Here are the log files:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by TEST1 (administrator) on DOLSENLAPTOP (27-03-2016 17:54:44)
Running from C:\Users\TEST1\Downloads
Loaded Profiles: TEST1 (Available Profiles: dolsen & dolsen2 & TEST1)
Platform: Windows 7 Professional Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Wave Systems Corp.) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DeviceVM, Inc.) D:\Program Files\Dell\Reader 2.1\DVMExportService.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_service.exe
() C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation (2)\binCFW\StandAloneSlv.exe
(Dell SonicWALL, Inc.) C:\Program Files\Dell SonicWALL\Global VPN Client\SWGVCSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AOL Inc.) C:\Program Files\Common Files\AOL\1453259556\ee\aolsoftware.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_comm_customer.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_system_customer.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_user_customer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AOL Inc.) C:\Program Files\Common Files\AOL\acs\AOLacsd.exe
(Dell SonicWALL, Inc.) C:\Program Files\Dell SonicWALL\Global VPN Client\SWGVC.exe
(Microsoft Corporation) C:\Windows\System32\dinotify.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(AOL Inc.) C:\Program Files\AOL Desktop 9.8.2\waol.exe
(AOL Inc.) C:\Program Files\AOL Desktop 9.8.2\shellmon.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DBRMTray] => C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe [206336 2010-05-20] (Microsoft)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [288112 2010-05-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-12-17] (Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139768 2016-03-27] (AVAST Software)
HKLM\...\RunOnce: [DBRMTray] => C:\Dell\DBRM\Reminder\TrayApp.exe [7168 2010-02-04] (Microsoft)
Winlogon\Notify\GoToAssist Express Customer: C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_winlogon.dll [2016-01-25] (Citrix Systems, Inc.)
HKU\S-1-5-21-3056380410-417315007-640916887-1003\...\Run: [AOL Fast Start] => C:\Program Files\AOL Desktop 9.8.2\AOL.EXE [73584 2015-12-15] (AOL Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 wvauth
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-03-27] (AVAST Software)
ShellIconOverlayIdentifiers: [EnabledUnlockedFDEIconOverlay] -> {30D3C2AF-9709-4D05-9CF4-13335F3C1E4A} => C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmIconOverlay.dll [2010-03-29] (Wave Systems Corp.)
ShellIconOverlayIdentifiers: [UninitializedFdeIconOverlay] -> {CF08DA3E-C97D-4891-A66B-E39B28DD270F} => C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmIconOverlay.dll [2010-03-29] (Wave Systems Corp.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{515EB4EB-0182-4754-8B99-31519D791097}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{B74DF508-EBBE-448C-A4B9-F4DE13A86BFF}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {9AB47079-668A-43FC-944F-27BEE07483FC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox
SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-27] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Search Toolbar -> {9D425283-D487-4337-BAB6-AB8354A81457} -> C:\Program Files\Search Toolbar\SearchToolbar.dll [2010-04-08] ()
BHO: Search.com Bar -> {9f85f783-362b-4373-afb4-4999ef33aa35} -> C:\Program Files\searchcom_004\searchcom_002X.dll [2012-03-01] ()
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18] (Google Inc.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Hotspot Shield Class -> {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> C:\Program Files\Hotspot Shield\HssIE\HssIE.dll [2013-02-13] (AnchorFree Inc.)
Toolbar: HKLM - Search Toolbar - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll [2010-04-08] ()
Toolbar: HKLM - Search.com Bar - {9f85f783-362b-4373-afb4-4999ef33aa35} - C:\Program Files\searchcom_004\searchcom_002X.dll [2012-03-01] ()
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18] (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0045-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CB1A2363-BCE7-42B1-A8B2-E530C9F0B0DA} hxxps://secure.digsigtrust.com/ms/IdenTrustCertEnroll.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-23] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_45\bin\new_plugin\npjp2.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-18] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin: @viewpoint.com/VMP -> C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll [2004-02-20] ()
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-27]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-11-16]
Chrome:
=======
CHR Profile: C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-19]
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-19]
CHR Extension: (Google Drive) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-19]
CHR Extension: (YouTube) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-19]
CHR Extension: (Google Search) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-19]
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-19]
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-19]
CHR Extension: (Gmail) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-19]
CHR HKLM\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\dolsen\AppData\Local\Temp\crx744.tmp <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-03-27]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46184 2014-02-06] (AOL Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-27] (AVAST Software)
S3 CoordinatorServiceHost; C:\Program Files\SolidWorks Corp\SolidWorks (3)\swScheduler\DTSCoordinatorService.exe [89160 2012-03-28] (Dassault Systèmes SolidWorks Corp.)
R2 Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [812448 2010-03-24] (Broadcom Corporation)
R2 Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [27040 2010-03-24] (Broadcom Corporation)
R2 dcpsysmgrsvc; c:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [388464 2010-08-24] (Dell Inc.)
R2 DvmMDES; D:\Program Files\Dell\Reader 2.1\DVMExportService.exe [327680 2010-05-04] (DeviceVM, Inc.) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2011-09-15] (Flexera Software, Inc.) [File not signed]
R2 GoToAssist Remote Support Customer; C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_service.exe [610528 2016-01-25] (Citrix Systems, Inc.)
R2 InstallFilterService; C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe [60928 2010-01-10] () [File not signed]
S4 msvsmon80; C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2799808 2005-09-23] (Microsoft Corporation)
R2 Remote Solver for Flow Simulation 2010; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe [144680 2009-09-11] (Mentor Graphics Corporation)
R2 Remote Solver for Flow Simulation 2011; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation (2)\binCFW\StandAloneSlv.exe [89864 2011-07-11] (Mentor Graphics Corporation)
S3 Remote Solver for Flow Simulation 2012; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation (3)\binCFW\StandAloneSlv.exe [95368 2012-02-07] (Mentor Graphics Corporation) [File not signed]
S3 RoxMediaDB12OEM; C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [1116656 2010-09-04] (Sonic Solutions)
S2 RoxWatch12; C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [219632 2010-09-04] (Sonic Solutions)
S3 SecureStorageService; C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe [1032192 2010-02-03] (Wave Systems Corp.) [File not signed]
S3 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2011-01-20] (SolidWorks) [File not signed]
S2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [245842 2010-05-26] (IDT, Inc.)
R2 SWGVCSvc; C:\Program Files\Dell SonicWALL\Global VPN Client\SWGVCSvc.exe [256800 2014-03-06] (Dell SonicWALL, Inc.)
S2 tcsd_win32.exe; C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1273856 2008-11-12] () [File not signed]
R2 TdmService; C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe [1164648 2010-03-29] (Wave Systems Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [4539392 2010-02-02] (Dell Inc.) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Acceler; C:\Windows\System32\DRIVERS\Accelern.sys [42672 2010-01-18] (ST Microelectronics)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [32792 2016-03-27] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [91168 2016-03-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-03-27] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [58776 2016-03-27] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [816304 2016-03-27] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447848 2016-03-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [127432 2016-03-27] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [221240 2016-03-27] (AVAST Software)
R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18424 2010-02-02] (Broadcom Corporation)
R3 cvusbdrv; C:\Windows\System32\Drivers\cvusbdrv.sys [33832 2009-10-30] (Broadcom Corporation)
R1 DNE; C:\Windows\System32\DRIVERS\dnelwf.sys [108368 2013-10-03] (Citrix Systems, Inc.)
R1 DVMIO; D:\Program Files\Dell\Reader 2.1\dvmio.sys [18320 2010-05-04] (DeviceVM, Inc.)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [389456 2015-07-27] (Symantec Corporation)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [77808 2014-01-31] (FTDI Ltd.)
S2 MCUSBPM3; C:\Windows\System32\Drivers\PM3w2k.sys [12447 2004-03-22] (Microchip Technology, Inc.) [File not signed]
S3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [30880 2010-02-03] (Intel Corporation )
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18432 2011-08-02] (Apple Inc.) [File not signed]
R0 PBADRV; C:\Windows\System32\DRIVERS\PBADRV.sys [26608 2008-06-04] (Dell Inc)
R2 risdpcie; C:\Windows\System32\DRIVERS\risdpe86.sys [59904 2010-03-21] (REDC)
S3 rixdpcie; C:\Windows\system32\DRIVERS\rixdpe86.sys [38912 2010-03-21] (REDC)
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [17920 2009-10-08] (Silicon Laboratories, Inc.)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [63872 2009-10-08] (Silicon Laboratories)
R0 stdflt; C:\Windows\System32\DRIVERS\stdfltn.sys [17072 2010-01-18] (ST Microelectronics)
R2 SWIPsec; C:\Windows\system32\Drivers\SWIPsec.sys [95120 2014-03-06] (Dell SonicWALL, Inc.)
S3 SWVNIC; C:\Windows\System32\DRIVERS\swvnic.sys [21016 2013-08-26] (SonicWALL, Inc.)
R3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-29] (America Online, Inc.)
R2 WavxDMgr; C:\Windows\System32\DRIVERS\WavxDMgr.sys [229888 2010-01-19] (Wave Systems Corp.) [File not signed]
U5 BTHPORT; C:\Windows\System32\Drivers\BTHPORT.sys [393728 2012-07-06] () [File not signed]
S3 EraserUtilDrv11410; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11410.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-27 17:57 - 2016-03-27 17:57 - 00001120 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-03-27 17:57 - 2016-03-27 17:57 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-03-27 17:56 - 2016-03-27 17:56 - 00035096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-03-27 17:54 - 2016-03-27 17:56 - 00021426 _____ C:\Users\TEST1\Downloads\FRST.txt
2016-03-27 17:53 - 2016-03-27 17:54 - 00000000 ____D C:\FRST
2016-03-27 17:52 - 2016-03-27 17:53 - 01725440 _____ (Farbar) C:\Users\TEST1\Downloads\FRST.exe
2016-03-27 17:52 - 2016-03-27 17:52 - 00000000 ____D C:\Users\TEST1\AppData\Roaming\AVAST Software
2016-03-27 17:51 - 2016-03-27 17:51 - 00002077 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-03-27 17:51 - 2016-03-27 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-03-27 17:51 - 2016-03-27 17:51 - 00000000 ____D C:\Program Files\Common Files\AV
2016-03-27 17:50 - 2016-03-27 17:51 - 00816304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-27 17:50 - 2016-03-27 17:51 - 00447848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-03-27 17:50 - 2016-03-27 17:51 - 00221240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.1459115483025
2016-03-27 17:50 - 2016-03-27 17:51 - 00221240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-03-27 17:50 - 2016-03-27 17:51 - 00091168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00812720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1459115489922
2016-03-27 17:50 - 2016-03-27 17:50 - 00447848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1459115485568
2016-03-27 17:50 - 2016-03-27 17:50 - 00334280 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-03-27 17:50 - 2016-03-27 17:50 - 00221240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.1459115482105
2016-03-27 17:50 - 2016-03-27 17:50 - 00127432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00091232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00091168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.1459115489922
2016-03-27 17:50 - 2016-03-27 17:50 - 00058776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-03-27 17:50 - 2016-03-27 17:50 - 00032792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-03-27 17:49 - 2016-03-27 17:49 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-27 17:48 - 2016-03-27 17:56 - 00000000 ____D C:\ProgramData\AVAST Software
2016-03-27 17:48 - 2016-03-27 17:48 - 00447848 _____ (AVAST Software) C:\Windows\system32\Drivers\orohurvv.sys
2016-03-27 17:29 - 2016-03-27 17:31 - 201900432 _____ (AVAST Software) C:\Users\TEST1\Downloads\avast_free_antivirus_setup.exe
2016-03-25 18:36 - 2016-03-25 18:36 - 00261120 _____ C:\Users\TEST1\Desktop\Top End Support.SLDDRW
2016-03-25 15:45 - 2016-03-25 15:46 - 00022137 ____N C:\Users\TEST1\Desktop\Front Wall 2x4 - Sheet1.pdf
2016-03-25 15:43 - 2016-03-25 15:43 - 00008681 _____ C:\Users\TEST1\Desktop\rear wall 2x4 - Sheet1.pdf
2016-03-25 15:39 - 2016-03-25 18:37 - 00269824 _____ C:\Users\TEST1\Desktop\rear wall 2x4.SLDDRW
2016-03-25 15:37 - 2016-03-25 18:37 - 00264704 _____ C:\Users\TEST1\Desktop\Front Wall 2x4.SLDDRW
2016-03-25 14:48 - 2016-03-25 14:48 - 00104082 _____ C:\Users\TEST1\Desktop\Kansas City Hotel.pdf
2016-03-20 15:36 - 2016-03-25 18:36 - 00104960 _____ C:\Users\TEST1\Desktop\Top End Support.SLDPRT
2016-03-20 14:54 - 2016-03-25 18:36 - 00128512 _____ C:\Users\TEST1\Desktop\Front Wall.SLDPRT
2016-03-20 14:44 - 2016-03-25 18:36 - 00119296 _____ C:\Users\TEST1\Desktop\Side Cover.SLDPRT
2016-03-20 09:03 - 2016-03-20 09:16 - 00079360 _____ C:\Users\TEST1\Desktop\2x4x55.SLDPRT
2016-03-20 08:51 - 2016-03-25 18:36 - 00109056 _____ C:\Users\TEST1\Desktop\2x4x14.SLDPRT
2016-03-20 08:35 - 2016-03-25 18:36 - 00098816 _____ C:\Users\TEST1\Desktop\Floor.SLDPRT
2016-03-20 08:32 - 2016-03-25 18:36 - 00272384 _____ C:\Users\TEST1\Desktop\Chicken Coop Base.SLDASM
2016-03-20 08:28 - 2016-03-25 18:36 - 00087040 _____ C:\Users\TEST1\Desktop\4x4x24.SLDPRT
2016-03-20 08:13 - 2016-03-25 18:36 - 00102400 _____ C:\Users\TEST1\Desktop\2x4x4.SLDPRT
2016-03-20 08:13 - 2016-03-25 18:36 - 00085504 _____ C:\Users\TEST1\Desktop\2x4x5.SLDPRT
2016-03-20 08:13 - 2016-03-25 18:36 - 00083968 _____ C:\Users\TEST1\Desktop\2x4x6.SLDPRT
2016-03-20 08:12 - 2016-03-20 08:12 - 00000000 ____D C:\Users\TEST1\Desktop\Chicken Coop
2016-03-19 19:18 - 2016-03-25 15:10 - 00370688 _____ C:\Users\TEST1\Desktop\Chicken Coop.SLDPRT
2016-03-17 23:01 - 2016-03-17 23:01 - 00695182 _____ C:\Users\TEST1\Downloads\The Quick Start Guide to Fishing Cape Cod PDF.pdf
2016-03-15 23:57 - 2016-03-15 23:57 - 00077985 _____ C:\Users\TEST1\Desktop\Penn Power Handle Order.pdf
2016-03-15 12:10 - 2016-03-15 12:10 - 00070029 _____ C:\Users\TEST1\Desktop\2016 GEMS - Natick, MA - Confirmation _ Online Registration by Cvent.pdf
2016-03-08 08:47 - 2016-03-08 08:47 - 00380910 _____ C:\Users\TEST1\Desktop\Performance graph 2.pdf
2016-03-08 08:39 - 2016-03-08 08:39 - 00024841 _____ C:\Users\TEST1\Desktop\Performance Chart 1.pdf
2016-03-08 08:31 - 2016-03-08 08:31 - 01771563 _____ C:\Users\TEST1\Downloads\4723-20Jan2015.pdf
2016-03-05 08:23 - 2016-03-05 08:23 - 00390543 _____ C:\Users\TEST1\Desktop\Oil loss.pdf
2016-03-05 07:59 - 2016-03-05 07:59 - 00029045 _____ C:\Users\TEST1\Downloads\6284-01Mar2016 (2).pdf
2016-03-05 07:59 - 2016-03-05 07:58 - 00029045 _____ C:\Users\TEST1\Desktop\6284-01Mar2016 (1).pdf
2016-03-05 07:58 - 2016-03-05 07:58 - 00029045 _____ C:\Users\TEST1\Downloads\6284-01Mar2016 (1).pdf
2016-03-05 07:51 - 2016-03-05 07:51 - 00029045 _____ C:\Users\TEST1\Downloads\6284-01Mar2016.pdf
2016-03-01 07:17 - 2016-03-01 07:17 - 00071898 _____ C:\Users\TEST1\Downloads\ATT00002 (1).htm
2016-02-29 23:53 - 2016-02-29 23:53 - 00074777 _____ C:\Users\TEST1\Desktop\5100801 (Rev. 1) Twin Rotor Core.STEP
2016-02-29 23:46 - 2016-02-24 17:29 - 01779200 _____ C:\Users\TEST1\Desktop\5100803 (Rev. 2) 48v Twin Stator Assy.SLDASM
2016-02-29 23:46 - 2016-02-24 17:28 - 11808768 _____ C:\Users\TEST1\Desktop\5100803 (Rev. 2) 48v Twin Stator Assy.SLDDRW
2016-02-29 23:38 - 2015-12-16 15:41 - 00964608 _____ C:\Users\TEST1\Desktop\5100801 (Rev. 1) Twin Rotor Core.SLDDRW
2016-02-29 23:38 - 2015-12-16 15:31 - 00571904 _____ C:\Users\TEST1\Desktop\5100801 (Rev. 1) Twin Rotor Core.SLDPRT
2016-02-29 23:29 - 2016-02-29 23:29 - 00390136 _____ C:\Users\TEST1\Desktop\Rental Car Reservation.pdf
2016-02-29 22:57 - 2016-02-29 22:57 - 24246378 _____ C:\Users\TEST1\Desktop\AHRI_Project-8007_Final_Report.pdf
2016-02-29 22:53 - 2016-02-29 22:53 - 00962046 _____ C:\Users\TEST1\Downloads\Refrigerants-and-their-Responsible-Use-Position-Document-2014-pdf.pdf
2016-02-29 22:41 - 2016-02-29 22:41 - 03345502 _____ C:\Users\TEST1\Downloads\LFRT-007_Celstran_AutoPPT_AM_1013.pdf
2016-02-28 10:34 - 2013-10-16 16:38 - 00272384 _____ C:\Users\TEST1\Desktop\3100803 (Rev. A) Bottom Balance Weight, 1.9cc Low Noise.SLDPRT
2016-02-28 10:34 - 2012-12-21 12:42 - 00201216 _____ C:\Users\TEST1\Desktop\3100804 (Rev. B) Top Balance Weight, 1.9cc Low Noise.SLDPRT
2016-02-28 10:34 - 2012-11-29 18:47 - 00529408 _____ C:\Users\TEST1\Desktop\Balance Weight Screw_91771A078.SLDPRT
2016-02-28 10:33 - 2016-02-28 10:34 - 00410112 _____ C:\Users\TEST1\Desktop\1. 9 Ningbo Rotor Balance Assy With Rev. B Balance Weights 12_21_12.SLDASM
2016-02-28 10:28 - 2016-02-28 10:34 - 00641024 _____ C:\Users\TEST1\Desktop\DynamicBalanceAssyWithoutMuffler030210.SLDASM
2016-02-28 10:28 - 2016-02-28 10:34 - 00441856 _____ C:\Users\TEST1\Desktop\1.9ccShaftFinishMachine.SLDPRT
2016-02-28 10:28 - 2016-02-28 10:29 - 01931264 _____ C:\Users\TEST1\Desktop\1.9ccAssyWith NingboMotor.SLDASM
2016-02-28 10:28 - 2013-10-21 12:03 - 00425472 _____ C:\Users\TEST1\Desktop\XA00013 (Rev4Metric)1.4ccTopFlangeFinishMachineHighVolume.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:03 - 00353792 _____ C:\Users\TEST1\Desktop\XX000125(RevC)TopCap.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:03 - 00105984 _____ C:\Users\TEST1\Desktop\cylinderscrew.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:02 - 00376832 _____ C:\Users\TEST1\Desktop\newstator.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:02 - 00143872 _____ C:\Users\TEST1\Desktop\EM00008 - ROTOR.SLDPRT
2016-02-28 10:28 - 2013-04-18 11:02 - 00369664 _____ C:\Users\TEST1\Desktop\XX00074 (Rev E)CompressorCase.SLDPRT
2016-02-28 10:28 - 2013-01-15 14:09 - 00269824 _____ C:\Users\TEST1\Desktop\XA00011 (Rev3Metric)1.4ccLowerFlangeFinishMachineHighVolume.SLDPRT
2016-02-28 10:28 - 2012-11-29 17:54 - 00205312 _____ C:\Users\TEST1\Desktop\Tall1.9DynamicBalanceWeightTop.SLDPRT
2016-02-28 10:28 - 2012-11-29 17:54 - 00203776 _____ C:\Users\TEST1\Desktop\balanceweight.SLDPRT
2016-02-28 10:28 - 2012-11-28 10:20 - 00489472 _____ C:\Users\TEST1\Desktop\1.9ccCylinderFinishMachine.SLDPRT
2016-02-28 10:28 - 2012-11-28 10:20 - 00193536 _____ C:\Users\TEST1\Desktop\1.9ccRollerFinishMachine.SLDPRT
2016-02-28 10:28 - 2010-02-25 17:37 - 00649216 _____ C:\Users\TEST1\Desktop\XX00096 (Rev A)Muffler.SLDPRT
2016-02-28 10:26 - 2016-02-28 10:26 - 00113664 _____ C:\Users\TEST1\Desktop\440 Fywheel Balance.SLDASM
2016-02-28 09:56 - 2016-02-28 09:56 - 00104448 _____ C:\Users\TEST1\Desktop\Balancing Slug.SLDPRT
2016-02-27 08:35 - 2016-03-27 13:47 - 00000000 ____D C:\Users\TEST1\AppData\Local\ElevatedDiagnostics
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-27 17:49 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\inf
2016-03-27 17:45 - 2011-09-12 09:19 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 15:52 - 2009-07-14 00:34 - 00025424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-27 15:52 - 2009-07-14 00:34 - 00025424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-26 19:15 - 2015-03-10 12:16 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d05b4d8adc44a1.job
2016-03-25 18:38 - 2016-01-19 23:21 - 00000000 ____D C:\Users\TEST1\AppData\Local\TempSWBackupDirectory
2016-03-25 15:46 - 2016-02-14 14:19 - 00000123 _____ C:\Windows\wpd99.drv
2016-03-25 15:46 - 2016-02-14 14:19 - 00000000 ____D C:\ProgramData\pdf995
2016-03-25 08:32 - 2011-01-13 14:27 - 00000144 _____ C:\Windows\system32\config\netlogon.ftl
2016-03-25 08:24 - 2016-01-19 23:19 - 00000000 ____D C:\Users\TEST1\AppData\Roaming\SolidWorks
2016-03-23 06:49 - 2016-01-26 13:04 - 00002028 ____H C:\Users\TEST1\Documents\Default.rdp
2016-03-20 08:50 - 2015-12-17 10:25 - 00000000 ____D C:\Users\dolsen\Desktop\Natural Gas Compressor
2016-03-14 18:28 - 2012-03-02 11:20 - 00002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-14 18:28 - 2012-03-02 11:20 - 00002131 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-08 19:59 - 2016-01-23 03:12 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-07 09:50 - 2015-09-28 12:40 - 430973952 _____ C:\Users\dolsen\Desktop\2006Receivedarchive.pst
2016-03-07 09:50 - 2011-01-19 12:44 - 1950368768 _____ C:\Users\dolsen\Desktop\OldEmail.pst
2016-03-07 09:50 - 2011-01-17 09:11 - 00000000 ____D C:\Users\dolsen\Documents\Outlook Files
2016-03-05 08:10 - 2016-01-19 15:10 - 00000000 ____D C:\Users\TEST1\AppData\Local\Adobe
2016-03-02 07:24 - 2011-01-17 08:47 - 00140472 _____ C:\Users\dolsen\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-29 23:51 - 2011-06-08 14:29 - 00000000 ____D C:\temp
2016-02-28 10:32 - 2011-01-19 08:37 - 00000000 ____D C:\ProgramData\FLEXnet
2016-02-27 08:41 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-27 08:41 - 2009-07-14 00:33 - 00484688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-27 08:39 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
2015-03-10 09:19 - 2015-03-10 09:19 - 6103040 _____ () C:\Program Files\GUT195B.tmp
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-03-19 19:28
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by TEST1 (administrator) on DOLSENLAPTOP (27-03-2016 17:54:44)
Running from C:\Users\TEST1\Downloads
Loaded Profiles: TEST1 (Available Profiles: dolsen & dolsen2 & TEST1)
Platform: Windows 7 Professional Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Wave Systems Corp.) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DeviceVM, Inc.) D:\Program Files\Dell\Reader 2.1\DVMExportService.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_service.exe
() C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation (2)\binCFW\StandAloneSlv.exe
(Dell SonicWALL, Inc.) C:\Program Files\Dell SonicWALL\Global VPN Client\SWGVCSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Dell Inc.) C:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AOL Inc.) C:\Program Files\Common Files\AOL\1453259556\ee\aolsoftware.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_comm_customer.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_system_customer.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_user_customer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AOL Inc.) C:\Program Files\Common Files\AOL\acs\AOLacsd.exe
(Dell SonicWALL, Inc.) C:\Program Files\Dell SonicWALL\Global VPN Client\SWGVC.exe
(Microsoft Corporation) C:\Windows\System32\dinotify.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(AOL Inc.) C:\Program Files\AOL Desktop 9.8.2\waol.exe
(AOL Inc.) C:\Program Files\AOL Desktop 9.8.2\shellmon.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DBRMTray] => C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe [206336 2010-05-20] (Microsoft)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [288112 2010-05-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-12-17] (Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139768 2016-03-27] (AVAST Software)
HKLM\...\RunOnce: [DBRMTray] => C:\Dell\DBRM\Reminder\TrayApp.exe [7168 2010-02-04] (Microsoft)
Winlogon\Notify\GoToAssist Express Customer: C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_winlogon.dll [2016-01-25] (Citrix Systems, Inc.)
HKU\S-1-5-21-3056380410-417315007-640916887-1003\...\Run: [AOL Fast Start] => C:\Program Files\AOL Desktop 9.8.2\AOL.EXE [73584 2015-12-15] (AOL Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 wvauth
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-03-27] (AVAST Software)
ShellIconOverlayIdentifiers: [EnabledUnlockedFDEIconOverlay] -> {30D3C2AF-9709-4D05-9CF4-13335F3C1E4A} => C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmIconOverlay.dll [2010-03-29] (Wave Systems Corp.)
ShellIconOverlayIdentifiers: [UninitializedFdeIconOverlay] -> {CF08DA3E-C97D-4891-A66B-E39B28DD270F} => C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmIconOverlay.dll [2010-03-29] (Wave Systems Corp.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{515EB4EB-0182-4754-8B99-31519D791097}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{B74DF508-EBBE-448C-A4B9-F4DE13A86BFF}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {9AB47079-668A-43FC-944F-27BEE07483FC} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox
SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-27] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Search Toolbar -> {9D425283-D487-4337-BAB6-AB8354A81457} -> C:\Program Files\Search Toolbar\SearchToolbar.dll [2010-04-08] ()
BHO: Search.com Bar -> {9f85f783-362b-4373-afb4-4999ef33aa35} -> C:\Program Files\searchcom_004\searchcom_002X.dll [2012-03-01] ()
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18] (Google Inc.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Hotspot Shield Class -> {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> C:\Program Files\Hotspot Shield\HssIE\HssIE.dll [2013-02-13] (AnchorFree Inc.)
Toolbar: HKLM - Search Toolbar - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll [2010-04-08] ()
Toolbar: HKLM - Search.com Bar - {9f85f783-362b-4373-afb4-4999ef33aa35} - C:\Program Files\searchcom_004\searchcom_002X.dll [2012-03-01] ()
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-18] (Google Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0045-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CB1A2363-BCE7-42B1-A8B2-E530C9F0B0DA} hxxps://secure.digsigtrust.com/ms/IdenTrustCertEnroll.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-23] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_45\bin\new_plugin\npjp2.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-18] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin: @viewpoint.com/VMP -> C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll [2004-02-20] ()
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-27]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-11-16]
Chrome:
=======
CHR Profile: C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-19]
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-19]
CHR Extension: (Google Drive) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-19]
CHR Extension: (YouTube) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-19]
CHR Extension: (Google Search) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-19]
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-19]
CHR Extension: (Google Slides) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-19]
CHR Extension: (Gmail) - C:\Users\TEST1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-19]
CHR HKLM\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\dolsen\AppData\Local\Temp\crx744.tmp <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-03-27]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe [46184 2014-02-06] (AOL Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-27] (AVAST Software)
S3 CoordinatorServiceHost; C:\Program Files\SolidWorks Corp\SolidWorks (3)\swScheduler\DTSCoordinatorService.exe [89160 2012-03-28] (Dassault Systèmes SolidWorks Corp.)
R2 Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [812448 2010-03-24] (Broadcom Corporation)
R2 Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [27040 2010-03-24] (Broadcom Corporation)
R2 dcpsysmgrsvc; c:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe [388464 2010-08-24] (Dell Inc.)
R2 DvmMDES; D:\Program Files\Dell\Reader 2.1\DVMExportService.exe [327680 2010-05-04] (DeviceVM, Inc.) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2011-09-15] (Flexera Software, Inc.) [File not signed]
R2 GoToAssist Remote Support Customer; C:\Program Files\Citrix\GoToAssist Remote Support Customer\948\g2ax_service.exe [610528 2016-01-25] (Citrix Systems, Inc.)
R2 InstallFilterService; C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe [60928 2010-01-10] () [File not signed]
S4 msvsmon80; C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2799808 2005-09-23] (Microsoft Corporation)
R2 Remote Solver for Flow Simulation 2010; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe [144680 2009-09-11] (Mentor Graphics Corporation)
R2 Remote Solver for Flow Simulation 2011; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation (2)\binCFW\StandAloneSlv.exe [89864 2011-07-11] (Mentor Graphics Corporation)
S3 Remote Solver for Flow Simulation 2012; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation (3)\binCFW\StandAloneSlv.exe [95368 2012-02-07] (Mentor Graphics Corporation) [File not signed]
S3 RoxMediaDB12OEM; C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [1116656 2010-09-04] (Sonic Solutions)
S2 RoxWatch12; C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [219632 2010-09-04] (Sonic Solutions)
S3 SecureStorageService; C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe [1032192 2010-02-03] (Wave Systems Corp.) [File not signed]
S3 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2011-01-20] (SolidWorks) [File not signed]
S2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [245842 2010-05-26] (IDT, Inc.)
R2 SWGVCSvc; C:\Program Files\Dell SonicWALL\Global VPN Client\SWGVCSvc.exe [256800 2014-03-06] (Dell SonicWALL, Inc.)
S2 tcsd_win32.exe; C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1273856 2008-11-12] () [File not signed]
R2 TdmService; C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe [1164648 2010-03-29] (Wave Systems Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [4539392 2010-02-02] (Dell Inc.) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Acceler; C:\Windows\System32\DRIVERS\Accelern.sys [42672 2010-01-18] (ST Microelectronics)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [32792 2016-03-27] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [91168 2016-03-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-03-27] (AVAST Software)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [58776 2016-03-27] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [816304 2016-03-27] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447848 2016-03-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [127432 2016-03-27] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [221240 2016-03-27] (AVAST Software)
R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18424 2010-02-02] (Broadcom Corporation)
R3 cvusbdrv; C:\Windows\System32\Drivers\cvusbdrv.sys [33832 2009-10-30] (Broadcom Corporation)
R1 DNE; C:\Windows\System32\DRIVERS\dnelwf.sys [108368 2013-10-03] (Citrix Systems, Inc.)
R1 DVMIO; D:\Program Files\Dell\Reader 2.1\dvmio.sys [18320 2010-05-04] (DeviceVM, Inc.)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [389456 2015-07-27] (Symantec Corporation)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [77808 2014-01-31] (FTDI Ltd.)
S2 MCUSBPM3; C:\Windows\System32\Drivers\PM3w2k.sys [12447 2004-03-22] (Microchip Technology, Inc.) [File not signed]
S3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [30880 2010-02-03] (Intel Corporation )
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18432 2011-08-02] (Apple Inc.) [File not signed]
R0 PBADRV; C:\Windows\System32\DRIVERS\PBADRV.sys [26608 2008-06-04] (Dell Inc)
R2 risdpcie; C:\Windows\System32\DRIVERS\risdpe86.sys [59904 2010-03-21] (REDC)
S3 rixdpcie; C:\Windows\system32\DRIVERS\rixdpe86.sys [38912 2010-03-21] (REDC)
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [17920 2009-10-08] (Silicon Laboratories, Inc.)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [63872 2009-10-08] (Silicon Laboratories)
R0 stdflt; C:\Windows\System32\DRIVERS\stdfltn.sys [17072 2010-01-18] (ST Microelectronics)
R2 SWIPsec; C:\Windows\system32\Drivers\SWIPsec.sys [95120 2014-03-06] (Dell SonicWALL, Inc.)
S3 SWVNIC; C:\Windows\System32\DRIVERS\swvnic.sys [21016 2013-08-26] (SonicWALL, Inc.)
R3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-29] (America Online, Inc.)
R2 WavxDMgr; C:\Windows\System32\DRIVERS\WavxDMgr.sys [229888 2010-01-19] (Wave Systems Corp.) [File not signed]
U5 BTHPORT; C:\Windows\System32\Drivers\BTHPORT.sys [393728 2012-07-06] () [File not signed]
S3 EraserUtilDrv11410; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11410.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-27 17:57 - 2016-03-27 17:57 - 00001120 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-03-27 17:57 - 2016-03-27 17:57 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-03-27 17:56 - 2016-03-27 17:56 - 00035096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-03-27 17:54 - 2016-03-27 17:56 - 00021426 _____ C:\Users\TEST1\Downloads\FRST.txt
2016-03-27 17:53 - 2016-03-27 17:54 - 00000000 ____D C:\FRST
2016-03-27 17:52 - 2016-03-27 17:53 - 01725440 _____ (Farbar) C:\Users\TEST1\Downloads\FRST.exe
2016-03-27 17:52 - 2016-03-27 17:52 - 00000000 ____D C:\Users\TEST1\AppData\Roaming\AVAST Software
2016-03-27 17:51 - 2016-03-27 17:51 - 00002077 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-03-27 17:51 - 2016-03-27 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-03-27 17:51 - 2016-03-27 17:51 - 00000000 ____D C:\Program Files\Common Files\AV
2016-03-27 17:50 - 2016-03-27 17:51 - 00816304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-27 17:50 - 2016-03-27 17:51 - 00447848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-03-27 17:50 - 2016-03-27 17:51 - 00221240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.1459115483025
2016-03-27 17:50 - 2016-03-27 17:51 - 00221240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-03-27 17:50 - 2016-03-27 17:51 - 00091168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00812720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1459115489922
2016-03-27 17:50 - 2016-03-27 17:50 - 00447848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1459115485568
2016-03-27 17:50 - 2016-03-27 17:50 - 00334280 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-03-27 17:50 - 2016-03-27 17:50 - 00221240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.1459115482105
2016-03-27 17:50 - 2016-03-27 17:50 - 00127432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00091232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00091168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.1459115489922
2016-03-27 17:50 - 2016-03-27 17:50 - 00058776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-03-27 17:50 - 2016-03-27 17:50 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-03-27 17:50 - 2016-03-27 17:50 - 00032792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-03-27 17:49 - 2016-03-27 17:49 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-27 17:48 - 2016-03-27 17:56 - 00000000 ____D C:\ProgramData\AVAST Software
2016-03-27 17:48 - 2016-03-27 17:48 - 00447848 _____ (AVAST Software) C:\Windows\system32\Drivers\orohurvv.sys
2016-03-27 17:29 - 2016-03-27 17:31 - 201900432 _____ (AVAST Software) C:\Users\TEST1\Downloads\avast_free_antivirus_setup.exe
2016-03-25 18:36 - 2016-03-25 18:36 - 00261120 _____ C:\Users\TEST1\Desktop\Top End Support.SLDDRW
2016-03-25 15:45 - 2016-03-25 15:46 - 00022137 ____N C:\Users\TEST1\Desktop\Front Wall 2x4 - Sheet1.pdf
2016-03-25 15:43 - 2016-03-25 15:43 - 00008681 _____ C:\Users\TEST1\Desktop\rear wall 2x4 - Sheet1.pdf
2016-03-25 15:39 - 2016-03-25 18:37 - 00269824 _____ C:\Users\TEST1\Desktop\rear wall 2x4.SLDDRW
2016-03-25 15:37 - 2016-03-25 18:37 - 00264704 _____ C:\Users\TEST1\Desktop\Front Wall 2x4.SLDDRW
2016-03-25 14:48 - 2016-03-25 14:48 - 00104082 _____ C:\Users\TEST1\Desktop\Kansas City Hotel.pdf
2016-03-20 15:36 - 2016-03-25 18:36 - 00104960 _____ C:\Users\TEST1\Desktop\Top End Support.SLDPRT
2016-03-20 14:54 - 2016-03-25 18:36 - 00128512 _____ C:\Users\TEST1\Desktop\Front Wall.SLDPRT
2016-03-20 14:44 - 2016-03-25 18:36 - 00119296 _____ C:\Users\TEST1\Desktop\Side Cover.SLDPRT
2016-03-20 09:03 - 2016-03-20 09:16 - 00079360 _____ C:\Users\TEST1\Desktop\2x4x55.SLDPRT
2016-03-20 08:51 - 2016-03-25 18:36 - 00109056 _____ C:\Users\TEST1\Desktop\2x4x14.SLDPRT
2016-03-20 08:35 - 2016-03-25 18:36 - 00098816 _____ C:\Users\TEST1\Desktop\Floor.SLDPRT
2016-03-20 08:32 - 2016-03-25 18:36 - 00272384 _____ C:\Users\TEST1\Desktop\Chicken Coop Base.SLDASM
2016-03-20 08:28 - 2016-03-25 18:36 - 00087040 _____ C:\Users\TEST1\Desktop\4x4x24.SLDPRT
2016-03-20 08:13 - 2016-03-25 18:36 - 00102400 _____ C:\Users\TEST1\Desktop\2x4x4.SLDPRT
2016-03-20 08:13 - 2016-03-25 18:36 - 00085504 _____ C:\Users\TEST1\Desktop\2x4x5.SLDPRT
2016-03-20 08:13 - 2016-03-25 18:36 - 00083968 _____ C:\Users\TEST1\Desktop\2x4x6.SLDPRT
2016-03-20 08:12 - 2016-03-20 08:12 - 00000000 ____D C:\Users\TEST1\Desktop\Chicken Coop
2016-03-19 19:18 - 2016-03-25 15:10 - 00370688 _____ C:\Users\TEST1\Desktop\Chicken Coop.SLDPRT
2016-03-17 23:01 - 2016-03-17 23:01 - 00695182 _____ C:\Users\TEST1\Downloads\The Quick Start Guide to Fishing Cape Cod PDF.pdf
2016-03-15 23:57 - 2016-03-15 23:57 - 00077985 _____ C:\Users\TEST1\Desktop\Penn Power Handle Order.pdf
2016-03-15 12:10 - 2016-03-15 12:10 - 00070029 _____ C:\Users\TEST1\Desktop\2016 GEMS - Natick, MA - Confirmation _ Online Registration by Cvent.pdf
2016-03-08 08:47 - 2016-03-08 08:47 - 00380910 _____ C:\Users\TEST1\Desktop\Performance graph 2.pdf
2016-03-08 08:39 - 2016-03-08 08:39 - 00024841 _____ C:\Users\TEST1\Desktop\Performance Chart 1.pdf
2016-03-08 08:31 - 2016-03-08 08:31 - 01771563 _____ C:\Users\TEST1\Downloads\4723-20Jan2015.pdf
2016-03-05 08:23 - 2016-03-05 08:23 - 00390543 _____ C:\Users\TEST1\Desktop\Oil loss.pdf
2016-03-05 07:59 - 2016-03-05 07:59 - 00029045 _____ C:\Users\TEST1\Downloads\6284-01Mar2016 (2).pdf
2016-03-05 07:59 - 2016-03-05 07:58 - 00029045 _____ C:\Users\TEST1\Desktop\6284-01Mar2016 (1).pdf
2016-03-05 07:58 - 2016-03-05 07:58 - 00029045 _____ C:\Users\TEST1\Downloads\6284-01Mar2016 (1).pdf
2016-03-05 07:51 - 2016-03-05 07:51 - 00029045 _____ C:\Users\TEST1\Downloads\6284-01Mar2016.pdf
2016-03-01 07:17 - 2016-03-01 07:17 - 00071898 _____ C:\Users\TEST1\Downloads\ATT00002 (1).htm
2016-02-29 23:53 - 2016-02-29 23:53 - 00074777 _____ C:\Users\TEST1\Desktop\5100801 (Rev. 1) Twin Rotor Core.STEP
2016-02-29 23:46 - 2016-02-24 17:29 - 01779200 _____ C:\Users\TEST1\Desktop\5100803 (Rev. 2) 48v Twin Stator Assy.SLDASM
2016-02-29 23:46 - 2016-02-24 17:28 - 11808768 _____ C:\Users\TEST1\Desktop\5100803 (Rev. 2) 48v Twin Stator Assy.SLDDRW
2016-02-29 23:38 - 2015-12-16 15:41 - 00964608 _____ C:\Users\TEST1\Desktop\5100801 (Rev. 1) Twin Rotor Core.SLDDRW
2016-02-29 23:38 - 2015-12-16 15:31 - 00571904 _____ C:\Users\TEST1\Desktop\5100801 (Rev. 1) Twin Rotor Core.SLDPRT
2016-02-29 23:29 - 2016-02-29 23:29 - 00390136 _____ C:\Users\TEST1\Desktop\Rental Car Reservation.pdf
2016-02-29 22:57 - 2016-02-29 22:57 - 24246378 _____ C:\Users\TEST1\Desktop\AHRI_Project-8007_Final_Report.pdf
2016-02-29 22:53 - 2016-02-29 22:53 - 00962046 _____ C:\Users\TEST1\Downloads\Refrigerants-and-their-Responsible-Use-Position-Document-2014-pdf.pdf
2016-02-29 22:41 - 2016-02-29 22:41 - 03345502 _____ C:\Users\TEST1\Downloads\LFRT-007_Celstran_AutoPPT_AM_1013.pdf
2016-02-28 10:34 - 2013-10-16 16:38 - 00272384 _____ C:\Users\TEST1\Desktop\3100803 (Rev. A) Bottom Balance Weight, 1.9cc Low Noise.SLDPRT
2016-02-28 10:34 - 2012-12-21 12:42 - 00201216 _____ C:\Users\TEST1\Desktop\3100804 (Rev. B) Top Balance Weight, 1.9cc Low Noise.SLDPRT
2016-02-28 10:34 - 2012-11-29 18:47 - 00529408 _____ C:\Users\TEST1\Desktop\Balance Weight Screw_91771A078.SLDPRT
2016-02-28 10:33 - 2016-02-28 10:34 - 00410112 _____ C:\Users\TEST1\Desktop\1. 9 Ningbo Rotor Balance Assy With Rev. B Balance Weights 12_21_12.SLDASM
2016-02-28 10:28 - 2016-02-28 10:34 - 00641024 _____ C:\Users\TEST1\Desktop\DynamicBalanceAssyWithoutMuffler030210.SLDASM
2016-02-28 10:28 - 2016-02-28 10:34 - 00441856 _____ C:\Users\TEST1\Desktop\1.9ccShaftFinishMachine.SLDPRT
2016-02-28 10:28 - 2016-02-28 10:29 - 01931264 _____ C:\Users\TEST1\Desktop\1.9ccAssyWith NingboMotor.SLDASM
2016-02-28 10:28 - 2013-10-21 12:03 - 00425472 _____ C:\Users\TEST1\Desktop\XA00013 (Rev4Metric)1.4ccTopFlangeFinishMachineHighVolume.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:03 - 00353792 _____ C:\Users\TEST1\Desktop\XX000125(RevC)TopCap.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:03 - 00105984 _____ C:\Users\TEST1\Desktop\cylinderscrew.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:02 - 00376832 _____ C:\Users\TEST1\Desktop\newstator.SLDPRT
2016-02-28 10:28 - 2013-10-21 12:02 - 00143872 _____ C:\Users\TEST1\Desktop\EM00008 - ROTOR.SLDPRT
2016-02-28 10:28 - 2013-04-18 11:02 - 00369664 _____ C:\Users\TEST1\Desktop\XX00074 (Rev E)CompressorCase.SLDPRT
2016-02-28 10:28 - 2013-01-15 14:09 - 00269824 _____ C:\Users\TEST1\Desktop\XA00011 (Rev3Metric)1.4ccLowerFlangeFinishMachineHighVolume.SLDPRT
2016-02-28 10:28 - 2012-11-29 17:54 - 00205312 _____ C:\Users\TEST1\Desktop\Tall1.9DynamicBalanceWeightTop.SLDPRT
2016-02-28 10:28 - 2012-11-29 17:54 - 00203776 _____ C:\Users\TEST1\Desktop\balanceweight.SLDPRT
2016-02-28 10:28 - 2012-11-28 10:20 - 00489472 _____ C:\Users\TEST1\Desktop\1.9ccCylinderFinishMachine.SLDPRT
2016-02-28 10:28 - 2012-11-28 10:20 - 00193536 _____ C:\Users\TEST1\Desktop\1.9ccRollerFinishMachine.SLDPRT
2016-02-28 10:28 - 2010-02-25 17:37 - 00649216 _____ C:\Users\TEST1\Desktop\XX00096 (Rev A)Muffler.SLDPRT
2016-02-28 10:26 - 2016-02-28 10:26 - 00113664 _____ C:\Users\TEST1\Desktop\440 Fywheel Balance.SLDASM
2016-02-28 09:56 - 2016-02-28 09:56 - 00104448 _____ C:\Users\TEST1\Desktop\Balancing Slug.SLDPRT
2016-02-27 08:35 - 2016-03-27 13:47 - 00000000 ____D C:\Users\TEST1\AppData\Local\ElevatedDiagnostics
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-27 17:49 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\inf
2016-03-27 17:45 - 2011-09-12 09:19 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 15:52 - 2009-07-14 00:34 - 00025424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-27 15:52 - 2009-07-14 00:34 - 00025424 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-26 19:15 - 2015-03-10 12:16 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d05b4d8adc44a1.job
2016-03-25 18:38 - 2016-01-19 23:21 - 00000000 ____D C:\Users\TEST1\AppData\Local\TempSWBackupDirectory
2016-03-25 15:46 - 2016-02-14 14:19 - 00000123 _____ C:\Windows\wpd99.drv
2016-03-25 15:46 - 2016-02-14 14:19 - 00000000 ____D C:\ProgramData\pdf995
2016-03-25 08:32 - 2011-01-13 14:27 - 00000144 _____ C:\Windows\system32\config\netlogon.ftl
2016-03-25 08:24 - 2016-01-19 23:19 - 00000000 ____D C:\Users\TEST1\AppData\Roaming\SolidWorks
2016-03-23 06:49 - 2016-01-26 13:04 - 00002028 ____H C:\Users\TEST1\Documents\Default.rdp
2016-03-20 08:50 - 2015-12-17 10:25 - 00000000 ____D C:\Users\dolsen\Desktop\Natural Gas Compressor
2016-03-14 18:28 - 2012-03-02 11:20 - 00002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-14 18:28 - 2012-03-02 11:20 - 00002131 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-08 19:59 - 2016-01-23 03:12 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-07 09:50 - 2015-09-28 12:40 - 430973952 _____ C:\Users\dolsen\Desktop\2006Receivedarchive.pst
2016-03-07 09:50 - 2011-01-19 12:44 - 1950368768 _____ C:\Users\dolsen\Desktop\OldEmail.pst
2016-03-07 09:50 - 2011-01-17 09:11 - 00000000 ____D C:\Users\dolsen\Documents\Outlook Files
2016-03-05 08:10 - 2016-01-19 15:10 - 00000000 ____D C:\Users\TEST1\AppData\Local\Adobe
2016-03-02 07:24 - 2011-01-17 08:47 - 00140472 _____ C:\Users\dolsen\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-29 23:51 - 2011-06-08 14:29 - 00000000 ____D C:\temp
2016-02-28 10:32 - 2011-01-19 08:37 - 00000000 ____D C:\ProgramData\FLEXnet
2016-02-27 08:41 - 2009-07-14 00:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-27 08:41 - 2009-07-14 00:33 - 00484688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-27 08:39 - 2009-07-13 22:37 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
2015-03-10 09:19 - 2015-03-10 09:19 - 6103040 _____ () C:\Program Files\GUT195B.tmp
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-03-19 19:28
==================== End of FRST.txt ============================