53 - 2014-02-25 12:55 - 00000000 ____D () C:\Users\J\AppData\Local\Adobe2014-03-02 23:47 - 2013-03-27 22:18 - 00004926 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for J-PC-J J-PC2014-03-02 23:40 - 2014-02-25 12:55 - 00000000 ____D () C:\Users\J\AppData\Roaming\Adobe2014-03-02 23:40 - 2013-04-02 21:49 - 00000021 _____ () C:\Windows\SurCode.INI2014-03-02 23:40 - 2013-03-20 00:40 - 00572208 _____ () C:\Users\J\AppData\Local\GDIPFONTCACHEV1.DAT2014-03-02 23:39 - 2014-02-25 15:10 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe2014-03-02 23:39 - 2013-03-20 01:46 - 00000000 ____D () C:\Program Files\Adobe2014-03-02 23:39 - 2013-03-20 01:45 - 00000000 ____D () C:\Program Files\Common Files\Adobe2014-03-02 23:38 - 2014-02-25 15:21 - 00000000 ____D () C:\Program Files (x86)\Adobe2014-03-02 23:34 - 2009-07-14 05:13 - 00863108 _____ () C:\Windows\system32\PerfStringBackup.INI2014-03-02 23:32 - 2013-07-20 13:09 - 01239054 _____ () C:\Windows\WindowsUpdate.log2014-03-02 23:32 - 2013-06-26 20:06 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-03-02 23:31 - 2014-02-25 15:08 - 00000000 ____D () C:\ProgramData\Adobe2014-03-02 23:29 - 2014-02-25 12:55 - 00000560 _____ () C:\Windows\setupact.log2014-03-02 23:29 - 2013-06-28 22:50 - 00000000 ____D () C:\Users\J\AppData\Roaming\Dropbox2014-03-02 23:29 - 2013-06-26 20:06 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-03-02 23:29 - 2009-07-14 05:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-03-02 23:29 - 2009-07-14 04:45 - 06603552 _____ () C:\Windows\system32\FNTCACHE.DAT2014-03-02 23:23 - 2013-08-03 12:56 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3208368526-2848764839-2880309411-1000UA.job2014-03-02 23:23 - 2013-08-03 12:56 - 00000840 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3208368526-2848764839-2880309411-1000Core.job2014-03-02 23:17 - 2014-03-02 23:17 - 38103832 _____ (Amazon.com) C:\Users\J\Downloads\KindleForPC-installer.exe2014-03-02 21:14 - 2013-03-26 15:07 - 00000912 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3208368526-2848764839-2880309411-1000UA.job2014-03-02 19:53 - 2014-03-02 19:53 - 00280630 _____ () C:\Users\J\Desktop\Poke the Box - Seth Godin.rar2014-03-02 19:53 - 2014-02-15 22:23 - 00000000 ____D () C:\Users\J\Documents\My Kindle Content2014-03-02 18:00 - 2013-03-21 09:42 - 00000460 _____ () C:\Windows\Tasks\ParetoLogic Registration3.job2014-03-02 15:14 - 2013-03-26 15:07 - 00000890 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3208368526-2848764839-2880309411-1000Core.job2014-03-02 13:03 - 2013-04-27 12:14 - 00003894 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{41F38C7A-19E2-4EA6-9F52-2D7DF5767374}2014-03-02 10:13 - 2009-07-14 04:45 - 00028704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-03-02 10:13 - 2009-07-14 04:45 - 00028704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-03-01 22:33 - 2013-03-20 00:28 - 00000000 ___RD () C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup2014-03-01 22:32 - 2014-02-22 16:43 - 00000000 ____D () C:\Users\J\AppData\Local\Apps\2.02014-03-01 22:26 - 2014-03-01 22:26 - 00043201 _____ () C:\ComboFix.txt2014-03-01 22:26 - 2014-03-01 22:04 - 00000000 ____D () C:\ComboFix2014-03-01 22:26 - 2013-05-28 18:08 - 00000000 ____D () C:\Qoobox2014-03-01 22:20 - 2014-02-25 12:55 - 00001284 _____ () C:\Windows\PFRO.log2014-03-01 22:20 - 2014-02-23 19:45 - 00000000 ____D () C:\Users\J\AppData\Roaming\newnext.me2014-03-01 22:20 - 2013-05-28 18:08 - 00000000 ____D () C:\Windows\erdnt2014-03-01 22:20 - 2009-07-14 02:34 - 00000215 _____ () C:\Windows\system.ini2014-03-01 22:12 - 2013-03-20 00:27 - 00000000 ____D () C:\Users\J2014-03-01 21:25 - 2014-03-01 21:25 - 00000000 ____D () C:\Users\J\Desktop\Crowd Fund Code2014-03-01 20:36 - 2014-03-01 20:40 - 00409600 _____ (Farbar) C:\Users\J\Desktop\FSS.exe2014-03-01 17:29 - 2014-02-12 17:57 - 00000000 ____D () C:\ProgramData\Reprise2014-03-01 15:10 - 2014-03-01 15:10 - 00000000 ____D () C:\Users\J\Desktop\HardySidhuNew2014-03-01 14:19 - 2014-02-27 23:43 - 00000000 ____D () C:\Users\J\Desktop\Jatinder2014-03-01 13:10 - 2014-03-01 13:10 - 00000000 ____D () C:\ProgramData\goodasnew2014-03-01 13:10 - 2014-03-01 13:10 - 00000000 _____ () C:\Users\J\updater_output.txt2014-02-28 18:34 - 2014-02-28 18:34 - 00000000 ____D () C:\Users\J\AppData\Roaming\teknikforce2014-02-28 15:48 - 2014-02-28 15:48 - 00000000 ____D () C:\Users\J\Desktop\[Rp] Manni Sandhu & Manjit Pappu - Friday - 320 VBR [By Dhillon] [iTunes Rip]2014-02-28 12:14 - 2013-03-20 02:51 - 00000000 ____D () C:\Users\J\AppData\Local\TempSWBackupDirectory2014-02-27 23:24 - 2013-08-28 10:52 - 00000000 ____D () C:\Users\J\AppData\Roaming\Skype2014-02-27 13:37 - 2013-03-22 16:23 - 00000000 ____D () C:\Users\J\Documents\OneNote Notebooks2014-02-27 00:29 - 2013-10-29 21:34 - 00000000 ____D () C:\Users\J\AppData\Roaming\FileZilla2014-02-26 23:18 - 2014-02-26 23:18 - 00000000 ____D () C:\Users\J\Desktop\optimizePressTheme2014-02-26 22:24 - 2013-03-20 00:37 - 00000000 ____D () C:\Users\J\AppData\Roaming\Mozilla2014-02-25 15:37 - 2014-02-23 19:33 - 00000000 ____D () C:\Users\J\Desktop\New folder (2)2014-02-25 15:11 - 2014-02-25 15:11 - 00003486 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-J-PC-J2014-02-25 12:55 - 2014-02-25 12:55 - 00000000 _____ () C:\Windows\setuperr.log2014-02-25 12:23 - 2014-02-25 12:23 - 02152168 _____ () C:\Users\J\Downloads\CodecPerformerSetup.exe2014-02-25 12:20 - 2014-02-25 12:20 - 00000000 ____D () C:\Users\J\Desktop\New folder (3)2014-02-25 12:18 - 2014-02-25 12:18 - 10186323 _____ () C:\Users\J\Downloads\Revo.Uninstaller.Pro.3.0.7.rar2014-02-24 22:47 - 2014-02-24 22:47 - 00000000 ____D () C:\Users\J\Desktop\PremierePro_CC_7_2_upd2014-02-24 22:21 - 2014-02-24 22:32 - 311668797 _____ () C:\Users\J\Desktop\PremierePro_CC_7_2_upd.zip2014-02-24 21:45 - 2014-02-24 21:44 - 00000000 ____D () C:\Users\J\Desktop\Adobe Premiere Pro CS62014-02-23 21:01 - 2014-01-03 00:31 - 00000000 ____D () C:\ProgramData\Red Giant2014-02-23 21:01 - 2013-04-02 22:53 - 00000000 ____D () C:\Program Files (x86)\LooksBuilder2014-02-23 21:01 - 2013-03-20 02:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-02-23 21:00 - 2013-03-20 02:13 - 00000000 ____D () C:\Users\J\AppData\Local\Downloaded Installations2014-02-23 19:46 - 2014-02-23 19:45 - 00000000 ____D () C:\Users\J\AppData\Local\SwvUpdater2014-02-23 19:46 - 2013-03-29 12:14 - 00000000 ____D () C:\Users\J\AppData\Local\cache2014-02-23 19:45 - 2014-02-23 19:45 - 00000000 ____D () C:\Users\J\AppData\Local\genienext2014-02-23 19:45 - 2014-02-23 19:45 - 00000000 _____ () C:\Users\J\daemonprocess.txt2014-02-23 01:30 - 2014-02-22 16:43 - 00000000 ____D () C:\Users\J\AppData\Local\SENukeX2014-02-22 18:19 - 2014-02-23 23:16 - 13424092 _____ () C:\Users\J\Desktop\Jatinder(1).zip2014-02-22 17:28 - 2014-02-22 17:28 - 00000322 _____ () C:\Users\J\Desktop\loader.log2014-02-22 17:27 - 2014-02-22 17:27 - 01487872 _____ (crackedseotools.com) C:\Users\J\Desktop\IMSLoader.exe2014-02-22 16:47 - 2014-02-22 14:01 - 00000287 _____ () C:\Users\J\Desktop\top 20 insuitrial design poortfolio emails.txt2014-02-22 16:45 - 2014-02-22 16:45 - 00001991 _____ () C:\Users\J\Desktop\SEnukeXCr.lnk2014-02-22 16:43 - 2014-02-22 16:43 - 00000000 ____D () C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SENukeX2014-02-22 16:43 - 2014-02-22 16:43 - 00000000 ____D () C:\Users\J\AppData\Local\Deployment2014-02-21 14:24 - 2014-02-21 14:18 - 00000000 ____D () C:\Users\J\Desktop\Web2014-02-21 10:45 - 2013-03-20 00:51 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2014-02-21 10:45 - 2013-03-20 00:51 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl2014-02-20 22:17 - 2013-12-16 02:54 - 00000132 _____ () C:\Users\J\AppData\Roaming\Adobe PNG Format CC Prefs2014-02-20 21:41 - 2014-02-20 21:41 - 00058085 _____ () C:\Users\J\Downloads\estilo.rar2014-02-20 21:17 - 2013-03-20 12:27 - 00000000 ____D () C:\Users\J\Documents\KeyShot 42014-02-20 20:28 - 2014-02-21 14:18 - 03620919 _____ () C:\Users\J\Desktop\Web.zip2014-02-20 20:24 - 2014-02-20 20:24 - 00000112 _____ () C:\Users\J\AppData\Roaming\JP2K CS6 Prefs2014-02-20 11:19 - 2014-01-06 15:09 - 00000792 _____ () C:\Users\J\AppData\Local\KeyShot.log2014-02-19 17:43 - 2014-02-19 12:40 - 00000000 ____D () C:\Users\J\Desktop\Adobe.CC.Keymaker.Win.MacOSX.X-FORCE2014-02-19 17:43 - 2014-02-19 12:20 - 00000000 ____D () C:\Program Files\NewBlue2014-02-19 17:43 - 2014-02-19 12:20 - 00000000 ____D () C:\Program Files (x86)\NewBlue2014-02-19 17:40 - 2014-02-19 17:40 - 32499558 _____ () C:\Users\J\Desktop\NEWBLUE_STABILIZER_V1.4-XFORCE.rar2014-02-19 15:27 - 2014-02-19 15:27 - 00000000 ____D () C:\Program Files\CyberLink2014-02-19 14:52 - 2013-11-03 14:10 - 00000000 ____D () C:\ProgramData\Oracle2014-02-19 14:31 - 2014-02-19 14:31 - 00005250 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log2014-02-19 14:31 - 2013-03-20 19:51 - 00000000 ____D () C:\Program Files (x86)\Java2014-02-19 14:30 - 2014-02-19 14:30 - 00921000 _____ (Oracle Corporation) C:\Users\J\Downloads\chromeinstall-7u51.exe2014-02-19 14:23 - 2013-03-20 12:27 - 00000000 ____D () C:\Program Files\KeyShot42014-02-19 12:23 - 2014-02-19 12:21 - 00000000 ____D () C:\ProgramData\eSellerate2014-02-19 12:20 - 2014-02-19 12:20 - 00000000 ____D () C:\Program Files\Common Files\OFX2014-02-18 22:29 - 2014-02-18 22:29 - 73847347 _____ () C:\Users\J\Desktop\MVI_0335.MOV.mp42014-02-18 18:51 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\rescache2014-02-18 16:31 - 2014-02-18 16:31 - 00016619 _____ () C:\Users\J\Desktop\hijackthis.log2014-02-18 16:27 - 2013-11-27 01:49 - 00000000 ____D () C:\Windows\system32\MRT2014-02-18 16:26 - 2013-03-20 02:30 - 00000000 ____D () C:\ProgramData\Microsoft Help2014-02-18 16:24 - 2013-03-20 00:34 - 00846974 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI2014-02-18 16:21 - 2013-04-19 18:15 - 00007603 _____ () C:\Users\J\AppData\Local\Resmon.ResmonCfg2014-02-18 15:12 - 2009-07-14 03:20 - 00000000 ____D () C:\Windows\Registration2014-02-18 15:03 - 2013-05-06 10:01 - 00000000 ____D () C:\Users\J\Desktop\Camera2014-02-18 14:51 - 2014-01-11 15:50 - 00000000 ____D () C:\Users\J\Desktop\jay final 11th jan2014-02-18 14:51 - 2013-03-20 02:25 - 00000000 ____D () C:\Users\J\AppData\Roaming\SolidWorks2014-02-18 14:28 - 2013-03-20 11:55 - 00000000 ____D () C:\Windows\pss2014-02-18 14:27 - 2014-02-18 14:27 - 00002764 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC2014-02-17 16:08 - 2014-02-17 16:03 - 00028767 _____ () C:\Users\J\Desktop\plugin.php2014-02-17 15:56 - 2014-02-17 15:56 - 00101068 _____ () C:\Users\J\Desktop\style.css2014-02-16 20:08 - 2014-02-26 23:15 - 38437738 _____ () C:\Users\J\Desktop\optimizePress_v2.1.7.11.zip2014-02-15 22:23 - 2014-02-15 22:23 - 00002010 _____ () C:\Users\J\Desktop\Kindle.lnk2014-02-15 22:23 - 2014-02-15 22:23 - 00000000 ____D () C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon2014-02-15 22:23 - 2014-02-15 22:23 - 00000000 ____D () C:\Users\J\AppData\Local\Amazon2014-02-15 22:23 - 2014-02-15 22:23 - 00000000 ____D () C:\Program Files (x86)\Amazon2014-02-14 23:18 - 2014-02-14 23:18 - 00000000 ____D () C:\Program Files (x86)\GUME67.tmp2014-02-14 23:18 - 2013-08-03 12:56 - 00003858 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3208368526-2848764839-2880309411-1000UA2014-02-14 23:18 - 2013-08-03 12:56 - 00003462 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3208368526-2848764839-2880309411-1000Core2014-02-14 17:49 - 2014-02-14 17:49 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Apple Computer2014-02-14 17:49 - 2013-07-03 18:14 - 00572208 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT2014-02-14 17:49 - 2013-07-03 18:10 - 00001425 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk2014-02-14 17:49 - 2009-07-14 05:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD2014-02-13 22:25 - 2013-03-24 17:00 - 00000035 _____ () C:\Users\J\AppData\Roaming\Opusbext.dat2014-02-13 17:38 - 2014-02-13 16:59 - 00055236 _____ () C:\Users\J\Documents\Miproto.vsdx2014-02-13 01:27 - 2014-02-13 01:27 - 00000000 ____D () C:\Program Files (x86)\GUM125F.tmp2014-02-13 01:27 - 2013-06-26 20:06 - 00003884 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA2014-02-13 01:27 - 2013-06-26 20:06 - 00003632 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore2014-02-12 18:01 - 2014-02-12 18:01 - 00000714 _____ () C:\Users\J\Desktop\KeyShot 4 Resources.lnk2014-02-12 17:26 - 2014-02-12 17:26 - 00000000 ____D () C:\ProgramData\Package Cache2014-02-10 19:41 - 2014-02-10 19:41 - 00001636 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk2014-02-10 19:41 - 2013-03-20 00:56 - 00030874 _____ () C:\Windows\system32\lvcoinst.log2014-02-10 19:28 - 2014-02-10 19:28 - 00000498 _____ () C:\Users\J\Desktop\Program Files (Only) (D) - Shortcut (2).lnk2014-02-09 20:24 - 2014-02-09 20:24 - 00001598 _____ () C:\Users\Public\Desktop\iTunes.lnk2014-02-09 20:24 - 2014-02-09 20:24 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF692014-02-09 20:24 - 2014-02-09 20:24 - 00000000 ____D () C:\Program Files\iTunes2014-02-09 20:24 - 2014-02-09 20:24 - 00000000 ____D () C:\Program Files\iPod2014-02-09 20:24 - 2013-03-20 02:30 - 00000000 ____D () C:\ProgramData\Apple2014-02-08 02:37 - 2014-02-08 02:37 - 18130837 _____ () C:\Users\J\Desktop\optimizePressTheme.zip2014-02-07 21:15 - 2013-03-20 02:19 - 00000000 ____D () C:\Users\J\AppData\Roaming\DAEMON Tools Pro2014-02-06 19:00 - 2013-04-19 17:59 - 00000000 ____D () C:\Users\J\AppData\Roaming\Luxology2014-02-06 12:16 - 2014-02-18 16:23 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-02-06 11:30 - 2014-02-18 16:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-02-06 11:30 - 2014-02-18 16:23 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-02-06 11:12 - 2014-02-18 16:23 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-02-06 11:07 - 2014-02-18 16:23 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-02-06 11:06 - 2014-02-18 16:23 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-02-06 10:57 - 2014-02-18 16:23 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-02-06 10:56 - 2014-02-18 16:23 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-02-06 10:52 - 2014-02-18 16:23 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-02-06 10:49 - 2014-02-18 16:23 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-02-06 10:48 - 2014-02-18 16:23 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-02-06 10:48 - 2014-02-18 16:23 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-02-06 10:38 - 2014-02-18 16:23 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-02-06 10:32 - 2014-02-18 16:23 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-02-06 10:20 - 2014-02-18 16:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-02-06 10:17 - 2014-02-18 16:23 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-02-06 10:11 - 2014-02-18 16:23 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-02-06 10:01 - 2014-02-18 16:23 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-02-06 10:00 - 2014-02-18 16:23 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-02-06 09:57 - 2014-02-18 16:23 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-02-06 09:57 - 2014-02-18 16:23 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-02-06 09:52 - 2014-02-18 16:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-02-06 09:52 - 2014-02-18 16:23 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-02-06 09:50 - 2014-02-18 16:23 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-02-06 09:49 - 2014-02-18 16:23 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-02-06 09:47 - 2014-02-18 16:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-02-06 09:46 - 2014-02-18 16:23 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-02-06 09:25 - 2014-02-18 16:23 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-02-06 09:25 - 2014-02-18 16:23 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-02-06 09:24 - 2014-02-18 16:23 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-02-06 09:22 - 2014-02-18 16:23 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-02-06 09:13 - 2014-02-18 16:23 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-02-06 09:09 - 2014-02-18 16:23 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-02-06 09:03 - 2014-02-18 16:23 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-02-06 08:55 - 2014-02-18 16:23 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-02-06 08:41 - 2014-02-18 16:23 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-02-06 08:40 - 2014-02-18 16:23 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-02-06 08:36 - 2014-02-18 16:23 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-02-06 08:34 - 2014-02-18 16:23 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-02-04 19:09 - 2013-03-20 00:27 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe2014-02-04 11:42 - 2014-02-04 11:42 - 00000000 ____D () C:\Windows\AutoKMS2014-02-04 09:56 - 2013-08-22 13:04 - 00000000 ____D () C:\ProgramData\Hotspot Shield2014-02-04 09:56 - 2013-08-22 13:03 - 00000000 ____D () C:\Program Files (x86)\Hotspot Shield2014-02-04 09:55 - 2013-11-06 21:02 - 00001060 _____ () C:\Users\Public\Desktop\Hotspot Shield.lnk2014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\Users\J\AppData\Roaming\Canon2014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\ProgramData\Quick Menu_12014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\ProgramData\CanonIJWSpt2014-02-03 15:13 - 2014-02-03 15:13 - 00000000 ____D () C:\Program Files (x86)\Canon2014-02-03 15:11 - 2014-02-03 15:11 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information2014-02-03 15:11 - 2009-07-14 03:20 - 00000000 __RSD () C:\Windows\Media2014-02-02 14:32 - 2014-02-02 13:52 - 00000000 ____D () C:\Users\J\Desktop\Logo Design2014-02-01 21:00 - 2014-01-25 15:52 - 00000000 ____D () C:\vol02014-02-01 19:58 - 2014-02-01 19:58 - 00000000 ____D () C:\Users\J\AppData\Roaming\Red Giant2014-02-01 19:11 - 2014-02-01 18:59 - 00000000 ____D () C:\Users\J\Desktop\Barber VinnyFiles to move or delete:====================C:\Users\J\AppData\Roaming\eMail Verifier.ini==================== Bamital & volsnap Check =================C:\Windows\System32\winlogon.exe[2010-11-21 03:24] - [2011-01-16 00:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8FC:\Windows\System32\wininit.exe => MD5 is legitC:\Windows\SysWOW64\wininit.exe => MD5 is legitC:\Windows\explorer.exe => MD5 is legitC:\Windows\SysWOW64\explorer.exe => MD5 is legitC:\Windows\System32\svchost.exe => MD5 is legitC:\Windows\SysWOW64\svchost.exe => MD5 is legitC:\Windows\System32\services.exe => MD5 is legitC:\Windows\System32\User32.dll[2010-11-21 03:24] - [2011-01-16 00:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCFC:\Windows\SysWOW64\User32.dll => MD5 is legitC:\Windows\System32\userinit.exe => MD5 is legitC:\Windows\SysWOW64\userinit.exe => MD5 is legitC:\Windows\System32\rpcss.dll => MD5 is legitC:\Windows\System32\Drivers\volsnap.sys => MD5 is legittestsigning: ==> Check for possible unsigned rootkit driver 2b1af7f3a8