Inactive-A Can't get online at all with any browser, but have connection

[pg42]

I know I have www-search.net redirect virus but can't remove. Can't uninstall "Search Module". Error says "The uninstall process has been interuted, possibly by a conflicting process or lack of internet connection. Please try again."

 

[Broni]

Welcome aboard


Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

========================

Since you have no internet connection where are you posting from?

 

[pg42]

Thank you for your reply. The computer is my son's. We just got it from a friend for him. I am posting from my computer which is actually quite difficult right now since the graphics card is on the fritz and the display is constantly flickering. The computer in question was always able to connect to the internet but could never go to any sites in normal mode. www-search.net would come up and no other sites. All other attempts would result in a "this webpage is not available" page. I ran Malwarebytes, RKill, Combofix, minitoolbox, tdsskiller and Avast. I was able at that point to browse only in safe mode. That was yesterday. Today, I can't even get a site up in safe mode with networking. Found directions to get rid of www-search.net. Would not uninstall saying "The uninstall process has been interupted, possibly by a conflicting process or lack of internet connection". I downloaded revo uninstaller to flash drive and ran on the malfunctioning computer. Again I got the same message as above. It allowed me to continue to delete registry entries and such, which I did. It put a corrupted file in the recycling bin which I emptied. I rebooted and tried to access internet only to find myself at www-search.net again. I tried running Malwarebytes again ... didn't find anything. Ran Rkill again then Combofix again. I got a pev.3xe error from Combofix this time. That's where it stands right now. Any help would be greatly appreciated.

 

[Broni]

NOTE 1. Use another working computer to download tools. Use USB flash drive to transfer them from good computer to the bad one.
NOTE 2. Install Panda USB Vaccine, or BitDefender’s USB Immunizer on GOOD computer to protect it from any infected USB device.

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on adwcleaner.exe to run the tool.
• Click on Scan button.
• When the scan has finished click on Clean button.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the contents of that logfile with your next reply.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.

 

[pg42]

Okay. I tried to install BitDefender USB and got the following log file:

[11-9-2014 0:1] Immunizer started
[11-9-2014 0:1] BDMetrics Loaded Successfully
[11-9-2014 0:1] Config loaded successfully
[11-9-2014 0:1] Current Number of Immunized Devices = 0
[11-9-2014 0:1] Failed to Remove directory. Trying to reset attributes: \\?\E:\autorun.inf\bdsanitize1.dir. Err = 5
[11-9-2014 0:1] directory removed: \\?\E:\autorun.inf\bdsanitize1.dir.
[11-9-2014 0:1] Failed to Remove file. Trying to reset attributes: \\?\E:\autorun.inf\bdsanitize1.file. Err = 5
[11-9-2014 0:1] File removed: \\?\E:\autorun.inf\bdsanitize1.file.
[11-9-2014 0:1] Failed to Remove file. Trying to reset attributes: \\?\E:\autorun.inf\bdsanitize2.file. Err = 5
[11-9-2014 0:1] File removed: \\?\E:\autorun.inf\bdsanitize2.file.
[11-9-2014 0:1] Failed to Remove file. Trying to reset attributes: \\?\E:\autorun.inf\bdsanitize2.dir\bdsanitize1.file. Err = 5
[11-9-2014 0:1] File removed: \\?\E:\autorun.inf\bdsanitize2.dir\bdsanitize1.file.
[11-9-2014 0:1] Failed to Remove file. Trying to reset attributes: \\?\E:\autorun.inf\bdsanitize2.dir\bdsanitize2.file. Err = 5
[11-9-2014 0:1] File removed: \\?\E:\autorun.inf\bdsanitize2.dir\bdsanitize2.file.
[11-9-2014 0:1] Failed to Remove directory. Trying to reset attributes: \\?\E:\autorun.inf\bdsanitize2.dir. Err = 5
[11-9-2014 0:1] directory removed: \\?\E:\autorun.inf\bdsanitize2.dir.
[11-9-2014 0:1] directory removed: \\?\E:\autorun.inf.
[11-9-2014 0:1] Could not immunize drive E:


I tried Panda ... sent me an email with the following link but I can't find a way to download the USB product:

http://www.pandasecurity.com/homeus...a4f495482aee5ac1c322a30f6cb3f1&tipousuario=99

The link that you provided for Junkware Removal Tool brings me to this address: http://thisisudax.org/downloads/JRT.exe. Browser says "This page is not available". The connection to thisisudax.org was interrupted. Error code: ERR_CONNECTION_RESET

 

[Broni]

You can get Panda from here: http://download.cnet.com/Panda-USB-Vaccine/3000-2239_4-10909938.html
JRT link works for me just fine.
In any case uploaded it for you here: https://www.sendspace.com/file/eor9xc

 

[pg42]

Thank you for those links. Here are the logfiles:

# AdwCleaner v3.309 - Report created 11/09/2014 at 00:49:04
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Admin - ADMIN-PC
# Running from : C:\Users\Admin\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : ca82e1a5
Service Deleted : sbmntr
Service Deleted : SMUpd
Service Deleted : SMUpdd

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
[#] Folder Deleted : C:\ProgramData\Browser Manager
Folder Deleted : C:\ProgramData\SearchModule
Folder Deleted : C:\ProgramData\easytOsahop
Folder Deleted : C:\ProgramData\KingCoupon
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2
Folder Deleted : C:\Program Files\AnyProtectEx
Folder Deleted : C:\Program Files\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files\Bench
Folder Deleted : C:\Program Files\Fast Free Converter
Folder Deleted : C:\Program Files\File Type Helper
Folder Deleted : C:\Program Files\Optimizer Pro
Folder Deleted : C:\Program Files\SavingsbullFilter
Folder Deleted : C:\Program Files\Uninstaller
Folder Deleted : C:\Program Files\xfin_portal
Folder Deleted : C:\Program Files\YTDownloader
Folder Deleted : C:\Program Files\KingCoupon
Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files\Common Files\Goobzo
Folder Deleted : C:\Windows\system32\SearchProtect
Folder Deleted : C:\Users\Admin\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Admin\AppData\Local\Conduit
Folder Deleted : C:\Users\Admin\AppData\Local\DownloadTerms
Folder Deleted : C:\Users\Admin\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Admin\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Admin\AppData\Local\torch
Folder Deleted : C:\Users\Admin\AppData\Local\Tuguu_SL
Folder Deleted : C:\Users\Admin\AppData\Local\VisualBeeClient
Folder Deleted : C:\Users\Admin\AppData\Local\VisualBeeExe
Folder Deleted : C:\Users\Admin\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Admin\AppData\LocalLow\comcasttb
Folder Deleted : C:\Users\Admin\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Admin\AppData\LocalLow\DataMngr
Folder Deleted : C:\Users\Admin\AppData\LocalLow\Fast Free Converter
Folder Deleted : C:\Users\Admin\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Admin\AppData\LocalLow\searchresultstb
Folder Deleted : C:\Users\Admin\AppData\LocalLow\xfin_portal
Folder Deleted : C:\Users\Admin\AppData\Roaming\iPumper
Folder Deleted : C:\Users\Admin\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Public\Documents\ShopperPro
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna
[!] Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna
File Deleted : C:\END
File Deleted : C:\Windows\system32\roboot.exe
File Deleted : C:\Users\Admin\AppData\Roaming\aps.scan.quick.results

***** [ Scheduled Tasks ] *****

Task Deleted : bench-sys
Task Deleted : Escolade
Task Deleted : SMupdate1

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Admin\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [12x3q@3244516.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\NewPlayerUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051578.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051578.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0051578.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08635077-8829-49E2-B338-C968817EB460}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{20A3F109-F7C1-47B4-8098-8E654B264B1D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8C7478AB-3155-463E-936F-55F91F0F10D0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9E1B65EE-A131-42B4-94CA-847505E2F611}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A85A5E6A-DE2C-4F4E-99DC-F469DF5A0EEC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220522152278}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550555155578}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660566156678}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A11A6BD-7880-49BD-92D4-6F09D0BD3250}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{68DE31F7-43FF-4EE2-B88B-10665016970D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BEAA0C04-ED15-4C17-800B-28716025A4E4}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1791C1B5-FFD0-4D4B-ABCD-7A7DF6EAA89C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EC2BAE47-25AF-4CE9-9E78-10627A49C9EA}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : HKCU\Software\AnyProtect
Key Deleted : HKCU\Software\Escolade
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\xfin_portal
Key Deleted : HKLM\SOFTWARE\Bench
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Fast Free Converter
Key Deleted : HKLM\SOFTWARE\MediaViewV1
Key Deleted : HKLM\SOFTWARE\NewPlayer
Key Deleted : HKLM\SOFTWARE\SearchProtect
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Google Chrome v37.0.2062.103

[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Extension] : lndipknmjijnalnkamonmljeaojdbpna

*************************

AdwCleaner[R0].txt - [10575 octets] - [11/09/2014 00:44:38]
AdwCleaner[S0].txt - [10497 octets] - [11/09/2014 00:49:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10558 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x86
Ran by Admin on Thu 09/11/2014 at 1:01:28.59
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ytdownloader
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1041798143-2999261760-1342775035-1000\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\big fish"
Successfully deleted: [Folder] "C:\ProgramData\big fish games"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\Admin\Local Settings\Application Data\big fish"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 09/11/2014 at 1:12:09.40
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

[pg42]

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-09-2014
Ran by Admin (administrator) on ADMIN-PC on 11-09-2014 01:16:06
Running from J:\Stuff stuff
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link for 64-Bit Version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Autodesk, Inc.) C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Akamai Technologies, Inc.) C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(White Sky, Inc.) C:\Program Files\Constant Guard Protection Suite\IDVault.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(Akamai Technologies, Inc.) C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe
(Autodesk Inc.) C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(Autodesk Inc.) C:\Users\Admin\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Thisisu) J:\Stuff stuff\JRT.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [ADSK DLMSession] => C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-05] (AVAST Software)
HKLM\...\Run: [ADSKAppManager] => C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-09-03] (Autodesk Inc.)
HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1074056 2014-05-14] (Autodesk, Inc.)
HKU\S-1-5-21-1041798143-2999261760-1342775035-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1041798143-2999261760-1342775035-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1074056 2014-05-14] (Autodesk, Inc.)
HKU\S-1-5-21-1041798143-2999261760-1342775035-1000\...\Policies\Explorer: []
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Constant Guard.lnk
ShortcutTarget: Constant Guard.lnk -> C:\Program Files\Constant Guard Protection Suite\IDVault.exe (White Sky, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Smart Wizard.lnk
ShortcutTarget: NETGEAR WNA1100 Smart Wizard.lnk -> C:\Program Files\NETGEAR\WNA1100\WNA1100.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
ShellIconOverlayIdentifiers: OverlayExcluded -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\buShell.dll No File
ShellIconOverlayIdentifiers: OverlayPending -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\buShell.dll No File
ShellIconOverlayIdentifiers: OverlayProtected -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\buShell.dll No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

Continued

 

[pg42]

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security Suite\Engine\21.1.0.18\coIEPlg.dll No File
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton Security Suite\Engine\21.1.0.18\IPS\IPSBHO.DLL No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Constant Guard Protection Suite -> {B84CDBE7-1B46-494B-A188-01D4C52DEB61} -> C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.1211.1\NativeBHO.dll (WhiteSky)
BHO: Updater For XFIN_PORTAL -> {bb46be07-13eb-4c49-b0f0-fc78b9ea4983} -> C:\Program Files\xfin_portal\auxi\comcastAu.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security Suite\Engine\21.1.0.18\coIEPlg.dll No File
Tcpip\..\Interfaces\{FB0E1B2B-7257-45E4-AF40-920889E018EE}: [NameServer] 75.75.75.75,75.75.76.76

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [ext@VideoPlayerV3beta454.net] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta454\ff
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF HKLM\...\Firefox\Extensions: [ext@MediaViewV1alpha2122.net] - C:\Program Files\MediaViewV1\MediaViewV1alpha2122\ff
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-05]

Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> CB681EF35FF850A338DD17AA2D27FA1F8D21D709AE94DB0859E71825A36A76B8
CHR DefaultSearchProvider: Default -> 371CB05602E53FCF957967FA57E90BC20A46A2EAF6047F0F4EB5350349C778E0
CHR DefaultSearchURL: Default -> 790E25D302FCDAC8A1E0679BE1CD4CF3FABD57DAD21CD3D3989B3E28D7940F97
CHR CustomProfile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-05]
CHR Extension: (Google Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-05]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-05]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-04]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-05]
CHR Extension: (Google Search) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-05]
CHR Extension: (Google Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-05]
CHR Extension: (avast! Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-05]
CHR Extension: (Video-for-PC-1.2) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna [2014-09-11]
CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-05]
CHR HKLM\...\Chrome\Extension: [dikigfnkaojppoimdkkaiiklameaimko] - C:\Program Files\MediaViewV1\MediaViewV1alpha2122\ch\MediaViewV1alpha2122.crx []
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-05]
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files\Norton Security Suite\Engine\21.1.0.18\Exts\Chrome.crx [2014-09-05]
CHR HKLM\...\Chrome\Extension: [mkpipalfmodniohodcfongffaobmjbpd] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta454\ch\VideoPlayerV3beta454.crx [2014-09-05]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [597896 2014-09-03] (Autodesk Inc.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-05] (AVAST Software)
S4 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
S3 FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [1087792 2014-09-05] (Flexera Software LLC)
S4 IDVaultSvc; C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe [41024 2013-12-11] (White Sky, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [733984 2013-10-11] (Autodesk, Inc.)
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [268768 2010-03-22] ()
S2 N360; "C:\Program Files\Norton Security Suite\Engine\21.1.0.18\N360.exe" /s "N360" /m "C:\Program Files\Norton Security Suite\Engine\21.1.0.18\diMaster.dll" /prefetch:1

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-09-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-09-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-09-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-09-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-09-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-09-05] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-09-05] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-09-05] ()
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1501696 2010-03-09] (Atheros Communications, Inc.)
R1 ccSet_N360; C:\Windows\system32\drivers\N360\1501000.012\ccSetx86.sys [127064 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376920 2014-02-08] (Symantec Corporation)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21728 2007-01-19] (Windows (R) Codename Longhorn DDK provider)
S3 SRTSP; C:\Windows\system32\drivers\N360\1501000.012\SRTSP.SYS [651352 2013-09-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360\1501000.012\SRTSPX.SYS [32344 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360\1501000.012\SYMDS.SYS [367704 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360\1501000.012\SYMEFA.SYS [935512 2013-09-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [142936 2014-02-09] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360\1501000.012\Ironx86.SYS [206936 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\N360\1501000.012\SYMNETS.SYS [446552 2013-09-25] (Symantec Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [33512 2014-09-05] ()
S1 AntiLog32; \??\C:\Windows\system32\drivers\AntiLog32.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
S1 BHDrvx86; \??\C:\Program Files\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20140214.001\BHDrvx86.sys [X]
S3 catchme; \??\C:\Users\Admin\AppData\Local\Temp\catchme.sys [X]
S1 IDSVix86; \??\C:\Program Files\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20140309.001\IDSvix86.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt32.sys [X]
S2 mdmxsdk; system32\DRIVERS\mdmxsdk.sys [X]
S3 NAVENG; \??\C:\Program Files\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140310.033\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140310.033\NAVEX15.SYS [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 01:15 - 2014-09-11 01:16 - 00000000 ____D () C:\FRST
2014-09-11 01:12 - 2014-09-11 01:12 - 00001762 _____ () C:\Users\Admin\Desktop\JRT.txt
2014-09-11 01:01 - 2014-09-11 01:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-11 00:44 - 2014-09-11 00:49 - 00000000 ____D () C:\AdwCleaner
2014-09-10 23:42 - 2014-09-10 23:42 - 00021705 _____ () C:\ComboFix.txt
2014-09-10 16:39 - 2014-09-10 16:39 - 00001186 _____ () C:\Users\Admin\Desktop\Revo Uninstaller.lnk
2014-09-10 16:39 - 2014-09-10 16:39 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-09-10 16:39 - 2014-09-10 16:32 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Admin\Desktop\revosetup.exe
2014-09-10 16:39 - 2014-09-10 16:27 - 01370467 _____ () C:\Users\Admin\Desktop\AdwCleaner.exe
2014-09-10 16:39 - 2014-09-10 16:26 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Admin\Desktop\tdsskiller.exe
2014-09-10 16:39 - 2014-09-10 16:25 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Desktop\rkill.exe
2014-09-09 18:52 - 2014-09-09 18:52 - 00000852 _____ () C:\Users\Public\Desktop\NETGEAR WNA1100 Smart Wizard.lnk
2014-09-09 18:52 - 2014-09-09 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Smart Wizard
2014-09-09 18:52 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2014-09-09 18:52 - 2007-01-19 18:20 - 00021728 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2014-09-07 20:10 - 2014-09-07 20:10 - 00028979 _____ () C:\Users\Admin\Documents\Drawing1_recover.dwg
2014-09-07 11:27 - 2014-09-07 11:28 - 00020490 _____ () C:\Users\Admin\Downloads\Result.txt
2014-09-07 11:25 - 2014-09-07 11:25 - 00401920 _____ (Farbar) C:\Users\Admin\Downloads\MiniToolBox.exe
2014-09-07 01:05 - 2014-09-07 01:07 - 249756151 _____ () C:\Users\Admin\Downloads\inventor_2014_tutorial_files.zip
2014-09-07 01:02 - 2014-09-07 01:04 - 131892356 _____ () C:\Users\Admin\Downloads\BIM_Interactive_Tutorial.exe
2014-09-07 01:01 - 2014-09-07 01:01 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (2).exe
2014-09-07 00:58 - 2014-09-07 00:58 - 20114187 _____ () C:\Users\Admin\Downloads\Drawing3_InteractiveTutorial.exe
2014-09-07 00:58 - 2014-09-07 00:58 - 12802037 _____ () C:\Users\Admin\Downloads\Drawing2_InteractiveTutorial.exe
2014-09-07 00:57 - 2014-09-07 00:57 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (1).exe
2014-09-07 00:56 - 2014-09-07 00:56 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial.exe
2014-09-07 00:46 - 2014-09-07 00:46 - 01550744 _____ (TEDCF Publishing) C:\Users\Admin\Downloads\Inv2014Setup.exe
2014-09-07 00:01 - 2014-09-07 00:01 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-09-07 00:00 - 2014-09-09 20:42 - 00000000 ____D () C:\ProgramData\AVG2014
2014-09-07 00:00 - 2014-09-09 20:38 - 00000000 ____D () C:\$AVG
2014-09-06 23:46 - 2014-09-06 23:46 - 04927216 _____ (AVG Technologies) C:\Users\Admin\Downloads\avg_free_stb_all_2014_4765_cnet.exe
2014-09-06 22:35 - 2014-09-08 20:10 - 00000456 _____ () C:\Users\Admin\Documents\acad.err
2014-09-06 18:06 - 2014-09-06 18:06 - 00002058 _____ () C:\Users\Public\Desktop\AutoCAD 2015 - English.lnk
2014-09-06 18:06 - 2014-09-06 18:06 - 00000000 ____D () C:\Users\Admin\Documents\Inventor Server SDK ACAD 2015
2014-09-06 18:02 - 2014-09-06 18:02 - 00000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-09-06 17:33 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-09-06 17:33 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-09-06 17:33 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-09-06 17:32 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-09-06 17:32 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-09-06 17:32 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-09-06 17:31 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-09-06 17:20 - 2014-09-06 17:20 - 14931416 _____ () C:\Users\Admin\Downloads\AutoCAD_2015_English_Win_32_64bit_R1_wi_en-us_Setup.exe
2014-09-06 03:02 - 2014-09-06 03:02 - 00285742 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-09-06 03:01 - 2014-09-06 03:02 - 00291618 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-09-06 03:01 - 2014-09-06 03:01 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-09-05 20:32 - 2014-09-05 20:32 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk,_Inc
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____D () C:\Users\Admin\AppData\Local\Granta Design
2014-09-05 15:40 - 2014-09-05 15:40 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-09-05 15:38 - 2014-09-05 15:38 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-05 15:12 - 2014-09-05 15:12 - 00001183 _____ () C:\Users\Public\Desktop\Autodesk Vault Basic 2015.lnk
2014-09-05 15:03 - 2014-09-06 23:04 - 00000000 ____D () C:\Users\Admin\Documents\Autodesk Application Manager
2014-09-05 15:01 - 2014-09-05 15:01 - 00000000 ____D () C:\Program Files\Microsoft WSE
2014-09-05 14:57 - 2014-09-05 14:57 - 00001963 _____ () C:\Users\Public\Desktop\Autodesk 360.lnk
2014-09-05 14:28 - 2014-09-05 15:42 - 00000000 ____D () C:\Users\Admin\Documents\Inventor
2014-09-05 14:16 - 2014-09-05 14:16 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-09-05 14:14 - 2014-09-05 14:38 - 00002111 _____ () C:\Users\Public\Desktop\Autodesk Inventor Professional 2015.lnk
2014-09-05 13:35 - 2014-09-05 13:35 - 00002113 _____ () C:\Users\Public\Desktop\Autodesk Design Review 2013.lnk
2014-09-05 13:32 - 2014-09-05 13:32 - 00002165 _____ () C:\Users\Public\Desktop\DWG TrueView 2015 - English.lnk
2014-09-05 13:29 - 2014-09-07 01:01 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2014-09-05 13:29 - 2014-09-06 17:54 - 00000000 ____D () C:\Program Files\Autodesk
2014-09-05 13:22 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-09-05 13:22 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-09-05 13:22 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-09-05 13:22 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-09-05 13:21 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-09-05 13:09 - 2014-09-06 17:29 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-05 13:05 - 2014-09-06 22:36 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Autodesk
2014-09-05 13:05 - 2014-09-06 22:36 - 00000000 ____D () C:\ProgramData\Autodesk
2014-09-05 13:03 - 2014-09-06 17:20 - 00000000 ____D () C:\Autodesk
2014-09-05 13:02 - 2014-09-05 13:02 - 11250784 _____ () C:\Users\Admin\Downloads\Autodesk_Inventor_2015_English_Win_32bit_R1_wi_en-US_Setup.exe
2014-09-05 12:58 - 2014-09-05 12:58 - 00002896 _____ () C:\Users\Admin\Downloads\FSS.txt
2014-09-05 12:56 - 2014-09-05 12:56 - 00415232 _____ (Farbar) C:\Users\Admin\Downloads\FSS.exe
2014-09-05 12:50 - 2014-09-05 12:50 - 00144704 _____ () C:\Windows\Minidump\090514-24328-01.dmp
2014-09-05 12:44 - 2014-09-05 12:44 - 00144704 _____ () C:\Windows\Minidump\090514-24609-01.dmp
2014-09-05 12:31 - 2014-09-10 17:00 - 00002122 _____ () C:\Users\Admin\Desktop\Rkill.txt
2014-09-05 12:28 - 2014-09-05 12:28 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Downloads\rkill.exe
2014-09-05 12:21 - 2014-09-05 12:21 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\jude.exe
2014-09-05 11:06 - 2011-06-26 02:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-09-05 11:06 - 2010-11-07 13:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-09-05 11:06 - 2009-04-20 00:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00098816 _____ () C:\Windows\sed.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00080412 _____ () C:\Windows\grep.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00068096 _____ () C:\Windows\zip.exe
2014-09-05 10:53 - 2014-09-10 23:42 - 00000000 ____D () C:\Qoobox
2014-09-05 10:53 - 2014-09-05 11:52 - 00000000 ____D () C:\Windows\erdnt
2014-09-05 08:39 - 2014-09-05 08:39 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\ComboFix.exe
2014-09-05 08:17 - 2014-09-05 08:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-05 08:16 - 2014-09-10 12:37 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-05 08:16 - 2014-09-10 09:42 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-05 08:12 - 2014-09-10 09:41 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-05 08:11 - 2014-09-10 12:37 - 00000000 ____D () C:\Users\Admin\Desktop\mbar
2014-09-05 08:07 - 2014-09-05 08:07 - 14349744 _____ (Malwarebytes Corp.) C:\Users\Admin\Downloads\mbar-1.07.0.1012.exe
2014-09-05 07:25 - 2014-09-05 07:25 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-05 07:25 - 2014-09-05 07:25 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-05 07:22 - 2014-09-05 07:22 - 04857944 _____ () C:\Users\Admin\Downloads\RogueKiller.exe
2014-09-05 03:48 - 2014-09-05 03:48 - 00000000 ____D () C:\found.001
2014-09-05 03:35 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-09-05 03:35 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-09-05 03:34 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-09-05 03:34 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-09-05 01:57 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-05 01:57 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-05 01:57 - 2014-07-25 09:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-05 01:57 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-05 01:57 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-05 01:57 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-05 01:57 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-05 01:57 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-05 01:57 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-05 01:57 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-05 01:57 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-05 01:57 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-05 01:57 - 2014-07-25 08:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-05 01:57 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-05 01:57 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-05 01:57 - 2014-07-25 07:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-05 01:57 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-05 01:57 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-05 01:57 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-05 01:57 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-05 01:57 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-05 01:57 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-05 01:57 - 2014-07-25 07:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-05 01:57 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-05 01:57 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-05 01:57 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-05 01:57 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-05 01:57 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-05 01:57 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-05 01:57 - 2014-07-13 21:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-09-05 01:57 - 2014-06-15 21:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-05 01:57 - 2014-06-15 21:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-09-05 01:57 - 2014-06-15 21:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-09-05 01:56 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-05 01:56 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-09-05 01:55 - 2014-08-22 21:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-05 01:55 - 2014-08-22 20:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-09-05 01:55 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-09-05 01:55 - 2014-05-30 02:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-09-05 01:54 - 2014-08-06 21:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-05 01:54 - 2014-08-06 21:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-05 01:54 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-05 01:54 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-09-05 01:54 - 2014-06-03 05:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-09-05 01:54 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-09-05 01:54 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-05 01:54 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-09-05 01:50 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-09-05 01:50 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-05 01:50 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-09-05 01:50 - 2014-03-04 05:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-09-05 01:49 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-05 01:49 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-09-05 01:49 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-09-05 01:49 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-09-05 01:47 - 2014-02-03 22:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-09-05 01:47 - 2014-02-03 22:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-09-05 01:47 - 2014-02-03 22:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-09-05 01:47 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-09-05 01:47 - 2014-01-27 22:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-09-05 01:45 - 2014-02-03 22:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-09-05 01:45 - 2014-01-23 22:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-05 01:40 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-09-05 01:40 - 2014-03-04 05:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-09-05 01:40 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-09-05 01:38 - 2014-05-08 05:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-09-05 01:38 - 2014-05-08 05:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-09-05 01:30 - 2014-06-05 10:26 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-05 01:30 - 2014-04-11 22:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-09-05 01:30 - 2014-04-11 22:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-09-05 01:30 - 2014-04-11 22:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-09-05 01:30 - 2014-04-11 22:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-09-05 01:30 - 2014-04-11 22:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-09-05 01:30 - 2014-04-11 22:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-09-05 01:21 - 2014-09-05 01:21 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DropboxMaster
2014-09-05 01:20 - 2014-09-05 01:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-05 01:16 - 2014-09-05 01:22 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Dropbox
2014-09-05 01:04 - 2014-09-05 01:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AVAST Software
2014-09-05 01:00 - 2014-09-09 20:42 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-05 01:00 - 2014-09-05 01:00 - 00000000 ____D () C:\Users\Admin\AppData\Local\MFAData
2014-09-05 00:51 - 2014-09-05 00:51 - 00002123 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-09-05 00:51 - 2014-09-05 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-05 00:50 - 2014-09-05 00:50 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-05 00:50 - 2014-09-05 00:50 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00000350 ____H () C:\Windows\Tasks\avast! Emergency Update.job
2014-09-05 00:47 - 2014-09-05 00:47 - 00000000 ____D () C:\Users\Admin\Desktop\Avast
2014-09-05 00:44 - 2014-09-05 00:44 - 04862664 _____ (AVAST Software) C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe
2014-09-05 00:28 - 2014-09-05 00:28 - 00001183 _____ () C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (2).exe
2014-09-05 00:24 - 2014-09-05 00:26 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (1).exe
2014-09-05 00:17 - 2014-09-06 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-05 00:17 - 2014-09-06 18:05 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk
2014-09-05 00:17 - 2014-09-06 17:58 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-09-05 00:15 - 2014-09-05 00:16 - 00000000 ____D () C:\Users\Admin\AppData\Local\Akamai
2014-09-05 00:15 - 2014-09-05 00:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Applications
2014-09-05 00:06 - 2014-09-05 00:06 - 00000000 ____D () C:\ProgramData\Applications
2014-09-05 00:03 - 2014-09-05 00:05 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup.exe
2014-09-04 19:24 - 2014-05-14 12:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-09-04 19:24 - 2014-05-14 12:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-09-04 19:24 - 2014-05-14 12:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-09-04 19:24 - 2014-05-14 12:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-09-04 19:23 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-09-04 19:23 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-09-04 19:23 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-09-04 19:23 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-09-04 19:23 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

 

[pg42]

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 01:17 - 2013-07-29 14:19 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\ID Vault
2014-09-11 01:16 - 2014-09-11 01:15 - 00000000 ____D () C:\FRST
2014-09-11 01:12 - 2014-09-11 01:12 - 00001762 _____ () C:\Users\Admin\Desktop\JRT.txt
2014-09-11 01:01 - 2014-09-11 01:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-11 01:01 - 2009-07-14 00:34 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-11 01:01 - 2009-07-14 00:34 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-11 00:58 - 2013-06-04 19:41 - 01325071 _____ () C:\Windows\WindowsUpdate.log
2014-09-11 00:55 - 2014-03-06 21:50 - 00003100 _____ () C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job
2014-09-11 00:54 - 2013-07-30 11:31 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-11 00:53 - 2010-11-20 17:48 - 01012094 _____ () C:\Windows\PFRO.log
2014-09-11 00:53 - 2009-07-14 00:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-11 00:53 - 2009-07-14 00:39 - 00042583 _____ () C:\Windows\setupact.log
2014-09-11 00:49 - 2014-09-11 00:44 - 00000000 ____D () C:\AdwCleaner
2014-09-11 00:49 - 2014-02-09 10:38 - 00001208 _____ () C:\Users\Admin\Desktop\Google Chrome.lnk
2014-09-11 00:49 - 2013-08-23 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-11 00:35 - 2013-07-29 20:15 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-11 00:29 - 2013-07-30 11:31 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-10 23:42 - 2014-09-10 23:42 - 00021705 _____ () C:\ComboFix.txt
2014-09-10 23:42 - 2014-09-05 10:53 - 00000000 ____D () C:\Qoobox
2014-09-10 23:37 - 2009-07-13 22:04 - 00000215 _____ () C:\Windows\system.ini
2014-09-10 17:00 - 2014-09-05 12:31 - 00002122 _____ () C:\Users\Admin\Desktop\Rkill.txt
2014-09-10 16:39 - 2014-09-10 16:39 - 00001186 _____ () C:\Users\Admin\Desktop\Revo Uninstaller.lnk
2014-09-10 16:39 - 2014-09-10 16:39 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-09-10 16:38 - 2010-11-20 17:01 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-10 16:32 - 2014-09-10 16:39 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Admin\Desktop\revosetup.exe
2014-09-10 16:27 - 2014-09-10 16:39 - 01370467 _____ () C:\Users\Admin\Desktop\AdwCleaner.exe
2014-09-10 16:26 - 2014-09-10 16:39 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Admin\Desktop\tdsskiller.exe
2014-09-10 16:25 - 2014-09-10 16:39 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Desktop\rkill.exe
2014-09-10 14:31 - 2013-08-24 20:59 - 00000000 ____D () C:\Users\Admin\AppData\Local\CrashDumps
2014-09-10 12:37 - 2014-09-05 08:16 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-10 12:37 - 2014-09-05 08:11 - 00000000 ____D () C:\Users\Admin\Desktop\mbar
2014-09-10 09:42 - 2014-09-05 08:16 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-10 09:41 - 2014-09-05 08:12 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-10 00:51 - 2013-08-24 19:34 - 00000000 ____D () C:\Users\Admin\AppData\Local\GC
2014-09-09 21:17 - 2014-02-28 10:33 - 00000000 ____D () C:\Windows\Minidump
2014-09-09 20:42 - 2014-09-07 00:00 - 00000000 ____D () C:\ProgramData\AVG2014
2014-09-09 20:42 - 2014-09-05 01:00 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-09 20:38 - 2014-09-07 00:00 - 00000000 ____D () C:\$AVG
2014-09-09 18:52 - 2014-09-09 18:52 - 00000852 _____ () C:\Users\Public\Desktop\NETGEAR WNA1100 Smart Wizard.lnk
2014-09-09 18:52 - 2014-09-09 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Smart Wizard
2014-09-08 20:10 - 2014-09-06 22:35 - 00000456 _____ () C:\Users\Admin\Documents\acad.err
2014-09-08 19:58 - 2009-07-14 00:33 - 00517008 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-07 20:10 - 2014-09-07 20:10 - 00028979 _____ () C:\Users\Admin\Documents\Drawing1_recover.dwg
2014-09-07 12:06 - 2009-07-14 00:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-09-07 11:47 - 2013-07-29 16:02 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-07 11:28 - 2014-09-07 11:27 - 00020490 _____ () C:\Users\Admin\Downloads\Result.txt
2014-09-07 11:25 - 2014-09-07 11:25 - 00401920 _____ (Farbar) C:\Users\Admin\Downloads\MiniToolBox.exe
2014-09-07 01:17 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-07 01:07 - 2014-09-07 01:05 - 249756151 _____ () C:\Users\Admin\Downloads\inventor_2014_tutorial_files.zip
2014-09-07 01:04 - 2014-09-07 01:02 - 131892356 _____ () C:\Users\Admin\Downloads\BIM_Interactive_Tutorial.exe
2014-09-07 01:01 - 2014-09-07 01:01 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (2).exe
2014-09-07 01:01 - 2014-09-05 13:29 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2014-09-07 00:58 - 2014-09-07 00:58 - 20114187 _____ () C:\Users\Admin\Downloads\Drawing3_InteractiveTutorial.exe
2014-09-07 00:58 - 2014-09-07 00:58 - 12802037 _____ () C:\Users\Admin\Downloads\Drawing2_InteractiveTutorial.exe
2014-09-07 00:57 - 2014-09-07 00:57 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (1).exe
2014-09-07 00:56 - 2014-09-07 00:56 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial.exe
2014-09-07 00:46 - 2014-09-07 00:46 - 01550744 _____ (TEDCF Publishing) C:\Users\Admin\Downloads\Inv2014Setup.exe
2014-09-07 00:01 - 2014-09-07 00:01 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-09-06 23:46 - 2014-09-06 23:46 - 04927216 _____ (AVG Technologies) C:\Users\Admin\Downloads\avg_free_stb_all_2014_4765_cnet.exe
2014-09-06 23:10 - 2014-09-05 00:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-06 23:04 - 2014-09-05 15:03 - 00000000 ____D () C:\Users\Admin\Documents\Autodesk Application Manager
2014-09-06 22:36 - 2014-09-05 13:05 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Autodesk
2014-09-06 22:36 - 2014-09-05 13:05 - 00000000 ____D () C:\ProgramData\Autodesk
2014-09-06 18:07 - 2013-06-05 09:21 - 00158816 _____ () C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-06 18:06 - 2014-09-06 18:06 - 00002058 _____ () C:\Users\Public\Desktop\AutoCAD 2015 - English.lnk
2014-09-06 18:06 - 2014-09-06 18:06 - 00000000 ____D () C:\Users\Admin\Documents\Inventor Server SDK ACAD 2015
2014-09-06 18:05 - 2014-09-05 00:17 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk
2014-09-06 18:02 - 2014-09-06 18:02 - 00000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-09-06 17:58 - 2014-09-05 00:17 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-09-06 17:54 - 2014-09-05 13:29 - 00000000 ____D () C:\Program Files\Autodesk
2014-09-06 17:29 - 2014-09-05 13:09 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-06 17:20 - 2014-09-06 17:20 - 14931416 _____ () C:\Users\Admin\Downloads\AutoCAD_2015_English_Win_32_64bit_R1_wi_en-us_Setup.exe
2014-09-06 17:20 - 2014-09-05 13:03 - 00000000 ____D () C:\Autodesk
2014-09-06 03:02 - 2014-09-06 03:02 - 00285742 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-09-06 03:02 - 2014-09-06 03:01 - 00291618 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-09-06 03:01 - 2014-09-06 03:01 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-09-05 21:30 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\rescache
2014-09-05 20:32 - 2014-09-05 20:32 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk,_Inc
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____D () C:\Users\Admin\AppData\Local\Granta Design
2014-09-05 15:42 - 2014-09-05 14:28 - 00000000 ____D () C:\Users\Admin\Documents\Inventor
2014-09-05 15:40 - 2014-09-05 15:40 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-09-05 15:38 - 2014-09-05 15:38 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-05 15:12 - 2014-09-05 15:12 - 00001183 _____ () C:\Users\Public\Desktop\Autodesk Vault Basic 2015.lnk
2014-09-05 15:01 - 2014-09-05 15:01 - 00000000 ____D () C:\Program Files\Microsoft WSE
2014-09-05 14:57 - 2014-09-05 14:57 - 00001963 _____ () C:\Users\Public\Desktop\Autodesk 360.lnk
2014-09-05 14:38 - 2014-09-05 14:14 - 00002111 _____ () C:\Users\Public\Desktop\Autodesk Inventor Professional 2015.lnk
2014-09-05 14:16 - 2014-09-05 14:16 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-09-05 13:35 - 2014-09-05 13:35 - 00002113 _____ () C:\Users\Public\Desktop\Autodesk Design Review 2013.lnk
2014-09-05 13:32 - 2014-09-05 13:32 - 00002165 _____ () C:\Users\Public\Desktop\DWG TrueView 2015 - English.lnk
2014-09-05 13:02 - 2014-09-05 13:02 - 11250784 _____ () C:\Users\Admin\Downloads\Autodesk_Inventor_2015_English_Win_32bit_R1_wi_en-US_Setup.exe
2014-09-05 12:58 - 2014-09-05 12:58 - 00002896 _____ () C:\Users\Admin\Downloads\FSS.txt
2014-09-05 12:56 - 2014-09-05 12:56 - 00415232 _____ (Farbar) C:\Users\Admin\Downloads\FSS.exe
2014-09-05 12:50 - 2014-09-05 12:50 - 00144704 _____ () C:\Windows\Minidump\090514-24328-01.dmp
2014-09-05 12:50 - 2014-02-28 10:33 - 231322039 _____ () C:\Windows\MEMORY.DMP
2014-09-05 12:44 - 2014-09-05 12:44 - 00144704 _____ () C:\Windows\Minidump\090514-24609-01.dmp
2014-09-05 12:28 - 2014-09-05 12:28 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Downloads\rkill.exe
2014-09-05 12:21 - 2014-09-05 12:21 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\jude.exe
2014-09-05 11:54 - 2009-07-13 22:37 - 00000000 __RHD () C:\Users\Default
2014-09-05 11:54 - 2009-07-13 22:37 - 00000000 ___RD () C:\Users\Public
2014-09-05 11:52 - 2014-09-05 10:53 - 00000000 ____D () C:\Windows\erdnt
2014-09-05 11:43 - 2009-07-13 22:03 - 43515904 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 15204352 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-09-05 11:18 - 2013-07-29 15:17 - 00000000 ____D () C:\ProgramData\Norton
2014-09-05 08:39 - 2014-09-05 08:39 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\ComboFix.exe
2014-09-05 08:17 - 2014-09-05 08:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-05 08:07 - 2014-09-05 08:07 - 14349744 _____ (Malwarebytes Corp.) C:\Users\Admin\Downloads\mbar-1.07.0.1012.exe
2014-09-05 07:25 - 2014-09-05 07:25 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-05 07:25 - 2014-09-05 07:25 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-05 07:22 - 2014-09-05 07:22 - 04857944 _____ () C:\Users\Admin\Downloads\RogueKiller.exe
2014-09-05 04:29 - 2014-06-29 13:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-05 04:29 - 2011-04-11 22:24 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-05 04:12 - 2013-06-05 09:33 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-05 04:11 - 2013-08-14 19:29 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-05 03:48 - 2014-09-05 03:48 - 00000000 ____D () C:\found.001
2014-09-05 01:22 - 2014-09-05 01:16 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Dropbox
2014-09-05 01:21 - 2014-09-05 01:21 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DropboxMaster
2014-09-05 01:20 - 2014-09-05 01:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-05 01:09 - 2013-07-30 11:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-05 01:09 - 2013-07-30 11:30 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-09-05 01:04 - 2014-09-05 01:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AVAST Software
2014-09-05 01:00 - 2014-09-05 01:00 - 00000000 ____D () C:\Users\Admin\AppData\Local\MFAData
2014-09-05 00:51 - 2014-09-05 00:51 - 00002123 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-09-05 00:51 - 2014-09-05 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-05 00:50 - 2014-09-05 00:50 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-05 00:50 - 2014-09-05 00:50 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00000350 ____H () C:\Windows\Tasks\avast! Emergency Update.job
2014-09-05 00:50 - 2013-06-05 10:11 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-09-05 00:49 - 2013-06-05 10:11 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-05 00:48 - 2013-06-04 16:45 - 00000000 ____D () C:\Users\Admin
2014-09-05 00:47 - 2014-09-05 00:47 - 00000000 ____D () C:\Users\Admin\Desktop\Avast
2014-09-05 00:44 - 2014-09-05 00:44 - 04862664 _____ (AVAST Software) C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe
2014-09-05 00:28 - 2014-09-05 00:28 - 00001183 _____ () C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (2).exe
2014-09-05 00:26 - 2014-09-05 00:24 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (1).exe
2014-09-05 00:16 - 2014-09-05 00:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Akamai
2014-09-05 00:15 - 2014-09-05 00:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Applications
2014-09-05 00:06 - 2014-09-05 00:06 - 00000000 ____D () C:\ProgramData\Applications
2014-09-05 00:05 - 2014-09-05 00:03 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup.exe
2014-09-04 22:48 - 2013-06-05 10:07 - 00000000 ____D () C:\Windows\AutoKMS
2014-09-04 22:43 - 2014-03-06 21:50 - 00000000 ____D () C:\Program Files\Video-for-PC-1.2
2014-09-04 20:11 - 2013-07-30 11:31 - 00000000 ____D () C:\Program Files\Google
2014-09-04 19:55 - 2013-07-30 11:31 - 00000000 ____D () C:\Users\Admin\AppData\Local\Google
2014-09-04 19:36 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-22 21:46 - 2014-09-05 01:55 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 20:42 - 2014-09-05 01:55 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 00:31

==================== End Of Log ============================

 

[pg42]

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-09-2014
Ran by Admin at 2014-09-11 01:18:17
Running from J:\Stuff stuff
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
AutoCAD 2015 - English (Version: 20.0.104.0 - Autodesk) Hidden
AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.1.4.1000 - Autodesk)
Autodesk App Manager (HKLM\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM\...\Autodesk Application Manager) (Version: 3.0.159.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD 2015 - English SP1 (HKLM\...\AutoCAD 2015 - English SP1) (Version: 1 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 32 bit (HKLM\...\{2D3DEF1D-8464-46A0-AA19-4DA55680665D}) (Version: 4.34.2701 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk Download Manager (HKLM\...\{C897D9EC-13C6-4A22-ABF7-33F2126A7DB6}) (Version: 3.0.8.0 - Autodesk, Inc.)
Autodesk DWG TrueView 2015 - English (HKLM\...\DWG TrueView 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk Featured Apps (HKLM\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Autodesk Inventor Content Center Libraries 2015 (Desktop Content) (HKLM\...\{B46DECD1-1932-4EF1-0000-22D71E81877C}) (Version: 19.0.15900.0000 - Autodesk)
Autodesk Inventor Professional 2015 - English (HKLM\...\Autodesk Inventor Professional 2015) (Version: 19.0.15900.0000 - Autodesk)
Autodesk Inventor Professional 2015 (Version: 19.0.15900.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2015 English Language Pack (Version: 19.0.15900.0000 - Autodesk) Hidden
Autodesk Material Library 2015 (HKLM\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2015 (HKLM\...\{4FBC9635-AC56-4378-8FDE-C4D3ED072681}) (Version: 5.2.9.100 - Autodesk)
Autodesk Revit Interoperability for Inventor 2015 (HKLM\...\Autodesk Revit Interoperability for Inventor 2015) (Version: 15.0.166.0 - Autodesk)
Autodesk Revit Interoperability for Inventor 2015 (Version: 15.0.166.0 - Autodesk) Hidden
Autodesk Vault Basic 2015 (Client) (HKLM\...\Autodesk Vault Basic 2015 (Client)) (Version: 19.0.49.0 - Autodesk)
Autodesk Vault Basic 2015 (Client) (Version: 19.0.49.0 - Autodesk) Hidden
Autodesk Vault Basic 2015 (Client) English Language Pack (Version: 19.0.49.0 - Autodesk) Hidden
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
Configurator 360 addin (HKLM\...\{8FE324B0-B934-4D68-BAB5-DE2136036237}) (Version: 19.0.11300.9000 - Autodesk, Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
DWG TrueView 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
Eco Materials Adviser for Autodesk Inventor 2015 (32-bit) (HKLM\...\{9FD8FCF9-7A41-4B25-A15D-E1ECC3931A99}) (Version: 5.3.8.0 - Granta Design Limited)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Inventor 2015 Heartbleed Hotfix Installer (INV19001) (HKLM\...\Autodesk Inventor Professional 2015_19001) (Version: 1 - Autodesk)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x86) (Version: 7.1.00.00 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x86) English (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NETGEAR WNA1100 wireless USB 2.0 adapter (HKLM\...\{A2AE9709-283B-4B48-AA34-729C070A62FB}) (Version: 1.0.0.133 - NETGEAR)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SketchUp Import (HKLM\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\iDrop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxTest.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtCp.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\BodyReceiver.dll ()
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\AcInetUI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\InvResc.dll (Autodesk)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\InvTXTStack.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll No File

==================== Restore Points =========================

05-09-2014 18:59:27 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
06-09-2014 07:00:15 Windows Update
06-09-2014 21:27:10 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
06-09-2014 21:27:58 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
06-09-2014 21:31:10 Installed DirectX
07-09-2014 03:48:59 Installed AVG 2014
07-09-2014 03:52:51 Installed AVG 2014
09-09-2014 22:51:38 Installed NETGEAR WNA1100 wireless USB 2.0 adapter
09-09-2014 22:54:08 Device Driver Package Install: NETGEAR Inc. Network Protocol
10-09-2014 00:35:58 Removed AVG 2014
10-09-2014 00:39:34 Removed AVG 2014
10-09-2014 01:15:07 Malwarebytes Anti-Rootkit Restore Point
10-09-2014 20:40:42 Revo Uninstaller's restore point - Search module
10-09-2014 20:47:04 Revo Uninstaller's restore point - Catalina Savings Printer

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:04 - 2014-09-10 23:37 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05DD4DCC-06E6-4451-AEAA-F04E53B7EFAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {149A8FB0-BCD5-41C2-97D6-52765483D069} - System32\Tasks\Norton Security Suite\Norton Error Processor => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\SymErr.exe
Task: {43109163-DD49-4D74-9F76-B0F5461B4CBD} - System32\Tasks\UP_Scheduler => %LOCALAPPDATA%\GC\updater.exe <==== ATTENTION
Task: {59118388-98F1-4A6F-B636-40E368E4D32F} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\WSCStub.exe
Task: {67D811CA-36AC-4B46-B2CB-644F85A6CA5E} - System32\Tasks\Video-for-PC-1.2-chromeinstaller => C:\Program Files\Video-for-PC-1.2\Video-for-PC-1.2-chromeinstaller.exe [2014-03-06] (fun-games) <==== ATTENTION
Task: {6E4E137A-9867-4F58-A6BC-A60F0C81D4D0} - System32\Tasks\GC_Scheduler => %LOCALAPPDATA%\GC\Runner.exe <==== ATTENTION
Task: {8C434C81-9A8A-4178-BFAD-EFCDD10F1FCA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {CF6B5566-AE59-488F-A2A8-BA1A999AA963} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {D6C11F7B-33BD-4DF2-A2C9-BE57C3E7F771} - System32\Tasks\Norton Security Suite\Norton Error Analyzer => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\SymErr.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job => C:\Program Files\Video-for-PC-1.2\Video-for-PC-1.2-chromeinstaller.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-09-05 00:50 - 2014-09-05 00:50 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-09-09 12:13 - 2014-09-09 12:13 - 02847744 _____ () C:\Program Files\AVAST Software\Avast\defs\14090902\algo.dll
2014-09-05 00:50 - 2014-09-05 00:50 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00195976 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00052616 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00742792 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00043912 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2013-12-11 15:57 - 2013-12-11 15:57 - 00549272 _____ () C:\Program Files\Constant Guard Protection Suite\sqlite3.DLL
2014-09-09 18:52 - 2010-06-14 14:56 - 04573664 _____ () C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
2014-09-09 18:52 - 2009-08-28 16:50 - 00282624 _____ () C:\Program Files\NETGEAR\WNA1100\WifiSvcLib.dll
2014-09-05 14:58 - 2014-09-03 23:41 - 00047496 _____ () C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-09-05 14:58 - 2014-09-03 23:41 - 00104328 _____ () C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2014-09-09 18:52 - 2010-03-22 20:07 - 00268768 _____ () C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
2014-09-09 18:52 - 2010-03-10 14:50 - 00360448 _____ () C:\Program Files\NETGEAR\WNA1100\WifiLib.dll
2014-09-11 00:54 - 2014-09-03 23:41 - 00104328 _____ () C:\Users\Admin\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:11590865
AlternateDataStreams: C:\ProgramData\TEMP:160ADF0B
AlternateDataStreams: C:\ProgramData\TEMP:1A567D7B
AlternateDataStreams: C:\ProgramData\TEMP:2636DE16
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:2D3CB929
AlternateDataStreams: C:\ProgramData\TEMP:436BE28C
AlternateDataStreams: C:\ProgramData\TEMP:47BC930A
AlternateDataStreams: C:\ProgramData\TEMP:57B374AB
AlternateDataStreams: C:\ProgramData\TEMP:5A437AC3
AlternateDataStreams: C:\ProgramData\TEMP:639BB5E9
AlternateDataStreams: C:\ProgramData\TEMP:66AA0486
AlternateDataStreams: C:\ProgramData\TEMP:6D5A15BF
AlternateDataStreams: C:\ProgramData\TEMP:7602A0B5
AlternateDataStreams: C:\ProgramData\TEMP:82756AB7
AlternateDataStreams: C:\ProgramData\TEMP:884C7316
AlternateDataStreams: C:\ProgramData\TEMP:A5948878
AlternateDataStreams: C:\ProgramData\TEMP:B1FBBD09
AlternateDataStreams: C:\ProgramData\TEMP:B88DC997
AlternateDataStreams: C:\ProgramData\TEMP3E445EE
AlternateDataStreams: C:\ProgramData\TEMP64467B5
AlternateDataStreams: C:\ProgramData\TEMP:E2295807
AlternateDataStreams: C:\ProgramData\TEMP:EAF3ADF5
AlternateDataStreams: C:\ProgramData\TEMP:F4039384

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Ati External Event Utility => 2
MSCONFIG\Services: CltMngSvc => 2
MSCONFIG\Services: EpsonBidirectionalService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IDVaultSvc => 2
MSCONFIG\Services: NewPlayerUpdaterService => 2
MSCONFIG\Services: SMUpd => 2

==================== Faulty Device Manager Devices =============

Name: BHDrvx86
Description: BHDrvx86
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BHDrvx86
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: IDSVix86
Description: IDSVix86
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: IDSVix86
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: AntiLog32
Description: AntiLog32
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AntiLog32
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Celeron(R) D CPU 3.20GHz
Percentage of memory in use: 40%
Total physical RAM: 1983.43 MB
Available physical RAM: 1173.54 MB
Total Pagefile: 3966.86 MB
Available Pagefile: 2934.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1910.58 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:95.71 GB) NTFS
Drive d: (WNA1100) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS
Drive j: (TRAVELDRIVE) (Removable) (Total:3.73 GB) (Free:3.48 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 37235B06)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C)

==================== End Of Log ============================

 

[Broni]

Uninstall Constant Guard Protection Suite by Comcast. Total garbage.

You have a lot of Norton's leftovers which may be causing your browsing issues.
Run this tool to remove them: http://www.majorgeeks.com/files/details/norton_removal_tool.html

When done re-run FRST and post fresh logs.
Make sure you checkmark Addition.txt box so both logs will be produced.

 

[pg42]

Here are the latest logs. Constant Guard Protection Suite did not show up as an installed program. I checked with Revo Uninstaller as well and couldn't find it.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-09-2014
Ran by Admin (administrator) on ADMIN-PC on 11-09-2014 19:49:49
Running from J:\Stuff stuff
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link for 64-Bit Version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Autodesk, Inc.) C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Akamai Technologies, Inc.) C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(White Sky, Inc.) C:\Program Files\Constant Guard Protection Suite\IDVault.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(Akamai Technologies, Inc.) C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Autodesk Inc.) C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe
(Autodesk Inc.) C:\Users\Admin\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [ADSK DLMSession] => C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2014-02-05] (Autodesk, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-09-05] (AVAST Software)
HKLM\...\Run: [ADSKAppManager] => C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-09-03] (Autodesk Inc.)
HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1074056 2014-05-14] (Autodesk, Inc.)
HKU\S-1-5-21-1041798143-2999261760-1342775035-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Admin\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1041798143-2999261760-1342775035-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1074056 2014-05-14] (Autodesk, Inc.)
HKU\S-1-5-21-1041798143-2999261760-1342775035-1000\...\Policies\Explorer: []
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Constant Guard.lnk
ShortcutTarget: Constant Guard.lnk -> C:\Program Files\Constant Guard Protection Suite\IDVault.exe (White Sky, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Smart Wizard.lnk
ShortcutTarget: NETGEAR WNA1100 Smart Wizard.lnk -> C:\Program Files\NETGEAR\WNA1100\WNA1100.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Constant Guard Protection Suite -> {B84CDBE7-1B46-494B-A188-01D4C52DEB61} -> C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.1211.1\NativeBHO.dll (WhiteSky)
BHO: Updater For XFIN_PORTAL -> {bb46be07-13eb-4c49-b0f0-fc78b9ea4983} -> C:\Program Files\xfin_portal\auxi\comcastAu.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Tcpip\..\Interfaces\{FB0E1B2B-7257-45E4-AF40-920889E018EE}: [NameServer] 75.75.75.75,75.75.76.76

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [ext@VideoPlayerV3beta454.net] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta454\ff
FF HKLM\...\Firefox\Extensions: [ext@MediaViewV1alpha2122.net] - C:\Program Files\MediaViewV1\MediaViewV1alpha2122\ff
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-09-05]

Chrome:
=======
CHR HomePage: Default ->
CHR DefaultSearchKeyword: Default -> CB681EF35FF850A338DD17AA2D27FA1F8D21D709AE94DB0859E71825A36A76B8
CHR DefaultSearchProvider: Default -> 371CB05602E53FCF957967FA57E90BC20A46A2EAF6047F0F4EB5350349C778E0
CHR DefaultSearchURL: Default -> 790E25D302FCDAC8A1E0679BE1CD4CF3FABD57DAD21CD3D3989B3E28D7940F97
CHR CustomProfile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-05]
CHR Extension: (Google Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-05]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-05]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-04]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-05]
CHR Extension: (Google Search) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-05]
CHR Extension: (Google Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-05]
CHR Extension: (avast! Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-05]
CHR Extension: (Video-for-PC-1.2) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna [2014-09-11]
CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-05]
CHR HKLM\...\Chrome\Extension: [dikigfnkaojppoimdkkaiiklameaimko] - C:\Program Files\MediaViewV1\MediaViewV1alpha2122\ch\MediaViewV1alpha2122.crx []
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-09-05]
CHR HKLM\...\Chrome\Extension: [mkpipalfmodniohodcfongffaobmjbpd] - C:\Program Files\VideoPlayerV3\VideoPlayerV3beta454\ch\VideoPlayerV3beta454.crx [2014-09-05]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

 

[pg42]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [597896 2014-09-03] (Autodesk Inc.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-09-05] (AVAST Software)
S4 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [File not signed]
S3 FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [1087792 2014-09-05] (Flexera Software LLC)
S4 IDVaultSvc; C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe [41024 2013-12-11] (White Sky, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
R2 mitsijm2015; C:\Program Files\Autodesk\Inventor 2015\Moldflow\bin\mitsijm.exe [733984 2013-10-11] (Autodesk, Inc.)
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [268768 2010-03-22] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-09-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-09-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-09-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-09-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-09-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-09-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-09-05] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-09-05] ()
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1501696 2010-03-09] (Atheros Communications, Inc.)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21728 2007-01-19] (Windows (R) Codename Longhorn DDK provider)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [33512 2014-09-05] ()
S1 AntiLog32; \??\C:\Windows\system32\drivers\AntiLog32.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Admin\AppData\Local\Temp\catchme.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt32.sys [X]
S2 mdmxsdk; system32\DRIVERS\mdmxsdk.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 01:15 - 2014-09-11 19:50 - 00000000 ____D () C:\FRST
2014-09-11 01:12 - 2014-09-11 01:12 - 00001762 _____ () C:\Users\Admin\Desktop\JRT.txt
2014-09-11 01:01 - 2014-09-11 01:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-11 00:44 - 2014-09-11 00:49 - 00000000 ____D () C:\AdwCleaner
2014-09-10 23:42 - 2014-09-10 23:42 - 00021705 _____ () C:\ComboFix.txt
2014-09-10 16:39 - 2014-09-10 16:39 - 00001186 _____ () C:\Users\Admin\Desktop\Revo Uninstaller.lnk
2014-09-10 16:39 - 2014-09-10 16:39 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-09-10 16:39 - 2014-09-10 16:32 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Admin\Desktop\revosetup.exe
2014-09-10 16:39 - 2014-09-10 16:27 - 01370467 _____ () C:\Users\Admin\Desktop\AdwCleaner.exe
2014-09-10 16:39 - 2014-09-10 16:26 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Admin\Desktop\tdsskiller.exe
2014-09-10 16:39 - 2014-09-10 16:25 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Desktop\rkill.exe
2014-09-09 18:52 - 2014-09-09 18:52 - 00000852 _____ () C:\Users\Public\Desktop\NETGEAR WNA1100 Smart Wizard.lnk
2014-09-09 18:52 - 2014-09-09 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Smart Wizard
2014-09-09 18:52 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2014-09-09 18:52 - 2007-01-19 18:20 - 00021728 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2014-09-07 20:10 - 2014-09-07 20:10 - 00028979 _____ () C:\Users\Admin\Documents\Drawing1_recover.dwg
2014-09-07 11:27 - 2014-09-07 11:28 - 00020490 _____ () C:\Users\Admin\Downloads\Result.txt
2014-09-07 11:25 - 2014-09-07 11:25 - 00401920 _____ (Farbar) C:\Users\Admin\Downloads\MiniToolBox.exe
2014-09-07 01:05 - 2014-09-07 01:07 - 249756151 _____ () C:\Users\Admin\Downloads\inventor_2014_tutorial_files.zip
2014-09-07 01:02 - 2014-09-07 01:04 - 131892356 _____ () C:\Users\Admin\Downloads\BIM_Interactive_Tutorial.exe
2014-09-07 01:01 - 2014-09-07 01:01 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (2).exe
2014-09-07 00:58 - 2014-09-07 00:58 - 20114187 _____ () C:\Users\Admin\Downloads\Drawing3_InteractiveTutorial.exe
2014-09-07 00:58 - 2014-09-07 00:58 - 12802037 _____ () C:\Users\Admin\Downloads\Drawing2_InteractiveTutorial.exe
2014-09-07 00:57 - 2014-09-07 00:57 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (1).exe
2014-09-07 00:56 - 2014-09-07 00:56 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial.exe
2014-09-07 00:46 - 2014-09-07 00:46 - 01550744 _____ (TEDCF Publishing) C:\Users\Admin\Downloads\Inv2014Setup.exe
2014-09-07 00:01 - 2014-09-07 00:01 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-09-07 00:00 - 2014-09-09 20:42 - 00000000 ____D () C:\ProgramData\AVG2014
2014-09-07 00:00 - 2014-09-09 20:38 - 00000000 ____D () C:\$AVG
2014-09-06 23:46 - 2014-09-06 23:46 - 04927216 _____ (AVG Technologies) C:\Users\Admin\Downloads\avg_free_stb_all_2014_4765_cnet.exe
2014-09-06 22:35 - 2014-09-08 20:10 - 00000456 _____ () C:\Users\Admin\Documents\acad.err
2014-09-06 18:06 - 2014-09-06 18:06 - 00002058 _____ () C:\Users\Public\Desktop\AutoCAD 2015 - English.lnk
2014-09-06 18:06 - 2014-09-06 18:06 - 00000000 ____D () C:\Users\Admin\Documents\Inventor Server SDK ACAD 2015
2014-09-06 18:02 - 2014-09-06 18:02 - 00000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-09-06 17:33 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-09-06 17:33 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-09-06 17:33 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-09-06 17:32 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-09-06 17:32 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-09-06 17:32 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-09-06 17:31 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-09-06 17:20 - 2014-09-06 17:20 - 14931416 _____ () C:\Users\Admin\Downloads\AutoCAD_2015_English_Win_32_64bit_R1_wi_en-us_Setup.exe
2014-09-06 03:02 - 2014-09-06 03:02 - 00285742 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-09-06 03:01 - 2014-09-06 03:02 - 00291618 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-09-06 03:01 - 2014-09-06 03:01 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-09-05 20:32 - 2014-09-05 20:32 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk,_Inc
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____D () C:\Users\Admin\AppData\Local\Granta Design
2014-09-05 15:40 - 2014-09-05 15:40 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-09-05 15:38 - 2014-09-05 15:38 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-05 15:12 - 2014-09-05 15:12 - 00001183 _____ () C:\Users\Public\Desktop\Autodesk Vault Basic 2015.lnk
2014-09-05 15:03 - 2014-09-06 23:04 - 00000000 ____D () C:\Users\Admin\Documents\Autodesk Application Manager
2014-09-05 15:01 - 2014-09-05 15:01 - 00000000 ____D () C:\Program Files\Microsoft WSE
2014-09-05 14:57 - 2014-09-05 14:57 - 00001963 _____ () C:\Users\Public\Desktop\Autodesk 360.lnk
2014-09-05 14:28 - 2014-09-05 15:42 - 00000000 ____D () C:\Users\Admin\Documents\Inventor
2014-09-05 14:16 - 2014-09-05 14:16 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-09-05 14:14 - 2014-09-05 14:38 - 00002111 _____ () C:\Users\Public\Desktop\Autodesk Inventor Professional 2015.lnk
2014-09-05 13:35 - 2014-09-05 13:35 - 00002113 _____ () C:\Users\Public\Desktop\Autodesk Design Review 2013.lnk
2014-09-05 13:32 - 2014-09-05 13:32 - 00002165 _____ () C:\Users\Public\Desktop\DWG TrueView 2015 - English.lnk
2014-09-05 13:29 - 2014-09-07 01:01 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2014-09-05 13:29 - 2014-09-06 17:54 - 00000000 ____D () C:\Program Files\Autodesk
2014-09-05 13:22 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-09-05 13:22 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-09-05 13:22 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-09-05 13:22 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-09-05 13:21 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-09-05 13:09 - 2014-09-06 17:29 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-05 13:05 - 2014-09-06 22:36 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Autodesk
2014-09-05 13:05 - 2014-09-06 22:36 - 00000000 ____D () C:\ProgramData\Autodesk
2014-09-05 13:03 - 2014-09-06 17:20 - 00000000 ____D () C:\Autodesk
2014-09-05 13:02 - 2014-09-05 13:02 - 11250784 _____ () C:\Users\Admin\Downloads\Autodesk_Inventor_2015_English_Win_32bit_R1_wi_en-US_Setup.exe
2014-09-05 12:58 - 2014-09-05 12:58 - 00002896 _____ () C:\Users\Admin\Downloads\FSS.txt
2014-09-05 12:56 - 2014-09-05 12:56 - 00415232 _____ (Farbar) C:\Users\Admin\Downloads\FSS.exe
2014-09-05 12:50 - 2014-09-05 12:50 - 00144704 _____ () C:\Windows\Minidump\090514-24328-01.dmp
2014-09-05 12:44 - 2014-09-05 12:44 - 00144704 _____ () C:\Windows\Minidump\090514-24609-01.dmp
2014-09-05 12:31 - 2014-09-10 17:00 - 00002122 _____ () C:\Users\Admin\Desktop\Rkill.txt
2014-09-05 12:28 - 2014-09-05 12:28 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Downloads\rkill.exe
2014-09-05 12:21 - 2014-09-05 12:21 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\jude.exe
2014-09-05 11:06 - 2011-06-26 02:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-09-05 11:06 - 2010-11-07 13:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-09-05 11:06 - 2009-04-20 00:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00098816 _____ () C:\Windows\sed.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00080412 _____ () C:\Windows\grep.exe
2014-09-05 11:06 - 2000-08-30 20:00 - 00068096 _____ () C:\Windows\zip.exe
2014-09-05 10:53 - 2014-09-10 23:42 - 00000000 ____D () C:\Qoobox
2014-09-05 10:53 - 2014-09-05 11:52 - 00000000 ____D () C:\Windows\erdnt
2014-09-05 08:39 - 2014-09-05 08:39 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\ComboFix.exe
2014-09-05 08:17 - 2014-09-05 08:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-05 08:16 - 2014-09-10 12:37 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-05 08:16 - 2014-09-10 09:42 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-05 08:12 - 2014-09-10 09:41 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-05 08:11 - 2014-09-10 12:37 - 00000000 ____D () C:\Users\Admin\Desktop\mbar
2014-09-05 08:07 - 2014-09-05 08:07 - 14349744 _____ (Malwarebytes Corp.) C:\Users\Admin\Downloads\mbar-1.07.0.1012.exe
2014-09-05 07:25 - 2014-09-05 07:25 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-05 07:25 - 2014-09-05 07:25 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-05 07:22 - 2014-09-05 07:22 - 04857944 _____ () C:\Users\Admin\Downloads\RogueKiller.exe
2014-09-05 03:48 - 2014-09-05 03:48 - 00000000 ____D () C:\found.001
2014-09-05 03:35 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-09-05 03:35 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-09-05 03:34 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-09-05 03:34 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-09-05 01:57 - 2014-07-31 19:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-05 01:57 - 2014-07-25 09:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-05 01:57 - 2014-07-25 09:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-05 01:57 - 2014-07-25 08:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-05 01:57 - 2014-07-25 08:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-05 01:57 - 2014-07-25 08:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-05 01:57 - 2014-07-25 08:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-05 01:57 - 2014-07-25 08:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-05 01:57 - 2014-07-25 08:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-05 01:57 - 2014-07-25 08:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-05 01:57 - 2014-07-25 08:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-05 01:57 - 2014-07-25 08:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-05 01:57 - 2014-07-25 08:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-05 01:57 - 2014-07-25 08:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-05 01:57 - 2014-07-25 08:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-05 01:57 - 2014-07-25 07:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-05 01:57 - 2014-07-25 07:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-05 01:57 - 2014-07-25 07:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-05 01:57 - 2014-07-25 07:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-05 01:57 - 2014-07-25 07:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-05 01:57 - 2014-07-25 07:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-05 01:57 - 2014-07-25 07:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-05 01:57 - 2014-07-25 07:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-05 01:57 - 2014-07-25 07:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-05 01:57 - 2014-07-25 07:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-05 01:57 - 2014-07-25 07:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-05 01:57 - 2014-07-25 06:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-05 01:57 - 2014-07-25 06:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-05 01:57 - 2014-07-25 06:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-05 01:57 - 2014-07-13 21:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-09-05 01:57 - 2014-06-15 21:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-05 01:57 - 2014-06-15 21:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-09-05 01:57 - 2014-06-15 21:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-09-05 01:56 - 2014-07-25 09:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-05 01:56 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-09-05 01:55 - 2014-08-22 21:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-05 01:55 - 2014-08-22 20:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-09-05 01:55 - 2014-07-15 22:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-09-05 01:55 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-09-05 01:55 - 2014-05-30 02:36 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-09-05 01:54 - 2014-08-06 21:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-05 01:54 - 2014-08-06 21:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-05 01:54 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-05 01:54 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-09-05 01:54 - 2014-06-03 05:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-09-05 01:54 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-09-05 01:54 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-05 01:54 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-09-05 01:50 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-09-05 01:50 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-09-05 01:50 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-09-05 01:50 - 2014-03-04 05:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-09-05 01:50 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-09-05 01:49 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-09-05 01:49 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-09-05 01:49 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-09-05 01:49 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-09-05 01:47 - 2014-02-03 22:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-09-05 01:47 - 2014-02-03 22:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-09-05 01:47 - 2014-02-03 22:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-09-05 01:47 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-09-05 01:47 - 2014-01-27 22:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-09-05 01:45 - 2014-02-03 22:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-09-05 01:45 - 2014-01-23 22:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-09-05 01:40 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-09-05 01:40 - 2014-03-04 05:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-09-05 01:40 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-09-05 01:38 - 2014-05-08 05:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-09-05 01:38 - 2014-05-08 05:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-09-05 01:30 - 2014-06-05 10:26 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-05 01:30 - 2014-04-11 22:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-09-05 01:30 - 2014-04-11 22:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-09-05 01:30 - 2014-04-11 22:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-09-05 01:30 - 2014-04-11 22:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-09-05 01:30 - 2014-04-11 22:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-09-05 01:30 - 2014-04-11 22:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-09-05 01:21 - 2014-09-05 01:21 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DropboxMaster
2014-09-05 01:20 - 2014-09-05 01:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-05 01:16 - 2014-09-05 01:22 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Dropbox
2014-09-05 01:04 - 2014-09-05 01:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AVAST Software
2014-09-05 01:00 - 2014-09-09 20:42 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-05 01:00 - 2014-09-05 01:00 - 00000000 ____D () C:\Users\Admin\AppData\Local\MFAData
2014-09-05 00:51 - 2014-09-05 00:51 - 00002123 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-09-05 00:51 - 2014-09-05 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-05 00:50 - 2014-09-05 00:50 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-05 00:50 - 2014-09-05 00:50 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00000350 ____H () C:\Windows\Tasks\avast! Emergency Update.job
2014-09-05 00:47 - 2014-09-05 00:47 - 00000000 ____D () C:\Users\Admin\Desktop\Avast
2014-09-05 00:44 - 2014-09-05 00:44 - 04862664 _____ (AVAST Software) C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe
2014-09-05 00:28 - 2014-09-05 00:28 - 00001183 _____ () C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (2).exe
2014-09-05 00:24 - 2014-09-05 00:26 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (1).exe
2014-09-05 00:17 - 2014-09-06 23:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-05 00:17 - 2014-09-06 18:05 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk
2014-09-05 00:17 - 2014-09-06 17:58 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-09-05 00:15 - 2014-09-05 00:16 - 00000000 ____D () C:\Users\Admin\AppData\Local\Akamai
2014-09-05 00:15 - 2014-09-05 00:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Applications
2014-09-05 00:06 - 2014-09-05 00:06 - 00000000 ____D () C:\ProgramData\Applications
2014-09-05 00:03 - 2014-09-05 00:05 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup.exe
2014-09-04 19:24 - 2014-05-14 12:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-09-04 19:24 - 2014-05-14 12:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-09-04 19:24 - 2014-05-14 12:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-09-04 19:24 - 2014-05-14 12:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-09-04 19:23 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-09-04 19:23 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-09-04 19:23 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-09-04 19:23 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-09-04 19:23 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 19:50 - 2014-09-11 01:15 - 00000000 ____D () C:\FRST
2014-09-11 19:50 - 2013-07-29 14:19 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\ID Vault
2014-09-11 19:48 - 2009-07-14 00:34 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-11 19:48 - 2009-07-14 00:34 - 00028352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-11 19:46 - 2013-06-04 19:41 - 01409551 _____ () C:\Windows\WindowsUpdate.log
2014-09-11 19:41 - 2014-03-06 21:50 - 00003100 _____ () C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job
2014-09-11 19:41 - 2013-07-30 11:31 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-11 19:40 - 2013-07-29 15:17 - 00000000 ____D () C:\ProgramData\Norton
2014-09-11 19:40 - 2010-11-20 17:48 - 01023548 _____ () C:\Windows\PFRO.log
2014-09-11 19:40 - 2009-07-14 00:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-11 19:40 - 2009-07-14 00:39 - 00042639 _____ () C:\Windows\setupact.log
2014-09-11 19:35 - 2013-07-29 20:15 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-11 19:29 - 2013-07-30 11:31 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-11 01:12 - 2014-09-11 01:12 - 00001762 _____ () C:\Users\Admin\Desktop\JRT.txt
2014-09-11 01:01 - 2014-09-11 01:01 - 00000000 ____D () C:\Windows\ERUNT
2014-09-11 00:49 - 2014-09-11 00:44 - 00000000 ____D () C:\AdwCleaner
2014-09-11 00:49 - 2014-02-09 10:38 - 00001208 _____ () C:\Users\Admin\Desktop\Google Chrome.lnk
2014-09-11 00:49 - 2013-08-23 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-10 23:42 - 2014-09-10 23:42 - 00021705 _____ () C:\ComboFix.txt
2014-09-10 23:42 - 2014-09-05 10:53 - 00000000 ____D () C:\Qoobox
2014-09-10 23:37 - 2009-07-13 22:04 - 00000215 _____ () C:\Windows\system.ini
2014-09-10 17:00 - 2014-09-05 12:31 - 00002122 _____ () C:\Users\Admin\Desktop\Rkill.txt
2014-09-10 16:39 - 2014-09-10 16:39 - 00001186 _____ () C:\Users\Admin\Desktop\Revo Uninstaller.lnk
2014-09-10 16:39 - 2014-09-10 16:39 - 00000000 ____D () C:\Program Files\VS Revo Group
2014-09-10 16:38 - 2010-11-20 17:01 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-10 16:32 - 2014-09-10 16:39 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Admin\Desktop\revosetup.exe
2014-09-10 16:27 - 2014-09-10 16:39 - 01370467 _____ () C:\Users\Admin\Desktop\AdwCleaner.exe
2014-09-10 16:26 - 2014-09-10 16:39 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Admin\Desktop\tdsskiller.exe
2014-09-10 16:25 - 2014-09-10 16:39 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Desktop\rkill.exe
2014-09-10 14:31 - 2013-08-24 20:59 - 00000000 ____D () C:\Users\Admin\AppData\Local\CrashDumps
2014-09-10 12:37 - 2014-09-05 08:16 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-09-10 12:37 - 2014-09-05 08:11 - 00000000 ____D () C:\Users\Admin\Desktop\mbar
2014-09-10 09:42 - 2014-09-05 08:16 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-10 09:41 - 2014-09-05 08:12 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-10 00:51 - 2013-08-24 19:34 - 00000000 ____D () C:\Users\Admin\AppData\Local\GC
2014-09-09 21:17 - 2014-02-28 10:33 - 00000000 ____D () C:\Windows\Minidump
2014-09-09 20:42 - 2014-09-07 00:00 - 00000000 ____D () C:\ProgramData\AVG2014
2014-09-09 20:42 - 2014-09-05 01:00 - 00000000 ____D () C:\ProgramData\MFAData
2014-09-09 20:38 - 2014-09-07 00:00 - 00000000 ____D () C:\$AVG
2014-09-09 18:52 - 2014-09-09 18:52 - 00000852 _____ () C:\Users\Public\Desktop\NETGEAR WNA1100 Smart Wizard.lnk
2014-09-09 18:52 - 2014-09-09 18:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Smart Wizard
2014-09-08 20:10 - 2014-09-06 22:35 - 00000456 _____ () C:\Users\Admin\Documents\acad.err
2014-09-08 19:58 - 2009-07-14 00:33 - 00517008 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-07 20:10 - 2014-09-07 20:10 - 00028979 _____ () C:\Users\Admin\Documents\Drawing1_recover.dwg
2014-09-07 12:06 - 2009-07-14 00:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-09-07 11:47 - 2013-07-29 16:02 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-07 11:28 - 2014-09-07 11:27 - 00020490 _____ () C:\Users\Admin\Downloads\Result.txt
2014-09-07 11:25 - 2014-09-07 11:25 - 00401920 _____ (Farbar) C:\Users\Admin\Downloads\MiniToolBox.exe
2014-09-07 01:17 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-07 01:07 - 2014-09-07 01:05 - 249756151 _____ () C:\Users\Admin\Downloads\inventor_2014_tutorial_files.zip
2014-09-07 01:04 - 2014-09-07 01:02 - 131892356 _____ () C:\Users\Admin\Downloads\BIM_Interactive_Tutorial.exe
2014-09-07 01:01 - 2014-09-07 01:01 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (2).exe
2014-09-07 01:01 - 2014-09-05 13:29 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2014-09-07 00:58 - 2014-09-07 00:58 - 20114187 _____ () C:\Users\Admin\Downloads\Drawing3_InteractiveTutorial.exe
2014-09-07 00:58 - 2014-09-07 00:58 - 12802037 _____ () C:\Users\Admin\Downloads\Drawing2_InteractiveTutorial.exe
2014-09-07 00:57 - 2014-09-07 00:57 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial (1).exe
2014-09-07 00:56 - 2014-09-07 00:56 - 10344598 _____ () C:\Users\Admin\Downloads\Drawing_InteractiveTutorial.exe
2014-09-07 00:46 - 2014-09-07 00:46 - 01550744 _____ (TEDCF Publishing) C:\Users\Admin\Downloads\Inv2014Setup.exe
2014-09-07 00:01 - 2014-09-07 00:01 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-09-06 23:46 - 2014-09-06 23:46 - 04927216 _____ (AVG Technologies) C:\Users\Admin\Downloads\avg_free_stb_all_2014_4765_cnet.exe
2014-09-06 23:10 - 2014-09-05 00:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-06 23:04 - 2014-09-05 15:03 - 00000000 ____D () C:\Users\Admin\Documents\Autodesk Application Manager
2014-09-06 22:36 - 2014-09-05 13:05 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Autodesk
2014-09-06 22:36 - 2014-09-05 13:05 - 00000000 ____D () C:\ProgramData\Autodesk
2014-09-06 18:07 - 2013-06-05 09:21 - 00158816 _____ () C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-06 18:06 - 2014-09-06 18:06 - 00002058 _____ () C:\Users\Public\Desktop\AutoCAD 2015 - English.lnk
2014-09-06 18:06 - 2014-09-06 18:06 - 00000000 ____D () C:\Users\Admin\Documents\Inventor Server SDK ACAD 2015
2014-09-06 18:05 - 2014-09-05 00:17 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk
2014-09-06 18:02 - 2014-09-06 18:02 - 00000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-09-06 17:58 - 2014-09-05 00:17 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-09-06 17:54 - 2014-09-05 13:29 - 00000000 ____D () C:\Program Files\Autodesk
2014-09-06 17:29 - 2014-09-05 13:09 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-06 17:20 - 2014-09-06 17:20 - 14931416 _____ () C:\Users\Admin\Downloads\AutoCAD_2015_English_Win_32_64bit_R1_wi_en-us_Setup.exe
2014-09-06 17:20 - 2014-09-05 13:03 - 00000000 ____D () C:\Autodesk
2014-09-06 03:02 - 2014-09-06 03:02 - 00285742 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-09-06 03:02 - 2014-09-06 03:01 - 00291618 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-09-06 03:01 - 2014-09-06 03:01 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-09-05 21:30 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\rescache
2014-09-05 20:32 - 2014-09-05 20:32 - 00000000 ____D () C:\Users\Admin\AppData\Local\Autodesk,_Inc
2014-09-05 15:42 - 2014-09-05 15:42 - 00000000 ____D () C:\Users\Admin\AppData\Local\Granta Design
2014-09-05 15:42 - 2014-09-05 14:28 - 00000000 ____D () C:\Users\Admin\Documents\Inventor
2014-09-05 15:40 - 2014-09-05 15:40 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-09-05 15:38 - 2014-09-05 15:38 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2014-09-05 15:12 - 2014-09-05 15:12 - 00001183 _____ () C:\Users\Public\Desktop\Autodesk Vault Basic 2015.lnk
2014-09-05 15:01 - 2014-09-05 15:01 - 00000000 ____D () C:\Program Files\Microsoft WSE
2014-09-05 14:57 - 2014-09-05 14:57 - 00001963 _____ () C:\Users\Public\Desktop\Autodesk 360.lnk
2014-09-05 14:38 - 2014-09-05 14:14 - 00002111 _____ () C:\Users\Public\Desktop\Autodesk Inventor Professional 2015.lnk
2014-09-05 14:16 - 2014-09-05 14:16 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-09-05 13:35 - 2014-09-05 13:35 - 00002113 _____ () C:\Users\Public\Desktop\Autodesk Design Review 2013.lnk
2014-09-05 13:32 - 2014-09-05 13:32 - 00002165 _____ () C:\Users\Public\Desktop\DWG TrueView 2015 - English.lnk
2014-09-05 13:02 - 2014-09-05 13:02 - 11250784 _____ () C:\Users\Admin\Downloads\Autodesk_Inventor_2015_English_Win_32bit_R1_wi_en-US_Setup.exe
2014-09-05 12:58 - 2014-09-05 12:58 - 00002896 _____ () C:\Users\Admin\Downloads\FSS.txt
2014-09-05 12:56 - 2014-09-05 12:56 - 00415232 _____ (Farbar) C:\Users\Admin\Downloads\FSS.exe
2014-09-05 12:50 - 2014-09-05 12:50 - 00144704 _____ () C:\Windows\Minidump\090514-24328-01.dmp
2014-09-05 12:50 - 2014-02-28 10:33 - 231322039 _____ () C:\Windows\MEMORY.DMP
2014-09-05 12:44 - 2014-09-05 12:44 - 00144704 _____ () C:\Windows\Minidump\090514-24609-01.dmp
2014-09-05 12:28 - 2014-09-05 12:28 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\Admin\Downloads\rkill.exe
2014-09-05 12:21 - 2014-09-05 12:21 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\jude.exe
2014-09-05 11:54 - 2009-07-13 22:37 - 00000000 __RHD () C:\Users\Default
2014-09-05 11:54 - 2009-07-13 22:37 - 00000000 ___RD () C:\Users\Public
2014-09-05 11:52 - 2014-09-05 10:53 - 00000000 ____D () C:\Windows\erdnt
2014-09-05 11:43 - 2009-07-13 22:03 - 43515904 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 15204352 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-09-05 11:43 - 2009-07-13 22:03 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-09-05 08:39 - 2014-09-05 08:39 - 05576440 ____R (Swearware) C:\Users\Admin\Desktop\ComboFix.exe
2014-09-05 08:17 - 2014-09-05 08:17 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-05 08:07 - 2014-09-05 08:07 - 14349744 _____ (Malwarebytes Corp.) C:\Users\Admin\Downloads\mbar-1.07.0.1012.exe
2014-09-05 07:25 - 2014-09-05 07:25 - 00033512 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-05 07:25 - 2014-09-05 07:25 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-05 07:22 - 2014-09-05 07:22 - 04857944 _____ () C:\Users\Admin\Downloads\RogueKiller.exe
2014-09-05 04:29 - 2014-06-29 13:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-05 04:29 - 2011-04-11 22:24 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-05 04:12 - 2013-06-05 09:33 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-05 04:11 - 2013-08-14 19:29 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-05 03:48 - 2014-09-05 03:48 - 00000000 ____D () C:\found.001
2014-09-05 01:22 - 2014-09-05 01:16 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Dropbox
2014-09-05 01:21 - 2014-09-05 01:21 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DropboxMaster
2014-09-05 01:20 - 2014-09-05 01:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-05 01:09 - 2013-07-30 11:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-05 01:09 - 2013-07-30 11:30 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-09-05 01:04 - 2014-09-05 01:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\AVAST Software
2014-09-05 01:00 - 2014-09-05 01:00 - 00000000 ____D () C:\Users\Admin\AppData\Local\MFAData
2014-09-05 00:51 - 2014-09-05 00:51 - 00002123 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-09-05 00:51 - 2014-09-05 00:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-09-05 00:50 - 2014-09-05 00:50 - 00779536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00414520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00192352 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00071944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-09-05 00:50 - 2014-09-05 00:50 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-09-05 00:50 - 2014-09-05 00:50 - 00000350 ____H () C:\Windows\Tasks\avast! Emergency Update.job
2014-09-05 00:50 - 2013-06-05 10:11 - 00276432 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-09-05 00:49 - 2013-06-05 10:11 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-05 00:48 - 2013-06-04 16:45 - 00000000 ____D () C:\Users\Admin
2014-09-05 00:47 - 2014-09-05 00:47 - 00000000 ____D () C:\Users\Admin\Desktop\Avast
2014-09-05 00:44 - 2014-09-05 00:44 - 04862664 _____ (AVAST Software) C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe
2014-09-05 00:28 - 2014-09-05 00:28 - 00001183 _____ () C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (2).exe
2014-09-05 00:26 - 2014-09-05 00:24 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup (1).exe
2014-09-05 00:16 - 2014-09-05 00:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Akamai
2014-09-05 00:15 - 2014-09-05 00:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Applications
2014-09-05 00:06 - 2014-09-05 00:06 - 00000000 ____D () C:\ProgramData\Applications
2014-09-05 00:05 - 2014-09-05 00:03 - 10981272 _____ (Autodesk, Inc.) C:\Users\Admin\Downloads\AutodeskDownloadManagerSetup.exe
2014-09-04 22:48 - 2013-06-05 10:07 - 00000000 ____D () C:\Windows\AutoKMS
2014-09-04 22:43 - 2014-03-06 21:50 - 00000000 ____D () C:\Program Files\Video-for-PC-1.2
2014-09-04 20:11 - 2013-07-30 11:31 - 00000000 ____D () C:\Program Files\Google
2014-09-04 19:55 - 2013-07-30 11:31 - 00000000 ____D () C:\Users\Admin\AppData\Local\Google
2014-09-04 19:36 - 2009-07-13 22:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-22 21:46 - 2014-09-05 01:55 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 20:42 - 2014-09-05 01:55 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 00:31

==================== End Of Log ============================

 

[pg42]

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-09-2014
Ran by Admin at 2014-09-11 19:51:31
Running from J:\Stuff stuff
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
AutoCAD 2015 - English (Version: 20.0.104.0 - Autodesk) Hidden
AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.1.4.1000 - Autodesk)
Autodesk App Manager (HKLM\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM\...\Autodesk Application Manager) (Version: 3.0.159.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk AutoCAD 2015 - English SP1 (HKLM\...\AutoCAD 2015 - English SP1) (Version: 1 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 32 bit (HKLM\...\{2D3DEF1D-8464-46A0-AA19-4DA55680665D}) (Version: 4.34.2701 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk Download Manager (HKLM\...\{C897D9EC-13C6-4A22-ABF7-33F2126A7DB6}) (Version: 3.0.8.0 - Autodesk, Inc.)
Autodesk DWG TrueView 2015 - English (HKLM\...\DWG TrueView 2015 - English) (Version: 20.0.51.0 - Autodesk)
Autodesk Featured Apps (HKLM\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
Autodesk Inventor Content Center Libraries 2015 (Desktop Content) (HKLM\...\{B46DECD1-1932-4EF1-0000-22D71E81877C}) (Version: 19.0.15900.0000 - Autodesk)
Autodesk Inventor Professional 2015 - English (HKLM\...\Autodesk Inventor Professional 2015) (Version: 19.0.15900.0000 - Autodesk)
Autodesk Inventor Professional 2015 (Version: 19.0.15900.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2015 English Language Pack (Version: 19.0.15900.0000 - Autodesk) Hidden
Autodesk Material Library 2015 (HKLM\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2015 (HKLM\...\{4FBC9635-AC56-4378-8FDE-C4D3ED072681}) (Version: 5.2.9.100 - Autodesk)
Autodesk Revit Interoperability for Inventor 2015 (HKLM\...\Autodesk Revit Interoperability for Inventor 2015) (Version: 15.0.166.0 - Autodesk)
Autodesk Revit Interoperability for Inventor 2015 (Version: 15.0.166.0 - Autodesk) Hidden
Autodesk Vault Basic 2015 (Client) (HKLM\...\Autodesk Vault Basic 2015 (Client)) (Version: 19.0.49.0 - Autodesk)
Autodesk Vault Basic 2015 (Client) (Version: 19.0.49.0 - Autodesk) Hidden
Autodesk Vault Basic 2015 (Client) English Language Pack (Version: 19.0.49.0 - Autodesk) Hidden
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
Configurator 360 addin (HKLM\...\{8FE324B0-B934-4D68-BAB5-DE2136036237}) (Version: 19.0.11300.9000 - Autodesk, Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
DWG TrueView 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
Eco Materials Adviser for Autodesk Inventor 2015 (32-bit) (HKLM\...\{9FD8FCF9-7A41-4B25-A15D-E1ECC3931A99}) (Version: 5.3.8.0 - Granta Design Limited)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Inventor 2015 Heartbleed Hotfix Installer (INV19001) (HKLM\...\Autodesk Inventor Professional 2015_19001) (Version: 1 - Autodesk)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x86) (Version: 7.1.00.00 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x86) English (Version: 7.1.0.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 x86 ATL Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 CRT Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 MFC Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 x86 OpenMP Runtime 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NETGEAR WNA1100 wireless USB 2.0 adapter (HKLM\...\{A2AE9709-283B-4B48-AA34-729C070A62FB}) (Version: 1.0.0.133 - NETGEAR)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SketchUp Import (HKLM\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\iDrop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppDocView.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxTest.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtCp.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\SolidObject.Dll ()
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\BodyReceiver.dll ()
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxApprenticeServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ColorButton.Ocx (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DtBridge.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\AcInetUI.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\RxInventorUtilities.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\TestServer.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\Inventor.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F2D4F4E5-EEA1-46FF-A83B-A270C92DAE4B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\InvResc.dll (Autodesk)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\ServiceModule.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\InvTXTStack.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FD703B01-4362-423E-9BDB-91BDCB16C1C9}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2015\Bin\DTInterop.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll No File

==================== Restore Points =========================

05-09-2014 18:59:27 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
06-09-2014 07:00:15 Windows Update
06-09-2014 21:27:10 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
06-09-2014 21:27:58 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
06-09-2014 21:31:10 Installed DirectX
07-09-2014 03:48:59 Installed AVG 2014
07-09-2014 03:52:51 Installed AVG 2014
09-09-2014 22:51:38 Installed NETGEAR WNA1100 wireless USB 2.0 adapter
09-09-2014 22:54:08 Device Driver Package Install: NETGEAR Inc. Network Protocol
10-09-2014 00:35:58 Removed AVG 2014
10-09-2014 00:39:34 Removed AVG 2014
10-09-2014 01:15:07 Malwarebytes Anti-Rootkit Restore Point
10-09-2014 20:40:42 Revo Uninstaller's restore point - Search module
10-09-2014 20:47:04 Revo Uninstaller's restore point - Catalina Savings Printer

 

[pg42]

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:04 - 2014-09-10 23:37 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05DD4DCC-06E6-4451-AEAA-F04E53B7EFAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {149A8FB0-BCD5-41C2-97D6-52765483D069} - System32\Tasks\Norton Security Suite\Norton Error Processor => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\SymErr.exe
Task: {43109163-DD49-4D74-9F76-B0F5461B4CBD} - System32\Tasks\UP_Scheduler => %LOCALAPPDATA%\GC\updater.exe <==== ATTENTION
Task: {59118388-98F1-4A6F-B636-40E368E4D32F} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\WSCStub.exe
Task: {67D811CA-36AC-4B46-B2CB-644F85A6CA5E} - System32\Tasks\Video-for-PC-1.2-chromeinstaller => C:\Program Files\Video-for-PC-1.2\Video-for-PC-1.2-chromeinstaller.exe [2014-03-06] (fun-games) <==== ATTENTION
Task: {6E4E137A-9867-4F58-A6BC-A60F0C81D4D0} - System32\Tasks\GC_Scheduler => %LOCALAPPDATA%\GC\Runner.exe <==== ATTENTION
Task: {8C434C81-9A8A-4178-BFAD-EFCDD10F1FCA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {CF6B5566-AE59-488F-A2A8-BA1A999AA963} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {D6C11F7B-33BD-4DF2-A2C9-BE57C3E7F771} - System32\Tasks\Norton Security Suite\Norton Error Analyzer => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\SymErr.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job => C:\Program Files\Video-for-PC-1.2\Video-for-PC-1.2-chromeinstaller.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-09-05 00:50 - 2014-09-05 00:50 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-09-09 12:13 - 2014-09-09 12:13 - 02847744 _____ () C:\Program Files\AVAST Software\Avast\defs\14090902\algo.dll
2014-09-05 00:50 - 2014-09-05 00:50 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00195976 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00052616 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00742792 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2014-05-14 07:09 - 2014-05-14 07:09 - 00043912 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2013-12-11 15:57 - 2013-12-11 15:57 - 00549272 _____ () C:\Program Files\Constant Guard Protection Suite\sqlite3.DLL
2014-09-09 18:52 - 2010-06-14 14:56 - 04573664 _____ () C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
2014-09-09 18:52 - 2009-08-28 16:50 - 00282624 _____ () C:\Program Files\NETGEAR\WNA1100\WifiSvcLib.dll
2014-09-05 14:58 - 2014-09-03 23:41 - 00047496 _____ () C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-09-05 14:58 - 2014-09-03 23:41 - 00104328 _____ () C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2014-09-11 19:41 - 2014-09-03 23:41 - 00104328 _____ () C:\Users\Admin\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll
2014-09-09 18:52 - 2010-03-22 20:07 - 00268768 _____ () C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
2014-09-09 18:52 - 2010-03-10 14:50 - 00360448 _____ () C:\Program Files\NETGEAR\WNA1100\WifiLib.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:11590865
AlternateDataStreams: C:\ProgramData\TEMP:160ADF0B
AlternateDataStreams: C:\ProgramData\TEMP:1A567D7B
AlternateDataStreams: C:\ProgramData\TEMP:2636DE16
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:2D3CB929
AlternateDataStreams: C:\ProgramData\TEMP:436BE28C
AlternateDataStreams: C:\ProgramData\TEMP:47BC930A
AlternateDataStreams: C:\ProgramData\TEMP:57B374AB
AlternateDataStreams: C:\ProgramData\TEMP:5A437AC3
AlternateDataStreams: C:\ProgramData\TEMP:639BB5E9
AlternateDataStreams: C:\ProgramData\TEMP:66AA0486
AlternateDataStreams: C:\ProgramData\TEMP:6D5A15BF
AlternateDataStreams: C:\ProgramData\TEMP:7602A0B5
AlternateDataStreams: C:\ProgramData\TEMP:82756AB7
AlternateDataStreams: C:\ProgramData\TEMP:884C7316
AlternateDataStreams: C:\ProgramData\TEMP:A5948878
AlternateDataStreams: C:\ProgramData\TEMP:B1FBBD09
AlternateDataStreams: C:\ProgramData\TEMP:B88DC997
AlternateDataStreams: C:\ProgramData\TEMP3E445EE
AlternateDataStreams: C:\ProgramData\TEMP64467B5
AlternateDataStreams: C:\ProgramData\TEMP:E2295807
AlternateDataStreams: C:\ProgramData\TEMP:EAF3ADF5
AlternateDataStreams: C:\ProgramData\TEMP:F4039384

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Ati External Event Utility => 2
MSCONFIG\Services: CltMngSvc => 2
MSCONFIG\Services: EpsonBidirectionalService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IDVaultSvc => 2
MSCONFIG\Services: NewPlayerUpdaterService => 2
MSCONFIG\Services: SMUpd => 2

==================== Faulty Device Manager Devices =============

Name: G:\
Description: SM/xD-Picture
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: TRAVELDRIVE
Description: Travel Drive CL
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Memorex
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: F:\
Description: Compact Flash
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: AntiLog32
Description: AntiLog32
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AntiLog32
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: I:\
Description: MS/MS-Pro
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: H:\
Description: SD/MMC
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

 

[pg42]

==================== Event log errors: =========================

Application errors:
==================
Error: (09/11/2014 07:41:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/11/2014 07:42:02 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (09/11/2014 07:40:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (09/11/2014 01:23:57 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (09/11/2014 07:41:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Processor: Intel(R) Celeron(R) D CPU 3.20GHz
Percentage of memory in use: 39%
Total physical RAM: 1983.43 MB
Available physical RAM: 1200.75 MB
Total Pagefile: 3966.86 MB
Available Pagefile: 2936.28 MB
Total Virtual: 2047.88 MB
Available Virtual: 1925.92 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:95.69 GB) NTFS
Drive d: (WNA1100) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS
Drive j: (TRAVELDRIVE) (Removable) (Total:3.73 GB) (Free:3.48 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 37235B06)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C)

==================== End Of Log ============================

 

[Broni]

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

When done let me know how computer is doing.

 

[pg42]

Okay, I did what you said. I can't get online now. I am connected to the network but with no internet access. Here is the log:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-09-2014
Ran by Admin at 2014-09-11 21:59:50 Run:1
Running from C:\Users\Admin\Desktop
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
(White Sky, Inc.) C:\Program Files\Constant Guard Protection Suite\IDVault.exe
C:\Program Files\Constant Guard Protection Suite
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Constant Guard.lnk
ShortcutTarget: Constant Guard.lnk -> C:\Program Files\Constant Guard Protection Suite\IDVault.exe (White Sky, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
BHO: Constant Guard Protection Suite -> {B84CDBE7-1B46-494B-A188-01D4C52DEB61} -> C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.1211.1\NativeBHO.dll (WhiteSky)
C:\ProgramData\White Sky, Inc
BHO: Updater For XFIN_PORTAL -> {bb46be07-13eb-4c49-b0f0-fc78b9ea4983} -> C:\Program Files\xfin_portal\auxi\comcastAu.dll No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S4 IDVaultSvc; C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe [41024 2013-12-11] (White Sky, Inc.)
S1 AntiLog32; \??\C:\Windows\system32\drivers\AntiLog32.sys [X]
S3 catchme; \??\C:\Users\Admin\AppData\Local\Temp\catchme.sys [X]
S3 keycrypt; system32\DRIVERS\KeyCrypt32.sys [X]
S2 mdmxsdk; system32\DRIVERS\mdmxsdk.sys [X]
C:\Users\Admin\AppData\Local\temp\Quarantine.exe
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll No File
CustomCLSID: HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll No File
2014-09-11 19:40 - 2013-07-29 15:17 - 00000000 ____D () C:\ProgramData\Norton
Task: {149A8FB0-BCD5-41C2-97D6-52765483D069} - System32\Tasks\Norton Security Suite\Norton Error Processor => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\SymErr.exe
Task: {43109163-DD49-4D74-9F76-B0F5461B4CBD} - System32\Tasks\UP_Scheduler => %LOCALAPPDATA%\GC\updater.exe <==== ATTENTION
Task: {59118388-98F1-4A6F-B636-40E368E4D32F} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\WSCStub.exe
Task: {67D811CA-36AC-4B46-B2CB-644F85A6CA5E} - System32\Tasks\Video-for-PC-1.2-chromeinstaller => C:\Program Files\Video-for-PC-1.2\Video-for-PC-1.2-chromeinstaller.exe [2014-03-06] (fun-games) <==== ATTENTION
Task: {6E4E137A-9867-4F58-A6BC-A60F0C81D4D0} - System32\Tasks\GC_Scheduler => %LOCALAPPDATA%\GC\Runner.exe <==== ATTENTION
Task: {D6C11F7B-33BD-4DF2-A2C9-BE57C3E7F771} - System32\Tasks\Norton Security Suite\Norton Error Analyzer => C:\Program Files\Norton Security Suite\Engine\21.1.0.18\SymErr.exe
Task: C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job => C:\Program Files\Video-for-PC-1.2\Video-for-PC-1.2-chromeinstaller.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:11590865
AlternateDataStreams: C:\ProgramData\TEMP:160ADF0B
AlternateDataStreams: C:\ProgramData\TEMP:1A567D7B
AlternateDataStreams: C:\ProgramData\TEMP:2636DE16
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:2D3CB929
AlternateDataStreams: C:\ProgramData\TEMP:436BE28C
AlternateDataStreams: C:\ProgramData\TEMP:47BC930A
AlternateDataStreams: C:\ProgramData\TEMP:57B374AB
AlternateDataStreams: C:\ProgramData\TEMP:5A437AC3
AlternateDataStreams: C:\ProgramData\TEMP:639BB5E9
AlternateDataStreams: C:\ProgramData\TEMP:66AA0486
AlternateDataStreams: C:\ProgramData\TEMP:6D5A15BF
AlternateDataStreams: C:\ProgramData\TEMP:7602A0B5
AlternateDataStreams: C:\ProgramData\TEMP:82756AB7
AlternateDataStreams: C:\ProgramData\TEMP:884C7316
AlternateDataStreams: C:\ProgramData\TEMP:A5948878
AlternateDataStreams: C:\ProgramData\TEMP:B1FBBD09
AlternateDataStreams: C:\ProgramData\TEMP:B88DC997
AlternateDataStreams: C:\ProgramData\TEMP3E445EE
AlternateDataStreams: C:\ProgramData\TEMP64467B5
AlternateDataStreams: C:\ProgramData\TEMP:E2295807
AlternateDataStreams: C:\ProgramData\TEMP:EAF3ADF5
AlternateDataStreams: C:\ProgramData\TEMP:F4039384
2014-09-04 22:43 - 2014-03-06 21:50 - 00000000 ____D () C:\Program Files\Video-for-PC-1.2
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna

2014-09-11 19:41 - 2014-03-06 21:50 - 00003100 _____ () C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job
CHR Extension: (Video-for-PC-1.2) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna [2014-09-11]


*****************

[1844] C:\Program Files\Constant Guard Protection Suite\IDVault.exe => Process closed successfully.
C:\Program Files\Constant Guard Protection Suite => Moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Constant Guard.lnk => Moved successfully.
C:\Program Files\Constant Guard Protection Suite\IDVault.exe not found.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B84CDBE7-1B46-494B-A188-01D4C52DEB61}" => Key deleted successfully.
"HKCR\CLSID\{B84CDBE7-1B46-494B-A188-01D4C52DEB61}" => Key deleted successfully.
C:\ProgramData\White Sky, Inc => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bb46be07-13eb-4c49-b0f0-fc78b9ea4983}" => Key deleted successfully.
"HKCR\CLSID\{bb46be07-13eb-4c49-b0f0-fc78b9ea4983}" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
IDVaultSvc => Service deleted successfully.
AntiLog32 => Service deleted successfully.
catchme => Service deleted successfully.
keycrypt => Service deleted successfully.
mdmxsdk => Service deleted successfully.
C:\Users\Admin\AppData\Local\temp\Quarantine.exe => Moved successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}" => Key deleted successfully.
"HKU\S-1-5-21-1041798143-2999261760-1342775035-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}" => Key deleted successfully.
C:\ProgramData\Norton => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{149A8FB0-BCD5-41C2-97D6-52765483D069}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{149A8FB0-BCD5-41C2-97D6-52765483D069}" => Key deleted successfully.
C:\Windows\System32\Tasks\Norton Security Suite\Norton Error Processor => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Security Suite\Norton Error Processor" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{43109163-DD49-4D74-9F76-B0F5461B4CBD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43109163-DD49-4D74-9F76-B0F5461B4CBD}" => Key deleted successfully.
C:\Windows\System32\Tasks\UP_Scheduler => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UP_Scheduler" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59118388-98F1-4A6F-B636-40E368E4D32F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59118388-98F1-4A6F-B636-40E368E4D32F}" => Key deleted successfully.
C:\Windows\System32\Tasks\Norton WSC Integration => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton WSC Integration" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{67D811CA-36AC-4B46-B2CB-644F85A6CA5E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67D811CA-36AC-4B46-B2CB-644F85A6CA5E}" => Key deleted successfully.
C:\Windows\System32\Tasks\Video-for-PC-1.2-chromeinstaller => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Video-for-PC-1.2-chromeinstaller" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6E4E137A-9867-4F58-A6BC-A60F0C81D4D0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E4E137A-9867-4F58-A6BC-A60F0C81D4D0}" => Key deleted successfully.
C:\Windows\System32\Tasks\GC_Scheduler => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GC_Scheduler" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D6C11F7B-33BD-4DF2-A2C9-BE57C3E7F771}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6C11F7B-33BD-4DF2-A2C9-BE57C3E7F771}" => Key deleted successfully.
C:\Windows\System32\Tasks\Norton Security Suite\Norton Error Analyzer => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Security Suite\Norton Error Analyzer" => Key deleted successfully.
C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job => Moved successfully.
C:\ProgramData\TEMP => ":11590865" ADS removed successfully.
C:\ProgramData\TEMP => ":160ADF0B" ADS removed successfully.
C:\ProgramData\TEMP => ":1A567D7B" ADS removed successfully.
C:\ProgramData\TEMP => ":2636DE16" ADS removed successfully.
C:\ProgramData\TEMP => ":2CB9631F" ADS removed successfully.
C:\ProgramData\TEMP => ":2D3CB929" ADS removed successfully.
C:\ProgramData\TEMP => ":436BE28C" ADS removed successfully.
C:\ProgramData\TEMP => ":47BC930A" ADS removed successfully.
C:\ProgramData\TEMP => ":57B374AB" ADS removed successfully.
C:\ProgramData\TEMP => ":5A437AC3" ADS removed successfully.
C:\ProgramData\TEMP => ":639BB5E9" ADS removed successfully.
C:\ProgramData\TEMP => ":66AA0486" ADS removed successfully.
C:\ProgramData\TEMP => ":6D5A15BF" ADS removed successfully.
C:\ProgramData\TEMP => ":7602A0B5" ADS removed successfully.
C:\ProgramData\TEMP => ":82756AB7" ADS removed successfully.
C:\ProgramData\TEMP => ":884C7316" ADS removed successfully.
C:\ProgramData\TEMP => ":A5948878" ADS removed successfully.
C:\ProgramData\TEMP => ":B1FBBD09" ADS removed successfully.
C:\ProgramData\TEMP => ":B88DC997" ADS removed successfully.
C:\ProgramData\TEMP => "3E445EE" ADS removed successfully.
C:\ProgramData\TEMP => "64467B5" ADS removed successfully.
C:\ProgramData\TEMP => ":E2295807" ADS removed successfully.
C:\ProgramData\TEMP => ":EAF3ADF5" ADS removed successfully.
C:\ProgramData\TEMP => ":F4039384" ADS removed successfully.
C:\Program Files\Video-for-PC-1.2 => Moved successfully.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna => Moved successfully.
"C:\Windows\Tasks\Video-for-PC-1.2-chromeinstaller.job" => File/Directory not found.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lndipknmjijnalnkamonmljeaojdbpna directory not found.


The system needed a reboot.

==== End of Fixlog ====

 

[Broni]

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

• Make sure the following options are checked:
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Windows Defender
  • Other Services
• Press "Scan".
• It will create a log (FSS.txt) in the same directory the tool is run.
• Please copy and paste the log to your reply.

===========================================

Please download MiniToolBox, save it to your desktop and run it.

Checkmark following boxes:

• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List content of Hosts
• List IP configuration
• List Winsock Entries
• List last 10 Event Viewer log
• List Devices (do NOT change any settings)
• List Users, Partitions and Memory size
• List Restore Points

Click Go and post the result.

 

[pg42]

Here are the logfiles:

Farbar Service Scanner Version: 21-07-2014
Ran by Admin (administrator) on 12-09-2014 at 06:54:04
Running from "C:\Users\Admin\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Google.com is unreachable
Attempt to access Yahoo.com returned error: Yahoo.com is unreachable


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcore.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****

MiniToolBox by Farbar Version: 21-07-2014
Ran by Admin (administrator) on 12-09-2014 at 06:56:32
Running from "C:\Users\Admin\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

NETGEAR WNA1100 Wireless-N 150 USB Adapter = Wireless Network Connection (Connected)
Realtek RTL8139/810x Family Fast Ethernet NIC = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Admin-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.ct.comcast.net.

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-19-21-A2-1F-8D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.ct.comcast.net.
Description . . . . . . . . . . . : NETGEAR WNA1100 Wireless-N 150 USB Adapter
Physical Address. . . . . . . . . : C4-3D-C7-C3-34-EF
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2601:6:1680:52e:15e0:8c58:491b:349b(Preferred)
IPv6 Address. . . . . . . . . . . : 2601:6:1680:52e:a003:200c:8b88:ff41(Preferred)
Lease Obtained. . . . . . . . . . : Friday, September 12, 2014 6:25:17 AM
Lease Expires . . . . . . . . . . : Monday, September 15, 2014 11:22:30 PM
Temporary IPv6 Address. . . . . . : 2601:6:1680:52e:7022:1756:9e94:746f(Preferred)
Link-local IPv6 Address . . . . . : fe80::15e0:8c58:491b:349b%14(Preferred)
Default Gateway . . . . . . . . . : fe80::226:f3ff:fed2:1002%14
DHCPv6 IAID . . . . . . . . . . . : 331627975
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-40-33-5C-00-19-21-A2-1F-8D
DNS Servers . . . . . . . . . . . : 2001:558:feed::1
2001:558:feed::2
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{FB0E1B2B-7257-45E4-AF40-920889E018EE}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cdns01.comcast.net
Address: 2001:558:feed::1

Name: google.com
Addresses: 2607:f8b0:4006:80a::1003
173.194.123.38
173.194.123.34
173.194.123.35
173.194.123.37
173.194.123.40
173.194.123.41
173.194.123.46
173.194.123.32
173.194.123.36
173.194.123.39
173.194.123.33


Pinging google.com [2607:f8b0:4006:809::1005] with 32 bytes of data:
Reply from 2607:f8b0:4006:809::1005: time=24ms
Reply from 2607:f8b0:4006:809::1005: time=21ms

Ping statistics for 2607:f8b0:4006:809::1005:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 21ms, Maximum = 24ms, Average = 22ms
Server: cdns01.comcast.net
Address: 2001:558:feed::1

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
206.190.36.45

Ping request could not find host yahoo.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 19 21 a2 1f 8d ......Realtek RTL8139/810x Family Fast Ethernet NIC
1...........................Software Loopback Interface 1
14...c4 3d c7 c3 34 ef ......NETGEAR WNA1100 Wireless-N 150 USB Adapter
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 281 ::/0 fe80::226:f3ff:fed2:1002
1 306 ::1/128 On-link
14 33 2601:6:1680:52e::/64 On-link
14 281 2601:6:1680:52e:15e0:8c58:491b:349b/128
On-link
14 281 2601:6:1680:52e:7022:1756:9e94:746f/128
On-link
14 281 2601:6:1680:52e:a003:200c:8b88:ff41/128
On-link
14 281 fe80::/64 On-link
14 281 fe80::15e0:8c58:491b:349b/128
On-link
1 306 ff00::/8 On-link
14 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/11/2014 10:31:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2014 10:02:30 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2014 07:41:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/12/2014 06:23:23 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (09/11/2014 11:05:52 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (09/11/2014 10:32:02 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (09/11/2014 10:30:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (09/11/2014 10:04:26 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (09/11/2014 10:02:29 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (09/11/2014 10:01:56 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%1460.

Error: (09/11/2014 10:01:19 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (09/11/2014 09:59:52 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (09/11/2014 07:42:02 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005


Microsoft Office Sessions:
=========================
Error: (09/11/2014 10:31:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2014 10:02:30 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2014 07:41:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


========================= Devices: ================================

Name: G:\
Description: SM/xD-Picture
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: TRAVELDRIVE
Description: Travel Drive CL
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Memorex
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: F:\
Description: Compact Flash
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: I:\
Description: MS/MS-Pro
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: H:\
Description: SD/MMC
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFRd
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 1983.43 MB
Available physical RAM: 1274.19 MB
Total Pagefile: 3966.86 MB
Available Pagefile: 3001.34 MB
Total Virtual: 2047.88 MB
Available Virtual: 1954.6 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:148.95 GB) (Free:95.7 GB) NTFS
3 Drive d: (WNA1100) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS
9 Drive j: (TRAVELDRIVE) (Removable) (Total:3.73 GB) (Free:3.48 GB) FAT32

========================= Users: ========================================

User accounts for \\ADMIN-PC

Admin Administrator Guest

========================= Restore Points ==================================

05-09-2014 18:59:27 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
06-09-2014 07:00:15 Windows Update
06-09-2014 21:27:10 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
06-09-2014 21:27:58 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
06-09-2014 21:31:10 Installed DirectX
07-09-2014 03:48:59 Installed AVG 2014
07-09-2014 03:52:51 Installed AVG 2014
09-09-2014 22:51:38 Installed NETGEAR WNA1100 wireless USB 2.0 adapter
09-09-2014 22:54:08 Device Driver Package Install: NETGEAR Inc. Network Protocol
10-09-2014 00:35:58 Removed AVG 2014
10-09-2014 00:39:34 Removed AVG 2014
10-09-2014 01:15:07 Malwarebytes Anti-Rootkit Restore Point
10-09-2014 20:40:42 Revo Uninstaller's restore point - Search module
10-09-2014 20:47:04 Revo Uninstaller's restore point - Catalina Savings Printer

**** End of log ****

 

[pg42]

Okay, now it shows that I have an internet connection and it lets me go to google. It gives me search results but no matter which result I click on, I get a "This webpage is not available" page with this error message:

"The server at www.amazon.com can't be found, because the DNS
lookup failed. DNS is the network service that translates a
website's name to its Internet address. This error is most
often caused by having no connection to the Internet or a
misconfigured network. It can also be caused by an unresponsive
DNS server or a firewall preventing Google Chrome from
accessing the network.
Go to http://www.amazon.co/
Search on Google

Error code: ERR_NAME_NOT_RESOLVED"

Of course the name of the site that I am trying to go to changes with each attempt but, other than that, the message is the same.

 

[Broni]

Does the same thing happen when trying IE?

I'm assuming you're trying to connect wirelessly.
If so, please get ethernet cable and see if you can surf the net while hardwired.

 

[pg42]

Okay, you are correct, I was trying to get online wirelessly. When I use an ethernet cable I do show an internet connection. Actually, I can get online wirelessly now as well. I still can't get to any websites with explorer. I can with Chrome, but it's unpredictable. When it does connect to a site, it seems that it is always with the secure protocol (address starts with https. I don't type in the address that way, it changes to that itself when I click on a link. These are regular sites like yahoo and google.

 

[Broni]

Reset Internet Explorer.
Go here: http://support.microsoft.com/kb/923737 and run "FixIt" procedure.
You can use ANY browser to download "FixIt" file.
Make sure you follow ALL steps listed there.

Reset Chrome...
Click on "Customize and control Google Chrome":

Click "Settings" then "Show advanced settings" at the bottom of the screen.
Click "Reset browser settings" button.
Restart Chrome.

If the above didn't help....

Reinstall Chrome...
If you want to save your bookmarks...
How to Backup Bookmarks in Google Chrome

• Close all Chrome windows and tabs.
• Go to the Start menu > Control Panel. (Windows 8 users: Learn how to access the Control Panel)
• Click Programs and Features.
• Double-click Google Chrome.
• Click Uninstall from the confirmation dialog. Delete your user profile information, like your browser preferences, bookmarks, and history, by selecting the "Also delete your browsing data" checkbox.

Install fresh copy.